last executing test programs:

19.37522868s ago: executing program 3 (id=228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="ef94da0200"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095", @ANYRES16=r0, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf280fba0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newsa={0x138, 0x18, 0x713, 0x70bd26, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x4e21, 0x0, 0x0, 0x3fff}, {@in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x0, 0x32}, @in6=@ipv4={'\x00', '\xff\xff', @dev}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000002, 0x1000000000000000}, {}, {}, 0xfffffffc, 0x0, 0xa, 0x4, 0x0, 0x2f}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x4054}, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff})
getdents(r4, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@quota}]}, 0x1, 0x629, &(0x7f0000001080)="$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")
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r6, 0xc0c0583b, &(0x7f0000000200)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x0, 0xfffffffffffffffd, 0x9}, {0xffffffff, 0x0, 0x8001, 0x0, 0xffffffffffffffff, 0xfff}]})

18.463898704s ago: executing program 3 (id=242):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x66, &(0x7f00000004c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60003a0400303afffe808d0000"], 0x0)

18.389636476s ago: executing program 3 (id=243):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
socket(0x2, 0x80805, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendto$inet6(r1, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48)

18.345507116s ago: executing program 3 (id=245):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f28000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
socketpair(0x1, 0xc, 0x1, &(0x7f00000015c0))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
timer_create(0x0, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372000000001400010076657468315f766c616e"], 0xfc}}, 0x0)
write$binfmt_script(r3, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x16, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r7=>0x0})
r8 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r7, @ANYBLOB="00000000100000001c001a8008"], 0x44}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
sysfs$1(0x1, &(0x7f00000001c0)='sysfs\x00')
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0xe8}}, 0x0)

18.293326597s ago: executing program 3 (id=246):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000100))
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000140), &(0x7f00000001c0)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00'})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'team0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x48, 0x10, 0xff05, 0x1000000, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x1000000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r3}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x48}, 0x1, 0x0, 0x0, 0x45844}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r7, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000023c0)={0x2c, r8, 0x1, 0x70bd2c, 0x25dfdbfe, {0x21}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x2c}}, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
r9 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r9, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000300)=0x14)
r10 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, 0x0, 0x8840)

18.11547961s ago: executing program 3 (id=249):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f00009ba000/0x1000)=nil)
mremap(&(0x7f000046b000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000769000/0x1000)=nil)
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
mremap(&(0x7f0000ce8000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f00007ce000/0x2000)=nil)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xf1, 0xfffffffffffffffd)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x70bd2b, 0x10000, {0x0, 0x0, 0x0, r6, {0xc}, {0x0, 0x4}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)

18.08800304s ago: executing program 32 (id=249):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f00009ba000/0x1000)=nil)
mremap(&(0x7f000046b000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000769000/0x1000)=nil)
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
mremap(&(0x7f0000ce8000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f00007ce000/0x2000)=nil)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xf1, 0xfffffffffffffffd)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r6, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x70bd2b, 0x10000, {0x0, 0x0, 0x0, r6, {0xc}, {0x0, 0x4}, {0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)

3.874656868s ago: executing program 5 (id=414):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
recvmmsg(r0, &(0x7f00000037c0), 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x7}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

3.792992879s ago: executing program 0 (id=416):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61780, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
preadv2(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)

3.792669829s ago: executing program 5 (id=417):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000003"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)

3.75544299s ago: executing program 5 (id=419):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x600e7180, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg$inet(r1, &(0x7f0000002f00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20004000)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0)=0x400, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')
recvfrom$inet(r2, &(0x7f0000000040)=""/39, 0x27, 0x0, &(0x7f0000000080)={0x2, 0x4e21, @remote}, 0x10)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r3, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x0, 0x41005, 0x0, 0x1, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x4})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
read$hiddev(r4, &(0x7f00000000c0)=""/4092, 0xffc)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r6}, 0x10)
io_setup(0x4082, &(0x7f0000000380)=<r7=>0x0)
io_pgetevents(r7, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

3.13126119s ago: executing program 2 (id=424):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
socket$pppoe(0x18, 0x1, 0x0)
syz_open_dev$mouse(0x0, 0x40, 0x105200)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="ba0b91c97bb94320b5166f74e8b5ba73ebbca0acdbd3234ede5e3d361edac750233adb668e74fda76b758117da61020d93ca458cf726048493c3bd4206215799485a11ba46a62410664c790c3998bf1313c0eb44ffdf3976b3007eb43f07023289607a6b1eb5882e14c7e3aedbadb1016f8e1783f8117793c123cca228f677441b86fb04063ac095a7bbae7faeacaf314d01d9ddaba4a5be34da5ddb6c7185117080e42928dda313a8c352aff31b141404f5634ed02d734c49c1ab3e469146243f24e78dbc220b9eedcd7c95c306de117826dd251de9f194deb05407a854931f52451d4a82fbf408c2bbc23ba5881b5e7abb8dbfaf119d7b5273100bdae2e72807aa5d740c46d8083da34c200c038835caaa3b624c", @ANYBLOB="0000000000000000b708000000000000"], 0x0, 0xc, 0x0, 0x0, 0x41100, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000840)=ANY=[@ANYBLOB="340000002e000305000004000000000020000080080000000000000008000000", @ANYRES32, @ANYBLOB="0c000f00005e"], 0x34}], 0x1}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
semctl$GETVAL(0xffffffffffffffff, 0x3, 0xc, &(0x7f0000000080)=""/64)
r3 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r4, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r2)
write$selinux_user(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="4af6e89bdb98b681eab9a2f6d55bb0c9c0aab6229de8ecb1788024dab97c4c59152b46"], 0x27)
chown(&(0x7f0000000040)='./file1\x00', 0xffffffffffffffff, 0x0)

3.10926151s ago: executing program 5 (id=425):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
readahead(0xffffffffffffffff, 0xff, 0x80000)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
gettid()
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32=0x0], 0x48)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000001c0))
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x18)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000280)='./file1\x00', 0x8, &(0x7f0000000080), 0x4, 0x4f3, &(0x7f00000012c0)="$eJzs3c9vVEUcAPDvbru0lEJBOahRQUTRELY/gIZwES4aQ0iMxJMHqO3SNN1lm26JtHIoR+8kknjSP8GbBxNOHrx505sXPJigEg018bDmvV3apb+1P9Z2P5/k9b2ZWfY702Vm9g3sTgAt62hEzEbEnoi4FhE99fxM/YgLtSN53ONHt4fnHt0ezkS1euW3TFqe5EXDn0nsqz9nZ0S8/07ER5mlcSvTM+NDxWJhsp7unSpN9FamZ06NZes5A4P9g33nTp8d2LS2Hil99fDtsUsffPP1Sw++n33zk6Ra3Z/uT8sa27GZak3PRXdDXntEXNqKYE3SXv/7w86T9LZnIuJY2v97oi19NQGA3axa7YlqT2MaANjtkvv/7shk8/W1gO7IZvP52hre4ejKFsuVqZM95Zs3RiJdwzoYuez1sWKhr75WeDBymSTdn14vpAeeSt8tnI6IQxFxt2NvWp4fLhdHmvnGBwBa2L5F8/+fHbX5HwDY5TqbXQEAYNuZ/wGg9Zj/AaD1/Iv536cDAWCXcP8PAK3H/A8ArWfN+f/O9tQDANgW712+nBzVudr3Xz/5pu5TI4XKeL50czg/XJ6cyI+Wy6PFQn64Wl3r+Yrl8kT/mflkZXrmaql888bU1bHS0GjhaiG3lY0BANbl0JH7PyaT/uz5vekRDXs5mKthd8s2uwJA07Q1uwJA0/g8D7SuddzjWwaAXW6ZLXqfsuJ/Ebpn81fYqU48b/0fWtVG1v+tHcDO9t/W/9/a9HoA288cDq2rWs3Y8x8AWow1fmBD//4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALao7PTLZfLoX+GzyM5vPR+yPiIORy1wfKxb6IuJARPzQketI0v3NrjQAsEHZXzL1/b9O9BzvXly6J/NXR3qOiI8/v/LZraGpqcn+JP/3+fype/X8gT3NaAAA0OjC0qzaPF0/N9zIP350e/jJsZ1VfHixtrloEneuftRK2qM9PXdGLiK6/sjU0zXJ+5W2TYg/eycinlto/62GCN3pGkht59PF8ZPY+7cg/sLvf3H87FPxs2lZcs6lv4tnN6Eu0GruX6yNk/W+l3Sxev/LxtH0vHz/70xHqI1Lxr9kLJlbMv5l58e/tiXxM2mfPzqfXr0mD898++6SzGpPrexOxAvty8XPzMfPLD/+5o6vs40/vfjysZXKql9EnFi2/U92pC6lw2zvVGmitzI9c2qsNDRaGC3cGBgY7B/sO3f67EBvukZd+/ndcjF+PX/ywErxk/Z3rRC/c/X2x2vrbP+Xf1/78JVV4r/x6vKv/+FV4idz4uvrjD/UdWHF7buT+CMrtH+N1z9OrjP+g59nRtb5UABgG1SmZ8aHisXC5BoXyXvNtR7jYmdexGzEZj1huigREf+HdrnYyEWzRyZgqy10+mbXBAAAAAAAAAAAAAAAWEllema8Y4s/rdXsNgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB7/RMAAP//TwTJNg==")
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x8901, 0x0)
socket(0x15, 0x5, 0x0)
r8 = socket(0x10, 0x803, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=ANY=[@ANYBLOB="58000000100039042cbd7000eaffffff000003e4", @ANYRES32=0x0, @ANYBLOB="83000400010000003800128008000100736974002c00028008000c000000000006000d000900000008000300e000000106000e00000043895571f7fd5d67cc00000600080021000000"], 0x58}, 0x1, 0x0, 0x0, 0x24008080}, 0x4040)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r7, 0xc004743e, 0x110c23003f)

2.764867156s ago: executing program 0 (id=427):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0xffffffffffffffff, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

2.645686097s ago: executing program 2 (id=428):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
recvmmsg(r0, &(0x7f00000037c0), 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x7}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

2.452167201s ago: executing program 0 (id=431):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000280)=0x27fe, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x0, 0x0}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='highspeed\x00', 0xa)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1}, 0x700)

2.281626333s ago: executing program 2 (id=434):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070000000"], 0x0, 0x2002, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r1 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r1, 0x0, 0x400000000000000, 0x2)

2.084467117s ago: executing program 1 (id=435):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61780, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xa, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
preadv2(r6, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x232000, 0x1000}, 0x20)
socket(0x23, 0x80805, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r7, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x26}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e2, @void, @value}, 0x94)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
dup(r8)
pipe2$9p(&(0x7f0000000280), 0x4800)

2.052920177s ago: executing program 2 (id=436):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000005c0)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x800002, &(0x7f0000000b40)={[{@noblock_validity}, {@noblock_validity}, {@errors_remount}, {@journal_path={'journal_path', 0x3d, './file0'}}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [{@euid_lt}, {@hash}], 0x22}, 0x84, 0x46f, &(0x7f0000000640)="$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")
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0xff, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3a66505}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x6, 0xffffffffffffffff, 0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r4, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a385000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68d, @void, @value}, 0x94)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYRESDEC=r5], 0xe8}, 0x1, 0x0, 0x0, 0x4000}, 0x4040)

1.525214165s ago: executing program 0 (id=437):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000d00)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0x2000000000000089, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000600)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00008857c083001bed0000000000e747e39946423dbc997de38827c8ac2a7d5ca1bb8cad5fae158b67b887cbd3a542a587e12db7ad0affffad6e7663487c58f2defcfdd18bad1c0000000000000080768d91"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYRES32=r0, @ANYRES16, @ANYRESOCT=r3, @ANYRESOCT=r0], &(0x7f0000000580)='syzkaller\x00', 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7, 0x0, 0xfffffffffffffffe}, 0x18)
mount$9p_rdma(0x0, &(0x7f00000007c0)='./file0\x00', &(0x7f0000000000), 0x800, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=rdm', @ANYRES32=r2])
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000140), 0x6, r8}, 0x38)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
r11 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000e80)='/sys/kernel/profiling', 0x22042, 0x0)
write$binfmt_misc(r5, &(0x7f0000000000), 0xfffffecc)
splice(r4, 0x0, r11, 0x0, 0xbfd1, 0x0)

1.477021256s ago: executing program 4 (id=439):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
socket$pppoe(0x18, 0x1, 0x0)
syz_open_dev$mouse(0x0, 0x40, 0x105200)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYBLOB="0000000000000000b708000000000000"], 0x0, 0xc, 0x0, 0x0, 0x41100, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000840)=ANY=[@ANYBLOB="340000002e000305000004000000000020000080080000000000000008000000", @ANYRES32, @ANYBLOB="0c000f00005e"], 0x34}], 0x1}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
semctl$GETVAL(0xffffffffffffffff, 0x3, 0xc, &(0x7f0000000080)=""/64)
r3 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r4, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r2)
write$selinux_user(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="4af6e89bdb98b681eab9a2f6d55bb0c9c0aab6229de8ecb1788024dab97c4c59152b46"], 0x27)
chown(&(0x7f0000000040)='./file1\x00', 0xffffffffffffffff, 0x0)

1.381689477s ago: executing program 2 (id=440):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x3654}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='highspeed\x00', 0xa)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1}, 0x700)

1.21215848s ago: executing program 1 (id=441):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
msgget$private(0x0, 0x214)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x4, @private=0xfffffffe}})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={'batadv_slave_1\x00', {0x2, 0x4e21, @empty}})
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r1, 0x8982, &(0x7f0000000000)={0x8, 'veth1_to_batadv\x00', {'pim6reg\x00'}, 0xfff8})
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r4, &(0x7f00000000c0)="e9", 0x1, 0x20008045, &(0x7f00000001c0)={0xa, 0x2, 0x1000, @empty}, 0x1c)
sendmsg$kcm(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x75}], 0x1}, 0x0)

1.20473442s ago: executing program 4 (id=442):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b702000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r3}, &(0x7f0000000a00), &(0x7f0000000a40)=r2}, 0x20)

1.056757113s ago: executing program 1 (id=443):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0xffffffffffffffff, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

1.056065883s ago: executing program 4 (id=444):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
recvmmsg(r0, &(0x7f00000037c0), 0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x7}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

993.887824ms ago: executing program 4 (id=445):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}], {0x14}}, 0x64}}, 0x0)

993.040744ms ago: executing program 1 (id=446):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070000000"], 0x0, 0x2002, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r1 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r1, 0x0, 0x400000000000000, 0x2)

970.154264ms ago: executing program 4 (id=447):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000280)=0x27fe, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000400)={0x0, 0x0}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='highspeed\x00', 0xa)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1}, 0x700)

957.362634ms ago: executing program 1 (id=448):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00'})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x1810714, &(0x7f0000000200)={[{@journal_dev={'journal_dev', 0x3d, 0x9}}, {@noblock_validity}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@journal_dev}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}, {@jqfmt_vfsold}, {@usrjquota, 0x5}, {@min_batch_time}, {@nodiscard}]}, 0x1, 0x45c, &(0x7f00000005c0)="$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")
r2 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x1, 0x807bb5448e0096bf)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000140)={&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000340)=""/236, 0xec})

