last executing test programs:

3.139602062s ago: executing program 3 (id=546):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r2 = syz_io_uring_setup(0x5d14, &(0x7f00000000c0)={0x0, 0x2119, 0x400}, &(0x7f0000000240), &(0x7f00000001c0))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x260300, 0x0)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000200), 0x4)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25, 0x0, 0xfeff}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

3.112028262s ago: executing program 0 (id=548):
r0 = epoll_create1(0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xcc0984f9ead32b32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x4}, 0x18)
r3 = inotify_init1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000100)={0xa0002000})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x3, r3, &(0x7f0000000000)={0x0, 0x2000000})

3.012386382s ago: executing program 0 (id=549):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
timer_create(0x7, &(0x7f0000000040)={0x0, 0x1b, 0x1, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=<r2=>0x0)
clock_gettime(0x0, &(0x7f0000000100)={<r3=>0x0, <r4=>0x0})
timer_settime(r2, 0x0, &(0x7f0000000140)={{r3, r4+60000000}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x30836122c26b3088, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
preadv2(r0, &(0x7f00000004c0)=[{&(0x7f00000002c0)=""/64, 0x40}, {&(0x7f0000000600)=""/144, 0x90}, {&(0x7f0000000400)=""/20, 0x14}], 0x3, 0x7, 0x3, 0x9)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r7}, &(0x7f0000000080), &(0x7f00000001c0)='%pB    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000001cc0)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r8}, 0x2c, {'wfdno', 0x3d, r9}, 0x2c, {[{@uname={'uname', 0x3d, '\xd0\xae\xde\xc1\xaa \xff\xd8\x1d\x1b\xf8\x93)!|\xb0X\xa3\x96\xed\xa2\xab@\xa2m\x93\xdd\b<\x00t\xdc\xabl\xab!\xae\x16\xc4\xcd\xf9{\xdc5_;A\xd2{eC\x014\\\xb3\xc4\xce\xc3yS2-\x01\xbe\xaarW\x96O\xd3\x0f\xe2\xd7/\x17\x1d\xa7.8\x9f8-\xea<\x8d\x91\x90j\xea\xd5\xd5\xae\xcc\xc0\x97\xef\x10\x92\xea\x98|+\x00\x00\x00\x00\x00\x00\x00\x00'}}]}})

2.869309171s ago: executing program 0 (id=552):
prlimit64(0x0, 0xe, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0xc)
r2 = openat$cgroup_procs(r0, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0xfff)
sendfile(r2, r1, 0x0, 0x5)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$usbfs(&(0x7f0000000080), 0xa43, 0x10100)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x27, 0x0, 0x0)
setsockopt$inet_msfilter(r8, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup(r9, &(0x7f0000000080)='syz0\x00', 0x1ff)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0)
mkdirat$cgroup(r10, &(0x7f0000000240)='syz0\x00', 0x1ff)
openat$cgroup_ro(r10, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)

2.69804756s ago: executing program 3 (id=556):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x0, 0x3}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
sendmsg$tipc(r4, &(0x7f0000000140)={0x0, 0x20d302, 0x0}, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r4, 0x10f, 0x81, &(0x7f0000000000), 0x4)
r5 = dup3(r3, r4, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r5, 0x0, 0x0)

1.831039648s ago: executing program 3 (id=570):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001000)=ANY=[@ANYRES16, @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYRES32, @ANYBLOB="00000000000000000027a3d69c00"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000000)=0x2)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000001500)=[{0x48, 0x8, 0xe4, 0x2}]})

1.783896907s ago: executing program 1 (id=572):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x1bda}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000200)="03", 0x1, 0x0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
r3 = gettid()
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r4}, 0x10)
rt_sigqueueinfo(r3, 0x21, &(0x7f00000002c0))

1.783454897s ago: executing program 4 (id=573):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = memfd_secret(0x80000)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x24004800)
fcntl$setlease(r0, 0x400, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000090}, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000001480))
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(0xffffffffffffffff, 0x0, 0xc024)
ftruncate(0xffffffffffffffff, 0xc17a)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00')
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
close_range(r1, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001940), 0x0, 0x2160, 0x0)

1.714113547s ago: executing program 0 (id=574):
creat(&(0x7f0000000040)='./file0\x00', 0x110)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[])

1.693422786s ago: executing program 0 (id=575):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
chdir(0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f0000000380)=""/258, 0x102}], 0x1, 0x0, 0x0, 0x29)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r2=>0x0})
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r1, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)

1.640346677s ago: executing program 1 (id=576):
creat(&(0x7f0000000040)='./file0\x00', 0x110)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[]) (fail_nth: 2)

1.633110657s ago: executing program 4 (id=577):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x1bda}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000200)="03", 0x1, 0x0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c)
munmap(&(0x7f0000001000/0x4000)=nil, 0x4000)
gettid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000280)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r3}, 0x10)
sigaltstack(&(0x7f0000000480)={&(0x7f0000002340)=""/4126, 0x80000001, 0x101e}, 0x0)

1.364027276s ago: executing program 4 (id=578):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, 0x0, 0x0)
r1 = syz_clone(0x0, &(0x7f0000000400)="2821041c6c0c421fc32f6d8e81aacf3d3239d0d510a4d1807acba0cb47c84544212a7175b05b8083f360c8ea66c8d3e33771d31ae11909ac2a71f0ea5f39b6f3f1c93cea494c17054af7511f613b23bcd749508564642d6d80a4cc356d9495c41347044ea6d1dae68b8db9ba6a0c16d9ffd55ac13e87abe60da49ede14ba954e81e6c8ed3e64acfb00a5f9fbee10909922500b76ea9de4aa9368e799047ed3f6c36dd02a8abcd8089628a5c838597891e090b4463515f926211f6b426cc9c522c9532e878cea4c4934630dc00ef59357c70a", 0xd2, &(0x7f00000000c0), &(0x7f0000000500), &(0x7f0000000340)="38a005d1d64939649b7c094e44f70b1b4bfb7332aad2d0cbd0ad3b77a7806f7ca96b155bec448e57d2c53b7f8340a9a3b151416d98d530ff9ca5f53323d565dbd49ac5f7acf73aa355379e262ecead019e7de0c32879")
prlimit64(r1, 0xb, &(0x7f0000000140)={0x42, 0x81f}, &(0x7f0000000200))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=<r3=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x50e, &(0x7f00000019c0)="$eJzs3c9vE9kdAPDvOAkJIRBoObRVWyj9QSuE8wOIED0UDm2FEFJV1FMPkCYmimLjKD+ApBzCsfeqReqp/RN628NKnPawt73t3vbCHlZid9GuyEp78GrGJglOnHhFEhP785HGM++N8fc9m/ee5w3mBdCxTkfESkQciq4sPVjLT2pbXK1u6fNevng0sfri0UQSlcqtz5PsfJoXG/5M6kjtNfsi4s9/jPhbUhe0OyKWlmfGi8XCXC1raKE0OzS/tHx+OlfLGR0bGRu+fOHS6K7V9VTp/8//MH3jL+++85NnH6z85u9psQb+cTQ7t7Eeu6la9Z4Y2JCXVv/GXgRrke7s7w8HUdravhcRZyLiTgxGV/ZpAgDtrFIZjMrgxjQA0O7S6/+BSHL52lzAQORy+Xx1Du9k9OeK5fmFc4PlxXuTkc1hHY+e3N3pYmG4Nld4PHqSND2SHa+nR+vSFyLiRET8s/dwls5PlIuTrfziAwAd7Ejd+P9Vb3X8BwDaXF+rCwAA7DvjPwB0HuM/AHSe7zD++3UgALQJ1/8A0HmM/wDQeXYc/x83yHc3AAAOoj/dvJluldXa/389eX9p8bcD989PFuZn8qXFifxEeW42P1UuTxUL+YlKZafXK5bLsyMX15LzS8u3S+XFewu3p0vjU4XbhZ49rg8AsLMTp55+lETEypXD2RYb1nIwVkN7y7W6AEDLdLW6AEDLuIMHnauJa3zTANDm6pfordfwnwg9sfgrHFRnf2j+HzqV+X/oXNvP/1canP7d3hQG2Ffm/6FzVSqJNf8BoMOY4wc23f+v6xi2vf8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHWog25JcPlsLfCV9zOXzEUcj4nj0JHeni4XhiDgWER/29vSm6ZFWFxoAeEO5T5Pa+l9nNy0CFnEo+bo320fEg//c+vfD8YWFuZE0/4u1/IUntfzRQ/tffADgdVc3Z1XH6dp+w4X8yxePJl5t+1nE59eqi4umcVdrW/VMd3Rn+75sKdL+L5Nauir9qtK1C/FXHkfED9br/3BDhIFsDqS68ml9/DT20T2Iv/7+18fPvRY/l51L9z3Ze/H9pqL17kKJoX08vVbtJ2ttL21itfaXi9PZfuv235f1UG/uVf+3uqn/y631f12b4idZmz+9lt6+JM8vvnd9U2ZlsHruccSPureKn6zFTxr0v79oso4f//inZxqdq/w34mxsHb+qlHWzQwul2aH5peXz06XxqcJU4d7o6NjI2PDlC5dGh7I56urj+1vF+OzKuWON4qf1728Qv2+H+v+yyfr/75s7f/3ZNvF//fOtP/+T28RPx8RfNRl/vP9qw+W70/iTDeq/0+d/rsn4zz5ZnmzyqQDAPphfWp4ZLxYLczscpN81d3qOg4N40B2xkt3GeUvK08TB76//68FbUIy9PXjVQltVjNb2S8DeW2/0rS4JAAAAAAAAAAAAAADQyPzS8kxv7O3PiVpdRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANrXtwEAAP//vL7JHA==")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x13d)
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xc, &(0x7f00000008c0)=ANY=[@ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRESOCT, @ANYRES16=r3, @ANYRES8, @ANYRES8=r1], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfe5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="00e40000000000000000c1000000b1cbe3be685338000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000004000000040000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="1800"], 0x50)

1.311726545s ago: executing program 3 (id=580):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x0, 0x3}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
sendmsg$tipc(r4, &(0x7f0000000140)={0x0, 0x20d302, 0x0}, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r4, 0x10f, 0x81, &(0x7f0000000000), 0x4)
r5 = dup3(r3, r4, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r5, 0x0, 0x0)

1.220485145s ago: executing program 1 (id=581):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='tick_stop\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0xfffffffe, 0x3bd})
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r2, 0x4)
close_range(r1, r2, 0x0)

1.216104305s ago: executing program 0 (id=584):
prlimit64(0x0, 0xe, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0xc)
r2 = openat$cgroup_procs(r0, &(0x7f0000000240)='cgroup.procs\x00', 0x2, 0x0)
sendfile(r2, r2, 0x0, 0xfff)
sendfile(r2, r1, 0x0, 0x5)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$usbfs(&(0x7f0000000080), 0xa43, 0x10100)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x27, 0x0, 0x0)
setsockopt$inet_msfilter(r8, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup(r9, &(0x7f0000000080)='syz0\x00', 0x1ff)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001480)='./cgroup/syz1\x00', 0x200002, 0x0)
mkdirat$cgroup(r10, &(0x7f0000000240)='syz0\x00', 0x1ff)
openat$cgroup_ro(r10, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)

1.137952485s ago: executing program 1 (id=586):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1700000041f6b018f770c0b1ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x65, 0x0, 0x5, 0x0, 0x0, 0xc8b, 0x89008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc49, 0x0, @perf_config_ext={0x5, 0x7f}, 0x0, 0x19fbcc0a, 0x1, 0x3, 0x1, 0x2, 0x0, 0x0, 0x3ffffffe}, 0x0, 0xa, 0xffffffffffffffff, 0x0)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r5, &(0x7f0000000080), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r6}, 0x10)
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file3\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$selinux_user(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='system_u:object_r:auth_cache_t r'], 0x27)

1.057508434s ago: executing program 2 (id=587):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x8ec0, 0x0)
dup2(0xffffffffffffffff, r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0a00000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000e1e98c573937a41b1e1ca62d950e1ff15c3226ead5b898e3e98435383fc9515697ad846b4981500faef30a11dd19f85c76863c2a52640bf33d5c025ca77c41e52ad39170feab98"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x8, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB='O\b'])
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="6400000002060103000000000000000000000000050001000700000016000300686173683a6e65742c706f72742c6e65740000000900020073797a30000000000500040000000000050005000a00000014000780080012400000000005"], 0x64}}, 0x0)
sendmsg$IPSET_CMD_TYPE(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="400000000d06010300000000000000000722000611000300686173683a69702c706f727400000000050001000700000005000500000000000500010007000000cae3d7bd"], 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000d40)='./file1\x00', 0x3200010, &(0x7f0000000200)=ANY=[], 0x1, 0x7b9, &(0x7f0000000d80)="$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")
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
ioctl$TUNSETLINK(r3, 0x400454cd, 0x7)
mount(&(0x7f0000000340)=@md0, &(0x7f00000022c0)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000400)='nfsd\x00', 0x900000, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close(r4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000006c0)='sys_enter\x00', r5}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000002c80)={0xa, 0x0, 0xb, @private2, 0x2}, 0x1c)

