last executing test programs:

52.718565384s ago: executing program 2 (id=3):
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
r0 = epoll_create(0xfff) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4080000400000006110540000000000a6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async)
r2 = socket(0x10, 0x803, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000600)=r1, 0x4) (async, rerun: 32)
sendmsg$nl_generic(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000054c0)=ANY=[@ANYBLOB="1c0000005200010000000000000000000a00000008000100", @ANYRES64=r0], 0x1c}}, 0x0) (async, rerun: 32)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x4f, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}}, 0x0)

52.637279024s ago: executing program 2 (id=7):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001580)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f0000000340)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}], 0x1, 0x0) (fail_nth: 7)

52.482360023s ago: executing program 2 (id=8):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r2=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', r2, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (fail_nth: 10)

51.974328012s ago: executing program 2 (id=9):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffdfffff})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000001000)={{0x1, 0x1, 0x18, <r1=>r0, {0xffffffffffffffff}}, './file0/file0\x00'})
write$cgroup_devices(r1, &(0x7f0000001040)={'b', ' *:* ', 'w\x00'}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = msgget$private(0x0, 0x8)
getresuid(&(0x7f0000000300), &(0x7f0000000340), &(0x7f00000003c0)=<r3=>0x0)
mount$cgroup2(0x0, &(0x7f0000000200)='./file0/file0\x00', &(0x7f00000002c0), 0x1200010, &(0x7f0000000600)=ANY=[@ANYBLOB="6661766f7264796e6d6f64732c6d656d6f72975f6c6f63616c6576656e74732c6e7364656c65676174652c6d656d6f72795f6c6f63616c6576656e74732c736d61636b66736861743d2c657569643c", @ANYRESDEC=r3, @ANYBLOB=',async,\x00'])
r4 = socket(0x10, 0x3, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f00000010c0))
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000001200)={0x1, &(0x7f0000001180)=[{0x5, 0x6, 0x5, 0x7}]})
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x20020, &(0x7f0000000100)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=r5, @ANYBLOB='\f\x00'])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000ec0)={{0x1, 0x1, 0x18, r0, {<r6=>0xee01}}, './file0\x00'})
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000002a80)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}, 0x0)
setregid(r7, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r8, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
setsockopt$inet6_tcp_TLS_TX(r8, 0x11a, 0x1, &(0x7f0000000000)=@gcm_256={{0x303}, "41328ac34a4ad2ba", "e8582491a0c4050000000000f6542a9b6800000000000000003967d2daa45b4e", "61241765", "89b06aff05000050"}, 0x38)
sendmsg$inet(r8, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001100)=[@ip_tos_u8={{0x0, 0x0, 0x1, 0x6}}, @ip_pktinfo={{0x0, 0x0, 0x8, {0x0, @multicast1, @loopback}}}, @ip_pktinfo={{0x0, 0x0, 0x8, {0x0, @multicast2, @multicast2}}}], 0x30}, 0x8010)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000f00)={0x0, <r9=>0x0})
msgctl$IPC_SET(r2, 0x1, &(0x7f0000000f80)={{0x2, r3, r5, r6, r7, 0x42, 0x7}, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x3, 0xbed, 0x91f8, 0x100, 0x1ff, 0xffffffffffffffff, r9})
r10 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$getregset(0x4204, r10, 0x202, &(0x7f00000011c0)={0x0})
r11 = openat$dir(0xffffffffffffff9c, &(0x7f0000001080)='./file0/file0\x00', 0x2000, 0x0)
getdents64(r11, 0x0, 0x0)
ptrace$getregset(0x4204, r10, 0x2, &(0x7f0000000180)={&(0x7f00000000c0)=""/149, 0x95})