661.138289ms ago: executing program 0 (id=449):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r1 = accept4$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14, 0x800)
getsockname$packet(r1, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0xa0, r4, 0x1, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "824cb9d1d7e459e21be1adf442599fdfefc32a9672079c49"}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "9fc673a97b6b07b6a31237b13d6a0184b4d34710773f27aa"}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "ea0e07f3e72b34de9dce4cc7fa4b4b2a592ee6a734e94b50"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}]]}, 0xa0}, 0x1, 0x0, 0x0, 0x4080}, 0x4000800)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r3)
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x68, r5, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xfff}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x10}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r2}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7ff}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7ff}]}, 0x68}, 0x1, 0x0, 0x0, 0x80c0}, 0x40) (async, rerun: 32)
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r5, 0x10, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x800}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xfffffff7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040010}, 0x44000) (async, rerun: 32)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000700)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800000a}, 0xc, &(0x7f00000006c0)={&(0x7f0000000580)={0x108, 0x0, 0x1, 0x101, 0x0, 0x0, {0x5, 0x0, 0xa}, [@CTA_TUPLE_REPLY={0xc4, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @local}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}]}, @CTA_LABELS={0x10, 0x16, 0x1, 0x0, [0x4, 0x46, 0x7]}, @CTA_NAT_DST={0x20, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @remote}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x4008000}, 0x8001)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), r3)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000780), 0xc4180) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_MPP(r7, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x50, r4, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x50}, 0x40000c0) (async, rerun: 32)
r8 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000900), 0x80401, 0x0) (rerun: 32)
read$rfkill(r8, &(0x7f0000000940), 0x8) (async, rerun: 64)
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001c40)={&(0x7f0000001a40)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x198, 0x198, 0x3, [@union={0x7, 0x1, 0x0, 0x5, 0x1, 0x1, [{0xa, 0x2, 0x8000}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x1, 0x4}}, @struct={0xd, 0x6, 0x0, 0x4, 0x0, 0xc, [{0xd, 0x4, 0xfffffffe}, {0x2, 0x3, 0x7}, {0x5, 0x4, 0x34}, {0x3, 0x4, 0x10}, {0x2, 0x5, 0x6238}, {0xe, 0x2, 0x4}]}, @union={0x8, 0x8, 0x0, 0x5, 0x0, 0x0, [{0x1, 0x0, 0x7}, {0x6, 0x4, 0x554e}, {0x5}, {0x6, 0x5, 0xfffffff9}, {0xc, 0x2, 0x1}, {0xb, 0x0, 0x2}, {0xf, 0x2, 0x80}, {0x10, 0x3, 0x9}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x5, 0x7ff}}, @enum={0x7, 0x9, 0x0, 0x6, 0x4, [{0x1}, {0xe}, {0x6, 0x9}, {0xc, 0x20000}, {0xf, 0x5243}, {0xe}, {0x7, 0x401}, {0xb, 0x4}, {0xd, 0xa46b6ad}]}, @union={0x7, 0x4, 0x0, 0x5, 0x1, 0xa, [{0x1, 0x2, 0xff}, {0xe, 0x0, 0x5}, {0x2, 0x2, 0x3ff000}, {0x9, 0x0, 0x8}]}]}, {0x0, [0x0]}}, &(0x7f0000001c00)=""/21, 0x1b3, 0x15, 0x0, 0x401, 0x0, @void, @value}, 0x28) (async, rerun: 64)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001d00)={0xe, <r10=>0x0}, 0x8) (async)
r11 = pidfd_getfd(0xffffffffffffffff, r6, 0x0) (async)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000001d40)={0x1, <r12=>0xffffffffffffffff}, 0x4) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001e00)={{0x1, <r13=>0xffffffffffffffff}, &(0x7f0000001d80), &(0x7f0000001dc0)}, 0x20)
r14 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001e40)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x2, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001ec0)={{0x1, 0x1, 0x18, <r15=>r6, {0x4}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000001f80)={0x1f, 0x9, &(0x7f0000000980)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10001}, [@generic={0x59, 0xc, 0xc, 0x400}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @alu={0x7, 0x0, 0x5, 0x3, 0x6, 0x1, 0x1}]}, &(0x7f0000000a00)='GPL\x00', 0x0, 0x1000, &(0x7f0000000a40)=""/4096, 0x60700, 0x3, '\x00', 0x0, @fallback=0x15, r9, 0x8, &(0x7f0000001c80)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000001cc0)={0x0, 0x2, 0x7fff, 0x85}, 0x10, r10, r11, 0x1, &(0x7f0000001f00)=[0xffffffffffffffff, r12, 0x1, r13, r14, 0xffffffffffffffff, r15], &(0x7f0000001f40)=[{0x1, 0x3, 0x2, 0x9}], 0x10, 0x9, @void, @value}, 0x94) (async)
socket$inet6_mptcp(0xa, 0x1, 0x106) (async)
syz_clone(0x8000000, &(0x7f0000002040)="59f9924afd795a856da1eeb0d97fbfad7c2260648e5a6f08d273469c54b44c13cecd35ef8f0367323df76479c59f8fff4e043eabe815cb4b2dcfaa3af3064f5b7e11234d9ee268a3da03617000674f1ce7d08e702acb3560bb74c08641939d5293f09cfe9cf50e50e0d9b5683a27de7470e9eb6069c94779d37ee7a585cf007109dd04d42a26c3ee5dd72e6bb12f406e48015e98a6bb01b958d72e9bb93816debbd72d9b20f7cfe2cf785642f4f798c141517076c90b0a5e0974b0d99868e37b97087c78dc8eff1c989b89694bb200e15b98104bcf5fba4e594d3598f7a84296a6e037754b7cf53818d40a2683ca34041d357927bc31ab5dd2", 0xf9, &(0x7f0000002140), &(0x7f0000002180), &(0x7f00000021c0)="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")
r16 = fsmount(r0, 0x0, 0x4) (async, rerun: 64)
r17 = openat$tun(0xffffffffffffff9c, &(0x7f00000031c0), 0x10400, 0x0) (rerun: 64)
ioctl$TUNSETFILTEREBPF(r17, 0x800454e1, &(0x7f0000003200)=r16)

593.58467ms ago: executing program 0 (id=450):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61780, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r1 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
preadv2(r4, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)

560.47652ms ago: executing program 2 (id=451):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000300)=[{&(0x7f000001a240)=""/102367, 0x18fdf}], 0x1, 0x3, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r1, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x48840)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1300000024000000000000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000f0089bbc9ed974a300"/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r3}, &(0x7f0000000700), &(0x7f0000000740)=r2}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000040000000181100001db8aced882c40274cbde20b34ded8b7f13cafbc191990b2b2e248af19ab08782eb05e5e6c12fc7e1abfa377a30aaa809e5d47c49d1a0f9aad872762db611d342f5fd551c209441763cc9675eb46e9e179edaca7643eacbd2d5760f0dccbb37522e338b27101a119bd67bd1d6c9b8818db8e8928921ee6de70bcc385eeeb0335c29dc2713d596fd7b8dd557b127b2e27faedded772c6b33b8df02b464daf3cc00ad084771664c2e5c070b5a44d491f12164a251ddd4b214f89ef4a80df53cecd66b6e2aa324c571e8d8bbf1d1d2c65c821d9", @ANYRESHEX=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1c, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffa5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r4}, 0x10)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)=<r6=>0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
timer_settime(r6, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$TIOCL_BLANKSCREEN(r5, 0x560e, &(0x7f0000000000))
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x30410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_config_ext={0x8000000000000001, 0x1}, 0x1110, 0x1, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
r8 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$USBDEVFS_RELEASEINTERFACE(r8, 0x80045510, 0x0)
rt_sigprocmask(0x2, &(0x7f0000000380)={[0xffff]}, 0x0, 0x8)
gettid()
rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r9, &(0x7f0000000200), 0xf000)

119.745267ms ago: executing program 5 (id=452):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61780, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xa, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r5=>0x0)
timer_settime(r5, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
preadv2(r6, &(0x7f0000000180)=[{&(0x7f0000000000)=""/167, 0xa7}], 0x1, 0x0, 0x4, 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x232000, 0x1000}, 0x20)
socket(0x23, 0x80805, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r7, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x26}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e2, @void, @value}, 0x94)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
dup(r8)
pipe2$9p(&(0x7f0000000280), 0x4800)

78.554158ms ago: executing program 1 (id=453):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x600e7180, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg$inet(r1, &(0x7f0000002f00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20004000)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0)=0x400, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')
recvfrom$inet(r2, &(0x7f0000000040)=""/39, 0x27, 0x0, &(0x7f0000000080)={0x2, 0x4e21, @remote}, 0x10)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r3, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x0, 0x41005, 0x0, 0x1, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x4})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
read$hiddev(r4, &(0x7f00000000c0)=""/4092, 0xffc)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r6}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
pread64(r4, &(0x7f00000013c0)=""/208, 0xd0, 0x800)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

77.805188ms ago: executing program 4 (id=454):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x600e7180, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg$inet(r1, &(0x7f0000002f00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20004000)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0)=0x400, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r2, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')
recvfrom$inet(r2, &(0x7f0000000040)=""/39, 0x27, 0x0, &(0x7f0000000080)={0x2, 0x4e21, @remote}, 0x10)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r3, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00', 0x0, 0x41005, 0x0, 0x1, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x4})
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/vmallocinfo\x00', 0x0, 0x0)
read$hiddev(r4, &(0x7f00000000c0)=""/4092, 0xffc)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r6}, 0x10)
io_setup(0x4082, &(0x7f0000000380))
pread64(r4, &(0x7f00000013c0)=""/208, 0xd0, 0x800)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port1\x00', 0x0, 0x120000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6})

0s ago: executing program 5 (id=455):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x10)
recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bind$inet6(r0, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

kernel console output (not intermixed with test programs):