938.653334ms ago: executing program 4 (id=588):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2040}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xdc, 0x0, &(0x7f0000000100)="b9ff030f6044238cb89e14f088a81bff886400004000633377fbac14142ce934a0a662079f4b4d2f87e56dca6aab845013f208001a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a22", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f00000001c0)='cpu&\"0\t&&')
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000400)={'syztnl1\x00', &(0x7f0000000580)={'ip_vti0\x00', 0x0, 0x700, 0x797, 0xe8b, 0x0, {{0x27, 0x4, 0x2, 0x1f, 0x9c, 0x65, 0x0, 0x9, 0x4, 0x0, @multicast1, @broadcast, {[@end, @ssrr={0x89, 0x1f, 0x26, [@empty, @loopback, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x27}, @local, @private=0xa010101, @broadcast]}, @lsrr={0x83, 0xb, 0xdc, [@broadcast, @multicast1]}, @lsrr={0x83, 0x7, 0x51, [@multicast1]}, @timestamp_addr={0x44, 0x54, 0x86, 0x1, 0x6, [{@multicast1, 0x8}, {@rand_addr=0x64010101, 0x6}, {@empty, 0x1}, {@empty, 0x31}, {@dev={0xac, 0x14, 0x14, 0x25}, 0x5}, {@broadcast, 0xffffff7c}, {@dev={0xac, 0x14, 0x14, 0x10}, 0x62f}, {@multicast1, 0x9}, {@multicast2, 0x7fffffff}, {@private=0xa010102, 0x10}]}]}}}}})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

591.753923ms ago: executing program 2 (id=589):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r0, &(0x7f0000001240)=""/102400, 0x200000, 0x0)

423.108592ms ago: executing program 3 (id=590):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x111}}, 0x20)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
dup(r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r6}, 0x10)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @private=0xa010101}}, r2}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000480)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @local}, r2}}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
r7 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
syz_emit_ethernet(0x6a, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x1, 0x0, 0x11, 0x0, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x29}}, {0x0, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "6d4dfdeb8cf7bbfe143803bec2ce783e04cd32308cdd8dde", "c71cb8adfce542a4bc5a026c208fd0c45787e4aa384e3d26b21ea41cc128364c"}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x150, 0x10, 0x413, 0x0, 0x25dfdbfe, {{@in6=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x87}, {@in=@private=0xa010101, 0x0, 0x32}, @in=@multicast2, {0x2}, {}, {}, 0x0, 0x0, 0xa, 0x2}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x40, "25cac5216d1c8af0a976902918bf448c5d9f5459"}}]}, 0x150}}, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
keyctl$KEYCTL_MOVE(0x1e, r7, 0xfffffffffffffffb, 0xfffffffffffffffe, 0x1)

422.866702ms ago: executing program 4 (id=591):
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xfe, 0x46d, &(0x7f0000000f00)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r2 = open(&(0x7f0000000080)='./file1\x00', 0x10f942, 0x120)
sendfile(r2, r1, 0x0, 0x80000000)
r3 = pidfd_getfd(r1, r0, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={0x14, 0x15, 0x4, 0x70bd25, 0x25dfdbfc, {0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x20048004}, 0x8)

376.843582ms ago: executing program 2 (id=592):
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0xd4) (async)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) (async, rerun: 32)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, 0xffffffffffffffff, 0x0) (async, rerun: 32)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x8, &(0x7f00000002c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x41}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r4}, 0x10)
io_getevents(0x0, 0x1, 0x3, &(0x7f0000000300)=[{}, {}, {}], 0x0) (async, rerun: 64)
link(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='./file0\x00') (async, rerun: 64)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) (async, rerun: 64)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000740)=ANY=[@ANYBLOB="9feb0100180000000000000028000000280000000a000000000000000100000d0a00000004000000000000000000000001000006"], &(0x7f0000000f40)=""/4089, 0x4a, 0xff9, 0x8, 0x0, 0x0, @void, @value}, 0x28) (async, rerun: 64)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r0, 0x3312, 0x81) (async, rerun: 32)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) (rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

263.640021ms ago: executing program 2 (id=593):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

210.767521ms ago: executing program 2 (id=594):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000300008385"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DISASSOCIATE(r1, &(0x7f0000000640)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000580)={&(0x7f0000000400)={0x2c, 0x0, 0x8, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8c8c4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000000c0)='sched_process_wait\x00', r2}, 0x18)
bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d53c2"], &(0x7f0000000140)='GPL\x00', 0x0, 0xbd, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r4, 0x0, 0x11, 0x0, &(0x7f0000000600)="61df712bc884fef053a7a9a26e9b722780", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000005c0)={@ifindex, 0x11, 0x0, 0x4, &(0x7f0000000240)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

137.748871ms ago: executing program 2 (id=595):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
chdir(0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
preadv2(r0, &(0x7f0000000340)=[{&(0x7f0000000380)=""/258, 0x102}], 0x1, 0x0, 0x0, 0x29)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r2=>0x0})
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r1, &(0x7f00000000c0)="3f03fe7f0302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)

100.507151ms ago: executing program 1 (id=596):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
io_uring_enter(0xffffffffffffffff, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x260300, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000200), 0x4)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, 0x0, 0x1, 0x0, 0x25dfdbfb, {0x25, 0x0, 0xfeff}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

24.41486ms ago: executing program 1 (id=597):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='tick_stop\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0xfffffffe, 0x3bd})
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r2, 0x4)
close_range(r1, r2, 0x0)

10.02856ms ago: executing program 4 (id=598):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, 0x0, 0x0)
r1 = syz_clone(0x0, &(0x7f0000000400)="2821041c6c0c421fc32f6d8e81aacf3d3239d0d510a4d1807acba0cb47c84544212a7175b05b8083f360c8ea66c8d3e33771d31ae11909ac2a71f0ea5f39b6f3f1c93cea494c17054af7511f613b23bcd749508564642d6d80a4cc356d9495c41347044ea6d1dae68b8db9ba6a0c16d9ffd55ac13e87abe60da49ede14ba954e81e6c8ed3e64acfb00a5f9fbee10909922500b76ea9de4aa9368e799047ed3f6c36dd02a8abcd8089628a5c838597891e090b4463515f926211f6b426cc9c522c9532e878cea4c4934630dc00ef59357c70a", 0xd2, &(0x7f00000000c0), &(0x7f0000000500), &(0x7f0000000340)="38a005d1d64939649b7c094e44f70b1b4bfb7332aad2d0cbd0ad3b77a7806f7ca96b155bec448e57d2c53b7f8340a9a3b151416d98d530ff9ca5f53323d565dbd49ac5f7acf73aa355379e262ecead019e7de0c32879")
prlimit64(r1, 0xb, &(0x7f0000000140)={0x42, 0x81f}, &(0x7f0000000200))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=<r3=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x50e, &(0x7f00000019c0)="$eJzs3c9vE9kdAPDvOAkJIRBoObRVWyj9QSuE8wOIED0UDm2FEFJV1FMPkCYmimLjKD+ApBzCsfeqReqp/RN628NKnPawt73t3vbCHlZid9GuyEp78GrGJglOnHhFEhP785HGM++N8fc9m/ee5w3mBdCxTkfESkQciq4sPVjLT2pbXK1u6fNevng0sfri0UQSlcqtz5PsfJoXG/5M6kjtNfsi4s9/jPhbUhe0OyKWlmfGi8XCXC1raKE0OzS/tHx+OlfLGR0bGRu+fOHS6K7V9VTp/8//MH3jL+++85NnH6z85u9psQb+cTQ7t7Eeu6la9Z4Y2JCXVv/GXgRrke7s7w8HUdravhcRZyLiTgxGV/ZpAgDtrFIZjMrgxjQA0O7S6/+BSHL52lzAQORy+Xx1Du9k9OeK5fmFc4PlxXuTkc1hHY+e3N3pYmG4Nld4PHqSND2SHa+nR+vSFyLiRET8s/dwls5PlIuTrfziAwAd7Ejd+P9Vb3X8BwDaXF+rCwAA7DvjPwB0HuM/AHSe7zD++3UgALQJ1/8A0HmM/wDQeXYc/x83yHc3AAAOoj/dvJluldXa/389eX9p8bcD989PFuZn8qXFifxEeW42P1UuTxUL+YlKZafXK5bLsyMX15LzS8u3S+XFewu3p0vjU4XbhZ49rg8AsLMTp55+lETEypXD2RYb1nIwVkN7y7W6AEDLdLW6AEDLuIMHnauJa3zTANDm6pfordfwnwg9sfgrHFRnf2j+HzqV+X/oXNvP/1canP7d3hQG2Ffm/6FzVSqJNf8BoMOY4wc23f+v6xi2vf8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHWog25JcPlsLfCV9zOXzEUcj4nj0JHeni4XhiDgWER/29vSm6ZFWFxoAeEO5T5Pa+l9nNy0CFnEo+bo320fEg//c+vfD8YWFuZE0/4u1/IUntfzRQ/tffADgdVc3Z1XH6dp+w4X8yxePJl5t+1nE59eqi4umcVdrW/VMd3Rn+75sKdL+L5Nauir9qtK1C/FXHkfED9br/3BDhIFsDqS68ml9/DT20T2Iv/7+18fPvRY/l51L9z3Ze/H9pqL17kKJoX08vVbtJ2ttL21itfaXi9PZfuv235f1UG/uVf+3uqn/y631f12b4idZmz+9lt6+JM8vvnd9U2ZlsHruccSPureKn6zFTxr0v79oso4f//inZxqdq/w34mxsHb+qlHWzQwul2aH5peXz06XxqcJU4d7o6NjI2PDlC5dGh7I56urj+1vF+OzKuWON4qf1728Qv2+H+v+yyfr/75s7f/3ZNvF//fOtP/+T28RPx8RfNRl/vP9qw+W70/iTDeq/0+d/rsn4zz5ZnmzyqQDAPphfWp4ZLxYLczscpN81d3qOg4N40B2xkt3GeUvK08TB76//68FbUIy9PXjVQltVjNb2S8DeW2/0rS4JAAAAAAAAAAAAAADQyPzS8kxv7O3PiVpdRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANrXtwEAAP//vL7JHA==")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x13d)
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xc, &(0x7f00000008c0)=ANY=[@ANYRESHEX, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRESOCT, @ANYRES16=r3, @ANYRES8, @ANYRES8=r1], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfe5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="00e40000000000000000c1000000b1cbe3be685338000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000004000000040000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="1800"], 0x50)

0s ago: executing program 3 (id=599):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, 0x0, 0x0)
r1 = syz_clone(0x0, &(0x7f0000000400)="2821041c6c0c421fc32f6d8e81aacf3d3239d0d510a4d1807acba0cb47c84544212a7175b05b8083f360c8ea66c8d3e33771d31ae11909ac2a71f0ea5f39b6f3f1c93cea494c17054af7511f613b23bcd749508564642d6d80a4cc356d9495c41347044ea6d1dae68b8db9ba6a0c16d9ffd55ac13e87abe60da49ede14ba954e81e6c8ed3e64acfb00a5f9fbee10909922500b76ea9de4aa9368e799047ed3f6c36dd02a8abcd8089628a5c838597891e090b4463515f926211f6b426cc9c522c9532e878cea4c4934630dc00ef593", 0xcf, &(0x7f00000000c0), &(0x7f0000000500), &(0x7f0000000340)="38a005d1d64939649b7c094e44f70b1b4bfb7332aad2d0cbd0ad3b77a7806f7ca96b155bec448e57d2c53b7f8340a9a3b151416d98d530ff9ca5f53323d565dbd49ac5f7acf73aa355379e262ecead019e7de0c32879")
prlimit64(r1, 0xb, &(0x7f0000000140)={0x42, 0x81f}, &(0x7f0000000200))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=<r3=>r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x50e, &(0x7f00000019c0)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000080)=ANY=[@ANYRES64=0x0, @ANYRESOCT, @ANYRES8=<r6=>0x0, @ANYRES64=<r7=>0xffffffffffffffff], 0xb, 0x0, &(0x7f0000000000))
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x13d)
pwrite64(r8, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
r9 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r9, 0xc0f85403, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xc, &(0x7f00000008c0)=ANY=[@ANYRESHEX=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRESOCT, @ANYRES16=r3, @ANYRES8=r6, @ANYRES8=r1], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfe5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
r11 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
splice(r11, &(0x7f00000005c0)=0x800000, r5, &(0x7f0000000600)=0x8, 0x7, 0x2)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="00e40000000000000000c1000000b1cbe3be685338000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r12, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0300000004000000040000000100000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="1800"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)

kernel console output (not intermixed with test programs):

