last executing test programs:

4.512511078s ago: executing program 1 (id=746):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYRES16], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x8}})
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001100)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000001080), &(0x7f00000010c0)='%pK    \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, <r4=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000020000037b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240), 0x0, 0x33000, 0x0, 0x3)

4.262509841s ago: executing program 1 (id=754):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000001000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r2, &(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x42, 0x2}, 0x1}}, 0x10)
bind$tipc(r2, 0x0, 0x0)

4.222251765s ago: executing program 1 (id=755):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000004000001d8500000007000000440000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0xb, 0x8, 0x95, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x18, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
listen(r3, 0x1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x24000004, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000480), 0x4)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="18010000200180000000000000"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x9f, &(0x7f0000000c40)=""/159, 0x0, 0x0, '\x00', 0x0, 0x0, r8, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = syz_open_dev$loop(&(0x7f0000000100), 0x75f, 0xc082)
r10 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
pwritev(r10, &(0x7f0000000600)=[{&(0x7f0000000180)="10", 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r9, 0x4c00, r10)
sendfile(r9, r9, 0x0, 0x24002de8)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
memfd_create(&(0x7f0000003f40)='/dev/vhost-vsock\x00', 0x3)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
splice(r7, 0x0, r11, 0x0, 0xf3a, 0x0)
write(r6, &(0x7f0000000240)="94", 0x1)
vmsplice(r11, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2e7c8926dc6acd0ae6c178054e95986faff9544de5fc4c30adf404da41181a77466ac5075905ea5f50134fdd517a957fe2ee59b61f9fe8d7aabe595ea23de2723e437af0423a56686a4c2d957be1a0ab922fbbd3cb1d8c6ab0d58440a327c8eb05d445b4ac5f20abe449e4084f8b996268d0564f67980d3ed3479e0edfe5cec7b4f89bface391c9c4c58ad123b91c33173c72326d1df18804a9ea20f9ece48f784d8ca2318e3d2b316666b5dfb7295c4915989d5bcb120e8fedaa97b93a137c256ce4", 0x20013644}, {&(0x7f0000013680)="c578381bf5113dad8319d9ea5294285ae9a90384ce23866477bef9de4399237d8b3522c9c194e71edaf3332a2f169682f9d8fa271683d4d441b710409e506333e0c3b64e52e8720734b6787f4a84f5bebb046649c6c697d978affd349031b2cd874c7a8961a586a9f2d62f945e7a5bf2f5f7a31684c0503704881d2578a2a98ac3ef4e4a4b0dcdb70db735d5c1652eed3848b2dd4131bb0eb7cfadfaf5", 0x9d}], 0x2, 0x0)
tee(r5, r11, 0x8f5, 0x0)

3.234767795s ago: executing program 4 (id=767):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x10}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

3.17960718s ago: executing program 4 (id=768):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$eJzs3d9rW1UcAPDvTdut+6HtYAz1QQp7cDKXrq0/JvgwH0WHA33XkGRlNF1Gk461Dtwe3IsvMgQRB6Lvvvs4/Af8KwY6GDKKPuwlctObLluTNu3StVs+H7jtOffe9Jxv7v2enpubkAAG1kT6IxfxakR8l0SMtW0bjmzjxOp+Kw+uFdMliUbjs3+SSLJ1rf2T7PehrPJKRPzxTcTJ3Pp2a0vLc4VKpbyQ1Sfr85cna0vLpy7OF2bLs+VL0zMzZ96ZmX7/vXf7Fuub5//78dM7H5359vjKD7/dO3IribNxONvWHsdTuN5emYiJ7DkZibNP7DjVh8b2kmS3O8C2DGV5PhLpGDAWQ1nWd9QYe5ZdA3bY12laAwMqkf8woFrzgNa1fZ+ug58b9z9cvQBaH//w6msjMdq8Njq4kjx2ZZRe7473of20jd//vn0rXaJ/r0MAbOr6jYg4PTy8fvxLsvFv+073sM+TbRj/4Nm5k85/3uo0/8mtzX+iw/znUIfc3Y7N8z93rw/NdJXO/z7oOP9du2k1PpTVXmrO+UaSCxcr5XRsezkiTsTI/rS+wf2cL3MrdxvdNrbP/9Ilbb81F8z6cW94/+OPKRXqhacKus39GxGvdZz/JmvHP+lw/NPn43yPbRwr336927bN499ZjV8i3uh4/B/d0Uo2vj852TwfJltnxXr/3jz2Z7f2dzv+9Pgf3Dj+8aT9fm1t6238PPqw3G3bds//fcnnzfK+bN3VQr2+MBWxL/lk/frpR49t1Vv7p/GfOL7x+Nfp/D+QJnaP8d88erN919Gtxb+z0vhLWzr+Wy/c/firn7q139vxf7tZOpGt6WX867WDT/PcAQAAAAAAwF6Ti4jDkeTya+VcLp9ffX/H0TiYq1Rr9ZMXqouXStH8rOx4jORad7rH2t4PMZW9H7ZVn36iPhMRRyLi+6EDzXq+WK2Udjt4AAAAAAAAAAAAAAAAAAAA2CMORYx2+vx/6q+h3e4dsOM2+Mpv4AXXPf+zLf34pidgT/L/HwaX/IfBJf9hcMl/GFzyHwaX/IfBJf9hcG0l/389t4MdAQAAAAAAAAAAAAAAAAAAAAAAAAAAgBfD+XPn0qWx8uBaMa2XriwtzlWvnCqVa3P5+cVivlhduJyfrVZnK+V8sTq/2d+rVKuXp6Zj8epkvVyrT9aWlr+Yry5eethYVR55JlEBAAAAAAAAAAAAAAAAAADA86W2tDxXqFTKCwoK2yoM741uKPS5sNsjEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA88n8AAAD//75iP7A=")
r1 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
pwritev2(r1, &(0x7f0000000500)=[{&(0x7f0000000340)='o', 0x1}], 0x1, 0x1000000, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[], 0x20}}, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000010000000000000000010085ff01000000000000000000500000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
unshare(0x46060480)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffe57)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mq_notify(0xffffffffffffffff, 0x0)
shmctl$IPC_RMID(0x0, 0x0)

2.968506669s ago: executing program 4 (id=771):
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_xfrm(r2, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001700)=ANY=[@ANYBLOB="540200001600010000000000fedbdf25ff0100000000000000000000000000010a0101010000000000000000000000004e2200004e2300000a00200021000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fc0000000000000000000000000000000000000033000000e0000002000000000000000000000000060000000000000019d000000000000009000000000000000000000000000000000000000000000008000000000000000000000000000000ff030000100000000300000000000000ffffffff00000000ffffff7f000000000900000000000000000000007f000000070000002bbd7000000000000200013f000000000000000001000000060000002c001300200100000000000000000000000000010000000000000000000000020000001c00040003004e204e210000fe"], 0x254}}, 0xc000)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="140013001000010000000000000000000000000a48c5ea00060a0b040000000000000d00020000000900010073797a30000000000900020073797a32000000001400048210000180080001006f736600040002800500074015000000140000001100010000000000000000000000000a"], 0x70}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r6}, 0x10)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r7, 0x400454d9, &(0x7f0000000100)={'vlan0\x00', 0x400})
r8 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r8, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_int(r8, 0x29, 0x10, &(0x7f0000000080), 0x4)
sendmmsg$inet6(r8, &(0x7f0000000300)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xa}], 0x1, 0xbb8)
keyctl$restrict_keyring(0xa, r0, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000180)='i=Ov:cb2e\xdf\xff\xff\x04\x00\xff\xff\xff')
openat$pfkey(0xffffff9c, &(0x7f00000003c0), 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
r9 = socket$inet(0x2, 0x3, 0x4)
r10 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000540)=@newqdisc={0x5c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r11, {}, {0xffff}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {0xffffffffffffff87, 0x2, [0x7746]}}]}]}, 0x5c}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000500))

2.647631548s ago: executing program 4 (id=777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0500000004000000e47f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00', @ANYRES16=r2, @ANYBLOB="0100000010651fbe347b2c"], 0x20}}, 0x0)

2.62318796s ago: executing program 4 (id=778):
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000140)="85", 0x1}], 0x1, 0x0, 0x0, 0x1e)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
r2 = dup3(r0, r1, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000080), 0xfecc)
recvmsg$can_raw(0xffffffffffffffff, 0x0, 0x62)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1704200002ff000008808245bf", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000002c0)=ANY=[@ANYRES16=r1, @ANYRESHEX=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x400, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
semop(0x0, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x1}, 0x11}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000340)='kvm_mmio\x00', r6}, 0x18)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r7, 0x58, &(0x7f00000000c0)}, 0x10)
r8 = openat(0xffffffffffffffff, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r9, 0x19)
dup3(r9, r8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r10}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x12, r4, 0xad56c000)
ioctl$MON_IOCG_STATS(r2, 0xc0109207, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.558180966s ago: executing program 4 (id=779):
openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000040), 0x0}, 0x20)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000b80)={0x3c, r3, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x42}}]}, 0x3c}}, 0x0)

1.878919388s ago: executing program 2 (id=783):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
rseq(0x0, 0x0, 0x0, 0x0)
unshare(0x46060480)

1.679438406s ago: executing program 2 (id=785):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYRES16], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x8}})
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001100)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000001080), &(0x7f00000010c0)='%pK    \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, <r4=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000020000037b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240)=[{0x0}], 0x1, 0x33000, 0x0, 0x3)

1.562877047s ago: executing program 2 (id=788):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x414f, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

1.497491453s ago: executing program 3 (id=789):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x414f, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) (fail_nth: 1)

1.481104195s ago: executing program 0 (id=790):
r0 = openat$selinux_member(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="0000000000000000000001000000000600000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x7, &(0x7f0000000380)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r2, &(0x7f00000005c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6d71756575655f73706f6f6c5f743a7330202f7573722f7362696e2f637570732d62eb2d18d853c99daf252f0c726f77736564203030303030303030e3a1e75e30303030303030300066215bcd998814da78945df101ca42fc6288735e5dfd187adb370b61eb61b660297b05fee23e6e035ac27760e39e08d951d1640be18ffc81b097f947fbfbaaa00bc51d5509b67e289bc98a763a2cd8b4250e3c1fbab71fff0720c9cb1e83584b2bf4d07532a370d1442c6a986608edc835170a37b4e5685e6c7470"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100"/16, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000f700000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = socket(0xa, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000540)=@filter={'filter\x00', 0xe, 0x1, 0x1a8, [0x0, 0x20000180, 0x200001b0, 0x200001e0], 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"/421]}, 0x21d)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r6 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r6, 0x5412, &(0x7f00000000c0)=0x13)
write$binfmt_misc(r6, &(0x7f0000000240), 0xfffffecc)
r8 = io_uring_setup(0x6ddd, &(0x7f00000002c0))
r9 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r9, 0x1, &(0x7f0000000100)=ANY=[])
open(&(0x7f0000000000)='./bus\x00', 0x14d542, 0x160)
socket$caif_seqpacket(0x25, 0x5, 0x3)
fgetxattr(r8, &(0x7f00000001c0)=@known='security.selinux\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000008, 0x110, r0, 0x4bd00000)
write$selinux_access(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6b6c6f67645f7661725f72756e5f743a7330202f7573722f6c69622f7465fdffffffffffffff6d697373696f6e2d636f6e74726f6c2d3520303030303030303030303030303030303030303000"], 0x5f)

1.229631887s ago: executing program 3 (id=791):
r0 = openat$selinux_member(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000540)=@filter={'filter\x00', 0xe, 0x1, 0x1a8, [0x0, 0x20000180, 0x200001b0, 0x200001e0], 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="000000000000000ddbb59600000000000000000000000000f5ff0000000000000000000000000000feffffff00000000000000000000000000000000000000000200000000dfff0000000000000000180000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff010000001500000000000000100073397a5f74756e00001000000000000079615330000000000000000000000000b76fb8645f736c6176655f310000000073697430000000002000000000000000aaaaaaaaaa0000000000feff0080c20000000000000000000000e8000000e8000000180100006c696d6974004000000000800000000002000000000000000000000000000000200000000000000000f9ff210000009400000000000000003830325f330080000000000000000000000000000000000000000000000800000000000000000000000000000041554449540000b827d85034bb5ec6a300000200"/394]}, 0x202)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r2, 0x5412, &(0x7f00000000c0)=0x13)
write$binfmt_misc(r2, &(0x7f0000000240), 0xfffffecc)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000100)=ANY=[])
socket$caif_seqpacket(0x25, 0x5, 0x3)
fgetxattr(0xffffffffffffffff, &(0x7f00000001c0)=@known='security.selinux\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000008, 0x110, r0, 0x4bd00000)

1.216925838s ago: executing program 2 (id=792):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6}]})
socket$packet(0x11, 0x3, 0x300)
socket$can_raw(0x1d, 0x3, 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580)=0x2, 0x0}, 0x20)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
mknod(&(0x7f0000000540)='./file1\x00', 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='attr/keycreate\x00')
mount$9p_fd(0x0, &(0x7f00000006c0)='./file1\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = syz_io_uring_setup(0x4174, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r3, 0x567, 0x0, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.184359252s ago: executing program 1 (id=793):
syz_io_uring_setup(0x5bbd, 0x0, &(0x7f0000000180), &(0x7f00000001c0))
syz_emit_ethernet(0x42, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd602e5cca000c3c00fc080000000000000000000000000000ff02000000000000000000000000000100000000000c9078c1090000"], 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000580)={'broute\x00', 0x0, 0x4, 0xdc, [0x6, 0x5, 0xffffffffffffff7f, 0x4, 0xd16, 0x9], 0x2, &(0x7f0000000540)=[{}, {}], &(0x7f0000001fc0)=""/220}, &(0x7f00000006c0)=0x78)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18300000ff0f00003c0e7349000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2}}}, 0xe7)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000180)={0x7, {{0x2, 0x0, @multicast2}}}, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x454, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @filter_kind_options=@f_route={{0xa}, {0x3b0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0x29c, 0x6, [@m_connmark={0x170, 0x0, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}]}, {0x95, 0x6, "91a991d04aa8cb411880b88050856c4a5b99aafe5cf70a535f4e162db7c30535ebf5e9ab54237bf6d2780785c80bcf9eae2d6d6d65f242d28d9992d8a093d12a497447bc2a6c4f73538dbca11ebb12d1c8ea001eac3246ebaf518402b88e3f2b51ce947977543e069be9c85124bbe592bd2ed79c20d83d312cd1c151c51eed4c8c8bce1d810f14cea570fce0fb771c34fd"}, {0xc}, {0xc}}}, @m_xt={0x128, 0x0, 0x0, 0x0, {{0x7}, {0xa4, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x79, 0x6, {0x0, 'mangle\x00', 0x0, 0x0, "88d6390a6ddf57a5beafdc0a3e6e25823cce6169daee0cf0cf3ecc3a49ceedc20d3b92198bfaad3c05a4a2052e072e8e9f7bdae4c63bc1cd9f45f2b46c48d9257996ec51e620b8a7eb70be129345ef"}}, @TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}]}, {0x5d, 0x6, "fae989b72cd1567b9bad37822ce794e24553c54ba398ca4c3830ada34a0e2befac1fe52b72b015eac1ca08b9039605ef2765a3062973a87b76aa7479a8029cc78a117261c825dd01b54f60f80c1a9ad1cb9ea9a015af260a25"}, {0xc}, {0xc}}}]}, @TCA_ROUTE4_TO={0x8}, @TCA_ROUTE4_ACT={0x100, 0x6, [@m_nat={0xa0, 0x0, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @broadcast, @multicast1}}, @TCA_NAT_PARMS={0x28, 0x1, {{}, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, {0x25, 0x6, "17a3a496e0b06ed4b17c112d919b00b3961dacbd47d9dd716cb9e3eeb2118c01ec"}, {0xc}, {0xc}}}, @m_nat={0x2c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_csum={0x30, 0x0, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x454}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f00000003c0)={0x8, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private}}}, 0x108)
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f00000008c0)={0x6, {{0x2, 0x0, @multicast1=0xe0000002}}, {{0x2, 0x0, @broadcast}}}, 0x108)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x4282, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000d40)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

1.124146417s ago: executing program 1 (id=794):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6}]})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{}, &(0x7f0000000580)=0x2, 0x0}, 0x20)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x4174, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r1, 0x567, 0x0, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

427.372211ms ago: executing program 3 (id=795):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$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")
r1 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
pwritev2(r1, &(0x7f0000000500)=[{&(0x7f0000000340)='o', 0x1}], 0x1, 0x1000000, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYRES32=r2], 0x20}}, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000010000000000000000010085ff01000000000000000000500000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
unshare(0x46060480)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffe57)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mq_notify(0xffffffffffffffff, 0x0)
shmctl$IPC_RMID(0x0, 0x0)

415.367892ms ago: executing program 0 (id=796):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x3, 0x48, 0x0, 0xffffffffffffffff, 0xfff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r0}, &(0x7f0000000500), 0x0}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x2, 0x6, 0x40, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000b80)={r2, 0x0, 0x0}, 0x20)

361.097357ms ago: executing program 0 (id=797):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
rseq(0x0, 0x0, 0x0, 0x0)
unshare(0x46060480)

358.284257ms ago: executing program 2 (id=798):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYRES16], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x8}})
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001100)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000001080), &(0x7f00000010c0)='%pK    \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r3, <r4=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000020000037b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r7, &(0x7f0000000240)=[{0x0}], 0x1, 0x33000, 0x0, 0x3)

327.503559ms ago: executing program 0 (id=799):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0500000004000000e47f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r1}, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'vxcan1\x00'})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00', @ANYRES16=r2, @ANYBLOB="0100000010651fbe347b2c"], 0x20}}, 0x0)

293.100133ms ago: executing program 0 (id=800):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$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")
r1 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
pwritev2(r1, &(0x7f0000000500)=[{&(0x7f0000000340)='o', 0x1}], 0x1, 0x1000000, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYRES32=r2, @ANYRES32=r5], 0x20}}, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000010000000000000000010085ff01000000000000000000500000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r6, 0x0, 0x7, 0x0, &(0x7f0000000100)="e0b9547ed387db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
socket$kcm(0x29, 0x0, 0x0)
unshare(0x46060480)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffe57)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r7}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mq_notify(0xffffffffffffffff, 0x0)
shmctl$IPC_RMID(0x0, 0x0)