51.316941041s ago: executing program 2 (id=18):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x90000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x10, 0x803, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
ioctl$TIOCSPGRP(r1, 0x5410, &(0x7f0000000280))
ioctl$KDDISABIO(r1, 0x4b37)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./bus/file0\x00', 0x8042, 0x100)
fcntl$setlease(r2, 0x400, 0x1)
fcntl$getflags(r2, 0x401)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x4, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r4 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ppoll(0x0, 0x0, 0x0, &(0x7f00000000c0)={[0x8001a0ffffffff]}, 0x8)
ioctl$int_in(r5, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r5, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{r6}], 0x1, 0x0, 0x0, 0x0)
dup2(r5, r6)
fcntl$setown(r6, 0x8, r4)
tkill(r4, 0x13)
sync()
fsetxattr$security_selinux(r2, &(0x7f0000000400), &(0x7f0000000440)='system_u:object_r:semanage_exec_t:s0\x00', 0x25, 0x3)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0x0, 0x0, 0x0)
sync()
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4c1, &(0x7f0000000680)="$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")
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
recvmsg$qrtr(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000), 0xc, &(0x7f0000000200)=[{&(0x7f0000000080)=""/187, 0xbb}, {&(0x7f00000001c0)=""/8, 0x8}, {&(0x7f00000002c0)=""/235, 0xeb}], 0x3, 0x0, 0x0, 0x2122}, 0x38, 0x40000000)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

48.927095184s ago: executing program 2 (id=49):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xee)
ftruncate(r3, 0x2008002)
sendfile(r0, r3, 0x0, 0x80000001)

48.910590134s ago: executing program 32 (id=49):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xee)
ftruncate(r3, 0x2008002)
sendfile(r0, r3, 0x0, 0x80000001)

2.808814567s ago: executing program 0 (id=620):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x163002, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)=0x100)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f0000000240)={0xed, 0x8000000000000000, 0x0, 0x3, 0x2, 0x5, 0x5, 0x7}, &(0x7f0000000280)={0x100, 0x2, 0x4, 0x2, 0xc, 0xda, 0x4, 0x2}, 0x0, &(0x7f0000000300), &(0x7f0000000380)={&(0x7f0000000340)={[0x8]}, 0x8})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009c0000000b"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000500000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r8}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
nanosleep(0x0, 0x0)
futimesat(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x304, 0x36}, "2cd65ab78100", "9e8ecc7bb5352776725e1047711330ff2bb17b550800", '\x00', "46b0dc72b7b1d30e"}, 0x38)
ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000000400)={0x2, 0x66, 0x8})
open_by_handle_at(r3, &(0x7f00000003c0)=@OVL_FILEID_V1={0x18, 0xf8, {'\x00', {0x0, 0xfb, 0x15, 0x4, 0x8, "efdd4d911f5757151b0c975d1e44bb25"}}}, 0x208200)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0xc0200, 0x0)
ioctl$PPPIOCNEWUNIT(r9, 0xc004743e, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x101442, 0x0)

2.497904017s ago: executing program 0 (id=623):
clock_nanosleep(0x9, 0xfdfc, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)

2.178137776s ago: executing program 0 (id=624):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)

1.999424545s ago: executing program 0 (id=626):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r1, 0x5000940e, &(0x7f0000000f80)={{r0}, "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"})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r0}, &(0x7f00000006c0), &(0x7f0000000700)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read$usbfs(r3, 0x0, 0x23)

1.430393804s ago: executing program 5 (id=631):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, 0x0, 0x4000080)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000010000a80000000060a090400000000000000000200000054"], 0xc8}}, 0x0)
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="740000000b06010100000000000000000100000009000200737849389c2dba04657a310000000008000940000010043c0008800c00078107001a00242e0000100007800c0018400000001000000009100007800e001b4008000000000000100c00078008000a400000ffff100007800c00184000b6"], 0x74}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c000004"], 0x528}}, 0xc000)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x100000000007ff}, 0x18)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r8, @ANYBLOB="1400010000000000000000000000000000000001"], 0x2c}}, 0x24005040)
writev(r5, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)

1.370923404s ago: executing program 5 (id=634):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002840), 0x0, 0x0)
close_range(r1, r2, 0x200000000000000)

1.296460053s ago: executing program 5 (id=635):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000402)