ashlimit: max too large, truncated to 1048576
[   43.088953][   T29] audit: type=1400 audit(1735084606.048:847): avc:  denied  { ioctl } for  pid=3814 comm="syz.1.111" path="socket:[5385]" dev="sockfs" ino=5385 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.116902][ T3823] Cannot find set identified by id 0 to match
[   43.181009][ T3827] vlan2: entered allmulticast mode
[   43.295945][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.411351][   T29] audit: type=1400 audit(1735084606.438:848): avc:  denied  { ioctl } for  pid=3837 comm="syz.0.121" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=5448 ioctlcmd=0x941b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   43.439458][ T3832] loop1: detected capacity change from 0 to 512
[   43.467803][   T29] audit: type=1326 audit(1735084606.438:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3831 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   43.491111][   T29] audit: type=1326 audit(1735084606.438:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3831 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   43.557117][ T3832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   43.617002][ T3832] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.822150][ T3832] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   43.847357][ T3853] lo speed is unknown, defaulting to 1000
[   43.853165][ T3853] lo speed is unknown, defaulting to 1000
[   43.897439][ T3853] lo speed is unknown, defaulting to 1000
[   43.903553][ T3853] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   43.946637][ T3853] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   43.967794][ T3853] lo speed is unknown, defaulting to 1000
[   43.973974][ T3853] lo speed is unknown, defaulting to 1000
[   44.008124][ T3853] lo speed is unknown, defaulting to 1000
[   44.032888][ T3858] 9pnet_fd: Insufficient options for proto=fd
[   44.041899][ T3856] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   44.052784][ T3853] lo speed is unknown, defaulting to 1000
[   44.085375][ T3853] lo speed is unknown, defaulting to 1000
[   44.140939][ T3866] loop3: detected capacity change from 0 to 512
[   44.167428][ T3866] EXT4-fs: Ignoring removed mblk_io_submit option
[   44.191559][ T3866] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   44.217255][ T3866] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   44.227679][ T3870] loop4: detected capacity change from 0 to 512
[   44.228231][ T3872] loop0: detected capacity change from 0 to 1024
[   44.240720][ T3866] System zones: 1-12
[   44.249507][ T3866] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.128: corrupted in-inode xattr: e_value size too large
[   44.300587][ T3872] EXT4-fs: Ignoring removed orlov option
[   44.306323][ T3872] EXT4-fs: Ignoring removed nomblk_io_submit option
[   44.325082][ T3866] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.128: couldn't read orphan inode 15 (err -117)
[   44.346063][ T3870] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   44.361911][ T3872] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.390840][ T3866] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.464857][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   44.486630][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.496762][ T3870] EXT4-fs (loop4): 1 orphan inode deleted
[   44.502534][ T3870] EXT4-fs (loop4): 1 truncate cleaned up
[   44.639900][ T3870] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.705327][ T3880] xt_hashlimit: max too large, truncated to 1048576
[   44.712769][ T3880] Cannot find set identified by id 0 to match
[   44.734781][ T3870] EXT4-fs error (device loop4): ext4_find_dest_de:2079: inode #12: block 7: comm syz.4.130: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[   44.784392][ T3882] loop1: detected capacity change from 0 to 1024
[   44.815687][ T3870] EXT4-fs (loop4): Remounting filesystem read-only
[   44.830056][ T3882] EXT4-fs: Ignoring removed orlov option
[   44.836041][ T3882] EXT4-fs: Ignoring removed nomblk_io_submit option
[   44.926693][ T3882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.956809][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.033978][ T3889] loop2: detected capacity change from 0 to 512
[   45.055669][ T3889] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   45.106228][ T3889] EXT4-fs (loop2): 1 orphan inode deleted
[   45.112055][ T3889] EXT4-fs (loop2): 1 truncate cleaned up
[   45.128705][ T3891] loop3: detected capacity change from 0 to 512
[   45.138593][ T3889] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.208379][ T3889] EXT4-fs error (device loop2): ext4_find_dest_de:2079: inode #12: block 7: comm syz.2.132: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[   45.261524][ T3891] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   45.296851][ T3889] EXT4-fs (loop2): Remounting filesystem read-only
[   45.306160][ T3891] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.345308][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.659292][ T3904] 9pnet_fd: Insufficient options for proto=fd
[   45.831973][ T3891] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   45.852796][ T3908] FAULT_INJECTION: forcing a failure.
[   45.852796][ T3908] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.865931][ T3908] CPU: 1 UID: 0 PID: 3908 Comm: syz.2.142 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   45.876600][ T3908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   45.886670][ T3908] Call Trace:
[   45.889956][ T3908]  <TASK>
[   45.892897][ T3908]  dump_stack_lvl+0xf2/0x150
[   45.897686][ T3908]  dump_stack+0x15/0x1a
[   45.902024][ T3908]  should_fail_ex+0x223/0x230
[   45.906941][ T3908]  should_fail+0xb/0x10
[   45.911186][ T3908]  should_fail_usercopy+0x1a/0x20
[   45.916242][ T3908]  _copy_from_user+0x1e/0xb0
[   45.920856][ T3908]  xsk_setsockopt+0x288/0x520
[   45.925631][ T3908]  ? __pfx_xsk_setsockopt+0x10/0x10
[   45.930866][ T3908]  __sys_setsockopt+0x187/0x200
[   45.935738][ T3908]  __x64_sys_setsockopt+0x66/0x80
[   45.940947][ T3908]  x64_sys_call+0x282e/0x2dc0
[   45.945625][ T3908]  do_syscall_64+0xc9/0x1c0
[   45.950159][ T3908]  ? clear_bhb_loop+0x55/0xb0
[   45.954850][ T3908]  ? clear_bhb_loop+0x55/0xb0
[   45.959538][ T3908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.965495][ T3908] RIP: 0033:0x7fc598fb5d29
[   45.969961][ T3908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.989582][ T3908] RSP: 002b:00007fc597621038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   45.998031][ T3908] RAX: ffffffffffffffda RBX: 00007fc5991a5fa0 RCX: 00007fc598fb5d29
[   46.006015][ T3908] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000003
[   46.014050][ T3908] RBP: 00007fc597621090 R08: 0000000000000020 R09: 0000000000000000
[   46.022097][ T3908] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[   46.030125][ T3908] R13: 0000000000000000 R14: 00007fc5991a5fa0 R15: 00007ffeaf1aae78
[   46.038178][ T3908]  </TASK>
[   46.109200][ T3910] IPv6: NLM_F_CREATE should be specified when creating new route
[   46.210872][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   46.243865][ T3922] loop3: detected capacity change from 0 to 512
[   46.258626][ T3926] loop4: detected capacity change from 0 to 512
[   46.265507][ T3922] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.274462][ T3924] FAULT_INJECTION: forcing a failure.
[   46.274462][ T3924] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.287668][ T3924] CPU: 1 UID: 0 PID: 3924 Comm: syz.2.150 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   46.296596][ T3922] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   46.298311][ T3924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   46.312577][ T3922] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   46.316489][ T3924] Call Trace:
[   46.316500][ T3924]  <TASK>
[   46.316509][ T3924]  dump_stack_lvl+0xf2/0x150
[   46.316550][ T3924]  dump_stack+0x15/0x1a
[   46.316587][ T3924]  should_fail_ex+0x223/0x230
[   46.326383][ T3922] System zones: 
[   46.327738][ T3924]  should_fail+0xb/0x10
[   46.330664][ T3922] 1-12
[   46.335232][ T3924]  should_fail_usercopy+0x1a/0x20
[   46.339413][ T3922] 
[   46.344062][ T3924]  _copy_from_user+0x1e/0xb0
[   46.349682][ T3922] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.143: corrupted in-inode xattr: e_value size too large
[   46.351733][ T3924]  move_addr_to_kernel+0x82/0x120
[   46.354594][ T3922] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.143: couldn't read orphan inode 15 (err -117)
[   46.359407][ T3924]  __sys_connect+0x67/0x1b0
[   46.359440][ T3924]  __x64_sys_connect+0x41/0x50
[   46.362833][ T3922] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.366333][ T3924]  x64_sys_call+0x22a7/0x2dc0
[   46.366361][ T3924]  do_syscall_64+0xc9/0x1c0
[   46.366408][ T3924]  ? clear_bhb_loop+0x55/0xb0
[   46.366427][ T3924]  ? clear_bhb_loop+0x55/0xb0
[   46.366493][ T3924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.412872][ T3926] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   46.418326][ T3924] RIP: 0033:0x7fc598fb5d29
[   46.418348][ T3924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.424199][ T3926] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.427512][ T3924] RSP: 002b:00007fc597621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   46.427538][ T3924] RAX: ffffffffffffffda RBX: 00007fc5991a5fa0 RCX: 00007fc598fb5d29
[   46.427554][ T3924] RDX: 000000000000006e RSI: 0000000020000280 RDI: 000000000000000b
[   46.427566][ T3924] RBP: 00007fc597621090 R08: 0000000000000000 R09: 0000000000000000
[   46.427578][ T3924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.427591][ T3924] R13: 0000000000000000 R14: 00007fc5991a5fa0 R15: 00007ffeaf1aae78
[   46.427610][ T3924]  </TASK>
[   46.455892][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.553681][ T3926] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   46.565641][ T3935] 9pnet_fd: Insufficient options for proto=fd
[   46.576450][ T3933] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   46.600650][ T3938] loop3: detected capacity change from 0 to 1024
[   46.619208][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   46.619822][ T3938] EXT4-fs: Ignoring removed orlov option
[   46.633964][ T3938] EXT4-fs: Ignoring removed nomblk_io_submit option
[   46.641473][ T3938] EXT4-fs: Mount option(s) incompatible with ext3
[   46.722132][ T3945] bond1: entered promiscuous mode
[   46.727230][ T3945] bond1: entered allmulticast mode
[   46.732922][ T3945] 8021q: adding VLAN 0 to HW filter on device bond1
[   46.753797][ T3945] bond1 (unregistering): Released all slaves
[   47.215605][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.238472][ T3951] loop0: detected capacity change from 0 to 128
[   47.250801][ T3951] FAT-fs (loop0): bogus number of reserved sectors
[   47.257413][ T3951] FAT-fs (loop0): Can't find a valid FAT filesystem
[   47.271864][ T3951] loop0: detected capacity change from 0 to 164
[   47.283955][ T3951] Unable to read rock-ridge attributes
[   47.292959][ T3951] Unable to read rock-ridge attributes
[   47.298755][ T3951] iso9660: Corrupted directory entry in block 4 of inode 1792
[   47.308642][ T3951] netlink: 'syz.0.157': attribute type 10 has an invalid length.
[   47.316413][ T3951] netlink: 40 bytes leftover after parsing attributes in process `syz.0.157'.
[   47.326581][ T3951] vlan0: entered promiscuous mode
[   47.331754][ T3951] vlan0: entered allmulticast mode
[   47.336980][ T3951] veth0_vlan: entered allmulticast mode
[   47.343491][ T3951] bridge0: port 3(vlan0) entered blocking state
[   47.349813][ T3951] bridge0: port 3(vlan0) entered disabled state
[   47.357111][ T3951] bridge0: port 3(vlan0) entered blocking state
[   47.363423][ T3951] bridge0: port 3(vlan0) entered forwarding state
[   47.476178][ T3960] netlink: 24 bytes leftover after parsing attributes in process `syz.0.161'.
[   47.558454][ T3967] loop0: detected capacity change from 0 to 512
[   47.607724][ T3967] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   47.613038][ T3972] loop3: detected capacity change from 0 to 512
[   47.641325][ T3967] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.669369][   T29] kauditd_printk_skb: 258 callbacks suppressed
[   47.669383][   T29] audit: type=1326 audit(1735084610.698:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.2.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   47.678760][ T3972] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   47.721153][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.733519][ T3981] loop2: detected capacity change from 0 to 512
[   47.749303][ T3967] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   47.749364][   T29] audit: type=1326 audit(1735084610.738:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f885c174690 code=0x7ffc0000
[   47.749397][   T29] audit: type=1326 audit(1735084610.738:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f885c174a77 code=0x7ffc0000
[   47.749496][   T29] audit: type=1326 audit(1735084610.738:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f885c174690 code=0x7ffc0000
[   47.760656][ T3985] loop4: detected capacity change from 0 to 512
[   47.783156][   T29] audit: type=1326 audit(1735084610.738:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f885c175d29 code=0x7ffc0000
[   47.826430][ T3986] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   47.829747][   T29] audit: type=1326 audit(1735084610.738:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.0.164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f885c175d29 code=0x7ffc0000
[   47.893219][   T29] audit: type=1326 audit(1735084610.738:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.2.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   47.912495][ T3972] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.916724][   T29] audit: type=1326 audit(1735084610.738:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.2.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   47.950323][   T29] audit: type=1326 audit(1735084610.738:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.2.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   47.973752][   T29] audit: type=1326 audit(1735084610.738:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.2.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   48.002469][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   48.012493][ T3985] FAULT_INJECTION: forcing a failure.
[   48.012493][ T3985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   48.025732][ T3985] CPU: 1 UID: 0 PID: 3985 Comm: syz.4.170 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   48.036343][ T3985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   48.046416][ T3985] Call Trace:
[   48.049696][ T3985]  <TASK>
[   48.052629][ T3985]  dump_stack_lvl+0xf2/0x150
[   48.057341][ T3985]  dump_stack+0x15/0x1a
[   48.061516][ T3985]  should_fail_ex+0x223/0x230
[   48.066205][ T3985]  should_fail+0xb/0x10
[   48.070423][ T3985]  should_fail_usercopy+0x1a/0x20
[   48.075510][ T3985]  _copy_from_iter+0xd5/0xd00
[   48.080252][ T3985]  ? __rcu_read_unlock+0x4e/0x70
[   48.085233][ T3985]  packet_sendmsg+0x216c/0x3670
[   48.090199][ T3985]  ? terminate_walk+0x260/0x280
[   48.095067][ T3985]  ? __rcu_read_unlock+0x4e/0x70
[   48.100082][ T3985]  ? avc_has_perm+0xd4/0x160
[   48.104787][ T3985]  ? selinux_socket_sendmsg+0x185/0x1c0
[   48.110374][ T3985]  ? __pfx_packet_sendmsg+0x10/0x10
[   48.115663][ T3985]  __sock_sendmsg+0x140/0x180
[   48.120397][ T3985]  __sys_sendto+0x1a8/0x230
[   48.124973][ T3985]  __x64_sys_sendto+0x78/0x90
[   48.129694][ T3985]  x64_sys_call+0x29fa/0x2dc0
[   48.134415][ T3985]  do_syscall_64+0xc9/0x1c0
[   48.138927][ T3985]  ? clear_bhb_loop+0x55/0xb0
[   48.143608][ T3985]  ? clear_bhb_loop+0x55/0xb0
[   48.148523][ T3985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.154444][ T3985] RIP: 0033:0x7f2754015d29
[   48.158863][ T3985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.178479][ T3985] RSP: 002b:00007f2752681038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   48.187059][ T3985] RAX: ffffffffffffffda RBX: 00007f2754205fa0 RCX: 00007f2754015d29
[   48.195066][ T3985] RDX: 00000000000100a6 RSI: 0000000020000180 RDI: 0000000000000004
[   48.203038][ T3985] RBP: 00007f2752681090 R08: 0000000020000140 R09: 0000000000000014
[   48.211012][ T3985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.218984][ T3985] R13: 0000000000000000 R14: 00007f2754205fa0 R15: 00007ffc2bb805d8
[   48.226964][ T3985]  </TASK>
[   48.280012][ T3981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   48.280048][ T3972] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   48.315535][ T3972] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   48.355067][ T3981] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.412853][ T3981] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   48.491088][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   48.502625][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   48.518336][ T4004] bond1: entered promiscuous mode
[   48.523423][ T4004] bond1: entered allmulticast mode
[   48.525649][ T4007] mmap: syz.1.176 (4007) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   48.529124][ T4004] 8021q: adding VLAN 0 to HW filter on device bond1
[   48.550452][ T4004] bond1 (unregistering): Released all slaves
[   48.708288][ T4018] loop1: detected capacity change from 0 to 512