222.649619ms ago: executing program 1 (id=801):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000580)={[{@jqfmt_vfsv1}, {@stripe={'stripe', 0x3d, 0x8}}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodiscard}, {@nodelalloc}, {@acl}, {@dioread_lock}]}, 0x1, 0x572, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EP8A330c/gP+FQMdDBlFH0So3PSmy9qkv5aZbPl84Lbn5N7bc78593t7Tm5CAhhYx7IfhYiXI+KbJOJQy7pi5CuPrW63/PD6VLYksbLy6Z9JJPljze2T/PeBvPJSRPz6VcTJwsZ2a4tLs+VKJZ3P62P1uStjtcWlU5fmyjPpTHp5YnLyzFuTE+++83bXYn39/N/ff3L3wzNfH1/+7uf7h28ncTYO5uta43gCN1orx8r/5qXhOLtuw/EuNNZPkl4fALsylOf5cGTXgEMxlGc98Pz7MiJWgAGVyH8YUM1xQHNu36V58DPjwQerE6BG7COt8RdXXxuJvY250f7l5LGZUTbfHe1C+1kbv/xx53a2xOavQ+zbog6wIzduRsTpYnHj9T/Jr3+7d7rx4vHm1rcxaP9/oJfuZuOfN9qN/wpr459oM/450CZ3d2Pr/C/c70IzHWXjv/fajn/XLl2jQ3nthcaYbzi5eKmSno6IFyPiRAzvyeqb3c85s3xvpdO61vFftmTtN8eC+XHcL+55fJ/pcr0cESNPEnfTg5sRrxTbxZ+s9X/Spv+z5+P8Nts4mt55tdO6reN/ulZ+initbf8/uqOVbH5/cqxxPow1z4qN/rp19LdO7fc6/qz/928e/2jSer+2tvM2ftz7T9pp3W7P/5Hks0a5mQTXyvX6/HjESPLxxscnHu3brDe3z+I/cXzz61+78z+bfH2+zfhvHbnVcdN+6P/pHfX/zgv3Pvrih07tb6//32yUTuSP5Ne/9vJzZbsH+KTPHwAAAAAAAPSTQkQcjKRQWisXCqXS6vs7jsT+QqVaq5+8WF24PB2Nz8qOxnCheaf7UMv7Icbz98M26xPr6pMRcTgivh3a16iXpqqV6V4HDwAAAAAAAAAAAAAAAAAAAH3iQIfP/2d+H+r10QFPXeOLDfb0+iiAXtjyK/+78U1PQF/aMv+B55b8h8El/2FwyX8YXPIfBpf8h8El/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqvPnzmXLyvLD61NZffrq4sJs9eqp6bQ2W5pbmCpNVeevlGaq1ZlKWpqqzm319yrV6pXxiVi4NlZPa/Wx2uLShbnqwuX6hUtz5Zn0Qjr8v0QFAAAAAAAAAAAAAAAAAAAAz5ba4tJsuVJJ5xU6Ft6PvjiMpxngql3tXuyXKBQ6FG7m3buzvXp4UQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAdf4LAAD//++4Mnc=")
ioctl$SNAPSHOT_UNFREEZE(0xffffffffffffffff, 0x3302)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="1600"/21, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r5, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="500000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="a7ffa888000000001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r8], 0x50}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xb9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r9, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r9, 0x40045431, &(0x7f0000000200)={0x0, 0x3, 0x0, 0x9a, 0x0, "200000840029950000000000420500899a37a6"})
r10 = syz_open_pts(r9, 0x0)
dup3(r10, r9, 0x0)
ppoll(&(0x7f0000000140)=[{r9}], 0x1, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r10, 0x5423, &(0x7f0000000040)=0x3)
ioctl$TCSETA(r10, 0x402c542d, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, "dac7a15f305b57a3"})
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)

187.367582ms ago: executing program 3 (id=802):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(r1, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e)
listen(r1, 0x16)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000040), 0x1, 0x76a, &(0x7f0000000fc0)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000400), 0x6, 0x5e100)
r5 = fcntl$dupfd(r4, 0x0, r4)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x5, 0x0, @buffer={0x17, 0x0, 0x0}, &(0x7f0000000380)="b69374c96e", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfcff})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000002c0)={r5, 0x20, &(0x7f0000000140)={&(0x7f0000000440)=""/207, 0xcf, <r6=>0x0, &(0x7f00000001c0)=""/109, 0x6d}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8=r2, @ANYRES32, @ANYRESOCT=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd70, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x10c, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$VFAT_IOCTL_READDIR_BOTH(r2, 0x82307201, &(0x7f00000007c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r8}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0x8004587d, &(0x7f0000000080))

180.512793ms ago: executing program 2 (id=803):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x414f, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x22}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1, 0xc, &(0x7f00000003c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600f8ffffff5800", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@nodiscard}]}, 0x1, 0x501, &(0x7f0000000ac0)="$eJzs3c9vI1cdAPCvnThxsmmTlh4AQbu0QEGrdRJvG1U9QDkhhCohegRpGxJvFMWOo9gpTViJ9MwViUqc4MgfwLkn7lwQ3LiUAxI/ItAGicNUM55kvYm9a+0mdhR/PtJo3syb+Pt9m533dp7XfgGMrZsRcRgRUxHxfkTM5+cL+RbvdLb0ugdH99eOj+6vFSJJ3vtXIatPz0XXz6Ru5K9ZjogffjfiJ4XzcVv7B1ur9XptNz9ebDd2Flv7B7c3G6sbtY3adrW6sryy9NadN6sX1tZXGlN56cuf/vHwmz9L05rLz3S34yJ1ml46jZOajIjvX0awEZjI2zM16kR4KsWIeDEiXs3u//mYyH6bAMB1liTzkcx3HwMA110xmwMrFCv5XMBcFIuVSmcO76WYLdabrfate8297fXOXNlClIr3Nuu1pXyucCFKhfR4OSs/PK6eOb4TES9ExC+nZ7Ljylqzvj7Kf/gAwBi7cWb8/+90Z/wHAK658qgTAACGzvgPAOOn3/ifJMnPh5wKADAknv8BYPx0xv+ZUacBAAyR538AGD/GfwAYKz949910S47z779e/2B/b6v5we31Wmur0thbq6w1d3cqG83mRvadPY0nvV692dxZfiP2Plz41k6rvdjaP7jbaO5tt+9m3+t9t1bKrjocQssAgH5eeOWTvxTSEfntmWyLrrUcSiPNDLhsxVEnAIzMxKgTAEbGal8wvp7hGd/0AFwTPZbofUS51weEkiRJLi8l4JK9/gXz/zCuuub//S9gGDPm/2F8mf+H8ZUkhUHX/I9BLwQArjZz/ECf9/9fzPe/y98c+PH62Ss+vsysAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Go7Wf+3kq8FPhfFYqUS8VxELESpcG+zXluKiOcj4s/Tpen0eHnEOQMAz6r490Jn/a/pc1Uv3zgtTkXET3/93q8+XG23d/8UMVX49/TJ+fbH+fnqcDMHAAZzMk5n+64H+QdH99dOtvM/NXlp+fzjOxFR7sQ/PirF8Wn8yTxqOUoRMfufwiNZFLrmLp7F4UcR8fle7S/EXDYH0ln59Gz8NPZzQ41ffCR+Mavr7NM/i89dQC4wbj5J+593et1/xbiZ7Xvf/+UL6hXz/i99qbXjrA98GP+k/5vo0//dHDTGG3/4Xqc0c77uo4gvTkacxD7u6n9O4hf6xP/qgPH/+qWXX+1Xl/wm4vXoHb871mK7sbPY2j+4vdlY3aht1Lar1ZXllaW37rxZXczmqBf7jwb/fPvW8/3q0vbP9olffkL7vzZg+3/7//d/9JXHxP/Ga73iF+Olx8RPx8SvDxh/dfb35X51afz1Pu1/0u//1oDxP/3bwbllwwGA0WntH2yt1uu1XQWFq19I/8pegTR6Fr49rFhT0bvqF6917ukzVUnyVLH69RgXMesGXAWnN31E/G/UyQAAAAAAAAAAAAAAAD0N4xNLo24jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA19dnAQAA//9Ye9JD")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f00000006c0))
write$binfmt_script(r6, &(0x7f0000000380), 0x208e24b)
ioctl$EXT4_IOC_MIGRATE(r6, 0x6609)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = io_uring_setup(0x6f6, &(0x7f0000005100)={0x0, 0x0, 0x802})
io_uring_register$IORING_REGISTER_BUFFERS2(r7, 0xf, &(0x7f0000005500)={0x0, 0x0, 0x0, 0x0, &(0x7f00000054c0)}, 0x20)
fstat(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
lsetxattr$system_posix_acl(&(0x7f0000000340)='./file0\x00', 0x0, &(0x7f0000000040)={{}, {0x1, 0x2}, [], {}, [{0x8, 0x1, r8}]}, 0x2c, 0x0)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

1.55967ms ago: executing program 3 (id=804):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="190000beaca9933a95000000f4000000f50357181aa700f2a514000000008e7dd6a7e167f31f4972faf678a72c37e0d66ecbe7c333d4", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc0, 0xc0, 0x7, [@struct={0x4, 0x3, 0x0, 0x4, 0x1, 0xb4, [{0x10, 0x3, 0x2f3e}, {0x3, 0x3, 0xb}, {0x0, 0x3, 0x7}]}, @struct={0x4, 0xa, 0x0, 0x4, 0x0, 0x7, [{0x1, 0x2, 0x9}, {0x10, 0x0, 0xf3f}, {0x8, 0x3, 0x6562}, {0x7, 0x0, 0x200}, {0x5, 0x3, 0x1}, {0x1, 0x2, 0xb}, {0x2, 0x3, 0x1c7b6f35}, {0x0, 0x2, 0xffff}, {0x6, 0x2, 0x9}, {0x4, 0x0, 0x18}]}, @func={0xc, 0x0, 0x0, 0xc, 0x5}]}, {0x0, [0x2e, 0x30, 0x2e, 0x0, 0x5f]}}, &(0x7f0000000400)=""/199, 0xdf, 0xc7, 0x0, 0x7fffffff, 0x0, @void, @value}, 0x28)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r2}, 0x20)
ioperm(0x2, 0x1, 0x9)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')

1.06813ms ago: executing program 3 (id=805):
r0 = openat$selinux_member(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000540)=@filter={'filter\x00', 0xe, 0x1, 0x1a8, [0x0, 0x20000180, 0x200001b0, 0x200001e0], 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"/394]}, 0x202)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r2, 0x5412, &(0x7f00000000c0)=0x13)
write$binfmt_misc(r2, &(0x7f0000000240), 0xfffffecc)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000100)=ANY=[])
socket$caif_seqpacket(0x25, 0x5, 0x3)
fgetxattr(0xffffffffffffffff, &(0x7f00000001c0)=@known='security.selinux\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000008, 0x110, r0, 0x4bd00000)

0s ago: executing program 0 (id=806):
syz_io_uring_setup(0x5bbd, 0x0, &(0x7f0000000180), &(0x7f00000001c0))
syz_emit_ethernet(0x42, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd602e5cca000c3c00fc080000000000000000000000000000ff02000000000000000000000000000100000000000c9078c1090000"], 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000580)={'broute\x00', 0x0, 0x4, 0xdc, [0x6, 0x5, 0xffffffffffffff7f, 0x4, 0xd16, 0x9], 0x2, &(0x7f0000000540)=[{}, {}], &(0x7f0000001fc0)=""/220}, &(0x7f00000006c0)=0x78)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18300000ff0f00003c0e7349000000000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000300)={0x6, {{0x2, 0x0, @multicast2}}}, 0xe7)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000180)={0x7, {{0x2, 0x0, @multicast2}}}, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x454, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_u32={{0x8}, {0x54, 0x2, [@TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}, @TCA_U32_INDEV={0x14, 0x8, 'veth0\x00'}, @TCA_U32_HASH={0x8}, @TCA_U32_CLASSID={0x8}, @TCA_U32_MARK={0x10}, @TCA_U32_FLAGS={0x8}]}}, @TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @filter_kind_options=@f_route={{0xa}, {0x3b0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0x29c, 0x6, [@m_connmark={0x170, 0x0, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}, @TCA_CONNMARK_PARMS={0x1c}]}, {0x95, 0x6, "91a991d04aa8cb411880b88050856c4a5b99aafe5cf70a535f4e162db7c30535ebf5e9ab54237bf6d2780785c80bcf9eae2d6d6d65f242d28d9992d8a093d12a497447bc2a6c4f73538dbca11ebb12d1c8ea001eac3246ebaf518402b88e3f2b51ce947977543e069be9c85124bbe592bd2ed79c20d83d312cd1c151c51eed4c8c8bce1d810f14cea570fce0fb771c34fd"}, {0xc}, {0xc}}}, @m_xt={0x128, 0x0, 0x0, 0x0, {{0x7}, {0xa4, 0x2, 0x0, 0x1, [@TCA_IPT_TARG={0x79, 0x6, {0x0, 'mangle\x00', 0x0, 0x0, "88d6390a6ddf57a5beafdc0a3e6e25823cce6169daee0cf0cf3ecc3a49ceedc20d3b92198bfaad3c05a4a2052e072e8e9f7bdae4c63bc1cd9f45f2b46c48d9257996ec51e620b8a7eb70be129345ef"}}, @TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}]}, {0x5d, 0x6, "fae989b72cd1567b9bad37822ce794e24553c54ba398ca4c3830ada34a0e2befac1fe52b72b015eac1ca08b9039605ef2765a3062973a87b76aa7479a8029cc78a117261c825dd01b54f60f80c1a9ad1cb9ea9a015af260a25"}, {0xc}, {0xc}}}]}, @TCA_ROUTE4_TO={0x8}, @TCA_ROUTE4_ACT={0x100, 0x6, [@m_nat={0xa0, 0x0, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @broadcast, @multicast1}}, @TCA_NAT_PARMS={0x28, 0x1, {{}, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, {0x25, 0x6, "17a3a496e0b06ed4b17c112d919b00b3961dacbd47d9dd716cb9e3eeb2118c01ec"}, {0xc}, {0xc}}}, @m_nat={0x2c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_csum={0x30, 0x0, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x454}}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendto(r2, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f00000003c0)={0x8, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @private}}}, 0x108)
setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f00000008c0)={0x6, {{0x2, 0x0, @multicast1=0xe0000002}}, {{0x2, 0x0, @broadcast}}}, 0x108)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x4282, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000d40)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

kernel console output (not intermixed with test programs):