ave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   32.318566][ T3315] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   32.358439][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   32.371543][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.378750][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.404514][ T3305] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.428740][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.435848][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.447927][ T3304] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.465258][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.536884][ T3309] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.622710][ T3304] veth0_vlan: entered promiscuous mode
[   32.633235][ T3305] veth0_vlan: entered promiscuous mode
[   32.655017][ T3309] veth0_vlan: entered promiscuous mode
[   32.663257][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.674763][ T3304] veth1_vlan: entered promiscuous mode
[   32.686314][ T3305] veth1_vlan: entered promiscuous mode
[   32.702751][ T3304] veth0_macvtap: entered promiscuous mode
[   32.710264][ T3309] veth1_vlan: entered promiscuous mode
[   32.721455][ T3304] veth1_macvtap: entered promiscuous mode
[   32.754406][ T3315] veth0_vlan: entered promiscuous mode
[   32.763288][ T3315] veth1_vlan: entered promiscuous mode
[   32.771161][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.780963][ T3305] veth0_macvtap: entered promiscuous mode
[   32.789275][ T3305] veth1_macvtap: entered promiscuous mode
[   32.796275][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.811090][ T3309] veth0_macvtap: entered promiscuous mode
[   32.821215][ T3304] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.830007][ T3304] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.838755][ T3304] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.847505][ T3304] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.862408][ T3309] veth1_macvtap: entered promiscuous mode
[   32.878586][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   32.889061][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.899745][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.913890][ T3315] veth0_macvtap: entered promiscuous mode
[   32.919694][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   32.919790][   T29] audit: type=1400 audit(1745151573.293:110): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/root/syzkaller.yZr9Qm/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   32.925233][ T3315] veth1_macvtap: entered promiscuous mode
[   32.925874][   T29] audit: type=1400 audit(1745151573.293:111): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   32.956881][ T3315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   32.977903][   T29] audit: type=1400 audit(1745151573.293:112): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/root/syzkaller.yZr9Qm/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   32.988395][ T3315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.013596][   T29] audit: type=1400 audit(1745151573.293:113): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   33.023383][ T3315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.023402][ T3315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.029135][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.045254][   T29] audit: type=1400 audit(1745151573.293:114): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/root/syzkaller.yZr9Qm/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   33.057904][ T3309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.068784][   T29] audit: type=1400 audit(1745151573.293:115): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/root/syzkaller.yZr9Qm/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3719 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   33.072747][ T3309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.099341][   T29] audit: type=1400 audit(1745151573.293:116): avc:  denied  { unmount } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   33.109706][ T3309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.177226][ T3309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.187111][ T3309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.197595][ T3309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.208948][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.223001][   T29] audit: type=1400 audit(1745151573.583:117): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   33.228966][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.245873][   T29] audit: type=1400 audit(1745151573.593:118): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="gadgetfs" ino=4419 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   33.256362][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.261607][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   33.298598][ T3315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.309227][ T3315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.319163][ T3315] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.320405][ T3304] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   33.329629][ T3315] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.355668][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1
[   33.365880][ T3309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.376429][ T3309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.386234][ T3309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.396721][ T3309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.406638][ T3309] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.417149][ T3309] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.427568][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_1
[   33.435977][ T3305] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   33.444870][ T3305] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   33.453615][ T3305] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   33.462410][ T3305] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.474443][   T29] audit: type=1400 audit(1745151573.843:119): avc:  denied  { read write } for  pid=3304 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   33.477880][ T3315] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   33.507442][ T3315] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   33.516226][ T3315] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   33.524982][ T3315] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.540054][ T3309] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   33.548911][ T3309] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   33.557805][ T3309] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   33.559438][ T3442] loop1: detected capacity change from 0 to 2048
[   33.566888][ T3309] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.587620][ T3307] veth0_vlan: entered promiscuous mode
[   33.603594][ T3307] veth1_vlan: entered promiscuous mode
[   33.623322][ T3442] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.658266][ T3307] veth0_macvtap: entered promiscuous mode
[   33.661374][ T3442] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=3442 comm=syz.1.2
[   33.687720][ T3307] veth1_macvtap: entered promiscuous mode
[   33.702068][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.712572][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.722439][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.732987][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.742883][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.753442][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.763334][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.773808][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.807214][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.824171][ T3452] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3'.
[   33.862825][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.873406][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.883356][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.890089][ T3457] loop4: detected capacity change from 0 to 1024
[   33.893973][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.906880][ T3457] EXT4-fs: Ignoring removed oldalloc option
[   33.910026][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.915918][ T3457] EXT4-fs: Ignoring removed orlov option
[   33.926324][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.926340][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.931994][ T3457] EXT4-fs: Ignoring removed oldalloc option
[   33.941838][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.952265][ T3457] EXT4-fs: Ignoring removed nomblk_io_submit option
[   33.979953][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.001033][ T3307] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.009944][ T3307] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.018755][ T3307] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.027632][ T3307] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   34.048998][ T3457] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.178888][ T3466] kernel profiling enabled (shift: 9)
[   34.529156][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.970060][ T3470] loop3: detected capacity change from 0 to 1024
[   35.022178][ T3470] EXT4-fs: Ignoring removed oldalloc option
[   35.028152][ T3470] EXT4-fs: Ignoring removed orlov option
[   35.033863][ T3470] EXT4-fs: Ignoring removed oldalloc option
[   35.039906][ T3470] EXT4-fs: Ignoring removed nomblk_io_submit option
[   35.072282][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.081391][ T3474] loop0: detected capacity change from 0 to 1024
[   35.088240][ T3474] EXT4-fs: Ignoring removed oldalloc option
[   35.094228][ T3474] EXT4-fs: Ignoring removed orlov option
[   35.100019][ T3474] EXT4-fs: Ignoring removed oldalloc option
[   35.106112][ T3474] EXT4-fs: Ignoring removed nomblk_io_submit option
[   35.131624][ T3478] vxcan1: tx address claim with dlc 0
[   35.145334][ T3470] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.160097][ T3474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.160459][ T3478] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13'.
[   35.358394][ T3488] loop2: detected capacity change from 0 to 512
[   35.399572][ T3485] loop4: detected capacity change from 0 to 8192
[   35.413930][ T3485] =======================================================
[   35.413930][ T3485] WARNING: The mand mount option has been deprecated and
[   35.413930][ T3485]          and is ignored by this kernel. Remove the mand
[   35.413930][ T3485]          option from the mount to silence this warning.
[   35.413930][ T3485] =======================================================
[   36.249949][ T3488] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.14: corrupted in-inode xattr: bad e_name length
[   36.271448][ T3494] loop1: detected capacity change from 0 to 1024
[   36.285836][ T3494] EXT4-fs: Ignoring removed oldalloc option
[   36.291907][ T3494] EXT4-fs: Ignoring removed orlov option
[   36.297644][ T3494] EXT4-fs: Ignoring removed oldalloc option
[   36.303645][ T3494] EXT4-fs: Ignoring removed nomblk_io_submit option
[   36.310759][ T3488] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.14: couldn't read orphan inode 15 (err -117)
[   36.398948][ T3496] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12'.
[   36.399333][ T3488] EXT4-fs (loop2): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.423055][ T3488] EXT4-fs (loop2): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   36.427086][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.432640][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.455171][ T3485] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1)
[   36.463010][ T3494] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.463071][ T3485] FAT-fs (loop4): Filesystem has been set read-only
[   36.471689][ T3485] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1)
[   36.536245][ T3500] SELinux:  Context Ü is not valid (left unmapped).
[   36.813144][ T3522] vxcan1: tx address claim with dlc 0
[   36.825233][ T3522] netlink: 4 bytes leftover after parsing attributes in process `syz.3.22'.
[   37.203220][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.249539][ T3538] loop0: detected capacity change from 0 to 512
[   37.258181][ T3538] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   37.279816][ T3538] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   37.281655][ T3539] SELinux:  policydb version 0 does not match my version range 15-34
[   37.292535][ T3538] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   37.302643][ T3539] SELinux: failed to load policy
[   37.441091][ T3544] loop1: detected capacity change from 0 to 1024
[   37.463049][ T3544] EXT4-fs: Ignoring removed oldalloc option
[   37.469179][ T3544] EXT4-fs: Ignoring removed orlov option
[   37.474921][ T3544] EXT4-fs: Ignoring removed oldalloc option
[   37.480974][ T3544] EXT4-fs: Ignoring removed nomblk_io_submit option
[   37.508262][ T3544] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.051952][ T3564] loop3: detected capacity change from 0 to 512
[   38.079492][ T3564] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.36: corrupted in-inode xattr: bad e_name length
[   38.129244][ T3564] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.36: couldn't read orphan inode 15 (err -117)
[   38.224904][ T3564] EXT4-fs (loop3): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.264364][ T3564] EXT4-fs (loop3): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   38.380167][ T3005] udevd[3005]: worker [3295] terminated by signal 33 (Unknown signal 33)
[   38.391751][ T3571] loop3: detected capacity change from 0 to 512
[   38.439069][ T3571] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.38: corrupted in-inode xattr: bad e_name length
[   38.457464][ T3571] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.38: couldn't read orphan inode 15 (err -117)
[   38.490242][ T3574] loop2: detected capacity change from 0 to 128
[   38.496668][ T3571] EXT4-fs (loop3): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.518146][ T3574] .: renamed from bond0 (while UP)
[   38.523503][   T29] kauditd_printk_skb: 664 callbacks suppressed
[   38.523515][   T29] audit: type=1400 audit(1745151578.893:784): avc:  denied  { ioctl } for  pid=3573 comm="syz.2.39" path="socket:[4751]" dev="sockfs" ino=4751 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   38.591286][ T3571] EXT4-fs (loop3): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   38.657336][   T29] audit: type=1400 audit(1745151579.033:785): avc:  denied  { ioctl } for  pid=3554 comm="syz.4.33" path="/dev/ptp0" dev="devtmpfs" ino=246 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   38.794155][   T29] audit: type=1400 audit(1745151579.163:786): avc:  denied  { allowed } for  pid=3584 comm="syz.4.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   38.805042][ T3538] syz.0.28 (3538) used greatest stack depth: 7128 bytes left
[   38.813311][   T29] audit: type=1400 audit(1745151579.163:787): avc:  denied  { create } for  pid=3584 comm="syz.4.44" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   38.841684][   T29] audit: type=1400 audit(1745151579.163:788): avc:  denied  { bind } for  pid=3584 comm="syz.4.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   38.861047][   T29] audit: type=1400 audit(1745151579.163:789): avc:  denied  { name_bind } for  pid=3584 comm="syz.4.44" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   38.881870][   T29] audit: type=1400 audit(1745151579.163:790): avc:  denied  { node_bind } for  pid=3584 comm="syz.4.44" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   38.902480][   T29] audit: type=1400 audit(1745151579.163:791): avc:  denied  { listen } for  pid=3584 comm="syz.4.44" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   38.927563][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   39.036487][   T29] audit: type=1400 audit(1745151579.293:792): avc:  denied  { connect } for  pid=3584 comm="syz.4.44" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   39.038501][ T3592] SELinux: syz.4.46 (3592) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   39.055818][   T29] audit: type=1400 audit(1745151579.293:793): avc:  denied  { name_connect } for  pid=3584 comm="syz.4.44" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   39.090840][ T3593] netlink: 64 bytes leftover after parsing attributes in process `syz.3.47'.
[   39.115529][ T3593] loop3: detected capacity change from 0 to 1024
[   39.123569][ T3593] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   39.133409][ T3593] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   39.173571][ T3599] SELinux: syz.0.48 (3599) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   39.194446][ T3593] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   39.204974][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.225151][ T3593] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.47: unexpected bad inode w/o EXT4_IGET_BAD
[   39.244220][ T3593] EXT4-fs (loop3): no journal found
[   39.249895][ T3593] EXT4-fs (loop3): can't get journal size
[   39.264252][ T3593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.301338][ T3593] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.47: Invalid block bitmap block 0 in block_group 0
[   39.520807][ T3608] netlink: 3 bytes leftover after parsing attributes in process `syz.0.51'.
[   39.531037][ T3608] 0ªX¹¦À: renamed from caif0
[   39.540974][ T3608] 0ªX¹¦À: entered allmulticast mode
[   39.546260][ T3608] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   39.768382][ T3628] SELinux: syz.2.59 (3628) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   39.817723][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.842849][ T3630] loop3: detected capacity change from 0 to 512