[   48.727964][ T4018] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   48.775086][ T4018] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.830772][ T4018] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   48.897439][ T4018] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   48.963027][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   49.162411][ T4042] loop3: detected capacity change from 0 to 512
[   49.212227][ T4042] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   49.249236][ T4042] EXT4-fs (loop3): 1 orphan inode deleted
[   49.255070][ T4042] EXT4-fs (loop3): 1 truncate cleaned up
[   49.277056][ T4042] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.403194][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.576266][ T4055] lo speed is unknown, defaulting to 1000
[   49.607866][ T4060] loop3: detected capacity change from 0 to 512
[   49.631211][ T4060] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   49.657896][ T4058] lo speed is unknown, defaulting to 1000
[   49.689729][ T4063] FAULT_INJECTION: forcing a failure.
[   49.689729][ T4063] name failslab, interval 1, probability 0, space 0, times 0
[   49.702482][ T4063] CPU: 1 UID: 0 PID: 4063 Comm: syz.0.193 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   49.713092][ T4063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   49.723167][ T4063] Call Trace:
[   49.726493][ T4063]  <TASK>
[   49.729486][ T4063]  dump_stack_lvl+0xf2/0x150
[   49.734131][ T4063]  dump_stack+0x15/0x1a
[   49.738385][ T4063]  should_fail_ex+0x223/0x230
[   49.743099][ T4063]  should_failslab+0x8f/0xb0
[   49.747782][ T4063]  kmem_cache_alloc_noprof+0x52/0x320
[   49.753187][ T4063]  ? copy_fs_struct+0x31/0x110
[   49.757971][ T4063]  ? __fget_files+0x17c/0x1c0
[   49.762673][ T4063]  copy_fs_struct+0x31/0x110
[   49.767291][ T4063]  ksys_unshare+0x2c0/0x6e0
[   49.771807][ T4063]  ? ksys_write+0x176/0x1b0
[   49.776393][ T4063]  __x64_sys_unshare+0x1f/0x30
[   49.781239][ T4063]  x64_sys_call+0x1a3e/0x2dc0
[   49.785923][ T4063]  do_syscall_64+0xc9/0x1c0
[   49.790466][ T4063]  ? clear_bhb_loop+0x55/0xb0
[   49.795160][ T4063]  ? clear_bhb_loop+0x55/0xb0
[   49.799848][ T4063]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.805762][ T4063] RIP: 0033:0x7f885c175d29
[   49.810218][ T4063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.829837][ T4063] RSP: 002b:00007f885a79f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   49.838308][ T4063] RAX: ffffffffffffffda RBX: 00007f885c366160 RCX: 00007f885c175d29
[   49.846286][ T4063] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000062040200
[   49.854276][ T4063] RBP: 00007f885a79f090 R08: 0000000000000000 R09: 0000000000000000
[   49.862255][ T4063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.870242][ T4063] R13: 0000000000000000 R14: 00007f885c366160 R15: 00007ffd765bd718
[   49.878291][ T4063]  </TASK>
[   49.945248][ T4060] EXT4-fs (loop3): 1 orphan inode deleted
[   49.951011][ T4060] EXT4-fs (loop3): 1 truncate cleaned up
[   50.006460][ T4060] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.157092][ T4060] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #12: block 7: comm syz.3.191: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[   50.253195][ T4071] lo speed is unknown, defaulting to 1000
[   50.568671][ T4060] EXT4-fs (loop3): Remounting filesystem read-only
[   50.635539][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.691151][ T4073] loop2: detected capacity change from 0 to 512
[   50.783611][ T4073] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   50.925224][ T4073] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.983937][ T4082] loop3: detected capacity change from 0 to 512
[   51.016442][ T4073] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   51.116348][ T4089] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   51.155664][ T4082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   51.205111][ T4082] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.245219][ T4082] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   51.276250][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   51.348955][ T4096] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.476281][ T4100] bond1: entered promiscuous mode
[   51.481441][ T4100] bond1: entered allmulticast mode
[   51.517751][ T4100] 8021q: adding VLAN 0 to HW filter on device bond1
[   51.544116][ T4100] bond1 (unregistering): Released all slaves
[   51.565061][ T4108] program syz.4.202 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   51.629916][ T4096] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.646832][ T4112] loop3: detected capacity change from 0 to 128
[   51.693693][ T4102] bond1: entered promiscuous mode
[   51.698835][ T4102] bond1: entered allmulticast mode
[   51.704158][ T4102] 8021q: adding VLAN 0 to HW filter on device bond1
[   51.714374][ T4102] bond1 (unregistering): Released all slaves
[   51.736647][ T4107] lo speed is unknown, defaulting to 1000
[   51.771099][ T4096] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.786022][ T4112] syz.3.205: attempt to access beyond end of device
[   51.786022][ T4112] loop3: rw=2049, sector=145, nr_sectors = 664 limit=128
[   51.864309][ T4112] syz.3.205 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   51.881638][ T4096] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.924250][ T4112] syz.3.205: attempt to access beyond end of device
[   51.924250][ T4112] loop3: rw=524288, sector=145, nr_sectors = 240 limit=128
[   51.952914][ T4112] syz.3.205: attempt to access beyond end of device
[   51.952914][ T4112] loop3: rw=524288, sector=385, nr_sectors = 256 limit=128
[   51.980799][ T4096] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.008899][ T4096] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.018475][ T4112] syz.3.205: attempt to access beyond end of device
[   52.018475][ T4112] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[   52.044590][ T4096] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.061729][ T4112] syz.3.205: attempt to access beyond end of device
[   52.061729][ T4112] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[   52.095197][ T4096] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.135933][ T4112] syz.3.205: attempt to access beyond end of device
[   52.135933][ T4112] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[   52.194693][ T4112] syz.3.205: attempt to access beyond end of device
[   52.194693][ T4112] loop3: rw=0, sector=145, nr_sectors = 8 limit=128
[   52.339085][ T4126] loop1: detected capacity change from 0 to 512
[   52.397247][ T4124] netlink: 24 bytes leftover after parsing attributes in process `syz.2.209'.
[   52.399750][ T4126] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.492232][ T4130] bpf_get_probe_write_proto: 11 callbacks suppressed
[   52.492248][ T4130] syz.3.212[4130] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   52.518142][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.536920][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.544460][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.597043][ T4138] loop2: detected capacity change from 0 to 512
[   52.604575][ T4126] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   52.616835][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.624272][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.625902][ T4138] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   52.631741][ T4138] EXT4-fs: failed to create workqueue
[   52.631739][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.641234][ T4138] EXT4-fs (loop2): mount failed
[   52.646687][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.666445][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.673852][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.681273][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.688733][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.696192][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.703593][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.712221][ T4144] SELinux: syz.4.207 (4144) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   52.730197][ T4141] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.741316][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.748824][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.756253][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.763655][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.771098][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.778595][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.786030][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.793427][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.800997][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.808444][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.815895][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.823363][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.830786][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.838221][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.842608][   T29] kauditd_printk_skb: 483 callbacks suppressed
[   52.842625][   T29] audit: type=1326 audit(1735084615.778:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4123 comm="syz.1.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   52.845667][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.851761][   T29] audit: type=1326 audit(1735084615.778:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4123 comm="syz.1.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   52.906205][   T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   52.920397][ T4143] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   52.926464][   T35] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   52.943872][ T4141] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.981806][   T29] audit: type=1326 audit(1735084616.008:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4123 comm="syz.1.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   53.003305][ T4149] loop2: detected capacity change from 0 to 2048
[   53.049431][ T4141] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.077708][   T29] audit: type=1326 audit(1735084616.108:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4123 comm="syz.1.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   53.097884][ T4149] ext4: Unknown parameter 'ƒ¹ù0ä�;üY°8‹)²ðaZ™y'
[   53.101067][   T29] audit: type=1326 audit(1735084616.108:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4123 comm="syz.1.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c8c3b5d29 code=0x7ffc0000
[   53.159737][   T29] audit: type=1400 audit(1735084616.188:1607): avc:  denied  { map } for  pid=4147 comm="syz.2.216" path="/46/file0/memory.events" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   53.207436][ T4141] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.218029][   T29] audit: type=1400 audit(1735084616.238:1608): avc:  denied  { create } for  pid=4147 comm="syz.2.216" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   53.272676][   T29] audit: type=1326 audit(1735084616.298:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4155 comm="syz.4.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   53.274708][ T4156] sctp: [Deprecated]: syz.4.219 (pid 4156) Use of int in maxseg socket option.
[   53.274708][ T4156] Use struct sctp_assoc_value instead
[   53.305314][ T4151] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.331771][   T29] audit: type=1326 audit(1735084616.298:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4155 comm="syz.4.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   53.355225][   T29] audit: type=1326 audit(1735084616.298:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4155 comm="syz.4.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   53.381758][   T28] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   53.404108][ T4141] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.409988][   T28] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 33 with error 28
[   53.424642][   T28] EXT4-fs (loop2): This should not happen!! Data will be lost
[   53.424642][   T28] 
[   53.434318][   T28] EXT4-fs (loop2): Total free blocks count 0
[   53.437546][ T4141] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.440494][   T28] EXT4-fs (loop2): Free/Dirty block details
[   53.454610][   T28] EXT4-fs (loop2): free_blocks=2415919104
[   53.460446][   T28] EXT4-fs (loop2): dirty_blocks=48
[   53.462974][ T4141] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.465629][   T28] EXT4-fs (loop2): Block reservation details
[   53.479831][   T28] EXT4-fs (loop2): i_reserved_data_blocks=3
[   53.520072][ T4151] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.574619][ T4163] bond1: entered promiscuous mode
[   53.579879][ T4163] bond1: entered allmulticast mode
[   53.586222][ T4163] 8021q: adding VLAN 0 to HW filter on device bond1
[   53.601097][ T4163] bond1 (unregistering): Released all slaves
[   53.609623][ T4169] loop1: detected capacity change from 0 to 512
[   53.647619][ T4141] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.661875][ T4151] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.808236][ T4151] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.882449][ T4151] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.904935][ T4151] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.916647][ T4183] loop2: detected capacity change from 0 to 512
[   53.929270][ T4151] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.946493][ T4183] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.961160][ T4151] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.011011][ T4183] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   54.177644][ T4195] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   54.480061][ T4212] netlink: 8 bytes leftover after parsing attributes in process `syz.4.238'.
[   54.516776][ T4212] syz.4.238[4212] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.516913][ T4212] syz.4.238[4212] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.545282][ T4212] syz.4.238[4212] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   54.559101][ T4215] bond1: entered promiscuous mode
[   54.575481][ T4215] bond1: entered allmulticast mode
[   54.607950][ T4212] netlink: 'syz.4.238': attribute type 1 has an invalid length.
[   54.615680][ T4212] netlink: 224 bytes leftover after parsing attributes in process `syz.4.238'.
[   54.647030][ T4215] 8021q: adding VLAN 0 to HW filter on device bond1
[   54.679017][ T4215] bond1 (unregistering): Released all slaves
[   54.860557][ T4229] capability: warning: `syz.4.243' uses 32-bit capabilities (legacy support in use)
[   54.924271][ T4229] syz.4.243 uses obsolete (PF_INET,SOCK_PACKET)
[   55.147681][ T4240] bond1: entered promiscuous mode
[   55.152751][ T4240] bond1: entered allmulticast mode
[   55.216146][ T4240] 8021q: adding VLAN 0 to HW filter on device bond1
[   55.227444][ T4240] bond1 (unregistering): Released all slaves
[   55.243816][ T4253] capability: warning: `syz.4.250' uses deprecated v2 capabilities in a way that may be insecure
[   55.278363][ T4257] loop3: detected capacity change from 0 to 512
[   55.444600][ T4267] loop1: detected capacity change from 0 to 1024
[   55.453412][ T4267] EXT4-fs: Ignoring removed orlov option
[   55.459155][ T4267] EXT4-fs: Ignoring removed nomblk_io_submit option
[   55.521318][ T4269] loop0: detected capacity change from 0 to 164
[   55.542052][ T4269] syz.0.256: attempt to access beyond end of device
[   55.542052][ T4269] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   55.566504][ T4269] syz.0.256: attempt to access beyond end of device
[   55.566504][ T4269] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   55.581445][ T4269] syz.0.256: attempt to access beyond end of device
[   55.581445][ T4269] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   55.868237][ T4278] FAULT_INJECTION: forcing a failure.
[   55.868237][ T4278] name failslab, interval 1, probability 0, space 0, times 0
[   55.881017][ T4278] CPU: 0 UID: 0 PID: 4278 Comm: syz.3.258 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   55.891704][ T4278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.901804][ T4278] Call Trace:
[   55.905178][ T4278]  <TASK>
[   55.908184][ T4278]  dump_stack_lvl+0xf2/0x150
[   55.912888][ T4278]  dump_stack+0x15/0x1a
[   55.917154][ T4278]  should_fail_ex+0x223/0x230
[   55.922034][ T4278]  should_failslab+0x8f/0xb0
[   55.926717][ T4278]  kmem_cache_alloc_noprof+0x52/0x320
[   55.932207][ T4278]  ? audit_log_start+0x34c/0x6b0
[   55.937189][ T4278]  audit_log_start+0x34c/0x6b0
[   55.941990][ T4278]  audit_seccomp+0x4b/0x130
[   55.946535][ T4278]  __seccomp_filter+0x6fa/0x1180
[   55.951518][ T4278]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   55.957182][ T4278]  ? vfs_write+0x596/0x920
[   55.961660][ T4278]  ? __schedule+0x6fa/0x930
[   55.966205][ T4278]  __secure_computing+0x9f/0x1c0
[   55.971228][ T4278]  syscall_trace_enter+0xd1/0x1f0
[   55.976410][ T4278]  do_syscall_64+0xaa/0x1c0
[   55.980932][ T4278]  ? clear_bhb_loop+0x55/0xb0
[   55.985632][ T4278]  ? clear_bhb_loop+0x55/0xb0
[   55.990343][ T4278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.996419][ T4278] RIP: 0033:0x7f8e47575d29
[   56.000860][ T4278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.020620][ T4278] RSP: 002b:00007f8e45be1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c0
[   56.029211][ T4278] RAX: ffffffffffffffda RBX: 00007f8e47765fa0 RCX: 00007f8e47575d29