EXT4-fs (loop3): This should not happen!! Data will be lost
[   65.834918][ T5193] 
[   65.844757][ T5193] EXT4-fs (loop3): Total free blocks count 0
[   65.850795][ T5193] EXT4-fs (loop3): Free/Dirty block details
[   65.852742][ T5210] program syz.0.449 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   65.856755][ T5193] EXT4-fs (loop3): free_blocks=68451041280
[   65.871785][ T5193] EXT4-fs (loop3): dirty_blocks=16
[   65.871856][ T5193] EXT4-fs (loop3): Block reservation details
[   65.871867][ T5193] EXT4-fs (loop3): i_reserved_data_blocks=1
[   65.893332][ T5212] 9pnet_fd: Insufficient options for proto=fd
[   65.913887][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.926593][ T5209] netlink: 4 bytes leftover after parsing attributes in process `syz.1.451'.
[   65.940102][ T5209] ip6gretap0: entered promiscuous mode
[   65.946343][ T5209] macvtap1: entered promiscuous mode
[   65.950464][ T5215] FAULT_INJECTION: forcing a failure.
[   65.950464][ T5215] name failslab, interval 1, probability 0, space 0, times 0
[   65.951679][ T5209] macvtap1: entered allmulticast mode
[   65.964229][ T5215] CPU: 0 UID: 0 PID: 5215 Comm: syz.4.452 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[   65.969684][ T5209] ip6gretap0: entered allmulticast mode
[   65.979774][ T5215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.979787][ T5215] Call Trace:
[   65.979794][ T5215]  <TASK>
[   65.979802][ T5215]  dump_stack_lvl+0xf2/0x150
[   65.979881][ T5215]  dump_stack+0x15/0x20
[   66.010563][ T5215]  should_fail_ex+0x223/0x230
[   66.010648][ T5215]  ? __kvmalloc_node_noprof+0x72/0x170
[   66.010745][ T5215]  should_failslab+0x8f/0xb0
[   66.010763][ T5215]  __kmalloc_node_noprof+0xa8/0x380
[   66.010788][ T5215]  __kvmalloc_node_noprof+0x72/0x170
[   66.010816][ T5215]  xt_alloc_table_info+0x3d/0x80
[   66.010899][ T5215]  do_ipt_set_ctl+0x66f/0x8b0
[   66.010924][ T5215]  ? _raw_spin_unlock_bh+0x36/0x40
[   66.010944][ T5215]  ? lock_sock_nested+0x10f/0x140
[   66.010987][ T5215]  nf_setsockopt+0x195/0x1b0
[   66.011013][ T5215]  ip_setsockopt+0xea/0x100
[   66.011031][ T5215]  udp_setsockopt+0x95/0xb0
[   66.011099][ T5215]  sock_common_setsockopt+0x64/0x80
[   66.011119][ T5215]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   66.011140][ T5215]  __sys_setsockopt+0x1cc/0x240
[   66.011245][ T5215]  __x64_sys_setsockopt+0x66/0x80
[   66.011270][ T5215]  x64_sys_call+0x278d/0x2d60
[   66.011292][ T5215]  do_syscall_64+0xc9/0x1c0
[   66.011309][ T5215]  ? clear_bhb_loop+0x55/0xb0
[   66.011339][ T5215]  ? clear_bhb_loop+0x55/0xb0
[   66.011407][ T5215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.011432][ T5215] RIP: 0033:0x7f9f29efdff9
[   66.011445][ T5215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.011462][ T5215] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   66.011528][ T5215] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   66.011539][ T5215] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[   66.011550][ T5215] RBP: 00007f9f28b77090 R08: 0000000000000268 R09: 0000000000000000
[   66.011562][ T5215] R10: 0000000020000580 R11: 0000000000000246 R12: 0000000000000001
[   66.011573][ T5215] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   66.011589][ T5215]  </TASK>
[   66.174105][ T4215] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.191470][ T5219] loop1: detected capacity change from 0 to 2048
[   66.200122][ T5224] program syz.4.455 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.226966][ T5219] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.272157][ T3988] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.292673][ T5233] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[   66.364099][ T5240] loop4: detected capacity change from 0 to 128
[   66.373908][ T5240] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.393030][ T5240] ext4 filesystem being mounted at /86/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   66.401517][ T5250] loop1: detected capacity change from 0 to 512
[   66.433883][ T5250] EXT4-fs error (device loop1): ext4_orphan_get:1388: inode #17: comm syz.1.465: iget: bogus i_mode (0)
[   66.445418][ T5250] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.465: couldn't read orphan inode 17 (err -117)
[   66.447705][ T3274] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   66.458171][ T5250] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.484285][ T5250] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.465: bg 0: block 7: invalid block bitmap
[   66.506322][ T5258] loop4: detected capacity change from 0 to 1024
[   66.511827][ T3988] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.530289][ T5258] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.531591][ T5258] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   66.557602][ T5258] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   66.565602][ T5260] loop3: detected capacity change from 0 to 2048
[   66.570265][ T5258] EXT4-fs (loop4): This should not happen!! Data will be lost
[   66.570265][ T5258] 
[   66.586267][ T5258] EXT4-fs (loop4): Total free blocks count 0
[   66.592252][ T5258] EXT4-fs (loop4): Free/Dirty block details
[   66.598184][ T5258] EXT4-fs (loop4): free_blocks=68451041280
[   66.604035][ T5258] EXT4-fs (loop4): dirty_blocks=16
[   66.609262][ T5258] EXT4-fs (loop4): Block reservation details
[   66.615238][ T5258] EXT4-fs (loop4): i_reserved_data_blocks=1
[   66.621798][ T5268] program syz.1.467 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   66.643669][ T5260] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.699001][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.713784][ T5279] netlink: 40 bytes leftover after parsing attributes in process `syz.2.473'.
[   66.741951][ T4215] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.742138][ T5281] loop0: detected capacity change from 0 to 2048
[   66.778752][ T5286] FAULT_INJECTION: forcing a failure.
[   66.778752][ T5286] name failslab, interval 1, probability 0, space 0, times 0
[   66.791421][ T5286] CPU: 1 UID: 0 PID: 5286 Comm: syz.4.477 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[   66.801747][ T5286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   66.811869][ T5286] Call Trace:
[   66.815135][ T5286]  <TASK>
[   66.818053][ T5286]  dump_stack_lvl+0xf2/0x150
[   66.822635][ T5286]  dump_stack+0x15/0x20
[   66.826846][ T5286]  should_fail_ex+0x223/0x230
[   66.831609][ T5286]  ? alloc_slab_obj_exts+0x32/0x80
[   66.836730][ T5286]  should_failslab+0x8f/0xb0
[   66.841399][ T5286]  __kmalloc_node_noprof+0xa8/0x380
[   66.846681][ T5286]  alloc_slab_obj_exts+0x32/0x80
[   66.851618][ T5286]  __memcg_slab_post_alloc_hook+0x31b/0x660
[   66.857592][ T5286]  ? vm_area_dup+0x2c/0x130
[   66.862093][ T5286]  kmem_cache_alloc_noprof+0x1a6/0x290
[   66.867563][ T5286]  vm_area_dup+0x2c/0x130
[   66.871938][ T5286]  __split_vma+0xf7/0x6a0
[   66.876390][ T5286]  vma_modify+0x217/0xcd0
[   66.880860][ T5286]  ? __irq_work_queue_local+0x82/0x1d0
[   66.886336][ T5286]  vma_modify_flags+0xf2/0x120
[   66.891097][ T5286]  mlock_fixup+0x113/0x450
[   66.895593][ T5286]  apply_vma_lock_flags+0x194/0x240
[   66.900783][ T5286]  do_mlock+0x35b/0x510
[   66.904931][ T5286]  ? __secure_computing+0x9f/0x1c0
[   66.910046][ T5286]  __x64_sys_mlock+0x36/0x40
[   66.914702][ T5286]  x64_sys_call+0x822/0x2d60
[   66.919315][ T5286]  do_syscall_64+0xc9/0x1c0
[   66.923826][ T5286]  ? clear_bhb_loop+0x55/0xb0
[   66.928720][ T5286]  ? clear_bhb_loop+0x55/0xb0
[   66.933436][ T5286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.939384][ T5286] RIP: 0033:0x7f9f29efdff9
[   66.943873][ T5286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.963597][ T5286] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   66.972013][ T5286] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   66.979972][ T5286] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 00000000207d8000
[   66.987944][ T5286] RBP: 00007f9f28b77090 R08: 0000000000000000 R09: 0000000000000000
[   66.995904][ T5286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.003866][ T5286] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   67.011835][ T5286]  </TASK>
[   67.039206][ T5281]  loop0: p1 < > p4
[   67.048978][ T5281] loop0: p4 size 8388608 extends beyond EOD, truncated
[   67.075100][ T5295] loop2: detected capacity change from 0 to 1024
[   67.097544][ T5295] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.112314][ T5295] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   67.127994][ T5295] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   67.140561][ T5295] EXT4-fs (loop2): This should not happen!! Data will be lost
[   67.140561][ T5295] 
[   67.150278][ T5295] EXT4-fs (loop2): Total free blocks count 0
[   67.153649][ T5307] loop0: detected capacity change from 0 to 1024
[   67.156625][ T5295] EXT4-fs (loop2): Free/Dirty block details
[   67.156640][ T5295] EXT4-fs (loop2): free_blocks=68451041280
[   67.156660][ T5295] EXT4-fs (loop2): dirty_blocks=16
[   67.176870][ T5310] loop4: detected capacity change from 0 to 1024
[   67.179759][ T5295] EXT4-fs (loop2): Block reservation details
[   67.188734][ T5307] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.192031][ T5295] EXT4-fs (loop2): i_reserved_data_blocks=1
[   67.211231][ T5308] 9pnet_fd: Insufficient options for proto=fd
[   67.223497][ T5310] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.239861][ T5310] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   67.256827][ T5310] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   67.269403][ T5310] EXT4-fs (loop4): This should not happen!! Data will be lost
[   67.269403][ T5310] 
[   67.279158][ T5310] EXT4-fs (loop4): Total free blocks count 0
[   67.285133][ T5310] EXT4-fs (loop4): Free/Dirty block details
[   67.291025][ T5310] EXT4-fs (loop4): free_blocks=68451041280
[   67.296839][ T5310] EXT4-fs (loop4): dirty_blocks=16
[   67.301938][ T5310] EXT4-fs (loop4): Block reservation details
[   67.307986][ T5310] EXT4-fs (loop4): i_reserved_data_blocks=1
[   67.314930][ T3275] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.386186][ T5318] usb usb8: usbfs: process 5318 (syz.2.487) did not claim interface 0 before use
[   67.418785][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.514131][ T5340] loop2: detected capacity change from 0 to 1024
[   67.538345][ T5340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.553628][ T5340] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   67.569872][ T5340] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   67.582565][ T5340] EXT4-fs (loop2): This should not happen!! Data will be lost
[   67.582565][ T5340] 
[   67.592242][ T5340] EXT4-fs (loop2): Total free blocks count 0
[   67.598330][ T5340] EXT4-fs (loop2): Free/Dirty block details
[   67.604288][ T5340] EXT4-fs (loop2): free_blocks=68451041280
[   67.610234][ T5340] EXT4-fs (loop2): dirty_blocks=16
[   67.615499][ T5340] EXT4-fs (loop2): Block reservation details
[   67.621484][ T5340] EXT4-fs (loop2): i_reserved_data_blocks=1
[   67.671213][   T29] kauditd_printk_skb: 1090 callbacks suppressed
[   67.671227][   T29] audit: type=1400 audit(1727671871.849:2451): avc:  denied  { create } for  pid=5352 comm="syz.4.501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   67.698221][ T3275] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.707567][   T29] audit: type=1400 audit(1727671871.849:2452): avc:  denied  { bind } for  pid=5352 comm="syz.4.501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   67.726915][   T29] audit: type=1400 audit(1727671871.849:2453): avc:  denied  { name_bind } for  pid=5352 comm="syz.4.501" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   67.747671][   T29] audit: type=1400 audit(1727671871.849:2454): avc:  denied  { node_bind } for  pid=5352 comm="syz.4.501" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   67.768477][   T29] audit: type=1400 audit(1727671871.849:2455): avc:  denied  { listen } for  pid=5352 comm="syz.4.501" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   67.788971][   T29] audit: type=1400 audit(1727671871.849:2456): avc:  denied  { connect } for  pid=5352 comm="syz.4.501" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   67.808628][   T29] audit: type=1400 audit(1727671871.849:2457): avc:  denied  { name_connect } for  pid=5352 comm="syz.4.501" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   67.830012][   T29] audit: type=1400 audit(1727671871.849:2458): avc:  denied  { getopt } for  pid=5352 comm="syz.4.501" laddr=127.0.0.1 lport=34420 faddr=127.0.0.2 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   67.855963][   T29] audit: type=1400 audit(1727671872.029:2459): avc:  denied  { read } for  pid=2950 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   67.878115][   T29] audit: type=1400 audit(1727671872.029:2460): avc:  denied  { search } for  pid=2950 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   67.924416][ T5360] loop3: detected capacity change from 0 to 764
[   67.931294][ T5360] iso9660: Unknown parameter '0xffffffffffffffffÿÿÿÿ'
[   67.940604][ T5360] FAULT_INJECTION: forcing a failure.
[   67.940604][ T5360] name failslab, interval 1, probability 0, space 0, times 0
[   67.953324][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.3.503 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[   67.963567][ T5360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   67.973652][ T5360] Call Trace:
[   67.976924][ T5360]  <TASK>
[   67.979853][ T5360]  dump_stack_lvl+0xf2/0x150
[   67.984521][ T5360]  dump_stack+0x15/0x20
[   67.988694][ T5360]  should_fail_ex+0x223/0x230
[   67.993403][ T5360]  ? alloc_fs_context+0x44/0x4e0
[   67.998341][ T5360]  should_failslab+0x8f/0xb0
[   68.002995][ T5360]  __kmalloc_cache_noprof+0x4b/0x2a0
[   68.008411][ T5360]  alloc_fs_context+0x44/0x4e0
[   68.013188][ T5360]  ? strncmp+0x34/0x70
[   68.017279][ T5360]  fs_context_for_mount+0x21/0x30
[   68.022370][ T5360]  do_new_mount+0xf3/0x690
[   68.026817][ T5360]  path_mount+0x49b/0xb30
[   68.031175][ T5360]  __se_sys_mount+0x27c/0x2d0
[   68.035889][ T5360]  __x64_sys_mount+0x67/0x80
[   68.040558][ T5360]  x64_sys_call+0x203e/0x2d60
[   68.045238][ T5360]  do_syscall_64+0xc9/0x1c0
[   68.049751][ T5360]  ? clear_bhb_loop+0x55/0xb0
[   68.054454][ T5360]  ? clear_bhb_loop+0x55/0xb0
[   68.059176][ T5360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.065081][ T5360] RIP: 0033:0x7fe08047dff9
[   68.069545][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.089694][ T5360] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   68.098106][ T5360] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   68.106105][ T5360] RDX: 0000000020000540 RSI: 0000000020000480 RDI: 0000000020000400
[   68.114074][ T5360] RBP: 00007fe07f0f7090 R08: 00000000200004c0 R09: 0000000000000000
[   68.122101][ T5360] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[   68.130154][ T5360] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   68.138168][ T5360]  </TASK>
[   68.174662][ T3271] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.207363][ T5373] loop2: detected capacity change from 0 to 512
[   68.214170][ T5373] EXT4-fs (loop2): filesystem is read-only
[   68.230459][ T5377] mmap: syz.0.512 (5377) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   68.245422][ T5384] netlink: 12 bytes leftover after parsing attributes in process `syz.3.513'.
[   68.320305][ T5392] 9pnet_fd: Insufficient options for proto=fd
[   68.327415][ T5391] loop2: detected capacity change from 0 to 2048
[   68.332872][ T5388] loop0: detected capacity change from 0 to 2048
[   68.342989][ T5388] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.382282][ T5396] loop1: detected capacity change from 0 to 1024
[   68.383830][ T5391]  loop2: p1 < > p4
[   68.393664][ T3271] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.396470][ T5391] loop2: p4 size 8388608 extends beyond EOD, truncated
[   68.421716][ T5396] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.441736][ T5401] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[   68.457593][ T5396] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   68.469344][ T5402] loop0: detected capacity change from 0 to 1024
[   68.472677][ T5396] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   68.491390][ T5396] EXT4-fs (loop1): This should not happen!! Data will be lost
[   68.491390][ T5396] 
[   68.491671][ T5401] netlink: 4 bytes leftover after parsing attributes in process `syz.4.519'.
[   68.501195][ T5396] EXT4-fs (loop1): Total free blocks count 0
[   68.501214][ T5396] EXT4-fs (loop1): Free/Dirty block details
[   68.501225][ T5396] EXT4-fs (loop1): free_blocks=68451041280
[   68.510041][ T5402] EXT4-fs (loop0): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   68.515964][ T5396] EXT4-fs (loop1): dirty_blocks=16
[   68.542866][ T5396] EXT4-fs (loop1): Block reservation details
[   68.548952][ T5396] EXT4-fs (loop1): i_reserved_data_blocks=1
[   68.570048][ T5402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.586323][ T5401] team0 (unregistering): Port device team_slave_0 removed
[   68.595373][ T5401] team0 (unregistering): Port device team_slave_1 removed
[   68.609171][ T5402] netlink: '+}[@': attribute type 1 has an invalid length.
[   68.623880][ T5402] 8021q: adding VLAN 0 to HW filter on device bond4
[   68.640480][ T5402] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   68.651528][ T5402] vlan5: entered promiscuous mode
[   68.656624][ T5402] bond4: entered promiscuous mode
[   68.662020][ T5402] vlan5: entered allmulticast mode
[   68.662040][ T5420] FAULT_INJECTION: forcing a failure.
[   68.662040][ T5420] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.667204][ T5402] bond4: entered allmulticast mode
[   68.680190][ T5420] CPU: 0 UID: 0 PID: 5420 Comm: syz.2.525 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[   68.680219][ T5420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.705626][ T5420] Call Trace:
[   68.708929][ T5420]  <TASK>
[   68.711927][ T5420]  dump_stack_lvl+0xf2/0x150
[   68.716516][ T5420]  dump_stack+0x15/0x20
[   68.720663][ T5420]  should_fail_ex+0x223/0x230
[   68.725372][ T5420]  should_fail+0xb/0x10
[   68.729534][ T5420]  should_fail_usercopy+0x1a/0x20
[   68.734668][ T5420]  _copy_from_user+0x1e/0xd0
[   68.739344][ T5420]  move_addr_to_kernel+0x82/0x120
[   68.744367][ T5420]  __sys_connect+0x74/0x1b0
[   68.748871][ T5420]  __x64_sys_connect+0x41/0x50
[   68.753662][ T5420]  x64_sys_call+0x2220/0x2d60
[   68.758359][ T5420]  do_syscall_64+0xc9/0x1c0
[   68.762986][ T5420]  ? clear_bhb_loop+0x55/0xb0