1.228870313s ago: executing program 4 (id=636):
r0 = socket$inet6(0xa, 0x3, 0x5)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
r2 = dup3(r1, r0, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001580)=[{{&(0x7f0000000180)={0xa, 0x4e22, 0xfff, @mcast2, 0x5}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1400000000000000290000000b"], 0x18}}], 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
capset(&(0x7f0000000100)={0x20080522}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)

1.223561133s ago: executing program 3 (id=637):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = socket$kcm(0x29, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000180)={r2, r0})
sendmmsg$inet(r1, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000440)='{', 0xfd4c}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000480)="d9", 0x1}], 0x1}}], 0x2, 0x0)

1.185247573s ago: executing program 3 (id=638):
syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000060a0b040000000000000000020000002c00048028000180080001006e6174001ce80180080000000008000340000000110900010073797a30000000000900020073797a3200000000140000001100010000000000000000000200000a000000000000"], 0x80}}, 0x14b6deac033214c2)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x7, 0x0, 0x7ffc0002}]})
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

1.139194173s ago: executing program 0 (id=639):
fsopen(0x0, 0x0)
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r6 = fsmount(r0, 0x0, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000140), 0x12)
openat$cgroup(r6, &(0x7f0000000000)='syz1\x00', 0x200002, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r8}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$fou(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000000000000000180000006000a004e24000014000900fec0ffffffffffff0000000000000001050002000a"], 0x38}}, 0x0)