[   56.037222][ T4278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   56.045298][ T4278] RBP: 00007f8e45be1090 R08: 0000000000000000 R09: 0000000000000000
[   56.053282][ T4278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.061341][ T4278] R13: 0000000000000000 R14: 00007f8e47765fa0 R15: 00007ffe9f459588
[   56.069337][ T4278]  </TASK>
[   56.165443][ T4284] loop3: detected capacity change from 0 to 512
[   56.223897][ T4284] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.268828][ T4284] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   56.332356][ T4299] FAULT_INJECTION: forcing a failure.
[   56.332356][ T4299] name failslab, interval 1, probability 0, space 0, times 0
[   56.345119][ T4299] CPU: 1 UID: 0 PID: 4299 Comm: syz.2.265 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   56.355729][ T4299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.365816][ T4299] Call Trace:
[   56.369116][ T4299]  <TASK>
[   56.372072][ T4299]  dump_stack_lvl+0xf2/0x150
[   56.376702][ T4299]  dump_stack+0x15/0x1a
[   56.380979][ T4299]  should_fail_ex+0x223/0x230
[   56.385684][ T4299]  should_failslab+0x8f/0xb0
[   56.390312][ T4299]  kmem_cache_alloc_noprof+0x52/0x320
[   56.395726][ T4299]  ? ext4_alloc_io_end_vec+0x32/0xe0
[   56.401075][ T4299]  ext4_alloc_io_end_vec+0x32/0xe0
[   56.406253][ T4299]  ext4_do_writepages+0xae4/0x2130
[   56.411396][ T4299]  ? memcg_list_lru_alloc+0xce/0x4e0
[   56.416705][ T4299]  ? __rcu_read_unlock+0x4e/0x70
[   56.421688][ T4299]  ? page_counter_charge+0x21a/0x240
[   56.426988][ T4299]  ? mod_objcg_state+0x2ea/0x4f0
[   56.431945][ T4299]  ? should_fail_ex+0x31/0x230
[   56.436786][ T4299]  ? __rcu_read_unlock+0x4e/0x70
[   56.441743][ T4299]  ? avc_has_perm_noaudit+0x1cc/0x210
[   56.447148][ T4299]  ext4_writepages+0x159/0x2e0
[   56.451999][ T4299]  ? __pfx_ext4_writepages+0x10/0x10
[   56.457294][ T4299]  do_writepages+0x1d8/0x480
[   56.461911][ T4299]  ? _raw_spin_unlock+0x26/0x50
[   56.466815][ T4299]  ? wbc_attach_and_unlock_inode+0x8f/0x2d0
[   56.472790][ T4299]  file_write_and_wait_range+0x168/0x2f0
[   56.478444][ T4299]  ? path_openat+0x1a5a/0x1fa0
[   56.483239][ T4299]  ext4_sync_file+0x12e/0x6c0
[   56.487940][ T4299]  ? __pfx_ext4_sync_file+0x10/0x10
[   56.493237][ T4299]  vfs_fsync_range+0x116/0x130
[   56.498090][ T4299]  __se_sys_msync+0x34d/0x510
[   56.502924][ T4299]  __x64_sys_msync+0x43/0x50
[   56.507528][ T4299]  x64_sys_call+0x112e/0x2dc0
[   56.512280][ T4299]  do_syscall_64+0xc9/0x1c0
[   56.516851][ T4299]  ? clear_bhb_loop+0x55/0xb0
[   56.521590][ T4299]  ? clear_bhb_loop+0x55/0xb0
[   56.526318][ T4299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.532240][ T4299] RIP: 0033:0x7fc598fb5d29
[   56.536740][ T4299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.556530][ T4299] RSP: 002b:00007fc597621038 EFLAGS: 00000246 ORIG_RAX: 000000000000001a
[   56.564950][ T4299] RAX: ffffffffffffffda RBX: 00007fc5991a5fa0 RCX: 00007fc598fb5d29
[   56.572925][ T4299] RDX: 0000000000000006 RSI: 087abbe8d1cc6ad9 RDI: 0000000020952000
[   56.580955][ T4299] RBP: 00007fc597621090 R08: 0000000000000000 R09: 0000000000000000
[   56.588932][ T4299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.596991][ T4299] R13: 0000000000000000 R14: 00007fc5991a5fa0 R15: 00007ffeaf1aae78
[   56.604977][ T4299]  </TASK>
[   56.754910][ T4301] hub 9-0:1.0: USB hub found
[   56.759770][ T4301] hub 9-0:1.0: 8 ports detected
[   56.807003][ T4301] atomic_op ffff888124ceb928 conn xmit_atomic 0000000000000000
[   57.030322][ T4327] loop3: detected capacity change from 0 to 512
[   57.057704][ T4326] loop0: detected capacity change from 0 to 164
[   57.084707][ T4326] bio_check_eod: 21682 callbacks suppressed
[   57.084723][ T4326] syz.0.277: attempt to access beyond end of device
[   57.084723][ T4326] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   57.114847][ T4326] syz.0.277: attempt to access beyond end of device
[   57.114847][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.122713][ T4335] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   57.134725][ T4326] syz.0.277: attempt to access beyond end of device
[   57.134725][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.135686][ T4335] batman_adv: batadv0: Removing interface: batadv_slave_0
[   57.157732][ T4326] syz.0.277: attempt to access beyond end of device
[   57.157732][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.184691][ T4327] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.205427][ T4326] syz.0.277: attempt to access beyond end of device
[   57.205427][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.218978][ T4326] syz.0.277: attempt to access beyond end of device
[   57.218978][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.233101][ T4326] syz.0.277: attempt to access beyond end of device
[   57.233101][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.246923][ T4326] syz.0.277: attempt to access beyond end of device
[   57.246923][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.263018][ T4326] syz.0.277: attempt to access beyond end of device
[   57.263018][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.276582][ T4326] syz.0.277: attempt to access beyond end of device
[   57.276582][ T4326] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[   57.291016][ T4327] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   57.339831][ T4335] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   57.347299][ T4335] batman_adv: batadv0: Removing interface: batadv_slave_1
[   57.513285][ T4345] FAULT_INJECTION: forcing a failure.
[   57.513285][ T4345] name failslab, interval 1, probability 0, space 0, times 0
[   57.526065][ T4345] CPU: 1 UID: 0 PID: 4345 Comm: syz.3.281 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   57.536741][ T4345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.546812][ T4345] Call Trace:
[   57.550092][ T4345]  <TASK>
[   57.553038][ T4345]  dump_stack_lvl+0xf2/0x150
[   57.557672][ T4345]  dump_stack+0x15/0x1a
[   57.561848][ T4345]  should_fail_ex+0x223/0x230
[   57.566603][ T4345]  should_failslab+0x8f/0xb0
[   57.571308][ T4345]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   57.577798][ T4345]  ? sidtab_sid2str_get+0xb8/0x140
[   57.583081][ T4345]  kmemdup_noprof+0x2a/0x60
[   57.587607][ T4345]  sidtab_sid2str_get+0xb8/0x140
[   57.592571][ T4345]  security_sid_to_context_core+0x1eb/0x2f0
[   57.598570][ T4345]  security_sid_to_context+0x27/0x30
[   57.603967][ T4345]  selinux_lsmprop_to_secctx+0x2c/0x40
[   57.609453][ T4345]  security_lsmprop_to_secctx+0x4a/0x90
[   57.615200][ T4345]  audit_log_task_context+0x93/0x1c0
[   57.620524][ T4345]  audit_log_task+0xf9/0x1c0
[   57.625194][ T4345]  audit_seccomp+0x68/0x130
[   57.629754][ T4345]  __seccomp_filter+0x6fa/0x1180
[   57.634754][ T4345]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   57.640429][ T4345]  ? vfs_write+0x596/0x920
[   57.644907][ T4345]  ? __schedule+0x6fa/0x930
[   57.649447][ T4345]  __secure_computing+0x9f/0x1c0
[   57.654426][ T4345]  syscall_trace_enter+0xd1/0x1f0
[   57.659489][ T4345]  do_syscall_64+0xaa/0x1c0
[   57.664010][ T4345]  ? clear_bhb_loop+0x55/0xb0
[   57.668740][ T4345]  ? clear_bhb_loop+0x55/0xb0
[   57.673433][ T4345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.679381][ T4345] RIP: 0033:0x7f8e47575d29
[   57.683868][ T4345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.703504][ T4345] RSP: 002b:00007f8e45be1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   57.711946][ T4345] RAX: ffffffffffffffda RBX: 00007f8e47765fa0 RCX: 00007f8e47575d29
[   57.720018][ T4345] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000004
[   57.728077][ T4345] RBP: 00007f8e45be1090 R08: 0000000000000000 R09: 0000000000000000
[   57.736105][ T4345] R10: 0000000000001400 R11: 0000000000000246 R12: 0000000000000001
[   57.744187][ T4345] R13: 0000000000000000 R14: 00007f8e47765fa0 R15: 00007ffe9f459588
[   57.752268][ T4345]  </TASK>
[   57.876674][   T29] kauditd_printk_skb: 346 callbacks suppressed
[   57.876689][   T29] audit: type=1326 audit(1735084620.908:1955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   57.930046][ T4353] FAULT_INJECTION: forcing a failure.
[   57.930046][ T4353] name failslab, interval 1, probability 0, space 0, times 0
[   57.932128][ T4349] loop4: detected capacity change from 0 to 512
[   57.942813][ T4353] CPU: 0 UID: 0 PID: 4353 Comm: syz.2.285 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   57.951322][   T29] audit: type=1326 audit(1735084620.938:1956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   57.959546][ T4353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.959574][ T4353] Call Trace:
[   57.959582][ T4353]  <TASK>
[   57.959592][ T4353]  dump_stack_lvl+0xf2/0x150
[   57.982949][   T29] audit: type=1326 audit(1735084620.938:1957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   57.992968][ T4353]  dump_stack+0x15/0x1a
[   57.996276][   T29] audit: type=1326 audit(1735084620.938:1958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   57.999168][ T4353]  should_fail_ex+0x223/0x230
[   58.003740][   T29] audit: type=1326 audit(1735084620.948:1959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   58.026991][ T4353]  should_failslab+0x8f/0xb0
[   58.027028][ T4353]  kmem_cache_alloc_noprof+0x52/0x320
[   58.027054][ T4353]  ? skb_clone+0x154/0x1f0
[   58.027082][ T4353]  skb_clone+0x154/0x1f0
[   58.027140][ T4353]  __netlink_deliver_tap+0x2bd/0x4f0
[   58.027172][ T4353]  netlink_unicast+0x64a/0x670
[   58.031322][   T29] audit: type=1326 audit(1735084620.948:1960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   58.054558][ T4353]  netlink_sendmsg+0x5cc/0x6e0
[   58.054594][ T4353]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.059255][   T29] audit: type=1326 audit(1735084620.948:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   58.082478][ T4353]  __sock_sendmsg+0x140/0x180
[   58.082518][ T4353]  ____sys_sendmsg+0x312/0x410
[   58.087135][   T29] audit: type=1326 audit(1735084620.948:1962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   58.092477][ T4353]  __sys_sendmsg+0x19d/0x230
[   58.096923][   T29] audit: type=1326 audit(1735084620.958:1963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   58.101105][ T4353]  __x64_sys_sendmsg+0x46/0x50
[   58.106422][   T29] audit: type=1326 audit(1735084620.958:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4348 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   58.111164][ T4353]  x64_sys_call+0x2734/0x2dc0
[   58.261296][ T4353]  do_syscall_64+0xc9/0x1c0
[   58.265913][ T4353]  ? clear_bhb_loop+0x55/0xb0
[   58.270656][ T4353]  ? clear_bhb_loop+0x55/0xb0
[   58.275359][ T4353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.281297][ T4353] RIP: 0033:0x7fc598fb5d29
[   58.285739][ T4353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.305397][ T4353] RSP: 002b:00007fc597621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.313937][ T4353] RAX: ffffffffffffffda RBX: 00007fc5991a5fa0 RCX: 00007fc598fb5d29
[   58.321911][ T4353] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000005
[   58.329909][ T4353] RBP: 00007fc597621090 R08: 0000000000000000 R09: 0000000000000000
[   58.337913][ T4353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.345887][ T4353] R13: 0000000000000000 R14: 00007fc5991a5fa0 R15: 00007ffeaf1aae78
[   58.353887][ T4353]  </TASK>
[   58.408556][ T4349] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.451465][ T4349] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   58.487602][ T4367] deleting an unspecified loop device is not supported.
[   58.505222][ T4349] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   58.580150][ T4370] loop1: detected capacity change from 0 to 512
[   58.676136][ T4381] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.720016][ T4370] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.762540][ T4370] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   58.817098][ T4381] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.970177][ T4392] loop2: detected capacity change from 0 to 512
[   59.018941][ T4379] bond1: entered promiscuous mode
[   59.024038][ T4379] bond1: entered allmulticast mode
[   59.101314][ T4379] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.157213][ T4379] bond1 (unregistering): Released all slaves
[   59.214696][ T4412] loop4: detected capacity change from 0 to 512
[   59.232370][ T4381] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.273182][ T4412] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.316753][ T4381] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.375576][ T4412] FAULT_INJECTION: forcing a failure.
[   59.375576][ T4412] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.388760][ T4412] CPU: 1 UID: 0 PID: 4412 Comm: syz.4.305 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   59.399368][ T4412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.409453][ T4412] Call Trace:
[   59.412757][ T4412]  <TASK>
[   59.415712][ T4412]  dump_stack_lvl+0xf2/0x150
[   59.420347][ T4412]  dump_stack+0x15/0x1a
[   59.424544][ T4412]  should_fail_ex+0x223/0x230
[   59.429285][ T4412]  should_fail+0xb/0x10
[   59.433476][ T4412]  should_fail_usercopy+0x1a/0x20
[   59.438560][ T4412]  _copy_from_user+0x1e/0xb0
[   59.443253][ T4412]  kstrtouint_from_user+0x76/0xe0
[   59.448307][ T4412]  ? 0xffffffff81000000
[   59.452480][ T4412]  ? selinux_file_permission+0x22a/0x360
[   59.458251][ T4412]  proc_fail_nth_write+0x4f/0x150
[   59.463445][ T4412]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   59.469131][ T4412]  vfs_write+0x281/0x920
[   59.473409][ T4412]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   59.479009][ T4412]  ? __fget_files+0x17c/0x1c0
[   59.483865][ T4412]  ksys_write+0xe8/0x1b0
[   59.488141][ T4412]  __x64_sys_write+0x42/0x50
[   59.492794][ T4412]  x64_sys_call+0x287e/0x2dc0
[   59.497587][ T4412]  do_syscall_64+0xc9/0x1c0
[   59.502223][ T4412]  ? clear_bhb_loop+0x55/0xb0
[   59.507006][ T4412]  ? clear_bhb_loop+0x55/0xb0
[   59.511771][ T4412]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.517708][ T4412] RIP: 0033:0x7f27540147df
[   59.522205][ T4412] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   59.541828][ T4412] RSP: 002b:00007f2752681030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   59.550266][ T4412] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f27540147df
[   59.558261][ T4412] RDX: 0000000000000001 RSI: 00007f27526810a0 RDI: 0000000000000004
[   59.566334][ T4412] RBP: 00007f2752681090 R08: 0000000000000000 R09: 0000000000000000
[   59.574355][ T4412] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   59.582344][ T4412] R13: 0000000000000000 R14: 00007f2754205fa0 R15: 00007ffc2bb805d8
[   59.590385][ T4412]  </TASK>
[   59.639915][ T4381] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.658222][ T4381] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.698066][ T4381] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.723572][ T4381] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.852679][ T4423] loop4: detected capacity change from 0 to 512
[   59.891209][ T4426] pimreg: entered allmulticast mode
[   59.906719][ T4426] pimreg: left allmulticast mode
[   59.989159][ T4429] tmpfs: Bad value for 'mpol'
[   59.994087][ T4431] syz.0.312[4431] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.994149][ T4431] syz.0.312[4431] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.029414][ T4431] syz.0.312[4431] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.187709][ T4423] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.314964][ T4423] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   60.476709][ T4448] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.566948][ T4448] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.670200][ T4448] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.787675][ T4448] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.897095][ T4454] loop4: detected capacity change from 0 to 164
[   60.976545][ T4448] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.060389][ T4448] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.125524][ T4465] IPv6: NLM_F_CREATE should be specified when creating new route
[   61.136738][ T4448] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.194855][ T4448] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.350453][ T4490] SELinux: syz.0.333 (4490) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   61.410421][ T4495] loop0: detected capacity change from 0 to 512
[   61.422157][ T4495] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   61.448273][ T4495] EXT4-fs (loop0): 1 truncate cleaned up
[   61.508213][ T4500] syz.2.334 (4500): attempted to duplicate a private mapping with mremap.  This is not supported.
[   61.554514][ T4501] loop3: detected capacity change from 0 to 512
[   61.676183][ T4501] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.775757][ T4501] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   61.848607][ T4514] loop0: detected capacity change from 0 to 512
[   61.875251][ T4516] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   61.986938][ T4521] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4521 comm=syz.1.341
[   62.026591][ T4514] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.165573][ T4514] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   62.198483][ T4527] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.226162][ T4531] netlink: 12 bytes leftover after parsing attributes in process `syz.4.345'.