[   68.767687][ T5420]  ? clear_bhb_loop+0x55/0xb0
[   68.772363][ T5420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.778368][ T5420] RIP: 0033:0x7f399f9adff9
[   68.782877][ T5420] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.802677][ T5420] RSP: 002b:00007f399e621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   68.811145][ T5420] RAX: ffffffffffffffda RBX: 00007f399fb65f80 RCX: 00007f399f9adff9
[   68.819124][ T5420] RDX: 000000000000001c RSI: 0000000020000040 RDI: 0000000000000006
[   68.827092][ T5420] RBP: 00007f399e621090 R08: 0000000000000000 R09: 0000000000000000
[   68.835059][ T5420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.843066][ T5420] R13: 0000000000000000 R14: 00007f399fb65f80 R15: 00007ffc7173a398
[   68.851059][ T5420]  </TASK>
[   68.880875][ T5424] loop2: detected capacity change from 0 to 512
[   68.887509][ T5424] EXT4-fs: Ignoring removed bh option
[   68.893730][ T5424] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   68.913841][ T5424] EXT4-fs (loop2): 1 truncate cleaned up
[   68.921201][ T5424] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.946423][ T5424] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.957474][ T3988] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.976943][ T5428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.528'.
[   68.988859][ T5428] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.047545][ T5428] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.103726][ T5447] loop4: detected capacity change from 0 to 512
[   69.117887][ T5428] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.136135][ T5449] loop3: detected capacity change from 0 to 1024
[   69.143910][ T5447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.148547][ T5449] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.157083][ T5447] ext4 filesystem being mounted at /105/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.174323][ T5449] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   69.194464][ T5447] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   69.194688][ T5449] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   69.217405][ T5449] EXT4-fs (loop3): This should not happen!! Data will be lost
[   69.217405][ T5449] 
[   69.227350][ T5449] EXT4-fs (loop3): Total free blocks count 0
[   69.233329][ T5449] EXT4-fs (loop3): Free/Dirty block details
[   69.239238][ T5449] EXT4-fs (loop3): free_blocks=68451041280
[   69.245065][ T5449] EXT4-fs (loop3): dirty_blocks=16
[   69.250292][ T5449] EXT4-fs (loop3): Block reservation details
[   69.256309][ T5449] EXT4-fs (loop3): i_reserved_data_blocks=1
[   69.268782][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.300687][ T5456] loop4: detected capacity change from 0 to 1024
[   69.307604][ T5456] EXT4-fs: Ignoring removed orlov option
[   69.313510][ T5456] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.323636][ T5428] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.329354][ T3271] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.347399][ T5456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.361759][ T4215] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.403978][ T5469] loop0: detected capacity change from 0 to 1024
[   69.404570][ T5467] loop3: detected capacity change from 0 to 1024
[   69.417741][ T5467] EXT4-fs: Ignoring removed orlov option
[   69.418818][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.423570][ T5467] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.434245][ T5469] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.459899][ T5467] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.466642][ T5467] FAULT_INJECTION: forcing a failure.
[   69.466642][ T5467] name failslab, interval 1, probability 0, space 0, times 0
[   69.466663][ T5467] CPU: 0 UID: 0 PID: 5467 Comm: syz.3.540 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[   69.466688][ T5467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.466698][ T5467] Call Trace:
[   69.466704][ T5467]  <TASK>
[   69.466710][ T5467]  dump_stack_lvl+0xf2/0x150
[   69.466736][ T5467]  dump_stack+0x15/0x20
[   69.466755][ T5467]  should_fail_ex+0x223/0x230
[   69.466785][ T5467]  ? __alloc_skb+0x10b/0x310
[   69.466889][ T5467]  should_failslab+0x8f/0xb0
[   69.466907][ T5467]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   69.466935][ T5467]  __alloc_skb+0x10b/0x310
[   69.466962][ T5467]  audit_log_start+0x368/0x6b0
[   69.466989][ T5467]  audit_seccomp+0x4b/0x130
[   69.467022][ T5467]  __seccomp_filter+0x6fa/0x1180
[   69.467089][ T5467]  ? proc_fail_nth_write+0x12a/0x150
[   69.467120][ T5467]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   69.467215][ T5467]  ? vfs_write+0x580/0x910
[   69.467243][ T5467]  ? __fget_files+0x1d4/0x210
[   69.467380][ T5467]  __secure_computing+0x9f/0x1c0
[   69.467407][ T5467]  syscall_trace_enter+0xd1/0x1f0
[   69.467437][ T5467]  ? fpregs_assert_state_consistent+0x83/0xa0
[   69.467519][ T5467]  do_syscall_64+0xaa/0x1c0
[   69.467587][ T5467]  ? clear_bhb_loop+0x55/0xb0
[   69.467618][ T5467]  ? clear_bhb_loop+0x55/0xb0
[   69.467648][ T5467]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.467723][ T5467] RIP: 0033:0x7fe08047dff9
[   69.467735][ T5467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.467755][ T5467] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[   69.467776][ T5467] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   69.467789][ T5467] RDX: 0000000000009e4b RSI: 0000000020000640 RDI: 000000000000000e
[   69.467847][ T5467] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   69.467861][ T5467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.467873][ T5467] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   69.467893][ T5467]  </TASK>
[   69.477483][ T4215] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.484764][ T5477] blktrace: Concurrent blktraces are not allowed on sg0
[   69.814959][ T5489] program syz.4.548 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.847413][ T5491] 9pnet_fd: Insufficient options for proto=fd
[   69.854634][ T5492] loop1: detected capacity change from 0 to 1024
[   69.861553][ T5492] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   69.886920][ T5492] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.900602][ T5492] netlink: '+}[@': attribute type 1 has an invalid length.
[   69.912384][ T5492] 8021q: adding VLAN 0 to HW filter on device bond2
[   69.921458][ T5492] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   69.931882][ T5492] vlan3: entered promiscuous mode
[   69.936987][ T5492] bond2: entered promiscuous mode
[   69.942076][ T5492] vlan3: entered allmulticast mode
[   69.947261][ T5492] bond2: entered allmulticast mode
[   70.120535][ T5428] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.131724][ T5428] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.142192][ T5428] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.152941][ T5428] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.176678][ T5499] loop2: detected capacity change from 0 to 1024
[   70.187137][ T5499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.200971][ T5499] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   70.216478][ T5499] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   70.229146][ T5499] EXT4-fs (loop2): This should not happen!! Data will be lost
[   70.229146][ T5499] 
[   70.238830][ T5499] EXT4-fs (loop2): Total free blocks count 0
[   70.244798][ T5499] EXT4-fs (loop2): Free/Dirty block details
[   70.250916][ T5499] EXT4-fs (loop2): free_blocks=68451041280
[   70.256743][ T5499] EXT4-fs (loop2): dirty_blocks=16
[   70.261863][ T5499] EXT4-fs (loop2): Block reservation details
[   70.267887][ T5499] EXT4-fs (loop2): i_reserved_data_blocks=1
[   70.305882][ T5469] ------------[ cut here ]------------
[   70.311437][ T5469] refcount_t: underflow; use-after-free.
[   70.317288][ T5469] WARNING: CPU: 0 PID: 5469 at lib/refcount.c:28 refcount_warn_saturate+0x1c6/0x230
[   70.326691][ T5469] Modules linked in:
[   70.330591][ T5469] CPU: 0 UID: 0 PID: 5469 Comm: syz.0.542 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[   70.340902][ T5469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.351032][ T5469] RIP: 0010:refcount_warn_saturate+0x1c6/0x230
[   70.357272][ T5469] Code: 72 ff ff ff e8 0b 88 71 ff 48 c7 c7 be d6 b2 86 e8 9f 6d 8a ff c6 05 b6 2d f4 04 01 90 48 c7 c7 c2 a5 1b 86 e8 db 4c 53 ff 90 <0f> 0b 90 90 e9 43 ff ff ff e8 dc 87 71 ff 48 c7 c7 bb d6 b2 86 e8
[   70.377011][ T5469] RSP: 0018:ffffc9000c417cd8 EFLAGS: 00010246
[   70.383155][ T5469] RAX: ca464d001584ce00 RBX: ffff88810b00a6e4 RCX: 0000000000040000
[   70.391144][ T5469] RDX: ffffc90001a69000 RSI: 0000000000001770 RDI: 0000000000001771
[   70.399192][ T5469] RBP: 0000000000000003 R08: ffffffff8111f757 R09: 0000000000000000
[   70.407271][ T5469] R10: 0001ffffffffffff R11: ffff88810a291080 R12: ffff888115d6c868
[   70.415316][ T5469] R13: ffff888115d6c818 R14: ffff88810b00a6e4 R15: 0000000000000000
[   70.423407][ T5469] FS:  00007fbfcbe076c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[   70.432335][ T5469] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   70.439043][ T5469] CR2: ffffffffd88f0000 CR3: 0000000115274000 CR4: 00000000003506f0
[   70.447081][ T5469] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   70.455033][ T5469] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[   70.463055][ T5469] Call Trace:
[   70.466335][ T5469]  <TASK>
[   70.469247][ T5469]  ? __warn+0x141/0x350
[   70.473394][ T5469]  ? report_bug+0x315/0x420
[   70.477894][ T5469]  ? refcount_warn_saturate+0x1c6/0x230
[   70.483423][ T5469]  ? handle_bug+0x60/0x90
[   70.487825][ T5469]  ? exc_invalid_op+0x1a/0x50
[   70.492665][ T5469]  ? asm_exc_invalid_op+0x1a/0x20
[   70.497707][ T5469]  ? __warn_printk+0x167/0x1b0
[   70.502477][ T5469]  ? refcount_warn_saturate+0x1c6/0x230
[   70.508037][ T5469]  ? refcount_warn_saturate+0x1c5/0x230
[   70.513620][ T5469]  sk_skb_reason_drop+0xe9/0x290
[   70.518638][ T5469]  j1939_session_put+0x157/0x2a0
[   70.523622][ T5469]  j1939_sk_release+0x278/0x4f0
[   70.528505][ T5469]  ? __pfx_autoremove_wake_function+0x10/0x10
[   70.534573][ T5469]  sock_close+0x68/0x150
[   70.539016][ T5469]  ? __pfx_sock_close+0x10/0x10
[   70.543858][ T5469]  __fput+0x17a/0x6d0
[   70.547903][ T5469]  ____fput+0x1c/0x30
[   70.551896][ T5469]  task_work_run+0x13a/0x1a0
[   70.556550][ T5469]  syscall_exit_to_user_mode+0xbe/0x130
[   70.562104][ T5469]  do_syscall_64+0xd6/0x1c0
[   70.566608][ T5469]  ? clear_bhb_loop+0x55/0xb0
[   70.571276][ T5469]  ? clear_bhb_loop+0x55/0xb0
[   70.575981][ T5469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.581920][ T5469] RIP: 0033:0x7fbfcd18dff9
[   70.586369][ T5469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.606077][ T5469] RSP: 002b:00007fbfcbe07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000124
[   70.614684][ T5469] RAX: 000000000000000c RBX: 00007fbfcd345f80 RCX: 00007fbfcd18dff9
[   70.614704][ T5469] RDX: 0000000000000000 RSI: 000000000000000c RDI: 000000000000000d
[   70.630819][ T5469] RBP: 00007fbfcd200296 R08: 0000000000000000 R09: 0000000000000000
[   70.638805][ T5469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   70.646796][ T5469] R13: 0000000000000000 R14: 00007fbfcd345f80 R15: 00007ffdc1b2abf8
[   70.654792][ T5469]  </TASK>
[   70.657809][ T5469] ---[ end trace 0000000000000000 ]---
[   70.664503][ T5507] FAULT_INJECTION: forcing a failure.
[   70.664503][ T5507] name failslab, interval 1, probability 0, space 0, times 0
[   70.677745][ T5507] CPU: 0 UID: 0 PID: 5507 Comm: syz.3.552 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   70.689449][ T5507] Tainted: [W]=WARN
[   70.693241][ T5507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.703351][ T5507] Call Trace:
[   70.706615][ T5507]  <TASK>
[   70.709533][ T5507]  dump_stack_lvl+0xf2/0x150
[   70.714106][ T5507]  dump_stack+0x15/0x20
[   70.718330][ T5507]  should_fail_ex+0x223/0x230
[   70.723014][ T5507]  ? skb_clone+0x154/0x1f0
[   70.727508][ T5507]  should_failslab+0x8f/0xb0
[   70.732127][ T5507]  kmem_cache_alloc_noprof+0x4c/0x290
[   70.737519][ T5507]  skb_clone+0x154/0x1f0
[   70.741766][ T5507]  __netlink_deliver_tap+0x2bd/0x4c0
[   70.747041][ T5507]  netlink_unicast+0x64a/0x670
[   70.751792][ T5507]  netlink_sendmsg+0x5cc/0x6e0
[   70.756587][ T5507]  ? __pfx_netlink_sendmsg+0x10/0x10
[   70.761849][ T5507]  __sock_sendmsg+0x140/0x180
[   70.766508][ T5507]  ____sys_sendmsg+0x312/0x410
[   70.771347][ T5507]  __sys_sendmsg+0x1d9/0x270
[   70.775968][ T5507]  __x64_sys_sendmsg+0x46/0x50
[   70.780717][ T5507]  x64_sys_call+0x2689/0x2d60
[   70.785482][ T5507]  do_syscall_64+0xc9/0x1c0
[   70.789965][ T5507]  ? clear_bhb_loop+0x55/0xb0
[   70.794674][ T5507]  ? clear_bhb_loop+0x55/0xb0
[   70.799348][ T5507]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.805300][ T5507] RIP: 0033:0x7fe08047dff9
[   70.809703][ T5507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.829310][ T5507] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   70.837899][ T5507] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   70.845854][ T5507] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[   70.854102][ T5507] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   70.862062][ T5507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.870082][ T5507] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   70.878042][ T5507]  </TASK>
[   70.883968][ T3271] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.900661][ T3275] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.941801][ T3988] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.974354][ T5522] syz.2.558[5522] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.974480][ T5522] syz.2.558[5522] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.987762][ T5522] syz.2.558[5522] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.003875][ T5520] blktrace: Concurrent blktraces are not allowed on sg0
[   71.005088][ T5511] loop4: detected capacity change from 0 to 2048
[   71.017045][ T5525] loop0: detected capacity change from 0 to 128
[   71.035480][ T5525] vfat: Unknown parameter 'kfree'
[   71.054261][ T5528] program syz.2.558 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   71.074627][ T5524] netlink: 12 bytes leftover after parsing attributes in process `syz.3.560'.
[   71.082197][ T5511] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.154308][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.210773][ T5542] loop4: detected capacity change from 0 to 1024
[   71.228388][ T5542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.247130][ T5542] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   71.263354][ T5552] FAULT_INJECTION: forcing a failure.
[   71.263354][ T5552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.276633][ T5552] CPU: 0 UID: 0 PID: 5552 Comm: syz.3.569 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   71.288380][ T5552] Tainted: [W]=WARN
[   71.292266][ T5552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.302332][ T5552] Call Trace:
[   71.305614][ T5552]  <TASK>
[   71.308547][ T5552]  dump_stack_lvl+0xf2/0x150
[   71.313310][ T5552]  dump_stack+0x15/0x20
[   71.317473][ T5552]  should_fail_ex+0x223/0x230
[   71.322209][ T5552]  should_fail+0xb/0x10
[   71.326444][ T5552]  should_fail_usercopy+0x1a/0x20
[   71.331596][ T5552]  _copy_from_user+0x1e/0xd0
[   71.336284][ T5552]  copy_msghdr_from_user+0x54/0x2a0
[   71.341481][ T5552]  __sys_sendmsg+0x171/0x270
[   71.346200][ T5552]  __x64_sys_sendmsg+0x46/0x50
[   71.350992][ T5552]  x64_sys_call+0x2689/0x2d60
[   71.355760][ T5552]  do_syscall_64+0xc9/0x1c0
[   71.360310][ T5552]  ? clear_bhb_loop+0x55/0xb0
[   71.365122][ T5552]  ? clear_bhb_loop+0x55/0xb0
[   71.369971][ T5552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.375947][ T5552] RIP: 0033:0x7fe08047dff9
[   71.380380][ T5552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.400715][ T5552] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.409314][ T5552] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   71.417291][ T5552] RDX: 0000000000000000 RSI: 0000000020001ac0 RDI: 0000000000000004
[   71.425316][ T5552] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   71.433284][ T5552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.435671][ T5542] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   71.441241][ T5552] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   71.441265][ T5552]  </TASK>
[   71.453807][ T5542] EXT4-fs (loop4): This should not happen!! Data will be lost
[   71.453807][ T5542] 
[   71.474519][ T5542] EXT4-fs (loop4): Total free blocks count 0
[   71.474535][ T5542] EXT4-fs (loop4): Free/Dirty block details
[   71.474586][ T5542] EXT4-fs (loop4): free_blocks=68451041280
[   71.492407][ T5542] EXT4-fs (loop4): dirty_blocks=16
[   71.492422][ T5542] EXT4-fs (loop4): Block reservation details
[   71.503689][ T5542] EXT4-fs (loop4): i_reserved_data_blocks=1
[   71.570863][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.610161][ T5561] blktrace: Concurrent blktraces are not allowed on sg0
[   71.636676][ T5563] FAULT_INJECTION: forcing a failure.
[   71.636676][ T5563] name failslab, interval 1, probability 0, space 0, times 0
[   71.649409][ T5563] CPU: 0 UID: 0 PID: 5563 Comm: syz.3.573 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   71.661137][ T5563] Tainted: [W]=WARN
[   71.665008][ T5563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.675119][ T5563] Call Trace:
[   71.678395][ T5563]  <TASK>
[   71.681417][ T5563]  dump_stack_lvl+0xf2/0x150
[   71.686072][ T5563]  dump_stack+0x15/0x20
[   71.690308][ T5563]  should_fail_ex+0x223/0x230
[   71.694993][ T5563]  ? skb_clone+0x154/0x1f0
[   71.699486][ T5563]  should_failslab+0x8f/0xb0
[   71.704126][ T5563]  kmem_cache_alloc_noprof+0x4c/0x290
[   71.709554][ T5563]  skb_clone+0x154/0x1f0
[   71.713861][ T5563]  __netlink_deliver_tap+0x2bd/0x4c0
[   71.719209][ T5563]  netlink_unicast+0x64a/0x670
[   71.719237][ T5563]  netlink_sendmsg+0x5cc/0x6e0
[   71.719297][ T5563]  ? __pfx_netlink_sendmsg+0x10/0x10
[   71.734087][ T5563]  __sock_sendmsg+0x140/0x180
[   71.734115][ T5563]  ____sys_sendmsg+0x312/0x410
[   71.734154][ T5563]  __sys_sendmsg+0x1d9/0x270
[   71.748271][ T5563]  __x64_sys_sendmsg+0x46/0x50
[   71.748301][ T5563]  x64_sys_call+0x2689/0x2d60
[   71.757943][ T5563]  do_syscall_64+0xc9/0x1c0
[   71.757980][ T5563]  ? clear_bhb_loop+0x55/0xb0
[   71.758007][ T5563]  ? clear_bhb_loop+0x55/0xb0
[   71.758031][ T5563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.777811][ T5563] RIP: 0033:0x7fe08047dff9