[   39.850752][ T3630] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.60: corrupted in-inode xattr: bad e_name length
[   39.864511][ T3630] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.60: couldn't read orphan inode 15 (err -117)
[   39.877227][ T3630] EXT4-fs (loop3): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.891083][ T3630] EXT4-fs (loop3): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   40.013251][ T3645] loop3: detected capacity change from 0 to 512
[   40.014909][ T3647] SELinux: syz.2.67 (3647) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   40.034089][ T3645] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   40.058748][ T3645] EXT4-fs (loop3): 1 orphan inode deleted
[   40.065337][ T3645] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.079199][   T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   40.079657][ T3645] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.111223][ T3645] bond0: entered promiscuous mode
[   40.116334][ T3645] bond_slave_0: entered promiscuous mode
[   40.122085][ T3645] bond_slave_1: entered promiscuous mode
[   40.130251][ T3645] batadv0: entered promiscuous mode
[   40.136778][ T3645] 8021q: adding VLAN 0 to HW filter on device hsr1
[   40.146340][ T3645] bond0: left promiscuous mode
[   40.151176][ T3645] bond_slave_0: left promiscuous mode
[   40.156747][ T3645] bond_slave_1: left promiscuous mode
[   40.163929][ T3645] batadv0: left promiscuous mode
[   40.243165][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.281772][ T3655] SELinux: security_context_str_to_sid (ûÿ) failed with errno=-22
[   40.333487][ T3662] loop2: detected capacity change from 0 to 1024
[   40.340544][ T3662] EXT4-fs: Ignoring removed oldalloc option
[   40.346545][ T3662] EXT4-fs: Ignoring removed orlov option
[   40.352211][ T3662] EXT4-fs: Ignoring removed oldalloc option
[   40.358275][ T3662] EXT4-fs: Ignoring removed nomblk_io_submit option
[   40.368972][ T3662] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.551331][ T3677] SELinux:  policydb version 0 does not match my version range 15-34
[   40.598408][ T3677] SELinux: failed to load policy
[   40.678833][ T3685] loop4: detected capacity change from 0 to 512
[   40.729911][ T3685] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.79: corrupted in-inode xattr: bad e_name length
[   40.769293][ T3685] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.79: couldn't read orphan inode 15 (err -117)
[   40.824715][ T3685] EXT4-fs (loop4): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.911002][    C0] hrtimer: interrupt took 27274 ns
[   40.920349][ T3685] EXT4-fs (loop4): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   40.945397][ T3695] FAULT_INJECTION: forcing a failure.
[   40.945397][ T3695] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   40.963689][ T3695] CPU: 0 UID: 0 PID: 3695 Comm: syz.1.82 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   40.963721][ T3695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   40.963737][ T3695] Call Trace:
[   40.963742][ T3695]  <TASK>
[   40.963757][ T3695]  dump_stack_lvl+0xf6/0x150
[   40.963803][ T3695]  dump_stack+0x15/0x1a
[   40.963825][ T3695]  should_fail_ex+0x261/0x270
[   40.963851][ T3695]  should_fail+0xb/0x10
[   40.963870][ T3695]  should_fail_usercopy+0x1a/0x20
[   40.963893][ T3695]  _copy_from_user+0x1c/0xa0
[   40.964006][ T3695]  kvmemdup_bpfptr_noprof+0x82/0x110
[   40.964045][ T3695]  map_delete_elem+0x131/0x300
[   40.964139][ T3695]  __sys_bpf+0x496/0x800
[   40.964181][ T3695]  __x64_sys_bpf+0x43/0x50
[   40.964212][ T3695]  x64_sys_call+0x23da/0x2e10
[   40.964235][ T3695]  do_syscall_64+0xc9/0x1a0
[   40.964262][ T3695]  ? clear_bhb_loop+0x25/0x80
[   40.964329][ T3695]  ? clear_bhb_loop+0x25/0x80
[   40.964354][ T3695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.964380][ T3695] RIP: 0033:0x7f73201ce169
[   40.964400][ T3695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.964416][ T3695] RSP: 002b:00007f731e837038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   40.964450][ T3695] RAX: ffffffffffffffda RBX: 00007f73203f5fa0 RCX: 00007f73201ce169
[   40.964465][ T3695] RDX: 0000000000000020 RSI: 00002000000007c0 RDI: 0000000000000003
[   40.964480][ T3695] RBP: 00007f731e837090 R08: 0000000000000000 R09: 0000000000000000
[   40.964494][ T3695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.964515][ T3695] R13: 0000000000000000 R14: 00007f73203f5fa0 R15: 00007fff3d3527e8
[   40.964536][ T3695]  </TASK>
[   41.235071][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.265698][ T3708] loop4: detected capacity change from 0 to 1024
[   41.277483][ T3715] loop1: detected capacity change from 0 to 1024
[   41.284166][ T3715] EXT4-fs: Ignoring removed oldalloc option
[   41.286925][ T3708] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   41.290157][ T3715] EXT4-fs: Ignoring removed orlov option
[   41.299874][ T3708] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   41.301044][ T3708] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   41.305883][ T3715] EXT4-fs: Ignoring removed oldalloc option
[   41.322210][ T3708] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.90: unexpected bad inode w/o EXT4_IGET_BAD
[   41.325012][ T3715] EXT4-fs: Ignoring removed nomblk_io_submit option
[   41.332372][ T3708] EXT4-fs (loop4): no journal found
[   41.355967][ T3708] EXT4-fs (loop4): can't get journal size
[   41.368669][ T3708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   41.383014][ T3715] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.396872][ T3719] loop0: detected capacity change from 0 to 1024
[   41.413695][ T3719] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   41.445509][ T3727] loop2: detected capacity change from 0 to 512
[   41.455619][ T3727] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.95: corrupted in-inode xattr: bad e_name length
[   41.471270][ T3729] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.90: Invalid block bitmap block 0 in block_group 0
[   41.491412][ T3727] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.95: couldn't read orphan inode 15 (err -117)
[   41.512197][ T3727] EXT4-fs (loop2): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.525758][ T3727] EXT4-fs (loop2): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   41.528228][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.561186][ T3731] netlink: 132 bytes leftover after parsing attributes in process `syz.1.92'.
[   41.576562][ T3719] Falling back ldisc for ttyS3.
[   41.601724][ T3740] loop2: detected capacity change from 0 to 1024
[   41.608708][ T3740] EXT4-fs: Ignoring removed oldalloc option
[   41.614768][ T3740] EXT4-fs: Ignoring removed orlov option
[   41.620605][ T3740] EXT4-fs: Ignoring removed oldalloc option
[   41.626657][ T3740] EXT4-fs: Ignoring removed nomblk_io_submit option
[   41.638216][ T3740] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.640267][ T3738] macsec1: entered allmulticast mode
[   41.741854][ T3746] netlink: 64 bytes leftover after parsing attributes in process `syz.4.100'.
[   41.757091][ T3746] loop4: detected capacity change from 0 to 1024
[   41.764619][ T3746] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   41.774600][ T3746] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   41.784439][ T3746] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   41.795557][ T3746] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.100: unexpected bad inode w/o EXT4_IGET_BAD
[   41.810765][ T3746] EXT4-fs (loop4): no journal found
[   41.816015][ T3746] EXT4-fs (loop4): can't get journal size
[   41.848370][ T3746] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   42.021850][ T3759] FAULT_INJECTION: forcing a failure.
[   42.021850][ T3759] name failslab, interval 1, probability 0, space 0, times 0
[   42.034561][ T3759] CPU: 1 UID: 0 PID: 3759 Comm: syz.3.104 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   42.034594][ T3759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   42.034678][ T3759] Call Trace:
[   42.034686][ T3759]  <TASK>
[   42.034693][ T3759]  dump_stack_lvl+0xf6/0x150
[   42.034715][ T3759]  dump_stack+0x15/0x1a
[   42.034805][ T3759]  should_fail_ex+0x261/0x270
[   42.034833][ T3759]  should_failslab+0x8f/0xb0
[   42.034853][ T3759]  __kmalloc_cache_noprof+0x55/0x320
[   42.034945][ T3759]  ? alloc_fs_context+0x44/0x4e0
[   42.034976][ T3759]  alloc_fs_context+0x44/0x4e0
[   42.035009][ T3759]  ? strncmp+0x34/0x70
[   42.035040][ T3759]  fs_context_for_mount+0x21/0x30
[   42.035091][ T3759]  do_new_mount+0xf1/0x6b0
[   42.035116][ T3759]  path_mount+0x49b/0xb30
[   42.035157][ T3759]  __se_sys_mount+0x28f/0x2e0
[   42.035241][ T3759]  __x64_sys_mount+0x67/0x80
[   42.035272][ T3759]  x64_sys_call+0xd11/0x2e10
[   42.035325][ T3759]  do_syscall_64+0xc9/0x1a0
[   42.035354][ T3759]  ? clear_bhb_loop+0x25/0x80
[   42.035380][ T3759]  ? clear_bhb_loop+0x25/0x80
[   42.035406][ T3759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.035432][ T3759] RIP: 0033:0x7fa8e359e169
[   42.035453][ T3759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.035473][ T3759] RSP: 002b:00007fa8e1c07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   42.035494][ T3759] RAX: ffffffffffffffda RBX: 00007fa8e37c5fa0 RCX: 00007fa8e359e169
[   42.035506][ T3759] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[   42.035517][ T3759] RBP: 00007fa8e1c07090 R08: 0000200000000240 R09: 0000000000000000
[   42.035528][ T3759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.035541][ T3759] R13: 0000000000000000 R14: 00007fa8e37c5fa0 R15: 00007fffb8478c58
[   42.035561][ T3759]  </TASK>
[   42.271626][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.273920][ T3766] loop3: detected capacity change from 0 to 1024
[   42.288241][ T3766] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   42.298095][ T3766] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   42.307945][ T3766] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   42.322648][ T3766] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.106: unexpected bad inode w/o EXT4_IGET_BAD
[   42.335897][ T3768] loop1: detected capacity change from 0 to 512
[   42.343267][ T3766] EXT4-fs (loop3): no journal found
[   42.348588][ T3766] EXT4-fs (loop3): can't get journal size
[   42.348614][ T3768] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   42.366721][ T3766] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   42.383350][ T3768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   42.397323][ T3766] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.106: Invalid block bitmap block 0 in block_group 0
[   42.423408][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.428381][ T3768] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.490227][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.521984][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   42.548222][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.600801][ T3801] FAULT_INJECTION: forcing a failure.
[   42.600801][ T3801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.613947][ T3801] CPU: 1 UID: 0 PID: 3801 Comm: syz.0.117 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   42.613981][ T3801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   42.613995][ T3801] Call Trace:
[   42.614002][ T3801]  <TASK>
[   42.614010][ T3801]  dump_stack_lvl+0xf6/0x150
[   42.614073][ T3801]  dump_stack+0x15/0x1a
[   42.614094][ T3801]  should_fail_ex+0x261/0x270
[   42.614132][ T3801]  should_fail+0xb/0x10
[   42.614157][ T3801]  should_fail_usercopy+0x1a/0x20
[   42.614188][ T3801]  _copy_to_user+0x20/0xa0
[   42.614225][ T3801]  selinux_socket_getpeersec_stream+0x1e5/0x300
[   42.614311][ T3801]  security_socket_getpeersec_stream+0x7d/0xe0
[   42.614379][ T3801]  sk_getsockopt+0xe71/0x18b0
[   42.614404][ T3801]  ? avc_has_perm+0xd6/0x150
[   42.614435][ T3801]  ? selinux_socket_getsockopt+0x18a/0x1c0
[   42.614614][ T3801]  ? should_fail_ex+0xd7/0x270
[   42.614645][ T3801]  do_sock_getsockopt+0x159/0x290
[   42.614775][ T3801]  __x64_sys_getsockopt+0x13f/0x1c0
[   42.614807][ T3801]  x64_sys_call+0x128f/0x2e10
[   42.614833][ T3801]  do_syscall_64+0xc9/0x1a0
[   42.614865][ T3801]  ? clear_bhb_loop+0x25/0x80
[   42.614891][ T3801]  ? clear_bhb_loop+0x25/0x80
[   42.614920][ T3801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.614944][ T3801] RIP: 0033:0x7fb07410e169
[   42.614961][ T3801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.614983][ T3801] RSP: 002b:00007fb072777038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   42.615005][ T3801] RAX: ffffffffffffffda RBX: 00007fb074335fa0 RCX: 00007fb07410e169
[   42.615020][ T3801] RDX: 000000000000001f RSI: 0000000000000001 RDI: 0000000000000007
[   42.615105][ T3801] RBP: 00007fb072777090 R08: 00002000000008c0 R09: 0000000000000000
[   42.615116][ T3801] R10: 0000200000000840 R11: 0000000000000246 R12: 0000000000000001
[   42.615126][ T3801] R13: 0000000000000000 R14: 00007fb074335fa0 R15: 00007ffc312e2f88
[   42.615143][ T3801]  </TASK>
[   42.855804][ T3811] loop3: detected capacity change from 0 to 1024
[   42.884250][ T3817] vxcan1: tx address claim with dlc 0
[   42.885290][ T3811] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   42.899662][ T3811] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   42.901344][ T3817] netlink: 4 bytes leftover after parsing attributes in process `syz.2.125'.
[   42.910781][ T3811] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   42.929966][ T3811] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.122: unexpected bad inode w/o EXT4_IGET_BAD
[   42.945823][ T3811] EXT4-fs (loop3): no journal found
[   42.951088][ T3811] EXT4-fs (loop3): can't get journal size
[   42.974407][ T3811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   42.989436][ T3825] loop4: detected capacity change from 0 to 512
[   43.005243][ T3825] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   43.017607][ T3811] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.122: Invalid block bitmap block 0 in block_group 0
[   43.031328][ T3831] netlink: 64 bytes leftover after parsing attributes in process `syz.2.127'.
[   43.048085][ T3825] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.063287][ T3825] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.064374][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.084783][ T3834] SELinux:  policydb version 0 does not match my version range 15-34
[   43.093048][ T3834] SELinux: failed to load policy
[   43.105231][ T3831] loop2: detected capacity change from 0 to 1024
[   43.120087][ T3831] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   43.129945][ T3831] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   43.142241][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.142841][ T3831] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   43.162483][ T3831] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.127: unexpected bad inode w/o EXT4_IGET_BAD
[   43.165199][ T3840] loop3: detected capacity change from 0 to 512
[   43.199027][ T3831] EXT4-fs (loop2): no journal found
[   43.204308][ T3831] EXT4-fs (loop2): can't get journal size
[   43.215203][ T3842] loop0: detected capacity change from 0 to 8192
[   43.225382][ T3847] loop4: detected capacity change from 0 to 512
[   43.233602][ T3840] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.131: corrupted in-inode xattr: bad e_name length
[   43.247899][ T3847] netlink: 8 bytes leftover after parsing attributes in process `syz.4.133'.
[   43.250833][ T3831] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   43.256791][ T3847] netlink: 8 bytes leftover after parsing attributes in process `syz.4.133'.
[   43.270458][ T3840] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.131: couldn't read orphan inode 15 (err -117)
[   43.290867][ T3842]  loop0: p1 p3 p4
[   43.295561][ T3840] EXT4-fs (loop3): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.309442][ T3842] loop0: p3 size 4294967040 extends beyond EOD, truncated
[   43.317880][ T3842] loop0: p4 start 261888 is beyond EOD, truncated
[   43.325812][ T3840] EXT4-fs (loop3): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   43.365619][ T3854] vxcan1: tx address claim with dlc 0
[   43.392848][ T3854] netlink: 4 bytes leftover after parsing attributes in process `syz.4.138'.
[   43.411558][ T3852] loop1: detected capacity change from 0 to 8192
[   43.441076][ T3862] sd 0:0:1:0: device reset
[   43.444183][ T3864] bridge1: entered promiscuous mode
[   43.450852][ T3864] bridge1: entered allmulticast mode
[   43.458052][ T3864] team0: Port device bridge1 added
[   43.510779][ T3870] netlink: 8 bytes leftover after parsing attributes in process `syz.3.144'.
[   43.530931][   T29] kauditd_printk_skb: 732 callbacks suppressed
[   43.530988][   T29] audit: type=1326 audit(21062174.912:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.531348][ T3873] dccp_invalid_packet: P.Data Offset(100) too large
[   43.537324][   T29] audit: type=1326 audit(21062174.912:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.564145][ T3874] loop1: detected capacity change from 0 to 512
[   43.567073][   T29] audit: type=1326 audit(21062174.912:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe27466cc1f code=0x7ffc0000
[   43.594920][ T3870] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   43.601907][   T29] audit: type=1326 audit(21062174.982:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.652257][   T29] audit: type=1326 audit(21062174.982:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.679576][   T29] audit: type=1326 audit(21062175.002:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.686036][ T3874] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   43.702761][   T29] audit: type=1326 audit(21062175.002:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.733820][   T29] audit: type=1326 audit(21062175.002:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.757370][   T29] audit: type=1326 audit(21062175.002:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.780599][   T29] audit: type=1326 audit(21062175.002:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3872 comm="syz.4.145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe27466e169 code=0x7ffc0000