[   62.226358][ T4532] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   62.337180][ T4527] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.390432][ T4538] loop4: detected capacity change from 0 to 512
[   62.448942][ T4527] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.525535][ T4538] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.551437][ T4527] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.599761][ T4538] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   62.629033][ T4527] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.664967][ T4527] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.712592][ T4527] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.743359][ T4527] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.792496][ T4553] loop3: detected capacity change from 0 to 512
[   62.849617][ T4553] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.915837][   T29] kauditd_printk_skb: 523 callbacks suppressed
[   62.915893][   T29] audit: type=1326 audit(1735084625.948:2488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e47574690 code=0x7ffc0000
[   63.028855][   T29] audit: type=1326 audit(1735084625.948:2489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f8e47574a77 code=0x7ffc0000
[   63.052306][   T29] audit: type=1326 audit(1735084625.948:2490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8e47574690 code=0x7ffc0000
[   63.075706][   T29] audit: type=1326 audit(1735084625.948:2491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   63.099106][   T29] audit: type=1326 audit(1735084625.948:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   63.122442][   T29] audit: type=1326 audit(1735084625.998:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8e47574597 code=0x7ffc0000
[   63.176824][   T29] audit: type=1326 audit(1735084626.208:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   63.200283][   T29] audit: type=1326 audit(1735084626.208:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   63.246959][   T29] audit: type=1326 audit(1735084626.208:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   63.286838][ T4553] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   63.360730][   T29] audit: type=1326 audit(1735084626.378:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.3.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   63.394504][ T4585] loop1: detected capacity change from 0 to 512
[   63.445537][ T4579] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   63.527619][ T4585] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.696522][ T4585] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   63.783556][ T4603] loop2: detected capacity change from 0 to 512
[   63.856822][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.864258][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.871743][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.907864][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.915498][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.922960][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.927592][ T4608] loop2: detected capacity change from 0 to 512
[   63.930438][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.930462][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.930485][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.959194][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.966764][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.974251][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.981736][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.991613][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.993726][ T4608] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   63.999044][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.999093][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.999119][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.031257][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.038840][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.046260][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.053710][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.061257][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.068696][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.076116][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.083515][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.091007][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.096282][ T4608] EXT4-fs (loop2): 1 orphan inode deleted
[   64.098425][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.104106][ T4608] EXT4-fs (loop2): 1 truncate cleaned up
[   64.111520][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.124629][ T3533] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   64.135114][ T3533] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   64.257305][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.264752][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.272278][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.306672][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.314177][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.321613][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.329061][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.336515][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.343940][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.351394][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.358911][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.366468][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.373853][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.526127][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.533660][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.541111][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.548530][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.555952][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.563352][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.570769][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.578282][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.585731][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.593121][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.600573][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.608076][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.615505][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.622885][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.630319][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.637869][ T3376] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   64.669981][ T3376] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   64.713131][ T4624] loop4: detected capacity change from 0 to 512
[   64.760257][ T4631] loop0: detected capacity change from 0 to 512
[   64.988782][ T4624] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.017575][ T4631] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.098974][ T4624] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   65.215157][ T4631] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   65.236033][ T4624] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   65.287667][ T4668] loop2: detected capacity change from 0 to 512
[   65.317787][ T4668] EXT4-fs: Ignoring removed mblk_io_submit option
[   65.328949][ T4668] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   65.357840][ T4668] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   65.385383][ T4668] System zones: 1-12
[   65.397858][ T4668] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.393: corrupted in-inode xattr: e_value size too large
[   65.477461][ T4668] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.393: couldn't read orphan inode 15 (err -117)
[   65.523524][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.530981][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.538557][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.546018][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.553436][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.560906][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.568394][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.575993][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.583447][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.591041][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.598514][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.606111][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.613577][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.621043][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.628456][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.635892][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.643280][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.650692][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.658136][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.665625][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.673033][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.680463][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.687936][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.695351][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.702810][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.710332][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.717761][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.725167][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.732568][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.736471][ T4680] netlink: 16 bytes leftover after parsing attributes in process `syz.3.398'.
[   65.740048][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.748873][ T4680] tc_dump_action: action bad kind
[   65.756295][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.768756][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.776509][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.783910][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.791401][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.798899][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.806308][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.813686][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.821172][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.828658][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.836076][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.837560][ T4679] xt_hashlimit: max too large, truncated to 1048576
[   65.843452][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.857489][ T3376] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   65.867594][ T3376] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   65.893204][ T4679] Cannot find set identified by id 0 to match
[   65.928018][ T4687] netlink: 'syz.4.396': attribute type 4 has an invalid length.
[   65.954737][ T4687] netlink: 'syz.4.396': attribute type 4 has an invalid length.
[   66.046660][ T3375] IPVS: starting estimator thread 0...
[   66.092971][ T4690] bond1: entered promiscuous mode
[   66.098315][ T4690] bond1: entered allmulticast mode
[   66.122451][ T4701] loop0: detected capacity change from 0 to 512
[   66.124197][ T4702] 9pnet_fd: Insufficient options for proto=fd
[   66.145091][ T4696] IPVS: using max 2400 ests per chain, 120000 per kthread
[   66.155144][ T4690] 8021q: adding VLAN 0 to HW filter on device bond1
[   66.174384][ T4690] bond1 (unregistering): Released all slaves
[   66.184567][ T4705] loop0: detected capacity change from 0 to 512
[   66.358695][ T4705] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.537037][ T4705] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   66.544802][ T4722] loop3: detected capacity change from 0 to 512
[   66.559890][ T4722] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   66.579408][ T4722] EXT4-fs (loop3): 1 orphan inode deleted
[   66.585234][ T4722] EXT4-fs (loop3): 1 truncate cleaned up
[   66.630567][ T4722] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #12: block 7: comm syz.3.412: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[   66.696418][ T4722] EXT4-fs (loop3): Remounting filesystem read-only
[   66.720966][ T4724] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   66.870664][ T4731] FAULT_INJECTION: forcing a failure.
[   66.870664][ T4731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.883823][ T4731] CPU: 1 UID: 0 PID: 4731 Comm: syz.3.414 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   66.894493][ T4731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   66.904669][ T4731] Call Trace:
[   66.907981][ T4731]  <TASK>
[   66.910917][ T4731]  dump_stack_lvl+0xf2/0x150
[   66.915539][ T4731]  dump_stack+0x15/0x1a
[   66.919721][ T4731]  should_fail_ex+0x223/0x230
[   66.924423][ T4731]  should_fail+0xb/0x10
[   66.928592][ T4731]  should_fail_usercopy+0x1a/0x20
[   66.933849][ T4731]  _copy_to_user+0x20/0xa0
[   66.938374][ T4731]  simple_read_from_buffer+0xa0/0x110
[   66.943768][ T4731]  proc_fail_nth_read+0xf9/0x140
[   66.948761][ T4731]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   66.954439][ T4731]  vfs_read+0x1a2/0x700
[   66.958689][ T4731]  ? __rcu_read_unlock+0x4e/0x70
[   66.963677][ T4731]  ? __fget_files+0x17c/0x1c0
[   66.968734][ T4731]  ksys_read+0xe8/0x1b0
[   66.972930][ T4731]  __x64_sys_read+0x42/0x50
[   66.977547][ T4731]  x64_sys_call+0x2874/0x2dc0
[   66.982280][ T4731]  do_syscall_64+0xc9/0x1c0
[   66.986946][ T4731]  ? clear_bhb_loop+0x55/0xb0
[   66.991670][ T4731]  ? clear_bhb_loop+0x55/0xb0
[   66.996369][ T4731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.002293][ T4731] RIP: 0033:0x7f8e4757473c
[   67.006726][ T4731] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   67.026578][ T4731] RSP: 002b:00007f8e45be1030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   67.035005][ T4731] RAX: ffffffffffffffda RBX: 00007f8e47765fa0 RCX: 00007f8e4757473c
[   67.043062][ T4731] RDX: 000000000000000f RSI: 00007f8e45be10a0 RDI: 0000000000000007
[   67.051073][ T4731] RBP: 00007f8e45be1090 R08: 0000000000000000 R09: 0000000000000000
[   67.059134][ T4731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.067227][ T4731] R13: 0000000000000000 R14: 00007f8e47765fa0 R15: 00007ffe9f459588
[   67.075223][ T4731]  </TASK>
[   67.082394][ T3309] EXT4-fs unmount: 44 callbacks suppressed
[   67.082408][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   67.289987][ T4748] loop3: detected capacity change from 0 to 164
[   67.299448][ T4747] loop2: detected capacity change from 0 to 512
[   67.350140][ T4749] lo speed is unknown, defaulting to 1000
[   67.465515][ T4747] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   67.491884][ T4740] bio_check_eod: 15452 callbacks suppressed
[   67.491903][ T4740] syz.3.419: attempt to access beyond end of device
[   67.491903][ T4740] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   67.527420][ T4747] EXT4-fs (loop2): 1 orphan inode deleted
[   67.533265][ T4747] EXT4-fs (loop2): 1 truncate cleaned up
[   67.539980][ T4740] syz.3.419: attempt to access beyond end of device
[   67.539980][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.580876][ T4747] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.617425][ T4740] syz.3.419: attempt to access beyond end of device
[   67.617425][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.718839][ T4740] syz.3.419: attempt to access beyond end of device
[   67.718839][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.733137][ T4740] syz.3.419: attempt to access beyond end of device
[   67.733137][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.746926][ T4740] syz.3.419: attempt to access beyond end of device
[   67.746926][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.766553][ T4747] EXT4-fs error (device loop2): ext4_find_dest_de:2079: inode #12: block 7: comm syz.2.421: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[   67.777816][ T4740] syz.3.419: attempt to access beyond end of device
[   67.777816][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.787397][ T4747] EXT4-fs (loop2): Remounting filesystem read-only
[   67.816418][ T4740] syz.3.419: attempt to access beyond end of device
[   67.816418][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.837371][ T4740] syz.3.419: attempt to access beyond end of device
[   67.837371][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.857587][ T4740] syz.3.419: attempt to access beyond end of device
[   67.857587][ T4740] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164
[   67.876294][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.013971][ T4766] bond1: entered promiscuous mode
[   68.019342][ T4766] bond1: entered allmulticast mode
[   68.035258][ T4766] 8021q: adding VLAN 0 to HW filter on device bond1
[   68.046201][ T4766] bond1 (unregistering): Released all slaves
[   68.056637][ T4770] loop2: detected capacity change from 0 to 1024
[   68.084164][ T4770] EXT4-fs: Ignoring removed orlov option
[   68.090051][ T4770] EXT4-fs: Ignoring removed nomblk_io_submit option
[   68.141821][ T4766] program syz.1.429 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.178943][ T4770] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.250952][ T4777] loop3: detected capacity change from 0 to 512
[   68.444719][   T29] kauditd_printk_skb: 332 callbacks suppressed