[   71.777829][ T5563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.777846][ T5563] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.777863][ T5563] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   71.777911][ T5563] RDX: 0000000000000000 RSI: 0000000020000900 RDI: 0000000000000005
[   71.777923][ T5563] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   71.777993][ T5563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.778003][ T5563] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   71.778020][ T5563]  </TASK>
[   71.792931][ T5563] netlink: 52 bytes leftover after parsing attributes in process `syz.3.573'.
[   71.828957][ T5563] netlink: 1528 bytes leftover after parsing attributes in process `syz.3.573'.
[   71.895501][ T5574] loop3: detected capacity change from 0 to 512
[   71.902473][ T5574] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[   71.978855][ T5571] loop4: detected capacity change from 0 to 2048
[   71.998486][ T5579] loop3: detected capacity change from 0 to 512
[   72.018009][ T5571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.070522][ T5579] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.107459][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.122847][ T5588] loop0: detected capacity change from 0 to 164
[   72.145890][ T5579] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.576: bg 0: block 248: padding at end of block bitmap is not set
[   72.163713][ T5579] EXT4-fs (loop3): Remounting filesystem read-only
[   72.170855][ T5579] EXT4-fs (loop3): 1 truncate cleaned up
[   72.179499][ T5579] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.192498][ T5579] SELinux: (dev loop3, type ext4) getxattr errno 5
[   72.197796][ T5594] loop4: detected capacity change from 0 to 1024
[   72.200689][ T5579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.218424][ T5598] blktrace: Concurrent blktraces are not allowed on sg0
[   72.227027][   T24] kernel write not supported for file /213/attr/keycreate (pid: 24 comm: kworker/1:0)
[   72.251419][ T5594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.268523][ T5594] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   72.275640][ T5605] syz.0.587[5605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.283535][ T5605] syz.0.587[5605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.284734][ T5594] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   72.297082][ T5605] syz.0.587[5605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.306164][ T5594] EXT4-fs (loop4): This should not happen!! Data will be lost
[   72.306164][ T5594] 
[   72.339835][ T5594] EXT4-fs (loop4): Total free blocks count 0
[   72.345859][ T5594] EXT4-fs (loop4): Free/Dirty block details
[   72.345897][ T5594] EXT4-fs (loop4): free_blocks=68451041280
[   72.345911][ T5594] EXT4-fs (loop4): dirty_blocks=16
[   72.345923][ T5594] EXT4-fs (loop4): Block reservation details
[   72.345931][ T5594] EXT4-fs (loop4): i_reserved_data_blocks=1
[   72.348614][ T5607] tap0: tun_chr_ioctl cmd 1074025680
[   72.427560][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.438362][ T5609] program syz.0.587 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   72.488311][ T5614] SELinux: security_context_str_to_sid (¯/) failed with errno=-22
[   72.496391][ T5614] SELinux: security_context_str_to_sid (ramfs) failed with errno=-22
[   72.512108][ T5615] program syz.4.590 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   72.994735][ T5619] loop1: detected capacity change from 0 to 2048
[   73.006867][ T5619] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.030107][ T3988] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.048889][ T5624] loop1: detected capacity change from 0 to 512
[   73.055913][ T5624] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   73.086633][ T5624] FAULT_INJECTION: forcing a failure.
[   73.086633][ T5624] name failslab, interval 1, probability 0, space 0, times 0
[   73.099800][ T5624] CPU: 0 UID: 0 PID: 5624 Comm: +}[@ Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   73.111222][ T5624] Tainted: [W]=WARN
[   73.111230][ T5624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.125257][ T5624] Call Trace:
[   73.128522][ T5624]  <TASK>
[   73.131437][ T5624]  dump_stack_lvl+0xf2/0x150
[   73.136134][ T5624]  dump_stack+0x15/0x20
[   73.140336][ T5624]  should_fail_ex+0x223/0x230
[   73.145004][ T5624]  ? security_inode_alloc+0x32/0x100
[   73.150356][ T5624]  should_failslab+0x8f/0xb0
[   73.155045][ T5624]  kmem_cache_alloc_noprof+0x4c/0x290
[   73.160412][ T5624]  security_inode_alloc+0x32/0x100
[   73.165520][ T5624]  inode_init_always+0x439/0x480
[   73.170575][ T5624]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   73.176031][ T5624]  alloc_inode+0x7d/0x160
[   73.180362][ T5624]  new_inode+0x1e/0x100
[   73.184501][ T5624]  shmem_get_inode+0x24e/0x710
[   73.189252][ T5624]  __shmem_file_setup+0x127/0x1f0
[   73.194328][ T5624]  shmem_file_setup+0x3b/0x50
[   73.199109][ T5624]  __se_sys_memfd_create+0x31d/0x5c0
[   73.204482][ T5624]  __x64_sys_memfd_create+0x31/0x40
[   73.209797][ T5624]  x64_sys_call+0x2891/0x2d60
[   73.214524][ T5624]  do_syscall_64+0xc9/0x1c0
[   73.219035][ T5624]  ? clear_bhb_loop+0x55/0xb0
[   73.223843][ T5624]  ? clear_bhb_loop+0x55/0xb0
[   73.228541][ T5624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.234475][ T5624] RIP: 0033:0x7f9dfd85dff9
[   73.238908][ T5624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.258593][ T5624] RSP: 002b:00007f9dfc4d0e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   73.267019][ T5624] RAX: ffffffffffffffda RBX: 000000000000050a RCX: 00007f9dfd85dff9
[   73.274990][ T5624] RDX: 00007f9dfc4d0ef0 RSI: 0000000000000000 RDI: 00007f9dfd8d0b02
[   73.283184][ T5624] RBP: 0000000020000200 R08: 00007f9dfc4d0bb7 R09: 00007f9dfc4d0e40
[   73.291216][ T5624] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[   73.299337][ T5624] R13: 00007f9dfc4d0ef0 R14: 00007f9dfc4d0eb0 R15: 0000000020000d00
[   73.299358][ T5624]  </TASK>
[   73.341649][ T5634] blktrace: Concurrent blktraces are not allowed on sg0
[   73.375103][ T5638] loop0: detected capacity change from 0 to 1024
[   73.378390][   T29] kauditd_printk_skb: 321 callbacks suppressed
[   73.378404][   T29] audit: type=1326 audit(1727671877.559:2778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5639 comm="syz.2.600" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f399f9adff9 code=0x0
[   73.397056][ T5638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.426932][ T5638] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   73.441938][ T5638] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   73.454545][ T5638] EXT4-fs (loop0): This should not happen!! Data will be lost
[   73.454545][ T5638] 
[   73.464424][ T5638] EXT4-fs (loop0): Total free blocks count 0
[   73.470564][ T5638] EXT4-fs (loop0): Free/Dirty block details
[   73.476549][ T5638] EXT4-fs (loop0): free_blocks=68451041280
[   73.482350][ T5638] EXT4-fs (loop0): dirty_blocks=16
[   73.487631][ T5638] EXT4-fs (loop0): Block reservation details
[   73.493708][ T5638] EXT4-fs (loop0): i_reserved_data_blocks=1
[   73.521704][   T29] audit: type=1326 audit(1727671877.699:2779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5637 comm="syz.0.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfcd18dff9 code=0x7ffc0000
[   73.545296][   T29] audit: type=1326 audit(1727671877.699:2780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5637 comm="syz.0.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfcd18dff9 code=0x7ffc0000
[   73.568752][   T29] audit: type=1326 audit(1727671877.699:2781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5637 comm="syz.0.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7fbfcd18dff9 code=0x7ffc0000
[   73.592139][   T29] audit: type=1326 audit(1727671877.699:2782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5637 comm="syz.0.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfcd18dff9 code=0x7ffc0000
[   73.615521][   T29] audit: type=1326 audit(1727671877.699:2783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5637 comm="syz.0.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fbfcd18dff9 code=0x7ffc0000
[   73.639006][   T29] audit: type=1326 audit(1727671877.699:2784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5637 comm="syz.0.599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfcd18dff9 code=0x7ffc0000
[   73.677776][ T3271] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.705588][   T29] audit: type=1326 audit(1727671877.879:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5647 comm="syz.0.602" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbfcd18dff9 code=0x0
[   73.807609][ T3330] kernel write not supported for file /337/attr/keycreate (pid: 3330 comm: kworker/0:2)
[   74.186534][ T5651] loop4: detected capacity change from 0 to 2048
[   74.207264][ T5651] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.233485][ T5656] syz.2.604[5656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.233607][ T5656] syz.2.604[5656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.233653][ T3274] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.245207][ T5656] syz.2.604[5656] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.321879][ T5661] program syz.2.604 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   74.336168][ T5662] program syz.4.606 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   74.570897][ T5668] blktrace: Concurrent blktraces are not allowed on sg0
[   74.601522][   T29] audit: type=1326 audit(1727671878.779:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5671 comm="syz.0.611" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbfcd18dff9 code=0x0
[   74.913546][ T5676] loop3: detected capacity change from 0 to 1024
[   74.927317][ T5676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.940851][ T5676] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   74.955924][ T5676] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   74.968581][ T5676] EXT4-fs (loop3): This should not happen!! Data will be lost
[   74.968581][ T5676] 
[   74.978231][ T5676] EXT4-fs (loop3): Total free blocks count 0
[   74.978246][ T5676] EXT4-fs (loop3): Free/Dirty block details
[   74.978257][ T5676] EXT4-fs (loop3): free_blocks=68451041280
[   74.978271][ T5676] EXT4-fs (loop3): dirty_blocks=16
[   75.001761][ T5676] EXT4-fs (loop3): Block reservation details
[   75.001778][ T5676] EXT4-fs (loop3): i_reserved_data_blocks=1
[   75.034023][   T29] audit: type=1326 audit(1727671879.209:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.3.612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08047dff9 code=0x7ffc0000
[   75.093954][ T5682] loop3: detected capacity change from 0 to 1024
[   75.102124][ T5682] EXT4-fs (loop3): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   75.115028][ T5686] loop2: detected capacity change from 0 to 512
[   75.137077][ T5682] netlink: '+}[@': attribute type 1 has an invalid length.
[   75.146270][ T5686] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   75.162456][ T5682] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.197591][ T5692] loop4: detected capacity change from 0 to 8192
[   75.204897][ T5682] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   75.225196][ T5682] vlan2: entered promiscuous mode
[   75.230301][ T5682] bond1: entered promiscuous mode
[   75.235602][ T5682] vlan2: entered allmulticast mode
[   75.240741][ T5682] bond1: entered allmulticast mode
[   75.326917][ T5699] syz.4.619[5699] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.327449][ T3330] kernel write not supported for file /420/attr/keycreate (pid: 3330 comm: kworker/0:2)
[   75.327474][ T5699] netlink: 'syz.4.619': attribute type 5 has an invalid length.
[   75.379238][ T5707] blktrace: Concurrent blktraces are not allowed on sg0
[   75.412089][ T5711] loop4: detected capacity change from 0 to 1024
[   75.428503][ T5711] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   75.444620][ T5711] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   75.457295][ T5711] EXT4-fs (loop4): This should not happen!! Data will be lost
[   75.457295][ T5711] 
[   75.466983][ T5711] EXT4-fs (loop4): Total free blocks count 0
[   75.472997][ T5711] EXT4-fs (loop4): Free/Dirty block details
[   75.478937][ T5711] EXT4-fs (loop4): free_blocks=68451041280
[   75.484762][ T5711] EXT4-fs (loop4): dirty_blocks=16
[   75.489909][ T5711] EXT4-fs (loop4): Block reservation details
[   75.495926][ T5711] EXT4-fs (loop4): i_reserved_data_blocks=1
[   75.620085][ T5721] program syz.4.625 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.639061][ T5722] program syz.0.626 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.972677][ T5730] loop3: detected capacity change from 0 to 1024
[   75.979828][ T5730] EXT4-fs (loop3): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   75.998306][ T5730] netlink: '+}[@': attribute type 1 has an invalid length.
[   76.010195][ T5730] 8021q: adding VLAN 0 to HW filter on device bond2
[   76.019596][ T5730] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   76.030301][ T5730] vlan3: entered promiscuous mode
[   76.035342][ T5730] bond2: entered promiscuous mode
[   76.040591][ T5730] vlan3: entered allmulticast mode
[   76.045760][ T5730] bond2: entered allmulticast mode
[   76.079591][ T5735] loop1: detected capacity change from 0 to 1024
[   76.094523][ T5735] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   76.105200][ T5737] loop2: detected capacity change from 0 to 2048
[   76.120864][ T5735] netlink: '+}[@': attribute type 1 has an invalid length.
[   76.142835][ T5735] 8021q: adding VLAN 0 to HW filter on device bond3
[   76.157552][ T5735] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   76.170171][ T5735] vlan4: entered promiscuous mode
[   76.175221][ T5735] bond3: entered promiscuous mode
[   76.177715][ T5747] blktrace: Concurrent blktraces are not allowed on sg0
[   76.180410][ T5735] vlan4: entered allmulticast mode
[   76.192316][ T5735] bond3: entered allmulticast mode
[   76.318579][ T5760] hub 6-0:1.0: USB hub found
[   76.323286][ T5760] hub 6-0:1.0: 8 ports detected
[   76.383811][ T5770] FAULT_INJECTION: forcing a failure.
[   76.383811][ T5770] name failslab, interval 1, probability 0, space 0, times 0
[   76.396655][ T5770] CPU: 1 UID: 0 PID: 5770 Comm: syz.2.641 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   76.408370][ T5770] Tainted: [W]=WARN
[   76.408377][ T5770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.422238][ T5770] Call Trace:
[   76.422247][ T5770]  <TASK>
[   76.422255][ T5770]  dump_stack_lvl+0xf2/0x150
[   76.433003][ T5770]  dump_stack+0x15/0x20
[   76.437226][ T5770]  should_fail_ex+0x223/0x230
[   76.441895][ T5770]  ? getname_flags+0x81/0x3b0
[   76.446584][ T5770]  should_failslab+0x8f/0xb0
[   76.451219][ T5770]  kmem_cache_alloc_noprof+0x4c/0x290
[   76.456584][ T5770]  getname_flags+0x81/0x3b0
[   76.461147][ T5770]  getname+0x17/0x20
[   76.465024][ T5770]  do_sys_openat2+0x67/0x120
[   76.469615][ T5770]  __x64_sys_creat+0x66/0x90
[   76.474201][ T5770]  x64_sys_call+0x2cbf/0x2d60
[   76.478911][ T5770]  do_syscall_64+0xc9/0x1c0
[   76.483418][ T5770]  ? clear_bhb_loop+0x55/0xb0
[   76.488133][ T5770]  ? clear_bhb_loop+0x55/0xb0
[   76.492805][ T5770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.498720][ T5770] RIP: 0033:0x7f399f9adff9
[   76.503118][ T5770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.522706][ T5770] RSP: 002b:00007f399e621038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   76.531126][ T5770] RAX: ffffffffffffffda RBX: 00007f399fb65f80 RCX: 00007f399f9adff9
[   76.539162][ T5770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[   76.547220][ T5770] RBP: 00007f399e621090 R08: 0000000000000000 R09: 0000000000000000
[   76.555175][ T5770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.563221][ T5770] R13: 0000000000000000 R14: 00007f399fb65f80 R15: 00007ffc7173a398
[   76.571247][ T5770]  </TASK>
[   76.601674][ T5775] blktrace: Concurrent blktraces are not allowed on sg0
[   76.632641][ T5776] netlink: 32 bytes leftover after parsing attributes in process `syz.4.643'.
[   76.644415][ T5774] loop2: detected capacity change from 0 to 2048
[   76.787148][ T5790] FAULT_INJECTION: forcing a failure.
[   76.787148][ T5790] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.800345][ T5790] CPU: 0 UID: 0 PID: 5790 Comm: syz.2.648 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   76.812064][ T5790] Tainted: [W]=WARN
[   76.815901][ T5790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.825969][ T5790] Call Trace:
[   76.829251][ T5790]  <TASK>
[   76.832230][ T5790]  dump_stack_lvl+0xf2/0x150
[   76.836820][ T5790]  dump_stack+0x15/0x20
[   76.840975][ T5790]  should_fail_ex+0x223/0x230
[   76.845656][ T5790]  should_fail+0xb/0x10
[   76.849867][ T5790]  should_fail_usercopy+0x1a/0x20
[   76.854901][ T5790]  _copy_from_user+0x1e/0xd0
[   76.859497][ T5790]  copy_msghdr_from_user+0x54/0x2a0
[   76.864757][ T5790]  __sys_sendmsg+0x171/0x270
[   76.864796][ T5790]  __x64_sys_sendmsg+0x46/0x50
[   76.874213][ T5790]  x64_sys_call+0x2689/0x2d60
[   76.878916][ T5790]  do_syscall_64+0xc9/0x1c0
[   76.883509][ T5790]  ? clear_bhb_loop+0x55/0xb0
[   76.888194][ T5790]  ? clear_bhb_loop+0x55/0xb0
[   76.892869][ T5790]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.898933][ T5790] RIP: 0033:0x7f399f9adff9
[   76.903335][ T5790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.923016][ T5790] RSP: 002b:00007f399e621038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.931435][ T5790] RAX: ffffffffffffffda RBX: 00007f399fb65f80 RCX: 00007f399f9adff9
[   76.939590][ T5790] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000006
[   76.947548][ T5790] RBP: 00007f399e621090 R08: 0000000000000000 R09: 0000000000000000
[   76.955552][ T5790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.963569][ T5790] R13: 0000000000000000 R14: 00007f399fb65f80 R15: 00007ffc7173a398
[   76.971531][ T5790]  </TASK>
[   76.981308][ T5793] netlink: 8 bytes leftover after parsing attributes in process `syz.4.650'.
[   77.042149][ T5799] bpf_get_probe_write_proto: 5 callbacks suppressed
[   77.042164][ T5799] syz.3.653[5799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.050291][ T5799] syz.3.653[5799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.062415][ T5799] syz.3.653[5799] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   77.093762][ T5803] loop1: detected capacity change from 0 to 128