[   43.781056][ T3879] FAULT_INJECTION: forcing a failure.
[   43.781056][ T3879] name failslab, interval 1, probability 0, space 0, times 0
[   43.804116][ T3874] EXT4-fs (loop1): orphan cleanup on readonly fs
[   43.819288][ T3879] CPU: 1 UID: 0 PID: 3879 Comm: syz.3.147 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   43.819323][ T3879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   43.819337][ T3879] Call Trace:
[   43.819344][ T3879]  <TASK>
[   43.819353][ T3879]  dump_stack_lvl+0xf6/0x150
[   43.819381][ T3879]  dump_stack+0x15/0x1a
[   43.819478][ T3879]  should_fail_ex+0x261/0x270
[   43.819509][ T3879]  should_failslab+0x8f/0xb0
[   43.819535][ T3879]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   43.819572][ T3879]  ? __alloc_skb+0x10d/0x320
[   43.819669][ T3879]  __alloc_skb+0x10d/0x320
[   43.819753][ T3879]  hci_mgmt_cmd+0x104/0x8d0
[   43.819789][ T3879]  hci_sock_sendmsg+0x54a/0x960
[   43.819821][ T3879]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[   43.819852][ T3879]  __sock_sendmsg+0x140/0x180
[   43.819888][ T3879]  sock_write_iter+0x186/0x1c0
[   43.819927][ T3879]  aio_write+0x324/0x460
[   43.819962][ T3879]  io_submit_one+0xb0c/0x1230
[   43.820001][ T3879]  __se_sys_io_submit+0xf7/0x280
[   43.820045][ T3879]  __x64_sys_io_submit+0x43/0x50
[   43.820082][ T3879]  x64_sys_call+0xa8b/0x2e10
[   43.820186][ T3879]  do_syscall_64+0xc9/0x1a0
[   43.820216][ T3879]  ? clear_bhb_loop+0x25/0x80
[   43.820241][ T3879]  ? clear_bhb_loop+0x25/0x80
[   43.820266][ T3879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.820291][ T3879] RIP: 0033:0x7fa8e359e169
[   43.820331][ T3879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.820348][ T3879] RSP: 002b:00007fa8e1c07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   43.820370][ T3879] RAX: ffffffffffffffda RBX: 00007fa8e37c5fa0 RCX: 00007fa8e359e169
[   43.820381][ T3879] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 00007fa8e379f000
[   43.820394][ T3879] RBP: 00007fa8e1c07090 R08: 0000000000000000 R09: 0000000000000000
[   43.820408][ T3879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.820422][ T3879] R13: 0000000000000000 R14: 00007fa8e37c5fa0 R15: 00007fffb8478c58
[   43.820504][ T3879]  </TASK>
[   43.932411][ T3883] SELinux:  policydb version 0 does not match my version range 15-34
[   43.935728][ T3874] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.142: invalid indirect mapped block 256 (level 2)
[   43.957556][ T3883] SELinux: failed to load policy
[   43.965070][ T3874] EXT4-fs (loop1): 2 truncates cleaned up
[   44.065725][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.065879][ T3874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   44.087704][ T3874] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.138235][ T3890] sctp: [Deprecated]: syz.1.150 (pid 3890) Use of int in max_burst socket option.
[   44.138235][ T3890] Use struct sctp_assoc_value instead
[   44.179863][ T3897] loop0: detected capacity change from 0 to 512
[   44.188171][ T3897] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.152: corrupted in-inode xattr: bad e_name length
[   44.203586][ T3897] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.152: couldn't read orphan inode 15 (err -117)
[   44.216081][ T3897] EXT4-fs (loop0): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.229324][ T3897] EXT4-fs (loop0): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   44.287604][ T3904] __nla_validate_parse: 1 callbacks suppressed
[   44.287622][ T3904] netlink: 12 bytes leftover after parsing attributes in process `syz.1.155'.
[   44.344428][ T3908] vxcan1: tx address claim with dlc 0
[   44.351156][ T3908] netlink: 4 bytes leftover after parsing attributes in process `syz.1.157'.
[   44.381464][ T3910] loop1: detected capacity change from 0 to 1024
[   44.388350][ T3910] EXT4-fs: Ignoring removed oldalloc option
[   44.393121][ T3912] loop4: detected capacity change from 0 to 512
[   44.394274][ T3910] EXT4-fs: Ignoring removed orlov option
[   44.394303][ T3910] EXT4-fs: Ignoring removed oldalloc option
[   44.406432][ T3912] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   44.412268][ T3910] EXT4-fs: Ignoring removed nomblk_io_submit option
[   44.449189][ T3912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   44.449235][ T3910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.466572][ T3912] netlink: 40 bytes leftover after parsing attributes in process `syz.4.159'.
[   44.551666][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   44.604371][ T3921] loop4: detected capacity change from 0 to 1024
[   44.611314][ T3921] EXT4-fs: Ignoring removed oldalloc option
[   44.617265][ T3921] EXT4-fs: Ignoring removed orlov option
[   44.622918][ T3921] EXT4-fs: Ignoring removed oldalloc option
[   44.629016][ T3921] EXT4-fs: Ignoring removed nomblk_io_submit option
[   44.647717][ T3921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.820419][ T3924] netlink: 132 bytes leftover after parsing attributes in process `syz.4.161'.
[   44.964157][ T3926] netlink: 8 bytes leftover after parsing attributes in process `syz.2.162'.
[   45.039050][ T3934] loop3: detected capacity change from 0 to 512
[   45.045793][ T3934] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   45.056563][ T3934] mmap: syz.3.166 (3934) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   45.072190][ T3935] SELinux:  policydb version 0 does not match my version range 15-34
[   45.081322][ T3935] SELinux: failed to load policy
[   45.105271][ T3937] loop3: detected capacity change from 0 to 512
[   45.124042][ T3937] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.167: corrupted in-inode xattr: bad e_name length
[   45.137933][ T3937] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.167: couldn't read orphan inode 15 (err -117)
[   45.150319][ T3937] EXT4-fs (loop3): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.163207][ T3937] EXT4-fs (loop3): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   45.190666][ T3942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.169'.
[   45.253837][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.273051][ T3949] loop0: detected capacity change from 0 to 1024
[   45.290838][ T3949] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   45.300647][ T3949] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   45.317203][ T3949] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   45.331303][ T3949] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: inode #5: comm syz.0.172: unexpected bad inode w/o EXT4_IGET_BAD
[   45.344711][ T3949] EXT4-fs (loop0): no journal found
[   45.349996][ T3949] EXT4-fs (loop0): can't get journal size
[   45.366968][ T3949] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   45.383673][ T3949] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.172: Invalid block bitmap block 0 in block_group 0
[   45.410077][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.430418][ T3967] loop2: detected capacity change from 0 to 512
[   45.438669][ T3967] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.180: corrupted in-inode xattr: bad e_name length
[   45.454029][ T3967] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.180: couldn't read orphan inode 15 (err -117)
[   45.468249][ T3967] EXT4-fs (loop2): mounted filesystem 00000000-005d-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.481888][ T3967] EXT4-fs (loop2): unmounting filesystem 00000000-005d-0000-0000-000000000000.
[   45.495455][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.519780][ T3972] netlink: 4 bytes leftover after parsing attributes in process `syz.4.181'.
[   45.520200][ T3974] process 'syz.2.182' launched './file1' with NULL argv: empty string added
[   45.540575][ T3974] netlink: 8 bytes leftover after parsing attributes in process `syz.2.182'.
[   45.549706][ T3974] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   45.582525][ T3976] loop4: detected capacity change from 0 to 512
[   45.601675][ T3979] loop2: detected capacity change from 0 to 1024
[   45.603120][ T3976] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[   45.608473][ T3979] EXT4-fs: Ignoring removed oldalloc option
[   45.620388][ T3976] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   45.623216][ T3979] EXT4-fs: Ignoring removed orlov option
[   45.631964][ T3976] System zones: 
[   45.636888][ T3979] EXT4-fs: Ignoring removed oldalloc option
[   45.636936][ T3979] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.640579][ T3976] 0-2, 18-18, 34-35
[   45.658581][ T3976] EXT4-fs (loop4): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.658713][ T3979] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.759676][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0700-0000-0000-000000000000.
[   45.858767][ T3986] SELinux:  policydb version 0 does not match my version range 15-34
[   45.867474][ T3986] SELinux: failed to load policy
[   46.010193][ T3996] loop4: detected capacity change from 0 to 1024
[   46.017608][ T3996] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   46.027514][ T3996] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   46.037243][ T3996] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   46.048015][ T3996] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.190: unexpected bad inode w/o EXT4_IGET_BAD
[   46.061293][ T3996] EXT4-fs (loop4): no journal found
[   46.066613][ T3996] EXT4-fs (loop4): can't get journal size
[   46.073027][ T3996] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.087739][ T3996] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.190: Invalid block bitmap block 0 in block_group 0
[   46.110738][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.138328][ T3999] loop4: detected capacity change from 0 to 512
[   46.145423][ T3999] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   46.145535][ T4001] FAULT_INJECTION: forcing a failure.
[   46.145535][ T4001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.167028][ T4001] CPU: 0 UID: 0 PID: 4001 Comm: syz.1.192 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   46.167060][ T4001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   46.167074][ T4001] Call Trace:
[   46.167082][ T4001]  <TASK>
[   46.167133][ T4001]  dump_stack_lvl+0xf6/0x150
[   46.167160][ T4001]  dump_stack+0x15/0x1a
[   46.167225][ T4001]  should_fail_ex+0x261/0x270
[   46.167273][ T4001]  should_fail+0xb/0x10
[   46.167292][ T4001]  should_fail_usercopy+0x1a/0x20
[   46.167330][ T4001]  _copy_to_user+0x20/0xa0
[   46.167410][ T4001]  simple_read_from_buffer+0xb2/0x130
[   46.167480][ T4001]  proc_fail_nth_read+0x103/0x140
[   46.167516][ T4001]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   46.167595][ T4001]  vfs_read+0x1b2/0x710
[   46.167615][ T4001]  ? __rcu_read_unlock+0x4e/0x70
[   46.167640][ T4001]  ? __fget_files+0x186/0x1c0
[   46.167663][ T4001]  ksys_read+0xeb/0x1b0
[   46.167680][ T4001]  __x64_sys_read+0x42/0x50
[   46.167696][ T4001]  x64_sys_call+0x2a3b/0x2e10
[   46.167794][ T4001]  do_syscall_64+0xc9/0x1a0
[   46.167817][ T4001]  ? clear_bhb_loop+0x25/0x80
[   46.167918][ T4001]  ? clear_bhb_loop+0x25/0x80
[   46.167944][ T4001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.167968][ T4001] RIP: 0033:0x7f73201ccb7c
[   46.167985][ T4001] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   46.168006][ T4001] RSP: 002b:00007f731e837030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   46.168109][ T4001] RAX: ffffffffffffffda RBX: 00007f73203f5fa0 RCX: 00007f73201ccb7c
[   46.168122][ T4001] RDX: 000000000000000f RSI: 00007f731e8370a0 RDI: 0000000000000007
[   46.168135][ T4001] RBP: 00007f731e837090 R08: 0000000000000000 R09: 0000000000000000
[   46.168148][ T4001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.168160][ T4001] R13: 0000000000000000 R14: 00007f73203f5fa0 R15: 00007fff3d3527e8
[   46.168182][ T4001]  </TASK>
[   46.169848][ T3999] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.299627][ T4008] netlink: 64 bytes leftover after parsing attributes in process `syz.1.193'.
[   46.317981][ T3999] FAULT_INJECTION: forcing a failure.
[   46.317981][ T3999] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.339868][ T4006] netlink: 4 bytes leftover after parsing attributes in process `syz.3.194'.
[   46.346630][ T3999] CPU: 1 UID: 0 PID: 3999 Comm: syz.4.191 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   46.346734][ T3999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   46.346750][ T3999] Call Trace:
[   46.346759][ T3999]  <TASK>
[   46.346768][ T3999]  dump_stack_lvl+0xf6/0x150
[   46.346799][ T3999]  dump_stack+0x15/0x1a
[   46.346820][ T3999]  should_fail_ex+0x261/0x270
[   46.346850][ T3999]  should_fail+0xb/0x10
[   46.346876][ T3999]  should_fail_usercopy+0x1a/0x20
[   46.346976][ T3999]  _copy_to_user+0x20/0xa0
[   46.347043][ T3999]  simple_read_from_buffer+0xb2/0x130
[   46.347086][ T3999]  proc_fail_nth_read+0x103/0x140
[   46.347130][ T3999]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   46.347171][ T3999]  vfs_read+0x1b2/0x710
[   46.347239][ T3999]  ? __rcu_read_unlock+0x4e/0x70
[   46.347303][ T3999]  ? __fget_files+0x186/0x1c0
[   46.347407][ T3999]  ksys_read+0xeb/0x1b0
[   46.347433][ T3999]  __x64_sys_read+0x42/0x50
[   46.347456][ T3999]  x64_sys_call+0x2a3b/0x2e10
[   46.347483][ T3999]  do_syscall_64+0xc9/0x1a0
[   46.347538][ T3999]  ? clear_bhb_loop+0x25/0x80
[   46.347594][ T3999]  ? clear_bhb_loop+0x25/0x80
[   46.347620][ T3999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.347646][ T3999] RIP: 0033:0x7fe27466cb7c
[   46.347666][ T3999] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   46.347688][ T3999] RSP: 002b:00007fe272cd7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   46.347746][ T3999] RAX: ffffffffffffffda RBX: 00007fe274895fa0 RCX: 00007fe27466cb7c
[   46.347761][ T3999] RDX: 000000000000000f RSI: 00007fe272cd70a0 RDI: 0000000000000004
[   46.347775][ T3999] RBP: 00007fe272cd7090 R08: 0000000000000000 R09: 0000000000000000
[   46.347790][ T3999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.347804][ T3999] R13: 0000000000000000 R14: 00007fe274895fa0 R15: 00007ffd77561638
[   46.347828][ T3999]  </TASK>
[   46.378254][ T4011] loop1: detected capacity change from 0 to 1024
[   46.379010][ T4011] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   46.379062][ T4011] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   46.379098][ T4011] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   46.380295][ T4011] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.193: unexpected bad inode w/o EXT4_IGET_BAD
[   46.656207][ T4011] EXT4-fs (loop1): no journal found
[   46.656226][ T4011] EXT4-fs (loop1): can't get journal size
[   46.657746][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.681162][ T4008] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.193: Invalid block bitmap block 0 in block_group 0
[   46.791264][ T4029] smc: net device bond0 applied user defined pnetid SYZ2
[   46.799318][ T4029] smc: net device bond0 erased user defined pnetid SYZ2
[   46.831389][ T4023] SELinux:  policydb version 0 does not match my version range 15-34
[   46.843687][ T4023] SELinux: failed to load policy
[   46.855743][ T4037] loop0: detected capacity change from 0 to 512
[   46.863973][ T4037] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.205: corrupted in-inode xattr: bad e_name length
[   46.879000][ T4037] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.205: couldn't read orphan inode 15 (err -117)
[   46.907928][ T4041] loop3: detected capacity change from 0 to 2048
[   46.950693][ T4041] Alternate GPT is invalid, using primary GPT.
[   46.957258][ T4041]  loop3: p2 p3 p7
[   46.963990][ T4048] loop0: detected capacity change from 0 to 1024
[   46.970992][ T4048] EXT4-fs: Ignoring removed oldalloc option
[   46.977027][ T4048] EXT4-fs: Ignoring removed orlov option
[   46.982695][ T4048] EXT4-fs: Ignoring removed oldalloc option
[   46.988871][ T4048] EXT4-fs: Ignoring removed nomblk_io_submit option
[   47.095824][ T4062] loop3: detected capacity change from 0 to 1024
[   47.104091][ T4062] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   47.113931][ T4062] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   47.138096][ T4062] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   47.164467][ T4062] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.211: unexpected bad inode w/o EXT4_IGET_BAD
[   47.227613][ T4062] EXT4-fs (loop3): no journal found
[   47.232882][ T4062] EXT4-fs (loop3): can't get journal size
[   47.268061][ T4062] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.211: Invalid block bitmap block 0 in block_group 0
[   47.523447][ T4082] SELinux:  Context : is not valid (left unmapped).
[   47.552926][ T4084] vxcan1: tx address claim with dlc 0
[   47.594217][ T4088] loop4: detected capacity change from 0 to 2048
[   47.692608][ T4093] loop1: detected capacity change from 0 to 512
[   47.903483][ T4088] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[   47.915833][ T4088] EXT4-fs (loop4): This should not happen!! Data will be lost
[   47.915833][ T4088] 
[   47.925484][ T4088] EXT4-fs (loop4): Total free blocks count 0
[   47.931522][ T4088] EXT4-fs (loop4): Free/Dirty block details
[   47.937491][ T4088] EXT4-fs (loop4): free_blocks=0
[   47.942488][ T4088] EXT4-fs (loop4): dirty_blocks=0
[   47.947556][ T4088] EXT4-fs (loop4): Block reservation details
[   47.953545][ T4088] EXT4-fs (loop4): i_reserved_data_blocks=0
[   48.652344][   T29] kauditd_printk_skb: 1041 callbacks suppressed
[   48.652361][   T29] audit: type=1326 audit(21062180.032:2572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa8e353a359 code=0x7ffc0000