1.138744883s ago: executing program 3 (id=640):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adffa87d2255f674412d020000000000005ab527ee3697f1ec4436dd1164aa93cc5800075557165397000a63f6b9b3f427f6ba6b34f98125f30e697fffffffffffffffa30b273683626e0003254d570dca6b78ad833488cfe4109eaf009edd3e69613d3cd6aaa300006eee8501000000520a0000151d010000000100bf00000000cc587424363dc6ad7f3bbd424c6e6cafbe9309aba218a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e470a000517ebc406e89dcbb7677e6528b0856e31ed9474ac24cf609068f645ce971fc0480737a55ebb0bd701f7ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bed759ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56d06c759da324a39f7f51b870b2851c3f0a1aab71587a21c8f1b3369ebfcba105a6ccdd01b0f04edb256c604f068773f6ff000000000000006ffbfe5ca32142b0195531458b7d1e341c6f864f983d745f5865aad41d2915aae7602a2d6cd415e8351ebc4223f54d6bec664709ff03f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121ad6eb372713255012e028cb2654d493a0b4b35faae176c89b745eda2967199cc936859a537e8e4871d4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0cff28235a3cbb5d33b09bc30cf2880c586272c3f4d79bc36305745cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec66ea6c718bbd1aa59114000f0be4c6f8df084c5e9734ae30aa9afdc719bf01ab03a9b1074407136b4506000f0916a39d3057d50183612b39e73aeeb6eaf14652dda68e98ef938e6515a94a71836469e2051d9b7eb85f3f2d5ae2c51944da8d7391d6d6b97419a3b7660df4c5124ca425d374b371867a79b31c6617fc3327191fbf514573f0e30d1d60be2168fe6c2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257b84000000b749ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c786eeca22debc99335583b54c13c3130978fa069af8223b38ced735c2d905f51ca85ffa4add5647489b3960127696cf2f16625c0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c5341877386ec55d7dc958fd235d6071619a65d4b82d9c162f3556076b80550d961ca74f1ffdaccf0ea5f02e0fca8b27ff3983ab74fd3d560700a1fbb44e77e312b3b129e000302d613916c9bcf9f0000fac73adb6bfb27f88dba816020be760f7b45e001efada800000000000000fdaf4660402f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6542e597300eb82a184c96ffde5a30e5433d86666cb045bdd02c804c22ff2635c7bfbf5c0d586cda5e1e88a4d41dee7cc74f822278d124638fec58faeb48afe324369cc51204158bb440df2a694f4cdcaa4f65c22f000000000000000000000000000d503d79906958102000000000000000000001ffff0ef89b2a635edb2dd163e863315e84498dfb52b7f54da6398cbedaa42cc17c4563c859656a357770289a61faa95a82bf1cfb7f2fd7252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b226900110635376413c29f7c6f7b7e29b9f4bddd5e328661f4046e01f7d7dc22174e5e627a6f608ad53a4168d4d8f7fbc71104512efe8e5d7d934aa289b4db2b870000000000000000000000000000000000000000009b777883a0f9cf4ad155110cd3ace2b322ac31bfa27847dc99c8a69a1ea5b98e525e6393ad7fd9795170e7b11e4fa990b9386910a6a1a66a70eaff01247603c2ff49d3979676bffb3049166ab84a0f061991bd57c2566c10c282352a5105b6164e3f2491e4793e590dcc71de10da96fdff40dd44a2c9882d3aa0f8a797b8fea6efcfb5046b7679f15559cdaa977504c40b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22ade17556abb722d9c085b189b5fd1f30e8dc813f60400fde1f88d830b11002135e8e7262f299ed7923bfbe00ad88be179e56b41ff3792cee2fc37eee739c3e3af923e8738d93d583a9cf00b946960fc38cf85aae7cf708f9a9d166f2e352a06d99b8be476d1cc2a53a859ae4fdab2a987925d12422474ac044ffe9fe2bf9bf9bbdf36c4ca89c516647542ac45545337829fa7039d155ebda42d4c14f4ca7f8b5d5842658c62d0a03092b94fa1b19f190000000000000000000000000000009e75a32b9fafeffd890f2759b0fe3add33fa43a4c3995458f86a926ad56b23571c46728c039cd3b4bb7d69dfa27782b953a7b81cc161912b3e5716360686e126311a7e21bfa2efd0f57b90c203528c8f620d3c7b31c7abcffae382f53500f7cd5d00159e5f741d3e2d2cbd1a04b3f39b50a4683daa7d117b7f4a149c954d69d8ab001339e464c8eb5f0c63899010757c9a3b69f4920531b83f71d5a34ef9405819afee15b77c015ea755c95127ff2274bb9a8463ce4b8c08ad70596ad2b2b044e660ed144b9dce372450ea69d25da2b6deed67fac26e765aa7d5532ba1044f62db049486acde2294127cb767c23da7d8f9844d3be5b6aa83ee4ce1876af5130efe1b64ccb6bbd349bcc0e8deec8ab3bd1b35bbc8ab8a152771744baa576b9223d26b5603a7f091be1264cabaf661fe2dbe7990a61f710f923f2337818a3983d06c11a6bee7fccb78a53c56db5c18f920d2194374db665dcadf53b8d0014e682ec721d67a7ab6c817fe53c86f8900000000000000000000000000000060b7b827c56e973a2ab5bc5c558ada68c4ec3762f5957b20b919af5d53c87de056a397bdcb614c34761e2c815698e1f9f5521a385c2910850929040a4eba573e91ca21fc855358120ecd79a5d7007693ef3ff9d2b993d114443d53c53094e516f675b2a7074584714e7a2015e05e507811b4ca89c39281c9ada5f58ceb55893cca783ab09c9a19836a3a2c715b10436a5731549e364679ecd8461a68433ab52b1108831edb9654dc602183c1170d6881647f6dca15d57fb76357d815c5f1000000000000000000f49e327c0b6e511494466cec78650f0a6267"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x6)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
sendmmsg$inet(r0, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000440)='{', 0xfd4c}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000480)="d9", 0x1}], 0x1}}], 0x2, 0x0)

1.125437233s ago: executing program 4 (id=641):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002840), 0x0, 0x0)
close_range(r1, r2, 0x200000000000000)

1.006841323s ago: executing program 3 (id=643):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
add_key$keyring(&(0x7f0000000200), 0x0, 0x0, 0x0, 0xfffffffffffffffe)

981.621573ms ago: executing program 4 (id=644):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x1}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)