[   77.114354][ T5804] program syz.0.654 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   77.126726][ T5803] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   77.131351][ T5807] blktrace: Concurrent blktraces are not allowed on sg0
[   77.161115][ T5808] program syz.3.653 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   77.227154][ T5812] loop2: detected capacity change from 0 to 2048
[   77.296680][ T5829] FAULT_INJECTION: forcing a failure.
[   77.296680][ T5829] name failslab, interval 1, probability 0, space 0, times 0
[   77.309490][ T5829] CPU: 0 UID: 0 PID: 5829 Comm: syz.4.664 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   77.309518][ T5829] Tainted: [W]=WARN
[   77.309523][ T5829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.309546][ T5829] Call Trace:
[   77.309552][ T5829]  <TASK>
[   77.309558][ T5829]  dump_stack_lvl+0xf2/0x150
[   77.309590][ T5829]  dump_stack+0x15/0x20
[   77.326096][ T5819] loop1: detected capacity change from 0 to 8192
[   77.335203][ T5829]  should_fail_ex+0x223/0x230
[   77.361583][ T5829]  ? getname_flags+0x81/0x3b0
[   77.361623][ T5829]  should_failslab+0x8f/0xb0
[   77.361641][ T5829]  kmem_cache_alloc_noprof+0x4c/0x290
[   77.361665][ T5829]  getname_flags+0x81/0x3b0
[   77.361683][ T5829]  getname+0x17/0x20
[   77.361699][ T5829]  do_sys_openat2+0x67/0x120
[   77.361759][ T5829]  __x64_sys_creat+0x66/0x90
[   77.361780][ T5829]  x64_sys_call+0x2cbf/0x2d60
[   77.361801][ T5829]  do_syscall_64+0xc9/0x1c0
[   77.361817][ T5829]  ? clear_bhb_loop+0x55/0xb0
[   77.361869][ T5829]  ? clear_bhb_loop+0x55/0xb0
[   77.361927][ T5829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.361951][ T5829] RIP: 0033:0x7f9f29efdff9
[   77.361965][ T5829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.361981][ T5829] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   77.361998][ T5829] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   77.362089][ T5829] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[   77.362100][ T5829] RBP: 00007f9f28b77090 R08: 0000000000000000 R09: 0000000000000000
[   77.362111][ T5829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.362122][ T5829] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   77.362215][ T5829]  </TASK>
[   77.412980][ T5835] blktrace: Concurrent blktraces are not allowed on sg0
[   77.414933][ T5832] atomic_op ffff88810ae9a528 conn xmit_atomic 0000000000000000
[   77.445465][ T5840] netlink: 24 bytes leftover after parsing attributes in process `syz.4.667'.
[   77.486338][ T5842] FAULT_INJECTION: forcing a failure.
[   77.486338][ T5842] name failslab, interval 1, probability 0, space 0, times 0
[   77.532438][ T5842] CPU: 0 UID: 0 PID: 5842 Comm: syz.1.669 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   77.532499][ T5842] Tainted: [W]=WARN
[   77.532507][ T5842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.532519][ T5842] Call Trace:
[   77.532526][ T5842]  <TASK>
[   77.532534][ T5842]  dump_stack_lvl+0xf2/0x150
[   77.532560][ T5842]  dump_stack+0x15/0x20
[   77.532581][ T5842]  should_fail_ex+0x223/0x230
[   77.532716][ T5842]  ? getname_flags+0x81/0x3b0
[   77.532738][ T5842]  should_failslab+0x8f/0xb0
[   77.532759][ T5842]  kmem_cache_alloc_noprof+0x4c/0x290
[   77.532790][ T5842]  getname_flags+0x81/0x3b0
[   77.532872][ T5842]  getname+0x17/0x20
[   77.532902][ T5842]  __se_sys_acct+0x3e/0x420
[   77.532919][ T5842]  __x64_sys_acct+0x1f/0x30
[   77.532934][ T5842]  x64_sys_call+0xbbe/0x2d60
[   77.532955][ T5842]  do_syscall_64+0xc9/0x1c0
[   77.532974][ T5842]  ? clear_bhb_loop+0x55/0xb0
[   77.533074][ T5842]  ? clear_bhb_loop+0x55/0xb0
[   77.533101][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.533127][ T5842] RIP: 0033:0x7f9dfd85dff9
[   77.533197][ T5842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.533217][ T5842] RSP: 002b:00007f9dfc4d1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[   77.533236][ T5842] RAX: ffffffffffffffda RBX: 00007f9dfda15f80 RCX: 00007f9dfd85dff9
[   77.675068][ T5842] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000800
[   77.675113][ T5842] RBP: 00007f9dfc4d1090 R08: 0000000000000000 R09: 0000000000000000
[   77.675124][ T5842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.675179][ T5842] R13: 0000000000000000 R14: 00007f9dfda15f80 R15: 00007ffcd1395378
[   77.675197][ T5842]  </TASK>
[   77.790928][ T5860] netlink: 'syz.4.677': attribute type 4 has an invalid length.
[   77.830635][ T5861] loop1: detected capacity change from 0 to 2048
[   77.900538][ T5867] loop3: detected capacity change from 0 to 2048
[   77.908178][ T5867] EXT4-fs: Ignoring removed orlov option
[   77.959473][ T5874] FAULT_INJECTION: forcing a failure.
[   77.959473][ T5874] name failslab, interval 1, probability 0, space 0, times 0
[   77.972475][ T5874] CPU: 0 UID: 0 PID: 5874 Comm: syz.4.681 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   77.984624][ T5874] Tainted: [W]=WARN
[   77.988418][ T5874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.998716][ T5874] Call Trace:
[   78.001989][ T5874]  <TASK>
[   78.004985][ T5874]  dump_stack_lvl+0xf2/0x150
[   78.009596][ T5874]  dump_stack+0x15/0x20
[   78.013747][ T5874]  should_fail_ex+0x223/0x230
[   78.018435][ T5874]  ? getname_flags+0x81/0x3b0
[   78.023103][ T5874]  should_failslab+0x8f/0xb0
[   78.027768][ T5874]  kmem_cache_alloc_noprof+0x4c/0x290
[   78.033217][ T5874]  getname_flags+0x81/0x3b0
[   78.037828][ T5874]  __x64_sys_renameat2+0x61/0xa0
[   78.042776][ T5874]  x64_sys_call+0x2cf1/0x2d60
[   78.047465][ T5874]  do_syscall_64+0xc9/0x1c0
[   78.052010][ T5874]  ? clear_bhb_loop+0x55/0xb0
[   78.056786][ T5874]  ? clear_bhb_loop+0x55/0xb0
[   78.061477][ T5874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.067400][ T5874] RIP: 0033:0x7f9f29efdff9
[   78.071849][ T5874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.091554][ T5874] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   78.099984][ T5874] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   78.108233][ T5874] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffff9c
[   78.116326][ T5874] RBP: 00007f9f28b77090 R08: 0000000000000000 R09: 0000000000000000
[   78.124374][ T5874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.132378][ T5874] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   78.140461][ T5874]  </TASK>
[   78.423569][ T5877] blktrace: Concurrent blktraces are not allowed on sg0
[   78.437156][ T5867] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   78.468740][ T5880] program syz.0.682 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   78.485889][ T5881] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   78.491713][ T5867] EXT4-fs (loop3): Remounting filesystem read-only
[   78.510609][ T5881] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=12
[   78.520136][   T29] kauditd_printk_skb: 91 callbacks suppressed
[   78.520148][   T29] audit: type=1400 audit(1727671882.699:2879): avc:  denied  { setattr } for  pid=5866 comm="syz.3.679" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   78.525164][ T5888] loop2: detected capacity change from 0 to 512
[   78.562800][ T5886] netlink: 4 bytes leftover after parsing attributes in process `syz.4.684'.
[   78.572621][ T5888] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   78.589291][ T5886] hsr_slave_1 (unregistering): left promiscuous mode
[   78.597053][ T5894] netlink: 4 bytes leftover after parsing attributes in process `syz.1.689'.
[   78.613665][ T5894] hsr_slave_1 (unregistering): left promiscuous mode
[   78.620690][   T29] audit: type=1326 audit(1727671882.799:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5897 comm="syz.2.690" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f399f9adff9 code=0x0
[   78.668547][   T29] audit: type=1400 audit(1727671882.849:2881): avc:  denied  { create } for  pid=5902 comm="syz.4.691" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   78.691135][ T5896] loop0: detected capacity change from 0 to 2048
[   78.699935][   T29] audit: type=1400 audit(1727671882.879:2882): avc:  denied  { write } for  pid=5902 comm="syz.4.691" name="file0" dev="tmpfs" ino=796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   78.722357][   T29] audit: type=1400 audit(1727671882.879:2883): avc:  denied  { open } for  pid=5902 comm="syz.4.691" path="/146/file0" dev="tmpfs" ino=796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   78.747476][ T5903] block device autoloading is deprecated and will be removed.
[   78.775816][   T29] audit: type=1400 audit(1727671882.949:2884): avc:  denied  { unlink } for  pid=3274 comm="syz-executor" name="file0" dev="tmpfs" ino=796 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   78.808486][   T29] audit: type=1326 audit(1727671882.979:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5913 comm="syz.4.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f29efdff9 code=0x7ffc0000
[   78.826427][ T5910] loop1: detected capacity change from 0 to 1024
[   78.831954][   T29] audit: type=1326 audit(1727671882.979:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5913 comm="syz.4.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9f29efdff9 code=0x7ffc0000
[   78.861827][   T29] audit: type=1326 audit(1727671882.979:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5913 comm="syz.4.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f29efdff9 code=0x7ffc0000
[   78.870269][ T5917] FAULT_INJECTION: forcing a failure.
[   78.870269][ T5917] name failslab, interval 1, probability 0, space 0, times 0
[   78.885219][   T29] audit: type=1326 audit(1727671882.979:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5913 comm="syz.4.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f29efdff9 code=0x7ffc0000
[   78.897727][ T5917] CPU: 1 UID: 0 PID: 5917 Comm: syz.4.695 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   78.897769][ T5917] Tainted: [W]=WARN
[   78.897776][ T5917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.946787][ T5917] Call Trace:
[   78.950086][ T5917]  <TASK>
[   78.953005][ T5917]  dump_stack_lvl+0xf2/0x150
[   78.957627][ T5917]  dump_stack+0x15/0x20
[   78.961774][ T5917]  should_fail_ex+0x223/0x230
[   78.966492][ T5917]  ? audit_log_start+0x34c/0x6b0
[   78.971660][ T5917]  should_failslab+0x8f/0xb0
[   78.976240][ T5917]  kmem_cache_alloc_noprof+0x4c/0x290
[   78.981607][ T5917]  audit_log_start+0x34c/0x6b0
[   78.986363][ T5917]  audit_seccomp+0x4b/0x130
[   78.990941][ T5917]  __seccomp_filter+0x6fa/0x1180
[   78.995903][ T5917]  ? proc_fail_nth_write+0x12a/0x150
[   79.001244][ T5917]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   79.006874][ T5917]  ? vfs_write+0x580/0x910
[   79.011361][ T5917]  ? __fget_files+0x1d4/0x210
[   79.016184][ T5917]  __secure_computing+0x9f/0x1c0
[   79.021193][ T5917]  syscall_trace_enter+0xd1/0x1f0
[   79.026214][ T5917]  ? fpregs_assert_state_consistent+0x83/0xa0
[   79.032378][ T5917]  do_syscall_64+0xaa/0x1c0
[   79.036963][ T5917]  ? clear_bhb_loop+0x55/0xb0
[   79.041884][ T5917]  ? clear_bhb_loop+0x55/0xb0
[   79.046560][ T5917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.052561][ T5917] RIP: 0033:0x7f9f29efdff9
[   79.056967][ T5917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.076632][ T5917] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000074
[   79.085124][ T5917] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   79.093123][ T5917] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.101172][ T5917] RBP: 00007f9f28b77090 R08: 0000000000000000 R09: 0000000000000000
[   79.109185][ T5917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.117145][ T5917] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   79.125192][ T5917]  </TASK>
[   79.159707][ T5921] loop3: detected capacity change from 0 to 128
[   79.167099][ T5910] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   79.196485][ T5910] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   79.209180][ T5910] EXT4-fs (loop1): This should not happen!! Data will be lost
[   79.209180][ T5910] 
[   79.218848][ T5910] EXT4-fs (loop1): Total free blocks count 0
[   79.224823][ T5910] EXT4-fs (loop1): Free/Dirty block details
[   79.230713][ T5910] EXT4-fs (loop1): free_blocks=68451041280
[   79.236671][ T5910] EXT4-fs (loop1): dirty_blocks=16
[   79.241791][ T5910] EXT4-fs (loop1): Block reservation details
[   79.247822][ T5910] EXT4-fs (loop1): i_reserved_data_blocks=1
[   79.319235][ T5938] loop3: detected capacity change from 0 to 1024
[   79.326149][ T5944] FAULT_INJECTION: forcing a failure.
[   79.326149][ T5944] name failslab, interval 1, probability 0, space 0, times 0
[   79.337697][ T5942] netlink: 4 bytes leftover after parsing attributes in process `syz.0.704'.
[   79.338841][ T5944] CPU: 1 UID: 0 PID: 5944 Comm: syz.4.705 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   79.347548][ T5942] netlink: 4 bytes leftover after parsing attributes in process `syz.0.704'.
[   79.359201][ T5944] Tainted: [W]=WARN
[   79.359210][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.368405][ T5942] netlink: 4 bytes leftover after parsing attributes in process `syz.0.704'.
[   79.371800][ T5944] Call Trace:
[   79.371808][ T5944]  <TASK>
[   79.382727][ T5938] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   79.390768][ T5944]  dump_stack_lvl+0xf2/0x150
[   79.390797][ T5944]  dump_stack+0x15/0x20
[   79.390812][ T5944]  should_fail_ex+0x223/0x230
[   79.406945][ T5938] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f054c01c, mo2=0002]
[   79.410381][ T5944]  ? skb_clone+0x154/0x1f0
[   79.414693][ T5938] System zones: 
[   79.419260][ T5944]  should_failslab+0x8f/0xb0
[   79.419283][ T5944]  kmem_cache_alloc_noprof+0x4c/0x290
[   79.419319][ T5944]  skb_clone+0x154/0x1f0
[   79.427388][ T5938] 0-1
[   79.431827][ T5944]  __netlink_deliver_tap+0x2bd/0x4c0
[   79.435408][ T5938] , 3-36
[   79.439994][ T5944]  netlink_unicast+0x64a/0x670
[   79.440025][ T5944]  netlink_sendmsg+0x5cc/0x6e0
[   79.445452][ T5938] 
[   79.472350][ T5944]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.472374][ T5944]  __sock_sendmsg+0x140/0x180
[   79.472396][ T5944]  ____sys_sendmsg+0x312/0x410
[   79.487160][ T5944]  __sys_sendmsg+0x1d9/0x270
[   79.491784][ T5944]  __x64_sys_sendmsg+0x46/0x50
[   79.496673][ T5944]  x64_sys_call+0x2689/0x2d60
[   79.501364][ T5944]  do_syscall_64+0xc9/0x1c0
[   79.505935][ T5944]  ? clear_bhb_loop+0x55/0xb0
[   79.510749][ T5944]  ? clear_bhb_loop+0x55/0xb0
[   79.515554][ T5944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.521531][ T5944] RIP: 0033:0x7f9f29efdff9
[   79.525953][ T5944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.545628][ T5944] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.554071][ T5944] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   79.562040][ T5944] RDX: 0000000000000000 RSI: 0000000020005c40 RDI: 0000000000000005
[   79.570093][ T5944] RBP: 00007f9f28b77090 R08: 0000000000000000 R09: 0000000000000000
[   79.578073][ T5944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.586050][ T5944] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   79.594112][ T5944]  </TASK>
[   79.619168][ T5951] pimreg: entered allmulticast mode
[   79.624859][ T5951] FAULT_INJECTION: forcing a failure.
[   79.624859][ T5951] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.638046][ T5951] CPU: 1 UID: 0 PID: 5951 Comm: syz.2.707 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   79.642519][ T5955] loop0: detected capacity change from 0 to 512
[   79.649828][ T5951] Tainted: [W]=WARN
[   79.649837][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.649847][ T5951] Call Trace:
[   79.649853][ T5951]  <TASK>
[   79.649885][ T5951]  dump_stack_lvl+0xf2/0x150
[   79.649908][ T5951]  dump_stack+0x15/0x20
[   79.649924][ T5951]  should_fail_ex+0x223/0x230
[   79.649950][ T5951]  should_fail+0xb/0x10
[   79.649974][ T5951]  should_fail_usercopy+0x1a/0x20
[   79.698934][ T5951]  _copy_from_user+0x1e/0xd0
[   79.703533][ T5951]  copy_from_sockptr+0x62/0xa0
[   79.708347][ T5951]  ip_mroute_setsockopt+0x5a2/0x950
[   79.713563][ T5951]  do_ip_setsockopt+0xd4b/0x2340
[   79.718687][ T5951]  ip_setsockopt+0x63/0x100
[   79.723288][ T5951]  raw_setsockopt+0x101/0x150
[   79.728171][ T5951]  sock_common_setsockopt+0x64/0x80
[   79.733444][ T5951]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   79.739402][ T5951]  __sys_setsockopt+0x1cc/0x240
[   79.744252][ T5951]  __x64_sys_setsockopt+0x66/0x80
[   79.749291][ T5951]  x64_sys_call+0x278d/0x2d60
[   79.753980][ T5951]  do_syscall_64+0xc9/0x1c0
[   79.758487][ T5951]  ? clear_bhb_loop+0x55/0xb0
[   79.763179][ T5951]  ? clear_bhb_loop+0x55/0xb0
[   79.767859][ T5951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.773828][ T5951] RIP: 0033:0x7f399f9adff9
[   79.778232][ T5951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.797934][ T5951] RSP: 002b:00007f399e621038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   79.806595][ T5951] RAX: ffffffffffffffda RBX: 00007f399fb65f80 RCX: 00007f399f9adff9
[   79.814642][ T5951] RDX: 00000000000000d4 RSI: 0000000000000000 RDI: 0000000000000003
[   79.822704][ T5951] RBP: 00007f399e621090 R08: 0000000000000004 R09: 0000000000000000
[   79.830688][ T5951] R10: 00000000200008c0 R11: 0000000000000246 R12: 0000000000000001
[   79.838667][ T5951] R13: 0000000000000000 R14: 00007f399fb65f80 R15: 00007ffc7173a398
[   79.846637][ T5951]  </TASK>
[   79.850506][ T5958] FAULT_INJECTION: forcing a failure.
[   79.850506][ T5958] name failslab, interval 1, probability 0, space 0, times 0
[   79.852460][ T5955] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.863228][ T5958] CPU: 1 UID: 0 PID: 5958 Comm: syz.4.710 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   79.885331][ T5958] Tainted: [W]=WARN
[   79.889136][ T5958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.899205][ T5958] Call Trace:
[   79.902470][ T5958]  <TASK>
[   79.905420][ T5958]  dump_stack_lvl+0xf2/0x150
[   79.910013][ T5958]  dump_stack+0x15/0x20
[   79.914159][ T5958]  should_fail_ex+0x223/0x230
[   79.918964][ T5958]  ? skb_clone+0x154/0x1f0
[   79.923369][ T5958]  should_failslab+0x8f/0xb0
[   79.928064][ T5958]  kmem_cache_alloc_noprof+0x4c/0x290
[   79.933526][ T5958]  skb_clone+0x154/0x1f0
[   79.937800][ T5958]  __netlink_deliver_tap+0x2bd/0x4c0
[   79.943189][ T5958]  netlink_unicast+0x64a/0x670
[   79.948060][ T5958]  netlink_sendmsg+0x5cc/0x6e0
[   79.952815][ T5958]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.958186][ T5958]  __sock_sendmsg+0x140/0x180
[   79.962895][ T5958]  ____sys_sendmsg+0x312/0x410
[   79.967723][ T5958]  __sys_sendmsg+0x1d9/0x270
[   79.972351][ T5958]  __x64_sys_sendmsg+0x46/0x50
[   79.977175][ T5958]  x64_sys_call+0x2689/0x2d60