[   68.444745][   T29] audit: type=1326 audit(1735084631.468:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.476715][   T29] audit: type=1326 audit(1735084631.468:2831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.500325][   T29] audit: type=1326 audit(1735084631.468:2832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.523704][   T29] audit: type=1326 audit(1735084631.468:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.547061][   T29] audit: type=1326 audit(1735084631.468:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.570458][   T29] audit: type=1326 audit(1735084631.468:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.593866][   T29] audit: type=1326 audit(1735084631.468:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.617300][   T29] audit: type=1326 audit(1735084631.468:2837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.640723][   T29] audit: type=1326 audit(1735084631.468:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.664105][   T29] audit: type=1326 audit(1735084631.468:2839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4788 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e47575d29 code=0x7ffc0000
[   68.734100][ T4793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.438'.
[   68.772615][ T4800] loop4: detected capacity change from 0 to 512
[   68.782857][ T4800] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   68.842207][ T4800] EXT4-fs (loop4): 1 orphan inode deleted
[   68.848049][ T4800] EXT4-fs (loop4): 1 truncate cleaned up
[   68.880248][ T4800] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.955565][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.039045][ T4821] loop4: detected capacity change from 0 to 512
[   69.070124][ T4821] EXT4-fs: Ignoring removed mblk_io_submit option
[   69.094741][ T4821] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   69.125966][ T4821] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   69.134078][ T4821] System zones: 1-12
[   69.138461][ T4821] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.449: corrupted in-inode xattr: e_value size too large
[   69.154463][ T4821] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.449: couldn't read orphan inode 15 (err -117)
[   69.167916][ T4821] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.181394][ T4828] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.216229][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.257465][ T4828] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.307139][ T4828] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.367345][ T4828] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.397546][ T4833] loop4: detected capacity change from 0 to 1024
[   69.405041][ T4833] EXT4-fs: Ignoring removed orlov option
[   69.410796][ T4833] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.428860][ T4833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.454341][ T4828] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.465982][ T4828] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.482483][ T4828] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.493555][ T4828] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.546519][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.892993][ T4859] loop4: detected capacity change from 0 to 1024
[   69.899753][ T4859] EXT4-fs: Ignoring removed orlov option
[   69.905528][ T4859] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.918018][ T4861] loop3: detected capacity change from 0 to 1024
[   69.926839][ T4861] EXT4-fs: Ignoring removed orlov option
[   69.932633][ T4861] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.950640][ T4861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.971512][ T4859] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.012836][ T4868] bond1: entered promiscuous mode
[   70.017931][ T4868] bond1: entered allmulticast mode
[   70.023215][ T4868] 8021q: adding VLAN 0 to HW filter on device bond1
[   70.033305][ T4868] bond1 (unregistering): Released all slaves
[   70.043278][ T4871] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.071727][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.094620][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.106714][ T4871] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.177683][ T4871] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.191861][ T4879] loop4: detected capacity change from 0 to 512
[   70.236307][ T4871] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   70.256614][ T4879] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   70.275679][ T4879] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.305339][ T4879] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   70.337143][ T4879] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   70.398867][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   70.581503][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.589030][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.596513][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.604251][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.611681][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.619168][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.626612][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.634096][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.641560][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.648984][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.656452][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.663867][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.671280][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.678880][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.686321][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.693722][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.701448][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.708873][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.716323][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.723762][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.727963][ T4907] SELinux: syz.4.474 (4907) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   70.731168][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.752171][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.759633][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.767313][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.774742][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.782291][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.789726][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.797250][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.804659][ T3376] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   70.812871][ T3376] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   70.868331][ T4910] loop1: detected capacity change from 0 to 1024
[   70.883706][ T4910] EXT4-fs: Ignoring removed orlov option
[   70.889592][ T4910] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.935943][ T4910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.954613][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.047633][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.232986][ T4939] bond1: entered promiscuous mode
[   71.238139][ T4939] bond1: entered allmulticast mode
[   71.243396][ T4939] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.253663][ T4939] bond1 (unregistering): Released all slaves
[   71.773427][ T4968] loop4: detected capacity change from 0 to 512
[   71.780211][ T4968] EXT4-fs: Ignoring removed mblk_io_submit option
[   71.788160][ T4968] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   71.811993][ T4968] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   71.820248][ T4968] System zones: 1-12
[   71.824625][ T4968] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.499: corrupted in-inode xattr: e_value size too large
[   71.840260][ T4968] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.499: couldn't read orphan inode 15 (err -117)
[   71.852751][ T4968] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.881255][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.931361][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.938840][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.946311][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.953736][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.961194][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.968619][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.976132][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.983516][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.991028][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   71.998691][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.006115][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.013552][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.020975][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.028637][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.036130][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.043723][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.051180][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.058685][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.066160][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.073753][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.081213][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.085375][ T4983] SELinux: syz.3.500 (4983) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   72.088705][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.109585][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.117121][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.124610][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.132028][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.139502][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.146926][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.154325][ T3375] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   72.162550][ T3375] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   72.258667][ T4990] loop2: detected capacity change from 0 to 512
[   72.326288][ T4990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   72.365658][ T4990] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.384891][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.392348][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.399896][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.407365][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.414765][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.422211][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.429677][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.437112][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.444525][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.451953][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.459572][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.467041][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.474436][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.482003][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.489451][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.497034][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.504524][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.511987][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.519403][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.526825][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.534218][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.541660][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.549190][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.556712][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.564142][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.571600][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.579026][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.586481][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.593963][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.601390][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.608862][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.616303][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.623811][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.631311][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.638874][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.646337][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.653747][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.661164][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.668586][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.676080][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.683475][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.690936][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.698433][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   72.706921][ T3375] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   72.710576][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   72.891427][ T5012] loop2: detected capacity change from 0 to 512
[   73.013415][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.017695][ T5022] loop4: detected capacity change from 0 to 512
[   73.021017][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.034675][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.051758][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.059293][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.066734][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.069228][ T5019] bond1: entered promiscuous mode
[   73.074106][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.079173][ T5019] bond1: entered allmulticast mode
[   73.086551][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.086597][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.091880][ T5019] 8021q: adding VLAN 0 to HW filter on device bond1
[   73.099079][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.120654][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.128075][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.135542][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.153973][ T5029] loop2: detected capacity change from 0 to 512
[   73.171908][ T5019] bond1 (unregistering): Released all slaves
[   73.186681][ T5022] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.195079][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.206651][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.209207][ T5022] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.214119][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.214164][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.236379][ T5034] program syz.1.517 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   73.239461][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.250994][ T5033] SELinux: syz.3.512 (5033) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   73.256216][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.277194][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.284620][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.292040][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.299494][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.307000][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.314445][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.321884][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.329299][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.336737][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.344207][ T3376] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   73.355169][ T3376] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   73.370831][ T5029] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   73.407989][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.420278][ T5029] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.475037][   T29] kauditd_printk_skb: 322 callbacks suppressed
[   73.475054][   T29] audit: type=1326 audit(1735084636.498:3162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc598fb4690 code=0x7ffc0000
[   73.504712][   T29] audit: type=1326 audit(1735084636.498:3163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fc598fb4a77 code=0x7ffc0000
[   73.528040][   T29] audit: type=1326 audit(1735084636.498:3164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc598fb4690 code=0x7ffc0000
[   73.552978][   T29] audit: type=1326 audit(1735084636.588:3165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   73.576558][   T29] audit: type=1326 audit(1735084636.588:3166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   73.600417][   T29] audit: type=1326 audit(1735084636.588:3167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   73.637195][ T5029] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   73.691921][   T29] audit: type=1326 audit(1735084636.718:3168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   73.715739][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   73.725050][   T29] audit: type=1326 audit(1735084636.718:3169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5028 comm="syz.2.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc598fb5d29 code=0x7ffc0000