[   48.746623][   T29] audit: type=1326 audit(21062180.062:2573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa8e3595127 code=0x7ffc0000
[   48.769820][   T29] audit: type=1326 audit(21062180.062:2574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa8e353a359 code=0x7ffc0000
[   48.793003][   T29] audit: type=1326 audit(21062180.062:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fa8e359e169 code=0x7ffc0000
[   48.816278][   T29] audit: type=1326 audit(21062180.062:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8e359e169 code=0x7ffc0000
[   48.839565][   T29] audit: type=1326 audit(21062180.062:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8e359e169 code=0x7ffc0000
[   48.862792][   T29] audit: type=1326 audit(21062180.062:2578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa8e3595127 code=0x7ffc0000
[   48.885888][   T29] audit: type=1326 audit(21062180.062:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa8e353a359 code=0x7ffc0000
[   48.908961][   T29] audit: type=1326 audit(21062180.062:2580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4081 comm="syz.3.217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8e359e169 code=0x7ffc0000
[   48.932624][   T29] audit: type=1400 audit(21062180.122:2581): avc:  denied  { unlink } for  pid=3309 comm="syz-executor" name="rdma.current" dev="tmpfs" ino=332 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=":"
[   48.981561][ T4110] loop4: detected capacity change from 0 to 1024
[   49.057461][ T4110] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   49.067278][ T4110] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   49.085266][ T4117] loop3: detected capacity change from 0 to 1024
[   49.107435][ T4110] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   49.126586][ T4117] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   49.136408][ T4117] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   49.169635][ T4117] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   49.198271][ T4110] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.225: unexpected bad inode w/o EXT4_IGET_BAD
[   49.227596][ T4117] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.228: unexpected bad inode w/o EXT4_IGET_BAD
[   49.257697][ T4110] EXT4-fs (loop4): no journal found
[   49.262958][ T4110] EXT4-fs (loop4): can't get journal size
[   49.273624][ T4117] EXT4-fs (loop3): no journal found
[   49.279000][ T4117] EXT4-fs (loop3): can't get journal size
[   49.301894][ T4125] loop0: detected capacity change from 0 to 512
[   49.318789][ T4125] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   49.329625][ T4117] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.228: Invalid block bitmap block 0 in block_group 0
[   49.358674][ T4110] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.225: Invalid block bitmap block 0 in block_group 0
[   49.386488][ T4131] __nla_validate_parse: 4 callbacks suppressed
[   49.386578][ T4131] netlink: 4 bytes leftover after parsing attributes in process `syz.2.233'.
[   49.421678][ T4125] netlink: 20 bytes leftover after parsing attributes in process `syz.0.231'.
[   49.588246][ T4138] loop2: detected capacity change from 0 to 2048
[   49.622441][ T4140] loop4: detected capacity change from 0 to 512
[   49.631718][ T4140] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   49.653735][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[   49.676144][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 12: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[   49.697482][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 13: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[   49.719081][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 14: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[   49.738274][ T4138] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[   49.751540][ T4138] EXT4-fs (loop2): This should not happen!! Data will be lost
[   49.751540][ T4138] 
[   49.753337][ T4151] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.234: corrupted inode contents
[   49.761201][ T4138] EXT4-fs (loop2): Total free blocks count 0
[   49.761219][ T4138] EXT4-fs (loop2): Free/Dirty block details
[   49.776094][ T4151] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #2: comm syz.4.234: mark_inode_dirty error
[   49.778878][ T4138] EXT4-fs (loop2): free_blocks=0
[   49.785174][ T4151] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.234: corrupted inode contents
[   49.795963][ T4138] EXT4-fs (loop2): dirty_blocks=0
[   49.795980][ T4138] EXT4-fs (loop2): Block reservation details
[   49.802448][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 15: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[   49.812577][ T4138] EXT4-fs (loop2): i_reserved_data_blocks=0
[   49.853625][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 16: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[   49.875579][ T4140] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 17: comm syz.4.234: path /36/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[   49.976801][ T4164] loop2: detected capacity change from 0 to 512
[   49.994131][ T4164] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   50.005801][ T4166] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   50.050300][ T4164] netlink: 8 bytes leftover after parsing attributes in process `syz.2.244'.
[   50.158423][ T4172] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[   50.172535][ T4172] loop2: detected capacity change from 0 to 512
[   50.180861][ T4172] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.248: corrupted in-inode xattr: invalid ea_ino
[   50.195936][ T4172] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.248: couldn't read orphan inode 15 (err -117)
[   50.227573][ T1711] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.338940][ T1711] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.389256][ T1711] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.421359][ T1711] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.473675][ T4188] loop2: detected capacity change from 0 to 2048
[   50.529036][ T1711] bridge_slave_1: left allmulticast mode
[   50.534793][ T1711] bridge_slave_1: left promiscuous mode
[   50.540519][ T1711] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.551999][ T1711] bridge_slave_0: left allmulticast mode
[   50.557763][ T1711] bridge_slave_0: left promiscuous mode
[   50.563456][ T1711] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.598947][ T4188] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[   50.611213][ T4188] EXT4-fs (loop2): This should not happen!! Data will be lost
[   50.611213][ T4188] 
[   50.620977][ T4188] EXT4-fs (loop2): Total free blocks count 0
[   50.621892][ T4200] netlink: 64 bytes leftover after parsing attributes in process `syz.4.254'.
[   50.626996][ T4188] EXT4-fs (loop2): Free/Dirty block details
[   50.627010][ T4188] EXT4-fs (loop2): free_blocks=0
[   50.627024][ T4188] EXT4-fs (loop2): dirty_blocks=0
[   50.627037][ T4188] EXT4-fs (loop2): Block reservation details
[   50.627049][ T4188] EXT4-fs (loop2): i_reserved_data_blocks=0
[   50.676194][ T4200] loop4: detected capacity change from 0 to 1024
[   50.688447][ T4200] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   50.698287][ T4200] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   50.720559][ T1711] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   50.732922][ T4200] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   50.744401][ T1711] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   50.744849][ T4200] EXT4-fs error (device loop4): ext4_get_journal_inode:5798: inode #5: comm syz.4.254: unexpected bad inode w/o EXT4_IGET_BAD
[   50.768196][ T4200] EXT4-fs (loop4): no journal found
[   50.770384][ T1711] bond0 (unregistering): Released all slaves
[   50.773417][ T4200] EXT4-fs (loop4): can't get journal size
[   50.779593][ T4207] loop2: detected capacity change from 0 to 512
[   50.794489][ T4207] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   50.796384][ T4200] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.254: Invalid block bitmap block 0 in block_group 0
[   50.818879][ T4175] chnl_net:caif_netlink_parms(): no params data found
[   50.854586][ T4207] netlink: 8 bytes leftover after parsing attributes in process `syz.2.258'.
[   50.881028][ T1711] hsr_slave_0: left promiscuous mode
[   50.891161][ T1711] hsr_slave_1: left promiscuous mode
[   50.897889][ T1711] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.905360][ T1711] batman_adv: batadv0: Removing interface: batadv_slave_0
[   50.914316][ T1711] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.921871][ T1711] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.934861][ T1711] veth1_vlan: left promiscuous mode
[   50.940430][ T1711] veth0_vlan: left promiscuous mode
[   50.942910][ T4210] SELinux:  policydb version 0 does not match my version range 15-34
[   50.954137][ T4210] SELinux: failed to load policy
[   51.009153][ T1711] team0 (unregistering): Port device team_slave_1 removed
[   51.019407][ T1711] team0 (unregistering): Port device team_slave_0 removed
[   51.070164][ T4175] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.077312][ T4175] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.085652][ T4175] bridge_slave_0: entered allmulticast mode
[   51.093293][ T4175] bridge_slave_0: entered promiscuous mode
[   51.107279][ T4175] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.114454][ T4175] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.124642][ T4227] loop2: detected capacity change from 0 to 512
[   51.132790][ T4227] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.263: corrupted in-inode xattr: bad e_name length
[   51.137896][ T4175] bridge_slave_1: entered allmulticast mode
[   51.154035][ T4227] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.263: couldn't read orphan inode 15 (err -117)
[   51.167087][ T4175] bridge_slave_1: entered promiscuous mode
[   51.192456][ T4175] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   51.221447][ T4175] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   51.232575][ T4235] loop0: detected capacity change from 0 to 2048
[   51.261269][ T4175] team0: Port device team_slave_0 added
[   51.270104][ T4175] team0: Port device team_slave_1 added
[   51.297099][ T4175] batman_adv: batadv0: Adding interface: batadv_slave_0
[   51.304091][ T4175] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.330077][ T4175] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   51.341764][ T4175] batman_adv: batadv0: Adding interface: batadv_slave_1
[   51.348797][ T4175] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.364685][ T4235] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   51.374715][ T4175] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   51.397612][ T4235] EXT4-fs (loop0): This should not happen!! Data will be lost
[   51.397612][ T4235] 
[   51.407375][ T4235] EXT4-fs (loop0): Total free blocks count 0
[   51.413370][ T4235] EXT4-fs (loop0): Free/Dirty block details
[   51.419337][ T4235] EXT4-fs (loop0): free_blocks=0
[   51.424286][ T4235] EXT4-fs (loop0): dirty_blocks=0
[   51.429590][ T4235] EXT4-fs (loop0): Block reservation details
[   51.435987][ T4235] EXT4-fs (loop0): i_reserved_data_blocks=0
[   51.498880][ T4175] hsr_slave_0: entered promiscuous mode
[   51.504868][ T4252] loop4: detected capacity change from 0 to 1024
[   51.512038][ T4175] hsr_slave_1: entered promiscuous mode
[   51.514281][ T4252] EXT4-fs: Ignoring removed oldalloc option
[   51.518332][ T4175] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   51.523621][ T4252] EXT4-fs: Ignoring removed orlov option
[   51.531230][ T4175] Cannot create hsr debugfs directory
[   51.536835][ T4252] EXT4-fs: Ignoring removed oldalloc option
[   51.548328][ T4252] EXT4-fs: Ignoring removed nomblk_io_submit option
[   51.579618][ T4258] loop0: detected capacity change from 0 to 1024
[   51.603041][ T4258] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   51.612867][ T4258] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   51.624461][ T4258] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   51.637704][ T4258] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: inode #5: comm syz.0.274: unexpected bad inode w/o EXT4_IGET_BAD
[   51.652468][ T4258] EXT4-fs (loop0): no journal found
[   51.657703][ T4258] EXT4-fs (loop0): can't get journal size
[   51.675762][ T4258] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.274: Invalid block bitmap block 0 in block_group 0
[   51.758718][ T4175] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   51.767574][ T4175] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   51.777075][ T4175] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   51.791631][ T4175] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   51.858389][ T4266] SELinux:  policydb version 0 does not match my version range 15-34
[   51.868301][ T4266] SELinux: failed to load policy
[   51.911189][ T4175] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.932742][ T4175] 8021q: adding VLAN 0 to HW filter on device team0
[   51.944807][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.951936][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.986929][ T4175] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   51.997465][ T4175] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   52.059591][ T4270] loop0: detected capacity change from 0 to 512
[   52.100586][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.107724][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.134797][ T4272] loop2: detected capacity change from 0 to 1024
[   52.179451][ T4270] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.276: corrupted in-inode xattr: bad e_name length
[   52.210700][ T4270] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.276: couldn't read orphan inode 15 (err -117)
[   52.233297][ T4272] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   52.243168][ T4272] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   52.278561][ T4175] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.299308][ T4272] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   52.324278][ T4272] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.277: unexpected bad inode w/o EXT4_IGET_BAD
[   52.339332][ T4272] EXT4-fs (loop2): no journal found
[   52.344577][ T4272] EXT4-fs (loop2): can't get journal size
[   52.378877][ T4272] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.277: Invalid block bitmap block 0 in block_group 0
[   52.441500][ T4288] netlink: 4 bytes leftover after parsing attributes in process `syz.1.280'.
[   52.556983][ T4175] veth0_vlan: entered promiscuous mode
[   52.580405][ T4175] veth1_vlan: entered promiscuous mode
[   52.599697][ T4175] veth0_macvtap: entered promiscuous mode
[   52.609887][ T4175] veth1_macvtap: entered promiscuous mode
[   52.624048][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.627599][ T4315] netlink: 64 bytes leftover after parsing attributes in process `syz.1.285'.
[   52.634734][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.651313][ T4315] loop1: detected capacity change from 0 to 1024
[   52.653536][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.668611][ T4315] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   52.670097][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.679852][ T4315] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   52.689742][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.689758][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.689767][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   52.689806][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.692652][ T4175] batman_adv: batadv0: Interface activated: batadv_slave_0
[   52.699858][ T4315] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   52.741874][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.768093][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.778007][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.788542][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.798439][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.808961][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.818806][ T4175] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   52.829242][ T4175] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   52.840113][ T4175] batman_adv: batadv0: Interface activated: batadv_slave_1
[   52.845867][ T4315] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.285: unexpected bad inode w/o EXT4_IGET_BAD
[   52.864038][ T4315] EXT4-fs (loop1): no journal found
[   52.869463][ T4315] EXT4-fs (loop1): can't get journal size
[   52.878813][ T4317] SELinux:  policydb version 0 does not match my version range 15-34
[   52.882772][ T4175] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.895745][ T4175] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.896523][ T4317] SELinux: failed to load policy
[   52.904551][ T4175] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.918317][ T4175] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.925929][ T4315] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.285: Invalid block bitmap block 0 in block_group 0
[   52.989682][ T4325] loop5: detected capacity change from 0 to 512
[   53.008624][ T4325] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.288: corrupted in-inode xattr: bad e_name length
[   53.022498][ T4325] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.288: couldn't read orphan inode 15 (err -117)
[   53.799362][ T4333] loop5: detected capacity change from 0 to 512
[   54.057425][   T29] kauditd_printk_skb: 280 callbacks suppressed
[   54.057449][   T29] audit: type=1326 audit(21062184.492:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   54.086858][   T29] audit: type=1326 audit(21062184.492:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   54.109990][   T29] audit: type=1326 audit(21062184.492:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fb07410e169 code=0x7ffc0000