[   79.981912][ T5958]  do_syscall_64+0xc9/0x1c0
[   79.986409][ T5958]  ? clear_bhb_loop+0x55/0xb0
[   79.991083][ T5958]  ? clear_bhb_loop+0x55/0xb0
[   79.995783][ T5958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.001772][ T5958] RIP: 0033:0x7f9f29efdff9
[   80.006176][ T5958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.025861][ T5958] RSP: 002b:00007f9f28b77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.034281][ T5958] RAX: ffffffffffffffda RBX: 00007f9f2a0b5f80 RCX: 00007f9f29efdff9
[   80.042277][ T5958] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000005
[   80.050322][ T5958] RBP: 00007f9f28b77090 R08: 0000000000000000 R09: 0000000000000000
[   80.058281][ T5958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.066241][ T5958] R13: 0000000000000000 R14: 00007f9f2a0b5f80 R15: 00007ffe86929e68
[   80.074236][ T5958]  </TASK>
[   80.111973][ T5968] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(12)
[   80.118710][ T5968] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   80.126291][ T5968] vhci_hcd vhci_hcd.0: Device attached
[   80.135358][ T5970] vhci_hcd: connection closed
[   80.136149][   T28] vhci_hcd: stop threads
[   80.145447][   T28] vhci_hcd: release socket
[   80.149918][   T28] vhci_hcd: disconnect device
[   80.150234][ T5977] loop4: detected capacity change from 0 to 128
[   80.165333][ T5977] ext4 filesystem being mounted at /155/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   80.197815][ T5980] FAULT_INJECTION: forcing a failure.
[   80.197815][ T5980] name failslab, interval 1, probability 0, space 0, times 0
[   80.210576][ T5980] CPU: 1 UID: 0 PID: 5980 Comm: syz.1.716 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   80.222342][ T5980] Tainted: [W]=WARN
[   80.226136][ T5980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.236192][ T5980] Call Trace:
[   80.239471][ T5980]  <TASK>
[   80.242388][ T5980]  dump_stack_lvl+0xf2/0x150
[   80.247014][ T5980]  dump_stack+0x15/0x20
[   80.251238][ T5980]  should_fail_ex+0x223/0x230
[   80.255903][ T5980]  ? skb_clone+0x154/0x1f0
[   80.260364][ T5980]  should_failslab+0x8f/0xb0
[   80.265045][ T5980]  kmem_cache_alloc_noprof+0x4c/0x290
[   80.270640][ T5980]  skb_clone+0x154/0x1f0
[   80.274970][ T5980]  __netlink_deliver_tap+0x2bd/0x4c0
[   80.280338][ T5980]  netlink_unicast+0x64a/0x670
[   80.285108][ T5980]  netlink_sendmsg+0x5cc/0x6e0
[   80.289885][ T5980]  ? __pfx_netlink_sendmsg+0x10/0x10
[   80.295213][ T5980]  __sock_sendmsg+0x140/0x180
[   80.299934][ T5980]  ____sys_sendmsg+0x312/0x410
[   80.304835][ T5980]  __sys_sendmsg+0x1d9/0x270
[   80.309418][ T5980]  __x64_sys_sendmsg+0x46/0x50
[   80.314228][ T5980]  x64_sys_call+0x2689/0x2d60
[   80.318887][ T5980]  do_syscall_64+0xc9/0x1c0
[   80.323390][ T5980]  ? clear_bhb_loop+0x55/0xb0
[   80.328070][ T5980]  ? clear_bhb_loop+0x55/0xb0
[   80.332880][ T5980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.338764][ T5980] RIP: 0033:0x7f9dfd85dff9
[   80.343157][ T5980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.362910][ T5980] RSP: 002b:00007f9dfc4d1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.371419][ T5980] RAX: ffffffffffffffda RBX: 00007f9dfda15f80 RCX: 00007f9dfd85dff9
[   80.379411][ T5980] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000006
[   80.387382][ T5980] RBP: 00007f9dfc4d1090 R08: 0000000000000000 R09: 0000000000000000
[   80.395337][ T5980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.403392][ T5980] R13: 0000000000000000 R14: 00007f9dfda15f80 R15: 00007ffcd1395378
[   80.411389][ T5980]  </TASK>
[   80.415615][ T5980] netlink: 4 bytes leftover after parsing attributes in process `syz.1.716'.
[   80.481227][ T5993] FAULT_INJECTION: forcing a failure.
[   80.481227][ T5993] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.494472][ T5993] CPU: 0 UID: 0 PID: 5993 Comm: syz.3.722 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   80.506257][ T5993] Tainted: [W]=WARN
[   80.510051][ T5993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.520087][ T5993] Call Trace:
[   80.523403][ T5993]  <TASK>
[   80.526320][ T5993]  dump_stack_lvl+0xf2/0x150
[   80.530893][ T5993]  dump_stack+0x15/0x20
[   80.535043][ T5993]  should_fail_ex+0x223/0x230
[   80.539767][ T5993]  should_fail+0xb/0x10
[   80.543929][ T5993]  should_fail_usercopy+0x1a/0x20
[   80.549011][ T5993]  _copy_from_user+0x1e/0xd0
[   80.553738][ T5993]  copy_msghdr_from_user+0x54/0x2a0
[   80.558966][ T5993]  __sys_sendmsg+0x171/0x270
[   80.563616][ T5993]  __x64_sys_sendmsg+0x46/0x50
[   80.568442][ T5993]  x64_sys_call+0x2689/0x2d60
[   80.573132][ T5993]  do_syscall_64+0xc9/0x1c0
[   80.577648][ T5993]  ? clear_bhb_loop+0x55/0xb0
[   80.582371][ T5993]  ? clear_bhb_loop+0x55/0xb0
[   80.587031][ T5993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.592997][ T5993] RIP: 0033:0x7fe08047dff9
[   80.597467][ T5993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.617375][ T5993] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.625787][ T5993] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   80.633852][ T5993] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000005
[   80.641892][ T5993] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   80.650002][ T5993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.657962][ T5993] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   80.666095][ T5993]  </TASK>
[   80.676277][ T5998] loop4: detected capacity change from 0 to 512
[   80.683600][ T5998] EXT4-fs: Ignoring removed nomblk_io_submit option
[   80.693315][ T5998] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   80.716108][ T5998] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a85ec028, mo2=0002]
[   80.724270][ T5998] System zones: 0-2, 18-18, 34-34
[   80.732163][ T5998] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1138: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   80.756529][ T5998] EXT4-fs (loop4): 1 truncate cleaned up
[   80.763485][ T5998] EXT4-fs error (device loop4): ext4_generic_delete_entry:2680: inode #2: block 3: comm syz.4.724: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[   80.776764][ T6005] loop3: detected capacity change from 0 to 2048
[   80.786086][ T5998] EXT4-fs (loop4): Remounting filesystem read-only
[   80.812997][    T8] kernel write not supported for file /268/attr/keycreate (pid: 8 comm: kworker/0:0)
[   80.857582][ T6019] loop2: detected capacity change from 0 to 1024
[   80.881190][ T6019] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   80.897378][ T6019] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   80.910175][ T6019] EXT4-fs (loop2): This should not happen!! Data will be lost
[   80.910175][ T6019] 
[   80.919923][ T6019] EXT4-fs (loop2): Total free blocks count 0
[   80.926113][ T6019] EXT4-fs (loop2): Free/Dirty block details
[   80.931991][ T6019] EXT4-fs (loop2): free_blocks=68451041280
[   80.937840][ T6019] EXT4-fs (loop2): dirty_blocks=16
[   80.943043][ T6019] EXT4-fs (loop2): Block reservation details
[   80.949022][ T6019] EXT4-fs (loop2): i_reserved_data_blocks=1
[   80.956203][ T6027] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.023963][ T6030] loop3: detected capacity change from 0 to 2048
[   81.032373][ T6027] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.056725][ T6039] FAULT_INJECTION: forcing a failure.
[   81.056725][ T6039] name failslab, interval 1, probability 0, space 0, times 0
[   81.069406][ T6039] CPU: 0 UID: 0 PID: 6039 Comm: syz.0.739 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   81.081137][ T6039] Tainted: [W]=WARN
[   81.084922][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   81.095007][ T6039] Call Trace:
[   81.098274][ T6039]  <TASK>
[   81.101280][ T6039]  dump_stack_lvl+0xf2/0x150
[   81.105934][ T6039]  dump_stack+0x15/0x20
[   81.110220][ T6039]  should_fail_ex+0x223/0x230
[   81.114959][ T6039]  ? ipv6_flowlabel_opt+0x702/0x11e0
[   81.120259][ T6039]  should_failslab+0x8f/0xb0
[   81.124922][ T6039]  __kmalloc_cache_noprof+0x4b/0x2a0
[   81.130235][ T6039]  ipv6_flowlabel_opt+0x702/0x11e0
[   81.135348][ T6039]  ? mntput_no_expire+0x70/0x3c0
[   81.140316][ T6039]  ? mntput+0x49/0x70
[   81.144282][ T6039]  ? terminate_walk+0x260/0x280
[   81.149135][ T6039]  ? _raw_spin_unlock_bh+0x36/0x40
[   81.154274][ T6039]  ? lock_sock_nested+0x10f/0x140
[   81.159310][ T6039]  ? should_fail_ex+0xd7/0x230
[   81.164096][ T6039]  do_ipv6_setsockopt+0xc33/0x2250
[   81.169267][ T6039]  ? __rcu_read_unlock+0x4e/0x70
[   81.174228][ T6039]  ? avc_has_perm_noaudit+0x1cc/0x210
[   81.179666][ T6039]  ? selinux_netlbl_socket_setsockopt+0xe5/0x2d0
[   81.186055][ T6039]  ipv6_setsockopt+0x57/0x130
[   81.190804][ T6039]  udpv6_setsockopt+0x95/0xb0
[   81.195523][ T6039]  sock_common_setsockopt+0x64/0x80
[   81.200745][ T6039]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   81.206665][ T6039]  __sys_setsockopt+0x1cc/0x240
[   81.211570][ T6039]  __x64_sys_setsockopt+0x66/0x80
[   81.216669][ T6039]  x64_sys_call+0x278d/0x2d60
[   81.221413][ T6039]  do_syscall_64+0xc9/0x1c0
[   81.225985][ T6039]  ? clear_bhb_loop+0x55/0xb0
[   81.230796][ T6039]  ? clear_bhb_loop+0x55/0xb0
[   81.235501][ T6039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.241463][ T6039] RIP: 0033:0x7fbfcd18dff9
[   81.245938][ T6039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.265548][ T6039] RSP: 002b:00007fbfcbe07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   81.273970][ T6039] RAX: ffffffffffffffda RBX: 00007fbfcd345f80 RCX: 00007fbfcd18dff9
[   81.281944][ T6039] RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000005
[   81.289908][ T6039] RBP: 00007fbfcbe07090 R08: 0000000000000021 R09: 0000000000000000
[   81.297952][ T6039] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[   81.305917][ T6039] R13: 0000000000000000 R14: 00007fbfcd345f80 R15: 00007ffdc1b2abf8
[   81.313962][ T6039]  </TASK>
[   81.330223][ T6041] loop3: detected capacity change from 0 to 512
[   81.347707][ T6041] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   81.350574][ T6045] loop0: detected capacity change from 0 to 128
[   81.359802][ T6041] EXT4-fs (loop3): 1 truncate cleaned up
[   81.364642][ T6045] vfat: Unknown parameter 'ÿÿ'
[   81.376001][ T6027] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.426855][ T6051] FAULT_INJECTION: forcing a failure.
[   81.426855][ T6051] name failslab, interval 1, probability 0, space 0, times 0
[   81.439611][ T6051] CPU: 0 UID: 0 PID: 6051 Comm: syz.3.744 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   81.451411][ T6051] Tainted: [W]=WARN
[   81.455202][ T6051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   81.465324][ T6051] Call Trace:
[   81.468587][ T6051]  <TASK>
[   81.471513][ T6051]  dump_stack_lvl+0xf2/0x150
[   81.476138][ T6051]  dump_stack+0x15/0x20
[   81.480275][ T6051]  should_fail_ex+0x223/0x230
[   81.484940][ T6051]  ? proc_self_get_link+0x94/0x100
[   81.490043][ T6051]  should_failslab+0x8f/0xb0
[   81.494669][ T6051]  __kmalloc_cache_noprof+0x4b/0x2a0
[   81.499972][ T6051]  proc_self_get_link+0x94/0x100
[   81.504900][ T6051]  ? __pfx_proc_self_get_link+0x10/0x10
[   81.510446][ T6051]  pick_link+0x4a0/0x7e0
[   81.514675][ T6051]  step_into+0x725/0x810
[   81.518917][ T6051]  link_path_walk+0x54c/0x820
[   81.523656][ T6051]  path_openat+0x1af/0x1fa0
[   81.528205][ T6051]  ? _parse_integer+0x27/0x30
[   81.533071][ T6051]  do_filp_open+0xf7/0x200
[   81.537494][ T6051]  do_sys_openat2+0xab/0x120
[   81.542080][ T6051]  __x64_sys_openat+0xf3/0x120
[   81.546860][ T6051]  x64_sys_call+0x1025/0x2d60
[   81.551550][ T6051]  do_syscall_64+0xc9/0x1c0
[   81.556110][ T6051]  ? clear_bhb_loop+0x55/0xb0
[   81.560823][ T6051]  ? clear_bhb_loop+0x55/0xb0
[   81.565490][ T6051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.571395][ T6051] RIP: 0033:0x7fe08047c990
[   81.575791][ T6051] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[   81.595476][ T6051] RSP: 002b:00007fe07f0f6f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   81.603899][ T6051] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fe08047c990
[   81.611871][ T6051] RDX: 0000000000000002 RSI: 00007fe07f0f6fa0 RDI: 00000000ffffff9c
[   81.620354][ T6051] RBP: 00007fe07f0f6fa0 R08: 0000000000000000 R09: 0000000000000000
[   81.628335][ T6051] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   81.636292][ T6051] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   81.644256][ T6051]  </TASK>
[   81.651800][ T6027] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.702392][ T6054] loop1: detected capacity change from 0 to 2048
[   81.735815][ T6027] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.747560][ T6027] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.754657][ T6061] loop3: detected capacity change from 0 to 2048
[   81.758282][ T6027] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.775251][ T6027] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.792389][ T6067] loop2: detected capacity change from 0 to 1024
[   81.827188][ T6067] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   81.846485][ T6067] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   81.859162][ T6067] EXT4-fs (loop2): This should not happen!! Data will be lost
[   81.859162][ T6067] 
[   81.868837][ T6067] EXT4-fs (loop2): Total free blocks count 0
[   81.875056][ T6067] EXT4-fs (loop2): Free/Dirty block details
[   81.881105][ T6067] EXT4-fs (loop2): free_blocks=68451041280
[   81.886955][ T6067] EXT4-fs (loop2): dirty_blocks=16
[   81.892094][ T6067] EXT4-fs (loop2): Block reservation details
[   81.898633][ T6067] EXT4-fs (loop2): i_reserved_data_blocks=1
[   81.917446][ T6078] loop7: detected capacity change from 0 to 16384
[   81.964891][ T3343] kernel write not supported for file /406/attr/keycreate (pid: 3343 comm: kworker/1:4)
[   81.991343][ T6070] chnl_net:caif_netlink_parms(): no params data found
[   82.038663][ T6095] __nla_validate_parse: 7 callbacks suppressed
[   82.038680][ T6095] netlink: 4 bytes leftover after parsing attributes in process `syz.3.757'.
[   82.061857][ T6095] hsr_slave_1 (unregistering): left promiscuous mode
[   82.099951][ T6070] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.107058][ T6070] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.114245][ T6070] bridge_slave_0: entered allmulticast mode
[   82.121036][ T6070] bridge_slave_0: entered promiscuous mode
[   82.136614][ T6070] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.144581][ T6070] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.151985][ T6070] bridge_slave_1: entered allmulticast mode
[   82.158618][ T6070] bridge_slave_1: entered promiscuous mode
[   82.173061][ T6107] xt_TPROXY: Can be used only with -p tcp or -p udp
[   82.181944][ T6070] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.197270][ T6070] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.225369][ T6070] team0: Port device team_slave_0 added
[   82.233600][ T6070] team0: Port device team_slave_1 added
[   82.251729][ T6070] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.258786][ T6070] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.269964][ T6104] FAULT_INJECTION: forcing a failure.
[   82.269964][ T6104] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.284713][ T6070] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.297733][ T6104] CPU: 1 UID: 0 PID: 6104 Comm: syz.3.759 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   82.297763][ T6104] Tainted: [W]=WARN
[   82.323823][ T6104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   82.333878][ T6104] Call Trace:
[   82.337144][ T6104]  <TASK>
[   82.340061][ T6104]  dump_stack_lvl+0xf2/0x150
[   82.344648][ T6104]  dump_stack+0x15/0x20
[   82.348793][ T6104]  should_fail_ex+0x223/0x230
[   82.353467][ T6104]  should_fail+0xb/0x10
[   82.357624][ T6104]  should_fail_usercopy+0x1a/0x20
[   82.362664][ T6104]  _copy_from_user+0x1e/0xd0
[   82.367365][ T6104]  copy_msghdr_from_user+0x54/0x2a0
[   82.372647][ T6104]  __sys_sendmsg+0x171/0x270
[   82.377265][ T6104]  __x64_sys_sendmsg+0x46/0x50
[   82.382134][ T6104]  x64_sys_call+0x2689/0x2d60
[   82.387001][ T6104]  do_syscall_64+0xc9/0x1c0
[   82.391493][ T6104]  ? clear_bhb_loop+0x55/0xb0
[   82.396167][ T6104]  ? clear_bhb_loop+0x55/0xb0
[   82.400896][ T6104]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.406788][ T6104] RIP: 0033:0x7fe08047dff9
[   82.411198][ T6104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.430948][ T6104] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   82.439350][ T6104] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   82.447311][ T6104] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000007
[   82.455328][ T6104] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   82.463345][ T6104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.471429][ T6104] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   82.479393][ T6104]  </TASK>
[   82.492075][ T6070] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.499112][ T6070] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.525136][ T6070] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.542301][ T6111] loop2: detected capacity change from 0 to 1024
[   82.564729][ T6070] hsr_slave_0: entered promiscuous mode
[   82.571440][ T6070] hsr_slave_1: entered promiscuous mode
[   82.578056][ T6070] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   82.585750][ T6070] Cannot create hsr debugfs directory
[   82.606076][ T6118] netlink: 8 bytes leftover after parsing attributes in process `syz.3.763'.
[   82.618388][ T6118] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.668040][ T6070] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.688661][ T6118] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.722616][ T6121] loop4: detected capacity change from 0 to 2048
[   82.731411][ T6070] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.772041][ T6118] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.798002][ T6070] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.801023][ T6128] loop4: detected capacity change from 0 to 2048
[   82.849593][ T6118] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.853288][ T6135] loop4: detected capacity change from 0 to 1024
[   82.877858][ T6070] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.890456][ T6135] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   82.905515][ T6135] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   82.918188][ T6135] EXT4-fs (loop4): This should not happen!! Data will be lost
[   82.918188][ T6135] 
[   82.927901][ T6135] EXT4-fs (loop4): Total free blocks count 0