[   73.969771][   T29] audit: type=1326 audit(1735084636.998:3170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5056 comm="syz.4.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   73.972569][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.000777][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.005128][   T29] audit: type=1326 audit(1735084636.998:3171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5056 comm="syz.4.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   74.008386][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.038963][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.046422][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.053825][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.061381][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.068966][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.076391][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.083815][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.091244][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.098654][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.106131][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.109711][ T5059] loop1: detected capacity change from 0 to 512
[   74.113591][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.127388][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.128578][ T5059] EXT4-fs: Ignoring removed mblk_io_submit option
[   74.134850][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.143447][ T5059] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   74.148613][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.164199][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.171628][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.179068][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.186499][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.193922][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.201446][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.208879][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.216291][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.223734][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.225965][ T5059] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   74.231138][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.242389][ T5059] System zones: 
[   74.246397][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.246416][ T5059] 1-12
[   74.249956][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.249982][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.257388][ T5059] 
[   74.260029][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.260052][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.268972][ T5059] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.530: corrupted in-inode xattr: e_value size too large
[   74.274964][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.278211][ T5059] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.530: couldn't read orphan inode 15 (err -117)
[   74.284660][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.292745][ T5059] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.305941][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.352041][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.359456][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.367134][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.374611][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.382067][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.389641][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.397067][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.404478][ T3533] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   74.413427][ T3533] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   74.432694][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.579878][ T5067] loop4: detected capacity change from 0 to 512
[   74.598377][ T5074] loop1: detected capacity change from 0 to 512
[   74.598493][ T5067] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   74.622924][ T4871] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.633777][ T5069] netlink: 8 bytes leftover after parsing attributes in process `syz.3.533'.
[   74.638668][ T5067] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   74.650210][ T5074] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.664486][ T4871] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.692368][ T4871] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.701322][ T5069] siw: device registration error -23
[   74.730833][ T5074] EXT4-fs (loop1): 1 orphan inode deleted
[   74.736680][ T5074] EXT4-fs (loop1): 1 truncate cleaned up
[   74.747430][ T4871] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.770855][ T5074] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.841671][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.845036][ T5082] loop0: detected capacity change from 0 to 512
[   74.918509][ T5067] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   75.004804][ T5067] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   75.077511][ T5105] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.116296][ T5109] loop1: detected capacity change from 0 to 512
[   75.127808][ T5109] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   75.142316][ T5105] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.162439][ T5109] EXT4-fs (loop1): 1 orphan inode deleted
[   75.168245][ T5109] EXT4-fs (loop1): 1 truncate cleaned up
[   75.179117][ T5109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.204590][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   75.216656][ T5105] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.249798][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.279087][ T5105] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.354004][ T5105] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.387679][ T5105] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.408334][ T5105] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.431190][ T5105] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.444369][ T5122] loop4: detected capacity change from 0 to 512
[   75.626686][ T5135] loop1: detected capacity change from 0 to 512
[   75.658592][ T5135] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   75.736455][ T5135] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.751794][ T5143] loop4: detected capacity change from 0 to 512
[   75.798442][ T5143] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.888217][ T5135] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   75.914183][ T5143] EXT4-fs (loop4): 1 orphan inode deleted
[   75.920053][ T5143] EXT4-fs (loop4): 1 truncate cleaned up
[   75.990560][ T5149] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   76.002735][ T5151] loop2: detected capacity change from 0 to 1024
[   76.009239][ T5143] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.031310][ T5151] EXT4-fs: Ignoring removed orlov option
[   76.037126][ T5151] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.102184][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.114522][ T5151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.175673][ T3296] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   76.296289][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.434180][ T5167] loop3: detected capacity change from 0 to 1024
[   76.470000][ T5167] EXT4-fs: Ignoring removed orlov option
[   76.475927][ T5167] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.534022][ T5178] loop0: detected capacity change from 0 to 512
[   76.552091][ T5167] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.600827][ T5178] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   76.630807][ T5182] FAULT_INJECTION: forcing a failure.
[   76.630807][ T5182] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.643928][ T5182] CPU: 1 UID: 0 PID: 5182 Comm: syz.1.576 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   76.654531][ T5182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.664596][ T5182] Call Trace:
[   76.667890][ T5182]  <TASK>
[   76.670832][ T5182]  dump_stack_lvl+0xf2/0x150
[   76.675529][ T5182]  dump_stack+0x15/0x1a
[   76.679787][ T5182]  should_fail_ex+0x223/0x230
[   76.684487][ T5182]  should_fail+0xb/0x10
[   76.688668][ T5182]  should_fail_usercopy+0x1a/0x20
[   76.693735][ T5182]  _copy_from_user+0x1e/0xb0
[   76.698360][ T5182]  memdup_user+0x64/0xc0
[   76.702634][ T5182]  strndup_user+0x68/0xa0
[   76.707071][ T5182]  __se_sys_mount+0x4e/0x2d0
[   76.711802][ T5182]  ? fput+0x1c4/0x200
[   76.715822][ T5182]  ? ksys_write+0x176/0x1b0
[   76.720424][ T5182]  __x64_sys_mount+0x67/0x80
[   76.725122][ T5182]  x64_sys_call+0x2c84/0x2dc0
[   76.729826][ T5182]  do_syscall_64+0xc9/0x1c0
[   76.734433][ T5182]  ? clear_bhb_loop+0x55/0xb0
[   76.739125][ T5182]  ? clear_bhb_loop+0x55/0xb0
[   76.743828][ T5182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.749857][ T5182] RIP: 0033:0x7f1c8c3b5d29
[   76.754330][ T5182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.773986][ T5182] RSP: 002b:00007f1c8aa27038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   76.782425][ T5182] RAX: ffffffffffffffda RBX: 00007f1c8c5a5fa0 RCX: 00007f1c8c3b5d29
[   76.790426][ T5182] RDX: 00000000200002c0 RSI: 0000000020000080 RDI: 0000000000000000
[   76.798450][ T5182] RBP: 00007f1c8aa27090 R08: 0000000020000580 R09: 0000000000000000
[   76.806422][ T5182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.814418][ T5182] R13: 0000000000000000 R14: 00007f1c8c5a5fa0 R15: 00007fffd4739988
[   76.822412][ T5182]  </TASK>
[   76.851812][ T5178] EXT4-fs (loop0): 1 orphan inode deleted
[   76.857654][ T5178] EXT4-fs (loop0): 1 truncate cleaned up
[   76.865779][ T5178] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.895447][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.924007][ T5187] loop4: detected capacity change from 0 to 512
[   76.990526][ T3309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.038194][ T5187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   77.085141][ T5187] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.110242][ T5187] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   77.192761][ T5210] loop2: detected capacity change from 0 to 764
[   77.219219][ T5210] iso9660: Unknown parameter ''
[   77.242390][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.250157][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.257624][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.266800][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   77.284647][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.288080][ T5210] syzkaller0: entered promiscuous mode
[   77.292151][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.297595][ T5210] syzkaller0: entered allmulticast mode
[   77.305077][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.317967][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.325461][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.332858][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.340318][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.347742][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.355167][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.362555][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.422876][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.427342][ T5216] SELinux: syz.1.586 (5216) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   77.430341][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.451269][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.458727][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.466220][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.473615][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.481075][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.488498][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.495956][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.503352][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.510812][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.518280][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.525891][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.533324][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.540842][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.548362][ T3367] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   77.557946][ T3367] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   77.804463][ T5222] loop4: detected capacity change from 0 to 512
[   77.832677][ T5222] EXT4-fs: Ignoring removed mblk_io_submit option
[   77.881127][ T5222] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   77.919078][ T5222] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   77.928523][ T5222] System zones: 1-12
[   77.940024][ T5222] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.591: corrupted in-inode xattr: e_value size too large
[   77.964268][ T5222] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.591: couldn't read orphan inode 15 (err -117)
[   78.022601][ T5222] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.096610][ T5237] loop2: detected capacity change from 0 to 512
[   78.130665][ T5237] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   78.166530][ T5237] EXT4-fs (loop2): 1 orphan inode deleted
[   78.172307][ T5237] EXT4-fs (loop2): 1 truncate cleaned up
[   78.194966][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.207730][ T5237] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.220586][ T5244] loop3: detected capacity change from 0 to 512
[   78.235993][ T5244] ==================================================================
[   78.244104][ T5244] BUG: KCSAN: data-race in __filemap_add_folio / filemap_write_and_wait_range
[   78.253024][ T5244] 
[   78.255370][ T5244] read-write to 0xffff8881004c0bb0 of 8 bytes by task 3287 on cpu 0:
[   78.263442][ T5244]  __filemap_add_folio+0x430/0x6f0
[   78.268572][ T5244]  filemap_add_folio+0x9c/0x1b0
[   78.273444][ T5244]  page_cache_ra_unbounded+0x177/0x310
[   78.278923][ T5244]  page_cache_sync_ra+0x252/0x670
[   78.283993][ T5244]  filemap_get_pages+0x2c1/0x10e0
[   78.289050][ T5244]  filemap_read+0x221/0x6a0
[   78.293575][ T5244]  blkdev_read_iter+0x20e/0x2c0
[   78.298448][ T5244]  vfs_read+0x5dc/0x700
[   78.302627][ T5244]  ksys_read+0xe8/0x1b0
[   78.306805][ T5244]  __x64_sys_read+0x42/0x50
[   78.311337][ T5244]  x64_sys_call+0x2874/0x2dc0
[   78.316044][ T5244]  do_syscall_64+0xc9/0x1c0
[   78.320568][ T5244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.326491][ T5244] 
[   78.328812][ T5244] read to 0xffff8881004c0bb0 of 8 bytes by task 5244 on cpu 1:
[   78.336358][ T5244]  filemap_write_and_wait_range+0x59/0x360
[   78.342608][ T5244]  set_blocksize+0x1d3/0x270
[   78.347203][ T5244]  sb_min_blocksize+0x63/0xe0
[   78.351885][ T5244]  ext4_fill_super+0x38b/0x3a10
[   78.356760][ T5244]  get_tree_bdev_flags+0x29f/0x310
[   78.361904][ T5244]  get_tree_bdev+0x1f/0x30
[   78.366338][ T5244]  ext4_get_tree+0x1c/0x30
[   78.370768][ T5244]  vfs_get_tree+0x56/0x1e0
[   78.375197][ T5244]  do_new_mount+0x227/0x690
[   78.379714][ T5244]  path_mount+0x49b/0xb30
[   78.384090][ T5244]  __se_sys_mount+0x27c/0x2d0
[   78.388805][ T5244]  __x64_sys_mount+0x67/0x80
[   78.393409][ T5244]  x64_sys_call+0x2c84/0x2dc0
[   78.398091][ T5244]  do_syscall_64+0xc9/0x1c0
[   78.402599][ T5244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.408513][ T5244] 
[   78.410835][ T5244] value changed: 0x0000000000000001 -> 0x0000000000000002
[   78.417949][ T5244] 
[   78.420273][ T5244] Reported by Kernel Concurrency Sanitizer on:
[   78.426423][ T5244] CPU: 1 UID: 0 PID: 5244 Comm: syz.3.599 Not tainted 6.13.0-rc4-syzkaller-00012-g9b2ffa6148b1 #0
[   78.437015][ T5244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.447074][ T5244] ==================================================================
[   78.504069][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.532128][ T5244] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   78.551095][   T29] kauditd_printk_skb: 454 callbacks suppressed
[   78.551109][   T29] audit: type=1326 audit(1735084641.578:3626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.570629][ T5248] loop4: detected capacity change from 0 to 512
[   78.580974][   T29] audit: type=1326 audit(1735084641.578:3627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.605129][ T5244] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.610445][   T29] audit: type=1326 audit(1735084641.578:3628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.644311][   T29] audit: type=1326 audit(1735084641.578:3629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.667661][   T29] audit: type=1326 audit(1735084641.578:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.682667][ T5248] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[   78.691126][   T29] audit: type=1326 audit(1735084641.578:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.703661][ T5248] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.726829][   T29] audit: type=1326 audit(1735084641.578:3632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.760766][   T29] audit: type=1326 audit(1735084641.578:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.784113][   T29] audit: type=1326 audit(1735084641.578:3634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.807519][   T29] audit: type=1326 audit(1735084641.578:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5247 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2754015d29 code=0x7ffc0000
[   78.831279][ T5248] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   78.854067][ T5244] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[   78.883807][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[   78.965399][ T5255] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[   79.038397][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000040000.