[   54.133272][   T29] audit: type=1326 audit(21062185.442:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   54.156353][   T29] audit: type=1326 audit(21062185.442:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   54.492479][ T4334] loop4: detected capacity change from 0 to 512
[   55.131029][   T29] audit: type=1326 audit(21062186.472:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fb07410e169 code=0x7ffc0000
[   55.154358][   T29] audit: type=1326 audit(21062186.472:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   55.177471][   T29] audit: type=1326 audit(21062186.472:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   55.200651][   T29] audit: type=1326 audit(21062186.472:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb07410e169 code=0x7ffc0000
[   55.223845][   T29] audit: type=1326 audit(21062186.472:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4284 comm="syz.0.278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb07410e169 code=0x7ffc0000
[   55.812131][ T4343] netlink: 4 bytes leftover after parsing attributes in process `syz.0.292'.
[   55.824828][ T4341] loop2: detected capacity change from 0 to 1024
[   55.832599][ T4341] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   55.842473][ T4341] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   56.116630][ T4341] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   56.143496][ T4341] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.291: unexpected bad inode w/o EXT4_IGET_BAD
[   56.171354][ T4341] EXT4-fs (loop2): no journal found
[   56.176705][ T4341] EXT4-fs (loop2): can't get journal size
[   56.248629][ T4341] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.291: Invalid block bitmap block 0 in block_group 0
[   56.309647][ T4356] loop5: detected capacity change from 0 to 512
[   56.345673][ T4356] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   56.364163][ T4358] loop0: detected capacity change from 0 to 128
[   56.444034][ T4356] netlink: 8 bytes leftover after parsing attributes in process `syz.5.297'.
[   56.579775][ T4371] SELinux:  policydb version 0 does not match my version range 15-34
[   56.588272][ T4371] SELinux: failed to load policy
[   56.972495][ T4378] xt_CT: You must specify a L4 protocol and not use inversions on it
[   57.013350][ T4377] FAULT_INJECTION: forcing a failure.
[   57.013350][ T4377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.026556][ T4377] CPU: 0 UID: 0 PID: 4377 Comm: syz.2.305 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   57.026601][ T4377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   57.026614][ T4377] Call Trace:
[   57.026622][ T4377]  <TASK>
[   57.026631][ T4377]  dump_stack_lvl+0xf6/0x150
[   57.026678][ T4377]  dump_stack+0x15/0x1a
[   57.026696][ T4377]  should_fail_ex+0x261/0x270
[   57.026722][ T4377]  should_fail+0xb/0x10
[   57.026745][ T4377]  should_fail_usercopy+0x1a/0x20
[   57.026773][ T4377]  _copy_to_iter+0x24e/0xd10
[   57.026879][ T4377]  ? down_read+0x173/0x4c0
[   57.026903][ T4377]  copy_page_to_iter+0x171/0x2b0
[   57.026932][ T4377]  process_vm_rw+0x572/0x840
[   57.027034][ T4377]  ? __secure_computing+0x7e/0x150
[   57.027058][ T4377]  __x64_sys_process_vm_readv+0x7a/0x90
[   57.027092][ T4377]  x64_sys_call+0x26b7/0x2e10
[   57.027117][ T4377]  do_syscall_64+0xc9/0x1a0
[   57.027143][ T4377]  ? clear_bhb_loop+0x25/0x80
[   57.027203][ T4377]  ? clear_bhb_loop+0x25/0x80
[   57.027226][ T4377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.027250][ T4377] RIP: 0033:0x7f3f1622e169
[   57.027266][ T4377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.027285][ T4377] RSP: 002b:00007f3f14897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[   57.027305][ T4377] RAX: ffffffffffffffda RBX: 00007f3f16455fa0 RCX: 00007f3f1622e169
[   57.027396][ T4377] RDX: 0000000000000002 RSI: 0000200000008400 RDI: 00000000000000b5
[   57.027408][ T4377] RBP: 00007f3f14897090 R08: 0000000000000286 R09: 0000000000000000
[   57.027419][ T4377] R10: 0000200000008640 R11: 0000000000000246 R12: 0000000000000001
[   57.027430][ T4377] R13: 0000000000000000 R14: 00007f3f16455fa0 R15: 00007fff29bbdc98
[   57.027448][ T4377]  </TASK>
[   57.316250][ T4384] loop2: detected capacity change from 0 to 1024
[   57.334536][ T4384] EXT4-fs: Ignoring removed oldalloc option
[   57.340743][ T4384] EXT4-fs: Ignoring removed orlov option
[   57.346430][ T4384] EXT4-fs: Ignoring removed oldalloc option
[   57.352384][ T4384] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.417111][ T4393] loop5: detected capacity change from 0 to 1024
[   57.417846][ T4389] loop1: detected capacity change from 0 to 1024
[   57.424010][ T4393] EXT4-fs: Ignoring removed oldalloc option
[   57.433299][ T4389] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   57.436046][ T4393] EXT4-fs: Ignoring removed orlov option
[   57.445804][ T4389] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   57.451364][ T4393] EXT4-fs: Ignoring removed oldalloc option
[   57.466919][ T4393] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.474575][ T4389] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   57.496665][ T4389] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.310: unexpected bad inode w/o EXT4_IGET_BAD
[   57.510659][ T4389] EXT4-fs (loop1): no journal found
[   57.512454][ T4399] FAULT_INJECTION: forcing a failure.
[   57.512454][ T4399] name failslab, interval 1, probability 0, space 0, times 0
[   57.515905][ T4389] EXT4-fs (loop1): can't get journal size
[   57.534369][ T4399] CPU: 1 UID: 0 PID: 4399 Comm: syz.0.312 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   57.534400][ T4399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   57.534414][ T4399] Call Trace:
[   57.534421][ T4399]  <TASK>
[   57.534429][ T4399]  dump_stack_lvl+0xf6/0x150
[   57.534523][ T4399]  dump_stack+0x15/0x1a
[   57.534583][ T4399]  should_fail_ex+0x261/0x270
[   57.534611][ T4399]  should_failslab+0x8f/0xb0
[   57.534637][ T4399]  __kmalloc_noprof+0xad/0x410
[   57.534669][ T4399]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   57.534817][ T4399]  ? nlmon_xmit+0x51/0x60
[   57.534916][ T4399]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   57.534949][ T4399]  ? __pfx_ethnl_default_done+0x10/0x10
[   57.534974][ T4399]  ? __pfx_ethnl_default_start+0x10/0x10
[   57.535007][ T4399]  genl_rcv_msg+0x486/0x6f0
[   57.535042][ T4399]  ? __pfx_ethnl_default_doit+0x10/0x10
[   57.535064][ T4399]  ? __dev_queue_xmit+0xb76/0x20b0
[   57.535103][ T4399]  ? should_fail_ex+0xd7/0x270
[   57.535124][ T4399]  ? ref_tracker_free+0x3b8/0x420
[   57.535148][ T4399]  netlink_rcv_skb+0x12f/0x230
[   57.535167][ T4399]  ? __pfx_genl_rcv_msg+0x10/0x10
[   57.535199][ T4399]  genl_rcv+0x28/0x40
[   57.535258][ T4399]  netlink_unicast+0x605/0x6c0
[   57.535308][ T4399]  netlink_sendmsg+0x609/0x720
[   57.535334][ T4399]  ? __pfx_netlink_sendmsg+0x10/0x10
[   57.535357][ T4399]  __sock_sendmsg+0x140/0x180
[   57.535480][ T4399]  ____sys_sendmsg+0x350/0x4e0
[   57.535511][ T4399]  __sys_sendmsg+0x1a0/0x240
[   57.535604][ T4399]  __x64_sys_sendmsg+0x46/0x50
[   57.535630][ T4399]  x64_sys_call+0x26f3/0x2e10
[   57.535654][ T4399]  do_syscall_64+0xc9/0x1a0
[   57.535682][ T4399]  ? clear_bhb_loop+0x25/0x80
[   57.535705][ T4399]  ? clear_bhb_loop+0x25/0x80
[   57.535818][ T4399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.535841][ T4399] RIP: 0033:0x7fb07410e169
[   57.535857][ T4399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.535877][ T4399] RSP: 002b:00007fb072777038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.535915][ T4399] RAX: ffffffffffffffda RBX: 00007fb074335fa0 RCX: 00007fb07410e169
[   57.535929][ T4399] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
[   57.535942][ T4399] RBP: 00007fb072777090 R08: 0000000000000000 R09: 0000000000000000
[   57.535955][ T4399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.535969][ T4399] R13: 0000000000000000 R14: 00007fb074335fa0 R15: 00007ffc312e2f88
[   57.536058][ T4399]  </TASK>
[   57.538604][ T4389] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.310: Invalid block bitmap block 0 in block_group 0
[   57.814108][ T4410] Zero length message leads to an empty skb
[   57.870517][ T4412] SELinux:  policydb version 0 does not match my version range 15-34
[   57.873970][ T4414] loop4: detected capacity change from 0 to 512
[   57.879159][ T4412] SELinux: failed to load policy
[   57.891669][ T4414] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   57.939455][ T4414] netlink: 8 bytes leftover after parsing attributes in process `syz.4.315'.
[   58.401408][ T4433] loop5: detected capacity change from 0 to 2048
[   58.497922][ T4448] netlink: 64 bytes leftover after parsing attributes in process `syz.1.325'.
[   58.512320][ T4448] loop1: detected capacity change from 0 to 1024
[   58.519551][ T4448] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   58.529381][ T4448] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   58.544039][ T4433] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   58.556264][ T4433] EXT4-fs (loop5): This should not happen!! Data will be lost
[   58.556264][ T4433] 
[   58.565980][ T4433] EXT4-fs (loop5): Total free blocks count 0
[   58.572001][ T4433] EXT4-fs (loop5): Free/Dirty block details
[   58.577916][ T4433] EXT4-fs (loop5): free_blocks=0
[   58.582944][ T4433] EXT4-fs (loop5): dirty_blocks=0
[   58.588010][ T4433] EXT4-fs (loop5): Block reservation details
[   58.594062][ T4433] EXT4-fs (loop5): i_reserved_data_blocks=0
[   58.601388][ T4448] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   58.612333][ T4448] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.325: unexpected bad inode w/o EXT4_IGET_BAD
[   58.643205][ T4448] EXT4-fs (loop1): no journal found
[   58.648492][ T4448] EXT4-fs (loop1): can't get journal size
[   58.661330][ T4448] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.325: Invalid block bitmap block 0 in block_group 0
[   58.771888][ T4455] loop2: detected capacity change from 0 to 1024
[   58.779659][ T4455] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   58.789465][ T4455] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   58.802069][ T4455] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   58.812608][ T4455] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.327: unexpected bad inode w/o EXT4_IGET_BAD
[   58.825998][ T4455] EXT4-fs (loop2): no journal found
[   58.831317][ T4455] EXT4-fs (loop2): can't get journal size
[   58.841324][ T4455] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.327: Invalid block bitmap block 0 in block_group 0
[   58.922855][ T4461] loop2: detected capacity change from 0 to 512
[   58.932217][ T4461] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   59.042061][ T4465] loop2: detected capacity change from 0 to 1024
[   59.048972][ T4465] EXT4-fs: Ignoring removed oldalloc option
[   59.054905][ T4465] EXT4-fs: Ignoring removed orlov option
[   59.060947][ T4465] EXT4-fs: Ignoring removed oldalloc option
[   59.067286][ T4465] EXT4-fs: Ignoring removed nomblk_io_submit option
[   59.093941][ T4470] SELinux:  policydb version 0 does not match my version range 15-34
[   59.104191][ T4470] SELinux: failed to load policy
[   59.212066][ T4473] loop4: detected capacity change from 0 to 1024
[   59.221233][ T4473] EXT4-fs: Ignoring removed oldalloc option
[   59.227251][ T4473] EXT4-fs: Ignoring removed orlov option
[   59.232936][ T4473] EXT4-fs: Ignoring removed oldalloc option
[   59.239063][ T4473] EXT4-fs: Ignoring removed nomblk_io_submit option
[   59.289054][ T4486] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'.
[   59.309249][ T4484] x_tables: duplicate underflow at hook 2
[   59.375634][ T4490] loop5: detected capacity change from 0 to 1024
[   59.386638][ T4490] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   59.396443][ T4490] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   59.415511][ T4490] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   59.634842][ T4501] loop1: detected capacity change from 0 to 512
[   59.724799][ T4490] EXT4-fs error (device loop5): ext4_get_journal_inode:5798: inode #5: comm syz.5.339: unexpected bad inode w/o EXT4_IGET_BAD
[   59.738360][ T4501] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   59.752081][ T4490] EXT4-fs (loop5): no journal found
[   59.757412][ T4490] EXT4-fs (loop5): can't get journal size
[   59.773387][ T4490] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.339: Invalid block bitmap block 0 in block_group 0
[   59.925689][ T4514] SELinux:  policydb version 0 does not match my version range 15-34
[   59.926611][   T29] kauditd_printk_skb: 33 callbacks suppressed
[   59.926627][   T29] audit: type=1400 audit(21062191.312:2903): avc:  denied  { create } for  pid=4515 comm="syz.2.346" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   59.934253][ T4514] SELinux: failed to load policy
[   59.960475][   T29] audit: type=1400 audit(21062191.322:2904): avc:  denied  { ioctl } for  pid=4515 comm="syz.2.346" path="socket:[7533]" dev="sockfs" ino=7533 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   59.994404][   T29] audit: type=1326 audit(21062191.372:2905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.017812][   T29] audit: type=1326 audit(21062191.372:2906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.041132][   T29] audit: type=1326 audit(21062191.372:2907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.064321][   T29] audit: type=1326 audit(21062191.372:2908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.087706][   T29] audit: type=1326 audit(21062191.372:2909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.110910][   T29] audit: type=1400 audit(21062191.372:2910): avc:  denied  { mount } for  pid=4515 comm="syz.2.346" name="/" dev="configfs" ino=1272 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   60.133431][   T29] audit: type=1326 audit(21062191.372:2911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.156605][   T29] audit: type=1326 audit(21062191.372:2912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4515 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7f3f1622e169 code=0x7ffc0000
[   60.238375][ T4523] netlink: 'syz.4.348': attribute type 1 has an invalid length.
[   60.253588][ T4523] 8021q: adding VLAN 0 to HW filter on device bond1
[   60.262798][ T4523] netlink: 4 bytes leftover after parsing attributes in process `syz.4.348'.
[   60.265219][ T4527] syz.2.350 uses obsolete (PF_INET,SOCK_PACKET)
[   60.278456][ T4523] FAULT_INJECTION: forcing a failure.
[   60.278456][ T4523] name failslab, interval 1, probability 0, space 0, times 0
[   60.291237][ T4523] CPU: 1 UID: 0 PID: 4523 Comm: syz.4.348 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   60.291264][ T4523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   60.291278][ T4523] Call Trace:
[   60.291286][ T4523]  <TASK>
[   60.291294][ T4523]  dump_stack_lvl+0xf6/0x150
[   60.291321][ T4523]  dump_stack+0x15/0x1a
[   60.291341][ T4523]  should_fail_ex+0x261/0x270
[   60.291369][ T4523]  should_failslab+0x8f/0xb0
[   60.291468][ T4523]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   60.291500][ T4523]  ? __alloc_skb+0x10d/0x320
[   60.291520][ T4523]  __alloc_skb+0x10d/0x320
[   60.291539][ T4523]  rtmsg_ifinfo_build_skb+0x63/0x1b0
[   60.291640][ T4523]  ? dev_deactivate_many+0x1f8/0x740
[   60.291663][ T4523]  rtmsg_ifinfo+0x6b/0x100
[   60.291694][ T4523]  dev_close_many+0x153/0x250
[   60.291723][ T4523]  unregister_netdevice_many_notify+0x454/0x16a0
[   60.291763][ T4523]  ? unregister_netdevice_queue+0x134/0x230
[   60.291793][ T4523]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[   60.291820][ T4523]  rtnl_dellink+0x3b0/0x5c0
[   60.291880][ T4523]  ? security_capable+0x81/0x90
[   60.291956][ T4523]  ? ns_capable+0x7d/0xb0
[   60.291986][ T4523]  ? __pfx_rtnl_dellink+0x10/0x10
[   60.292027][ T4523]  rtnetlink_rcv_msg+0x65a/0x740
[   60.292054][ T4523]  ? ref_tracker_free+0x3b8/0x420
[   60.292077][ T4523]  netlink_rcv_skb+0x12f/0x230
[   60.292152][ T4523]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   60.292196][ T4523]  rtnetlink_rcv+0x1c/0x30
[   60.292239][ T4523]  netlink_unicast+0x605/0x6c0
[   60.292337][ T4523]  netlink_sendmsg+0x609/0x720
[   60.292371][ T4523]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.292389][ T4523]  __sock_sendmsg+0x140/0x180
[   60.292415][ T4523]  ____sys_sendmsg+0x350/0x4e0
[   60.292477][ T4523]  __sys_sendmsg+0x1a0/0x240
[   60.292510][ T4523]  __x64_sys_sendmsg+0x46/0x50
[   60.292543][ T4523]  x64_sys_call+0x26f3/0x2e10
[   60.292562][ T4523]  do_syscall_64+0xc9/0x1a0
[   60.292584][ T4523]  ? clear_bhb_loop+0x25/0x80
[   60.292602][ T4523]  ? clear_bhb_loop+0x25/0x80
[   60.292620][ T4523]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.292637][ T4523] RIP: 0033:0x7fe27466e169
[   60.292668][ T4523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.292682][ T4523] RSP: 002b:00007fe272cd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.292698][ T4523] RAX: ffffffffffffffda RBX: 00007fe274895fa0 RCX: 00007fe27466e169
[   60.292749][ T4523] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000006
[   60.292759][ T4523] RBP: 00007fe272cd7090 R08: 0000000000000000 R09: 0000000000000000
[   60.292771][ T4523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.292780][ T4523] R13: 0000000000000000 R14: 00007fe274895fa0 R15: 00007ffd77561638
[   60.292859][ T4523]  </TASK>
[   60.573704][ T4523] bond1 (unregistering): Released all slaves
[   60.603300][ T4532] netlink: 4 bytes leftover after parsing attributes in process `syz.0.351'.
[   60.667647][ T4538] loop4: detected capacity change from 0 to 512
[   60.674536][ T4538] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   61.003697][ T4562] netlink: 188 bytes leftover after parsing attributes in process `syz.2.362'.