961.170233ms ago: executing program 3 (id=645):
write$qrtrtun(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e0000008500000050000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r7 = dup(r6)
write$P9_RLERRORu(r7, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r7, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
r8 = creat(&(0x7f0000000380)='./file0\x00', 0x80)
write$binfmt_elf64(r8, &(0x7f0000000040)=ANY=[], 0xfffffecf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r4}, 0x18)
r9 = socket(0x10, 0x80003, 0x0)
write(r9, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
dup2(r3, r9)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000013000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a801800058014000680"], 0x3c}}, 0x0)
write$qrtrtun(0xffffffffffffffff, &(0x7f0000000c00)="9d8d645e53b6183d874f9e93a18dd009a09560ff682bd07dc3d28385a8f3f9e18418950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bbd9a315544fa0a1622d949faba79788908354e467989e8458e6f5f76e", 0x59)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
r10 = socket(0x23, 0x80805, 0x0)
setsockopt$inet_mreqsrc(r10, 0x0, 0x25, &(0x7f0000000200)={@remote, @loopback, @broadcast}, 0xc)
connect$pptp(r10, &(0x7f0000000040)={0x18, 0x2, {0x1, @empty}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x14, &(0x7f0000000280)=ANY=[@ANYRES64=r10, @ANYRES8=r10, @ANYRESHEX=r10, @ANYRESOCT, @ANYRES8=r10, @ANYRES64=r10], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

583.220322ms ago: executing program 5 (id=646):
r0 = syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x54e, &(0x7f00000014c0)="$eJzs3c9vHFcdAPDvjH+sm6ZxAj1ABSRAIaAou/Gmjape2lxAqKqEqDggDqmxN5bJbjZk16U2kXD/hiKBxAn+BA5IHJB64sCNIxIHhFQOSAEsUIwE0qKZHf+ovcaLd73bej8faTLz5s3M973Ys+/t2/W8ACbWlYjYjIjZiHgzIuaL/UmxxKvdJTvuydajpe2tR0tJdDpv/C3J87N9+QmlvWs+XVxzLiK+8dWI7ySH47bWN+4t1uu1h0W60m48qLTWN66vNhZXaiu1+9XqrYVbN166+WJ1aHW93PjF46+svvbNX//q0+//bvPLP8iKdb7I263HkHWrPrMbJzMdEa+dRrAxmCrWs2MuByeTRsTHIuJz+f0/H1P5bycAcJZ1OvPRmd+fBgDOujQfA0vSckSkadEJKHfH8J6Nc2m92Wpfu9tcu7/cHSu7GDPp3dV67cal0h++lx88k2TphTwvz8/T1QPpmxFxKSJ+VHoqT5eXmvXl8XR5AGDiPb2//Y+If5bStFzu69Qen+oBAB8Zc+MuAAAwctp/AJg82n8AmDx9tP/Fh/2bp14WAGA0/r/3/xdOrRwAwOgY/weAyaP9B4CJ8vXXX8+Wznbx/Ovlt9bX7jXfur5ca90rN9aWykvNhw/KK83mSv7MnsZx16s3mw8WXoi1tyvtWqtdaa1v3Gk01+637+TP9b5TmxlJrQCA/+XS5fd+n0TE5stP5Uvsm8tBWw1nWzruAgBjMzXIyToI8JFmti+YXH014Xkn4benXhZgPHo+zHuu5+YH/aS7erefIL5nBB8qVz/Z//i/OZ7hbDH+D5PrZOP/rwy9HMDoGf+HydXpJAfn/J/dzQIAzqQBvsLX+eGwOiHAWB03mfdxn/8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAJDofEd+NJC3nc4Gn2b9puRzxTERcjJnk7mq9diMiLsTliJgpZemFcRcaABhQ+pekmP/r6vzz5w/mzib/KuXriPj+T9/48duL7fbDhWz/33f3l3amD6vunTfAvIIAwJDl7Xe1WO97I/9k69HSzjLK8jy+Hf8ppiJe2t56lC/dnOnIdkbM5X2Jc/9IYro4Zy4inouIqSHE33wnIj7Rq/5JPjZysZj5dH/8KGI/M9L46Qfip3led511vj4+hLLApHnvdkS82uv+S+NKvu59/8/lr1CDe3y7e7Gd177tffGni0hTPeJn9/yVfmO88JuvHdrZme/mvRPx3HSv+Mlu/OSI+M/3Gf+Pn/rMu68ckdf5WcTV6B1/f6xKu/Gg0lrfuL7aWFyprdTuV6u3Fm7deOnmi9VKPkZd2RmpPuyvL1+7cFTZsvqfOyL+XM/6z+6e+4U+6//zf7/57c/uJUsH43/p871//s/2jN+VtYlf7DP+4rlfHjl9dxZ/+Yj6H/fzv9Zn/Pf/vLHc56EAwAi01jfuLdbrtYcDbWTvQodxnUMbWRH7O3inuzhY0D/FadTihBszp/W/euob07t9xeFe+VvZFXtkpX3+kpxkIx16LQbaeDKqWON7TQJGY++mH3dJAAAAAAAAAAAAAACAo4ziT5fGXUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADOrv8GAAD//xxkzKw=")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=r0, @ANYBLOB="040000000000800008000000", @ANYRES32=r0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0xfffffffffffffffc, &(0x7f00000002c0)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r2, 0x0, 0x2, 0x2}}, 0x20)
open(&(0x7f0000000040)='.\x00', 0x418601, 0x8)