[   82.933866][ T6135] EXT4-fs (loop4): Free/Dirty block details
[   82.939887][ T6135] EXT4-fs (loop4): free_blocks=68451041280
[   82.945726][ T6135] EXT4-fs (loop4): dirty_blocks=16
[   82.950865][ T6135] EXT4-fs (loop4): Block reservation details
[   82.956931][ T6135] EXT4-fs (loop4): i_reserved_data_blocks=1
[   82.972346][ T6118] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.985391][ T6118] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.999539][ T6118] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.011466][ T6118] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.073578][ T6070] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   83.082398][ T6070] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   83.091507][ T6070] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   83.099978][ T6070] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   83.125706][ T6144] netlink: 268 bytes leftover after parsing attributes in process `syz.4.771'.
[   83.134836][ T6144] unsupported nla_type 65024
[   83.151471][ T6140] loop3: detected capacity change from 0 to 128
[   83.161689][ T6140] vfat: Unknown parameter 'ÿÿ'
[   83.170351][ T6140] loop3: detected capacity change from 0 to 512
[   83.178559][ T6140] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   83.192558][ T6070] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.211442][ T6140] EXT4-fs (loop3): 1 truncate cleaned up
[   83.213514][ T6070] 8021q: adding VLAN 0 to HW filter on device team0
[   83.227427][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.234687][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.257273][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.264359][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.308538][ T6070] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   83.319182][ T6070] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.350886][ T6155] loop3: detected capacity change from 0 to 2048
[   83.372307][ T6070] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.393411][   T24] kernel write not supported for file /512/attr/keycreate (pid: 24 comm: kworker/1:0)
[   83.444367][ T6168] loop3: detected capacity change from 0 to 512
[   83.459469][ T6168] EXT4-fs (loop3): too many log groups per flexible block group
[   83.467296][ T6168] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   83.471921][ T6179] netlink: 8 bytes leftover after parsing attributes in process `syz.4.779'.
[   83.483517][ T6168] EXT4-fs (loop3): mount failed
[   83.491304][ T6179] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.508356][ T6070] veth0_vlan: entered promiscuous mode
[   83.517879][ T6070] veth1_vlan: entered promiscuous mode
[   83.519246][ T6181] loop3: detected capacity change from 0 to 128
[   83.530178][ T6181] vfat: Unknown parameter 'ÿÿ'
[   83.531702][ T6070] veth0_macvtap: entered promiscuous mode
[   83.541483][ T6181] FAULT_INJECTION: forcing a failure.
[   83.541483][ T6181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.548508][ T6070] veth1_macvtap: entered promiscuous mode
[   83.554641][ T6181] CPU: 0 UID: 0 PID: 6181 Comm: syz.3.780 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   83.565843][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.571893][ T6181] Tainted: [W]=WARN
[   83.582295][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.586060][ T6181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.586073][ T6181] Call Trace:
[   83.586080][ T6181]  <TASK>
[   83.595853][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.606047][ T6181]  dump_stack_lvl+0xf2/0x150
[   83.606071][ T6181]  dump_stack+0x15/0x20
[   83.606089][ T6181]  should_fail_ex+0x223/0x230
[   83.606181][ T6181]  should_fail+0xb/0x10
[   83.606209][ T6181]  should_fail_usercopy+0x1a/0x20
[   83.606238][ T6181]  _copy_from_user+0x1e/0xd0
[   83.606261][ T6181]  memdup_user+0x64/0xc0
[   83.606280][ T6181]  strndup_user+0x68/0xa0
[   83.609577][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.612574][ T6181]  __se_sys_mount+0x91/0x2d0
[   83.623003][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.627541][ T6181]  ? fput+0x14e/0x190
[   83.631672][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.636315][ T6181]  ? ksys_write+0x17a/0x1b0
[   83.640454][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.640489][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.645481][ T6181]  __x64_sys_mount+0x67/0x80
[   83.650110][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.654314][ T6181]  x64_sys_call+0x203e/0x2d60
[   83.658699][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.668380][ T6181]  do_syscall_64+0xc9/0x1c0
[   83.668402][ T6181]  ? clear_bhb_loop+0x55/0xb0
[   83.676252][ T6070] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.683345][ T6181]  ? clear_bhb_loop+0x55/0xb0
[   83.691389][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.697089][ T6181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.697123][ T6181] RIP: 0033:0x7fe08047dff9
[   83.697137][ T6181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.701696][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.701704][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.701716][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.701723][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.712132][ T6181] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   83.712152][ T6181] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   83.712164][ T6181] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 00000000200002c0
[   83.712177][ T6181] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   83.721995][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.726543][ T6181] R10: 0000000000185091 R11: 0000000000000246 R12: 0000000000000001
[   83.726561][ T6181] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   83.726581][ T6181]  </TASK>
[   83.736976][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.926105][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.935916][ T6070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.946434][ T6070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.957196][ T6070] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.967924][ T6179] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.981120][ T6070] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.989951][ T6070] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.998693][ T6070] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.007676][ T6070] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.015198][ T6183] loop3: detected capacity change from 0 to 1024
[   84.028240][ T6179] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.039340][ T6183] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   84.054449][ T6183] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   84.067196][ T6183] EXT4-fs (loop3): This should not happen!! Data will be lost
[   84.067196][ T6183] 
[   84.076901][ T6183] EXT4-fs (loop3): Total free blocks count 0
[   84.082860][ T6183] EXT4-fs (loop3): Free/Dirty block details
[   84.088836][ T6183] EXT4-fs (loop3): free_blocks=68451041280
[   84.094654][ T6183] EXT4-fs (loop3): dirty_blocks=16
[   84.099880][ T6183] EXT4-fs (loop3): Block reservation details
[   84.105946][ T6183] EXT4-fs (loop3): i_reserved_data_blocks=1
[   84.116791][   T29] kauditd_printk_skb: 168 callbacks suppressed
[   84.116803][   T29] audit: type=1400 audit(1727671888.289:3055): avc:  denied  { mounton } for  pid=6070 comm="syz-executor" path="/root/syzkaller.ZySypo/syz-tmp" dev="sda1" ino=1954 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   84.147783][   T29] audit: type=1400 audit(1727671888.299:3056): avc:  denied  { mounton } for  pid=6070 comm="syz-executor" path="/root/syzkaller.ZySypo/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   84.177299][   T29] audit: type=1400 audit(1727671888.299:3057): avc:  denied  { mounton } for  pid=6070 comm="syz-executor" path="/root/syzkaller.ZySypo/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=14654 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   84.205207][   T29] audit: type=1400 audit(1727671888.359:3058): avc:  denied  { mounton } for  pid=6070 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=454 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   84.231089][ T6179] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.246538][ T6193] loop0: detected capacity change from 0 to 1024
[   84.275300][ T6193] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   84.295590][ T6193] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   84.308254][ T6193] EXT4-fs (loop0): This should not happen!! Data will be lost
[   84.308254][ T6193] 
[   84.313965][   T29] audit: type=1400 audit(1727671888.489:3059): avc:  denied  { ioctl } for  pid=6196 comm="syz.3.784" path="socket:[14264]" dev="sockfs" ino=14264 ioctlcmd=0x8904 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   84.317907][ T6193] EXT4-fs (loop0): Total free blocks count 0
[   84.317922][ T6193] EXT4-fs (loop0): Free/Dirty block details
[   84.354817][ T6193] EXT4-fs (loop0): free_blocks=68451041280
[   84.360659][ T6193] EXT4-fs (loop0): dirty_blocks=16
[   84.365808][ T6193] EXT4-fs (loop0): Block reservation details
[   84.371781][ T6193] EXT4-fs (loop0): i_reserved_data_blocks=1
[   84.405681][   T29] audit: type=1326 audit(1727671888.579:3060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6201 comm="syz.3.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08047dff9 code=0x7ffc0000
[   84.425769][ T6200] loop2: detected capacity change from 0 to 2048
[   84.429451][   T29] audit: type=1326 audit(1727671888.579:3061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6201 comm="syz.3.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08047dff9 code=0x7ffc0000
[   84.459163][   T29] audit: type=1326 audit(1727671888.579:3062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6201 comm="syz.3.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe08047dff9 code=0x7ffc0000
[   84.482566][   T29] audit: type=1326 audit(1727671888.579:3063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6201 comm="syz.3.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe08047dff9 code=0x7ffc0000
[   84.506037][   T29] audit: type=1326 audit(1727671888.579:3064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6201 comm="syz.3.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe08047dff9 code=0x7ffc0000
[   84.582318][ T6211] FAULT_INJECTION: forcing a failure.
[   84.582318][ T6211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.595432][ T6211] CPU: 0 UID: 0 PID: 6211 Comm: syz.3.789 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   84.607233][ T6211] Tainted: [W]=WARN
[   84.611072][ T6211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   84.621224][ T6211] Call Trace:
[   84.624498][ T6211]  <TASK>
[   84.627455][ T6211]  dump_stack_lvl+0xf2/0x150
[   84.632136][ T6211]  dump_stack+0x15/0x20
[   84.636283][ T6211]  should_fail_ex+0x223/0x230
[   84.641040][ T6211]  should_fail+0xb/0x10
[   84.645193][ T6211]  should_fail_usercopy+0x1a/0x20
[   84.650215][ T6211]  _copy_from_user+0x1e/0xd0
[   84.654800][ T6211]  copy_msghdr_from_user+0x54/0x2a0
[   84.660021][ T6211]  __sys_sendmmsg+0x21a/0x500
[   84.664741][ T6211]  __x64_sys_sendmmsg+0x57/0x70
[   84.669770][ T6211]  x64_sys_call+0xa49/0x2d60
[   84.674364][ T6211]  do_syscall_64+0xc9/0x1c0
[   84.678858][ T6211]  ? clear_bhb_loop+0x55/0xb0
[   84.683620][ T6211]  ? clear_bhb_loop+0x55/0xb0
[   84.688377][ T6211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.694272][ T6211] RIP: 0033:0x7fe08047dff9
[   84.698692][ T6211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.718297][ T6211] RSP: 002b:00007fe07f0f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   84.726722][ T6211] RAX: ffffffffffffffda RBX: 00007fe080635f80 RCX: 00007fe08047dff9
[   84.734694][ T6211] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000003
[   84.742921][ T6211] RBP: 00007fe07f0f7090 R08: 0000000000000000 R09: 0000000000000000
[   84.751059][ T6211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.759090][ T6211] R13: 0000000000000000 R14: 00007fe080635f80 R15: 00007fff747cb778
[   84.767136][ T6211]  </TASK>
[   84.808008][ T6215] syz.0.790[6215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.808139][ T6215] syz.0.790[6215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.819943][ T6215] syz.0.790[6215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.855985][ T6219] program syz.3.791 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   84.870237][ T6220] loop1: detected capacity change from 0 to 512
[   84.887588][ T6220] EXT4-fs (loop1): too many log groups per flexible block group
[   84.889157][ T6223] program syz.0.790 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   84.895278][ T6220] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   84.907500][ T3330] kernel write not supported for file /524/attr/keycreate (pid: 3330 comm: kworker/0:2)
[   84.911236][ T6220] EXT4-fs (loop1): mount failed
[   85.645973][ T6230] loop3: detected capacity change from 0 to 1024
[   85.658585][ T6230] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   85.673697][ T6230] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   85.686443][ T6230] EXT4-fs (loop3): This should not happen!! Data will be lost
[   85.686443][ T6230] 
[   85.696268][ T6230] EXT4-fs (loop3): Total free blocks count 0
[   85.702512][ T6230] EXT4-fs (loop3): Free/Dirty block details
[   85.708531][ T6230] EXT4-fs (loop3): free_blocks=68451041280
[   85.714420][ T6230] EXT4-fs (loop3): dirty_blocks=16
[   85.719569][ T6230] EXT4-fs (loop3): Block reservation details
[   85.725567][ T6230] EXT4-fs (loop3): i_reserved_data_blocks=1
[   85.773922][ T6238] loop2: detected capacity change from 0 to 2048
[   85.790276][ T6244] loop0: detected capacity change from 0 to 1024
[   85.807013][ T6246] loop1: detected capacity change from 0 to 1024
[   85.811818][ T6244] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   85.813957][ T6246] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   85.828672][ T6244] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28
[   85.850710][ T6244] EXT4-fs (loop0): This should not happen!! Data will be lost
[   85.850710][ T6244] 
[   85.860381][ T6244] EXT4-fs (loop0): Total free blocks count 0
[   85.866444][ T6244] EXT4-fs (loop0): Free/Dirty block details
[   85.872361][ T6244] EXT4-fs (loop0): free_blocks=68451041280
[   85.878317][ T6244] EXT4-fs (loop0): dirty_blocks=16
[   85.883512][ T6244] EXT4-fs (loop0): Block reservation details
[   85.889528][ T6244] EXT4-fs (loop0): i_reserved_data_blocks=1
[   85.899632][ T6246] netlink: '+}[@': attribute type 1 has an invalid length.
[   85.922767][ T6258] loop2: detected capacity change from 0 to 512
[   85.934565][ T6246] 8021q: adding VLAN 0 to HW filter on device bond4
[   85.938161][ T6256] loop3: detected capacity change from 0 to 2048
[   85.958162][ T6246] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   85.970004][ T6246] vlan5: entered promiscuous mode
[   85.975205][ T6246] bond4: entered promiscuous mode
[   85.980428][ T6246] vlan5: entered allmulticast mode
[   85.985601][ T6246] bond4: entered allmulticast mode
[   85.987219][ T6258] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.064578][ T6258] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #19: comm syz.2.803: corrupted inode contents
[   86.077587][ T6258] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #19: comm syz.2.803: mark_inode_dirty error
[   86.089500][ T6258] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #19: comm syz.2.803: corrupted inode contents
[   86.094915][ T6269] loop0: detected capacity change from 0 to 512
[   86.102469][ T6258] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3005: inode #19: comm syz.2.803: mark_inode_dirty error
[   86.121029][   T28] ==================================================================
[   86.122299][ T6271] program syz.3.805 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.129195][   T28] BUG: KCSAN: data-race in ppp_asynctty_receive / tty_set_termios
[   86.138907][ T6258] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3008: inode #19: comm syz.2.803: mark inode dirty (error -117)
[   86.146152][   T28] 
[   86.146159][   T28] read-write to 0xffff888114d3f508 of 4 bytes by task 6270 on cpu 1:
[   86.146174][   T28]  tty_set_termios+0xfa/0x8b0
[   86.173601][   T28]  set_termios+0x497/0x4e0
[   86.173628][ T6258] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117)
[   86.178019][   T28]  tty_mode_ioctl+0x391/0x5d0
[   86.178044][   T28]  ppp_asynctty_ioctl+0x21f/0x2e0
[   86.196796][   T28]  tty_ioctl+0x87a/0xbe0
[   86.201036][   T28]  __se_sys_ioctl+0xcd/0x140
[   86.205627][   T28]  __x64_sys_ioctl+0x43/0x50
[   86.210236][   T28]  x64_sys_call+0x15cc/0x2d60
[   86.214920][   T28]  do_syscall_64+0xc9/0x1c0
[   86.219424][   T28]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.225332][   T28] 
[   86.227646][   T28] read to 0xffff888114d3f508 of 4 bytes by task 28 on cpu 0:
[   86.235014][   T28]  ppp_asynctty_receive+0x751/0x1050
[   86.240300][   T28]  tty_ldisc_receive_buf+0xd9/0x100
[   86.245498][   T28]  tty_port_default_receive_buf+0x59/0x90
[   86.251300][   T28]  flush_to_ldisc+0x1ce/0x410
[   86.255977][   T28]  process_scheduled_works+0x483/0x9a0
[   86.261449][   T28]  worker_thread+0x51d/0x6f0
[   86.262368][ T6269] EXT4-fs (loop0): too many log groups per flexible block group
[   86.266028][   T28]  kthread+0x1d1/0x210
[   86.266049][   T28]  ret_from_fork+0x4b/0x60
[   86.266069][   T28]  ret_from_fork_asm+0x1a/0x30
[   86.266093][   T28] 
[   86.266097][   T28] value changed: 0x00000500 -> 0x00000000
[   86.266106][   T28] 
[   86.266109][   T28] Reported by Kernel Concurrency Sanitizer on:
[   86.266119][   T28] CPU: 0 UID: 0 PID: 28 Comm: kworker/u8:1 Tainted: G        W          6.11.0-syzkaller-12113-ge7ed34365879 #0
[   86.266149][   T28] Tainted: [W]=WARN
[   86.266155][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   86.266168][   T28] Workqueue: events_unbound flush_to_ldisc
[   86.273824][ T6269] EXT4-fs (loop0): failed to initialize mballoc (-12)
[   86.277919][   T28] 
[   86.277924][   T28] ==================================================================
[   86.354014][ T6269] EXT4-fs (loop0): mount failed
[   86.919982][ T6179] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.931329][ T6179] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.941758][ T6179] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.952509][ T6179] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0