[   61.012887][ T4562] FAULT_INJECTION: forcing a failure.
[   61.012887][ T4562] name failslab, interval 1, probability 0, space 0, times 0
[   61.025665][ T4562] CPU: 0 UID: 0 PID: 4562 Comm: syz.2.362 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   61.025714][ T4562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   61.025729][ T4562] Call Trace:
[   61.025735][ T4562]  <TASK>
[   61.025744][ T4562]  dump_stack_lvl+0xf6/0x150
[   61.025794][ T4562]  dump_stack+0x15/0x1a
[   61.025813][ T4562]  should_fail_ex+0x261/0x270
[   61.025886][ T4562]  should_failslab+0x8f/0xb0
[   61.025911][ T4562]  __kmalloc_node_noprof+0xaf/0x420
[   61.025979][ T4562]  ? alloc_slab_obj_exts+0x32/0x80
[   61.026058][ T4562]  alloc_slab_obj_exts+0x32/0x80
[   61.026136][ T4562]  __memcg_slab_post_alloc_hook+0x271/0x5a0
[   61.026176][ T4562]  kmem_cache_alloc_noprof+0x237/0x340
[   61.026207][ T4562]  ? fib_trie_unmerge+0x34f/0xa80
[   61.026235][ T4562]  fib_trie_unmerge+0x34f/0xa80
[   61.026288][ T4562]  ? fib_nl2rule+0x210/0xcf0
[   61.026331][ T4562]  fib_unmerge+0x7f/0x200
[   61.026424][ T4562]  fib4_rule_delete+0x2b/0x1e0
[   61.026463][ T4562]  fib_delrule+0xda5/0x10e0
[   61.026509][ T4562]  fib_nl_delrule+0x46/0x60
[   61.026559][ T4562]  ? __pfx_fib_nl_delrule+0x10/0x10
[   61.026587][ T4562]  rtnetlink_rcv_msg+0x65a/0x740
[   61.026621][ T4562]  ? ref_tracker_free+0x3b8/0x420
[   61.026652][ T4562]  netlink_rcv_skb+0x12f/0x230
[   61.026675][ T4562]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   61.026745][ T4562]  rtnetlink_rcv+0x1c/0x30
[   61.026776][ T4562]  netlink_unicast+0x605/0x6c0
[   61.026817][ T4562]  netlink_sendmsg+0x609/0x720
[   61.026847][ T4562]  ? __pfx_netlink_sendmsg+0x10/0x10
[   61.026875][ T4562]  __sock_sendmsg+0x140/0x180
[   61.026906][ T4562]  sock_write_iter+0x186/0x1c0
[   61.026937][ T4562]  vfs_write+0x79b/0x950
[   61.026995][ T4562]  ? __pfx_sock_write_iter+0x10/0x10
[   61.027030][ T4562]  ksys_write+0xeb/0x1b0
[   61.027112][ T4562]  __x64_sys_write+0x42/0x50
[   61.027129][ T4562]  x64_sys_call+0x2a45/0x2e10
[   61.027148][ T4562]  do_syscall_64+0xc9/0x1a0
[   61.027172][ T4562]  ? clear_bhb_loop+0x25/0x80
[   61.027198][ T4562]  ? clear_bhb_loop+0x25/0x80
[   61.027293][ T4562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.027317][ T4562] RIP: 0033:0x7f3f1622e169
[   61.027335][ T4562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.027356][ T4562] RSP: 002b:00007f3f14897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   61.027377][ T4562] RAX: ffffffffffffffda RBX: 00007f3f16455fa0 RCX: 00007f3f1622e169
[   61.027392][ T4562] RDX: 0000000000033fe0 RSI: 0000200000000000 RDI: 0000000000000006
[   61.027404][ T4562] RBP: 00007f3f14897090 R08: 0000000000000000 R09: 0000000000000000
[   61.027415][ T4562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.027455][ T4562] R13: 0000000000000000 R14: 00007f3f16455fa0 R15: 00007fff29bbdc98
[   61.027475][ T4562]  </TASK>
[   61.033794][ T4564] loop4: detected capacity change from 0 to 2048
[   61.268156][ T4579] loop5: detected capacity change from 0 to 128
[   61.421061][ T4564] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   61.433386][ T4564] EXT4-fs (loop4): This should not happen!! Data will be lost
[   61.433386][ T4564] 
[   61.443101][ T4564] EXT4-fs (loop4): Total free blocks count 0
[   61.449229][ T4564] EXT4-fs (loop4): Free/Dirty block details
[   61.455144][ T4564] EXT4-fs (loop4): free_blocks=0
[   61.460152][ T4564] EXT4-fs (loop4): dirty_blocks=0
[   61.465192][ T4564] EXT4-fs (loop4): Block reservation details
[   61.471207][ T4564] EXT4-fs (loop4): i_reserved_data_blocks=0
[   61.478142][ T4586] netlink: 64 bytes leftover after parsing attributes in process `syz.0.370'.
[   61.494016][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.494016][   T38] loop5: rw=1, sector=145, nr_sectors = 8 limit=128
[   61.509827][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.509827][   T38] loop5: rw=1, sector=161, nr_sectors = 8 limit=128
[   61.523806][ T4586] loop0: detected capacity change from 0 to 1024
[   61.524139][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.524139][   T38] loop5: rw=1, sector=177, nr_sectors = 8 limit=128
[   61.532115][ T4586] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   61.544245][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.544245][   T38] loop5: rw=1, sector=193, nr_sectors = 8 limit=128
[   61.553438][ T4586] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   61.577350][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.577350][   T38] loop5: rw=1, sector=209, nr_sectors = 8 limit=128
[   61.579902][ T4586] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   61.591637][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.591637][   T38] loop5: rw=1, sector=225, nr_sectors = 8 limit=128
[   61.614976][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.614976][   T38] loop5: rw=1, sector=241, nr_sectors = 8 limit=128
[   61.616780][ T4586] EXT4-fs error (device loop0): ext4_get_journal_inode:5798: inode #5: comm syz.0.370: unexpected bad inode w/o EXT4_IGET_BAD
[   61.642405][ T4586] EXT4-fs (loop0): no journal found
[   61.643198][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.643198][   T38] loop5: rw=1, sector=257, nr_sectors = 8 limit=128
[   61.647705][ T4586] EXT4-fs (loop0): can't get journal size
[   61.662823][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.662823][   T38] loop5: rw=1, sector=273, nr_sectors = 8 limit=128
[   61.680521][   T38] kworker/u8:2: attempt to access beyond end of device
[   61.680521][   T38] loop5: rw=1, sector=289, nr_sectors = 8 limit=128
[   61.702087][ T4586] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.370: Invalid block bitmap block 0 in block_group 0
[   61.717437][ T4589] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[   61.835504][ T4607] netlink: 4 bytes leftover after parsing attributes in process `syz.4.378'.
[   61.909855][ T4616] loop1: detected capacity change from 0 to 2048
[   62.079067][ T4616] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2 with max blocks 1 with error 28
[   62.091437][ T4616] EXT4-fs (loop1): This should not happen!! Data will be lost
[   62.091437][ T4616] 
[   62.101106][ T4616] EXT4-fs (loop1): Total free blocks count 0
[   62.107134][ T4616] EXT4-fs (loop1): Free/Dirty block details
[   62.113116][ T4616] EXT4-fs (loop1): free_blocks=0
[   62.118105][ T4616] EXT4-fs (loop1): dirty_blocks=0
[   62.123143][ T4616] EXT4-fs (loop1): Block reservation details
[   62.129170][ T4616] EXT4-fs (loop1): i_reserved_data_blocks=0
[   62.208023][ T4630] loop1: detected capacity change from 0 to 1024
[   62.215283][ T4630] EXT4-fs: Ignoring removed nobh option
[   62.221008][ T4630] EXT4-fs: Ignoring removed bh option
[   62.221040][ T4631] loop2: detected capacity change from 0 to 512
[   62.303007][ T4650] netlink: 4 bytes leftover after parsing attributes in process `syz.5.391'.
[   62.410476][ T4659] loop1: detected capacity change from 0 to 512
[   62.440955][ T4661] loop5: detected capacity change from 0 to 512
[   62.495637][ T4659] netlink: 8 bytes leftover after parsing attributes in process `syz.1.389'.
[   62.527439][ T4661] netlink: 20 bytes leftover after parsing attributes in process `syz.5.392'.
[   62.747361][ T4670] loop2: detected capacity change from 0 to 2048
[   62.903752][ T4670] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 1 with max blocks 1 with error 28
[   62.916121][ T4670] EXT4-fs (loop2): This should not happen!! Data will be lost
[   62.916121][ T4670] 
[   62.925810][ T4670] EXT4-fs (loop2): Total free blocks count 0
[   62.931955][ T4670] EXT4-fs (loop2): Free/Dirty block details
[   62.938005][ T4670] EXT4-fs (loop2): free_blocks=0
[   62.942967][ T4670] EXT4-fs (loop2): dirty_blocks=0
[   62.948029][ T4670] EXT4-fs (loop2): Block reservation details
[   62.954014][ T4670] EXT4-fs (loop2): i_reserved_data_blocks=0
[   63.434476][ T4690] netlink: 64 bytes leftover after parsing attributes in process `syz.2.398'.
[   63.475075][ T4690] loop2: detected capacity change from 0 to 1024
[   63.490056][ T4695] loop5: detected capacity change from 0 to 512
[   63.499641][ T4690] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   63.509462][ T4690] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (49802!=20869)
[   63.525948][ T4695] EXT4-fs: Ignoring removed nobh option
[   63.586474][ T4690] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   63.600490][ T4690] EXT4-fs error (device loop2): ext4_get_journal_inode:5798: inode #5: comm syz.2.398: unexpected bad inode w/o EXT4_IGET_BAD
[   63.614493][ T4695] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.402: invalid indirect mapped block 256 (level 2)
[   63.630311][ T4690] EXT4-fs (loop2): no journal found
[   63.635551][ T4690] EXT4-fs (loop2): can't get journal size
[   63.641956][ T4695] EXT4-fs (loop5): 2 truncates cleaned up
[   63.655696][ T4690] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.398: Invalid block bitmap block 0 in block_group 0
[   63.674073][ T4695] FAULT_INJECTION: forcing a failure.
[   63.674073][ T4695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.687303][ T4695] CPU: 0 UID: 0 PID: 4695 Comm: syz.5.402 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   63.687335][ T4695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   63.687375][ T4695] Call Trace:
[   63.687382][ T4695]  <TASK>
[   63.687391][ T4695]  dump_stack_lvl+0xf6/0x150
[   63.687413][ T4695]  dump_stack+0x15/0x1a
[   63.687429][ T4695]  should_fail_ex+0x261/0x270
[   63.687451][ T4695]  should_fail+0xb/0x10
[   63.687482][ T4695]  should_fail_usercopy+0x1a/0x20
[   63.687513][ T4695]  strncpy_from_user+0x25/0x230
[   63.687540][ T4695]  ? getname_flags+0x1ef/0x3b0
[   63.687701][ T4695]  getname_flags+0x216/0x3b0
[   63.687723][ T4695]  user_path_at+0x26/0x140
[   63.687833][ T4695]  __se_sys_pivot_root+0xcd/0x1340
[   63.687858][ T4695]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   63.687894][ T4695]  ? bloom_map_push_elem+0x30/0xd0
[   63.687933][ T4695]  ? __rcu_read_unlock+0x4e/0x70
[   63.687998][ T4695]  ? bpf_trace_run2+0x12c/0x1d0
[   63.688063][ T4695]  ? __bpf_trace_sys_enter+0x10/0x30
[   63.688100][ T4695]  __x64_sys_pivot_root+0x31/0x40
[   63.688121][ T4695]  x64_sys_call+0x2cc5/0x2e10
[   63.688141][ T4695]  do_syscall_64+0xc9/0x1a0
[   63.688170][ T4695]  ? clear_bhb_loop+0x25/0x80
[   63.688189][ T4695]  ? clear_bhb_loop+0x25/0x80
[   63.688214][ T4695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.688233][ T4695] RIP: 0033:0x7f8cec1ee169
[   63.688248][ T4695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.688269][ T4695] RSP: 002b:00007f8cea857038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[   63.688302][ T4695] RAX: ffffffffffffffda RBX: 00007f8cec415fa0 RCX: 00007f8cec1ee169
[   63.688316][ T4695] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200
[   63.688329][ T4695] RBP: 00007f8cea857090 R08: 0000000000000000 R09: 0000000000000000
[   63.688390][ T4695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.688400][ T4695] R13: 0000000000000000 R14: 00007f8cec415fa0 R15: 00007ffd21c9f1f8
[   63.688416][ T4695]  </TASK>
[   63.924783][ T4702] netlink: 4 bytes leftover after parsing attributes in process `syz.5.404'.
[   64.100087][ T4714] SELinux: syz.5.407 (4714) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   64.183312][ T4717] loop2: detected capacity change from 0 to 512
[   64.237718][ T4717] EXT4-fs: quotafile must be on filesystem root
[   64.557925][ T4738] netlink: 4 bytes leftover after parsing attributes in process `syz.4.418'.
[   64.936391][   T29] kauditd_printk_skb: 3771 callbacks suppressed
[   64.936409][   T29] audit: type=1326 audit(21062196.312:6684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   64.965829][   T29] audit: type=1326 audit(21062196.322:6685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   64.988936][   T29] audit: type=1326 audit(21062196.322:6686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   65.012098][   T29] audit: type=1326 audit(21062196.322:6687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   65.035228][   T29] audit: type=1326 audit(21062196.322:6688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   65.058502][   T29] audit: type=1326 audit(21062196.322:6689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   65.081933][   T29] audit: type=1326 audit(21062196.322:6690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   65.105122][   T29] audit: type=1326 audit(21062196.322:6691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   65.128330][   T29] audit: type=1326 audit(21062196.322:6692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb074105127 code=0x7ffc0000
[   65.151388][   T29] audit: type=1326 audit(21062196.322:6693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4733 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb0740aa359 code=0x7ffc0000
[   65.264179][ T4757] SELinux: syz.2.424 (4757) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   65.340445][ T4759] loop5: detected capacity change from 0 to 512
[   65.593491][ T4759] netlink: 8 bytes leftover after parsing attributes in process `syz.5.425'.
[   66.034153][ T4779] loop4: detected capacity change from 0 to 512
[   66.246873][ T4779] EXT4-fs: quotafile must be on filesystem root
[   66.311242][ T4789] loop2: detected capacity change from 0 to 512
[   66.457009][ T4789] journal_path: Non-blockdev passed as './file0'
[   66.463421][ T4789] EXT4-fs: error: could not find journal device path
[   66.931220][ T4800] SELinux: syz.4.439 (4800) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   67.153192][ T4804] netlink: 'syz.1.441': attribute type 10 has an invalid length.
[   67.176239][ T4804] batman_adv: batadv0: Adding interface: team0
[   67.182514][ T4804] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.207734][ T4804] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   67.310040][ T4813] __nla_validate_parse: 1 callbacks suppressed
[   67.310055][ T4813] netlink: 4 bytes leftover after parsing attributes in process `syz.4.445'.
[   67.390986][ T4820] loop1: detected capacity change from 0 to 512
[   67.398676][ T4820] EXT4-fs: quotafile must be on filesystem root
[   68.218006][ T4175] EXT4-fs unmount: 102 callbacks suppressed
[   68.218047][ T4175] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.349131][ T4840] ==================================================================
[   68.357249][ T4840] BUG: KCSAN: data-race in vmalloc_info_show / vmalloc_info_show
[   68.364984][ T4840] 
[   68.367318][ T4840] read-write to 0xffff88810100e218 of 4 bytes by task 4839 on cpu 1:
[   68.375493][ T4840]  vmalloc_info_show+0x476/0x780
[   68.380458][ T4840]  seq_read_iter+0x2c8/0x970
[   68.385070][ T4840]  proc_reg_read_iter+0x118/0x190
[   68.390141][ T4840]  vfs_read+0x5e6/0x710
[   68.394309][ T4840]  ksys_read+0xeb/0x1b0
[   68.398475][ T4840]  __x64_sys_read+0x42/0x50
[   68.403002][ T4840]  x64_sys_call+0x2a3b/0x2e10
[   68.407705][ T4840]  do_syscall_64+0xc9/0x1a0
[   68.412220][ T4840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.418112][ T4840] 
[   68.420433][ T4840] read-write to 0xffff88810100e218 of 4 bytes by task 4840 on cpu 0:
[   68.428520][ T4840]  vmalloc_info_show+0x476/0x780
[   68.433469][ T4840]  seq_read_iter+0x2c8/0x970
[   68.438074][ T4840]  proc_reg_read_iter+0x118/0x190
[   68.443110][ T4840]  vfs_read+0x5e6/0x710
[   68.447266][ T4840]  ksys_read+0xeb/0x1b0
[   68.451424][ T4840]  __x64_sys_read+0x42/0x50
[   68.455957][ T4840]  x64_sys_call+0x2a3b/0x2e10
[   68.460636][ T4840]  do_syscall_64+0xc9/0x1a0
[   68.465148][ T4840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.471039][ T4840] 
[   68.473354][ T4840] value changed: 0x0000003b -> 0x00000001
[   68.479068][ T4840] 
[   68.481390][ T4840] Reported by Kernel Concurrency Sanitizer on:
[   68.487538][ T4840] CPU: 0 UID: 0 PID: 4840 Comm: syz.4.454 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   68.499956][ T4840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   68.510010][ T4840] ==================================================================
[   68.744471][ T4840] ==================================================================
[   68.752581][ T4840] BUG: KCSAN: data-race in vmalloc_info_show / vmalloc_info_show
[   68.760312][ T4840] 
[   68.762630][ T4840] read to 0xffff88810100e218 of 4 bytes by task 4839 on cpu 1:
[   68.770178][ T4840]  vmalloc_info_show+0x54a/0x780
[   68.775110][ T4840]  seq_read_iter+0x2c8/0x970
[   68.779702][ T4840]  proc_reg_read_iter+0x118/0x190
[   68.784718][ T4840]  vfs_read+0x5e6/0x710
[   68.788866][ T4840]  ksys_read+0xeb/0x1b0
[   68.793029][ T4840]  __x64_sys_read+0x42/0x50
[   68.797530][ T4840]  x64_sys_call+0x2a3b/0x2e10
[   68.802236][ T4840]  do_syscall_64+0xc9/0x1a0
[   68.806743][ T4840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.812638][ T4840] 
[   68.814952][ T4840] read-write to 0xffff88810100e218 of 4 bytes by task 4840 on cpu 0:
[   68.823008][ T4840]  vmalloc_info_show+0x476/0x780
[   68.827945][ T4840]  seq_read_iter+0x2c8/0x970
[   68.832561][ T4840]  proc_reg_read_iter+0x118/0x190
[   68.837585][ T4840]  vfs_read+0x5e6/0x710
[   68.841740][ T4840]  ksys_read+0xeb/0x1b0
[   68.845884][ T4840]  __x64_sys_read+0x42/0x50
[   68.850378][ T4840]  x64_sys_call+0x2a3b/0x2e10
[   68.855071][ T4840]  do_syscall_64+0xc9/0x1a0
[   68.859574][ T4840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.865460][ T4840] 
[   68.867774][ T4840] value changed: 0x00000003 -> 0x00000000
[   68.873484][ T4840] 
[   68.875813][ T4840] Reported by Kernel Concurrency Sanitizer on:
[   68.881954][ T4840] CPU: 0 UID: 0 PID: 4840 Comm: syz.4.454 Not tainted 6.15.0-rc2-syzkaller-00471-g119009db2674 #0 PREEMPT(voluntary) 
[   68.894271][ T4840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   68.904343][ T4840] ==================================================================