454.304811ms ago: executing program 4 (id=647):
syz_open_dev$usbfs(0x0, 0x1ff, 0x8401)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x30, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x30}}, 0x0)

421.350401ms ago: executing program 1 (id=648):
socket$inet(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x6, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100040, 0x0, 0x0, 0x2, 0x2, 0x15, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x40df, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x66010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8da}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x64}}, 0x0)

415.504561ms ago: executing program 4 (id=649):
socket$inet(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x6, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100040, 0x0, 0x0, 0x2, 0x2, 0x15, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x40df, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x66010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8da}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

385.445561ms ago: executing program 3 (id=650):
socket$inet(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x6, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100040, 0x0, 0x0, 0x2, 0x2, 0x15, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x40df, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x66010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8da}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

357.575191ms ago: executing program 5 (id=651):
syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0xfffffffffffffe01, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000060a0b040000000000000000020000002c00048028000180080001006e6174001ce80180080000000008000340000000110900010073797a30000000000900020073797a3200000000140000001100010000000000000000000200000a000000000000"], 0x80}}, 0x14b6deac033214c2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x7, 0x0, 0x7ffc0002}]})
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

269.27832ms ago: executing program 1 (id=652):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
setrlimit(0x40000000000008, &(0x7f0000000080))

193.71033ms ago: executing program 1 (id=653):
r0 = socket$inet6(0xa, 0x3, 0x5)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
r2 = dup3(r1, r0, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001580)=[{{&(0x7f0000000180)={0xa, 0x4e22, 0xfff, @mcast2, 0x5}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1400000000000000290000000b"], 0x18}}], 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c636865636b3d7374726963742c756d61736b3d30303030303030303030303030303030303133363033302c756e695f786c6174653d312c756e695f786c6174653d302c666d61736b3d30303030303030303030303030303030303030303034302c757466383d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c74696d655f6f66667365743d3078303030303030303030303030303166622c666c7573682c756e695f786c6174653d302c73686f72746e616d653d77696e39352c00208893fdd4787adad4209069"], 0x6, 0x2ab, &(0x7f0000000a80)="$eJzs3b1rLFUUAPAzyX6pxW5hJYIDWlg9Xl5rs0HyILiVsoVa6MP3Hkh2ERII+IFrKlsbS/8CQbDzn7CxsBdsBTtTBEZmZya7ibObTHATP36/Jjd3zrn3zOQmYYs9+/6L04PHaTw9+eyX6PWS2BrGME6TGMRWVL6IC4ZfBQDwb3aaZfF7VmiSl0REb3NlAQAb1Pj///cbLwkA2LC33n7njd3RaO/NNO3Fw+mXx+P8lX3+tbi++zQ+jEk8ifvRj7OI7Fwxfphl2ayV5gbxynR2PM4zp+/9WK6/+1vEPH8n+jGYT13M3x/t7aSFpfxZXsez5f7DPP9B9OP5mv33R3sPavJj3IlXX16q/17046cP4qOYxON5EYv8z3fS9PXs6z8+fTcvL89PZsfj7jxuIdu+5R8NAAAAAAAAAAAAAAAAAAAAAAD/YffK3jndmPfvyafK/jvbZ/k37Ugrg4v9eYr8pFroUn+gWRbfVP117qdpmpWBi/xWvNCK1t3cNQAAAAAAAAAAAAAAAAAAAPyzHH38ycGjyeTJ4d8yqLoBVG/rv+k6w6WZl6ImZhDnM93FllvltmtWju0qJolYW0a+YqPi21fvvmLwzKqsb79r+uh6V8e0b1Bhw0F1ug4eJfXPsBvVTK86JD8sx3Timnt1Vl3KGh2/Tu2lfuN77zw3H8zWxESyrrDXfi2eXDmTXL6Lzvyp1qa3y0Hxu1B3Nhqd57/+rUh06wAAAAAAAAAAAAAAAAAAgI1avOm35uLJiqSf94sP+Y/BhqsDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNux+Pz/BoNZmXyN4E4cHt3xLQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPA/8GcAAAD//wrtYeE=")
capset(&(0x7f0000000100)={0x20080522}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x1c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)

97.82263ms ago: executing program 1 (id=654):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4000000010000d0400"/20, @ANYRES32, @ANYBLOB="00000000e0ff00002000128009000100766c616e00000000100002800c0002000200006f414ecc2fad44f1761850c967a5968d8bf263cd65864ab2c95a9dd108f81d843c888cdd1be32016b63b309fb3729ba4e53c8f332d33796932546d37e7d3ae1e19234bc6180a492879ad0cc73f6c02ece718b89461ca050829a7dc0a61f5bc34ebd25ee8e488209f89f3b7a4e2e4dae0ee94e9d0c8f98349c57cd1908ec86c9c880b1f28f95b5f28ea9faacc91329b63c19912d6837dea97935371e81c18da910eaa8002ff746bdeef3f6a7fadfc84bd09003d243741fbd558367b55"], 0x40}}, 0x0)

64.18305ms ago: executing program 5 (id=655):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)

60.72363ms ago: executing program 0 (id=656):
write$qrtrtun(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e0000008500000050000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{}, &(0x7f0000000400), 0x0}, 0x20)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020000000000000", @ANYRES32, @ANYBLOB="000400"/18, @ANYRES32], 0x50)
pipe2$9p(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r7 = dup(r6)
write$P9_RLERRORu(r7, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r7, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])
r8 = creat(&(0x7f0000000380)='./file0\x00', 0x80)
write$binfmt_elf64(r8, &(0x7f0000000040)=ANY=[], 0xfffffecf)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000180)='kfree\x00', r4}, 0x18)
r9 = socket(0x10, 0x80003, 0x0)
write(r9, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
dup2(r3, r9)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000013000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a801800058014000680"], 0x3c}}, 0x0)
write$qrtrtun(0xffffffffffffffff, &(0x7f0000000c00)="9d8d645e53b6183d874f9e93a18dd009a09560ff682bd07dc3d28385a8f3f9e18418950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bbd9a315544fa0a1622d949faba79788908354e467989e8458e6f5f76e", 0x59)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
r10 = socket(0x23, 0x80805, 0x0)
setsockopt$inet_mreqsrc(r10, 0x0, 0x25, &(0x7f0000000200)={@remote, @loopback, @broadcast}, 0xc)
connect$pptp(r10, &(0x7f0000000040)={0x18, 0x2, {0x1, @empty}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x14, &(0x7f0000000280)=ANY=[@ANYRES64=r10, @ANYRES8=r10, @ANYRESHEX=r10, @ANYRESOCT, @ANYRES8=r10, @ANYRES64=r10], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

4.92614ms ago: executing program 1 (id=657):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002840), 0x0, 0x0)
close_range(r1, r2, 0x200000000000000)

3.11481ms ago: executing program 4 (id=658):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x163002, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)=0x100)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f0000000240)={0xed, 0x8000000000000000, 0x0, 0x3, 0x2, 0x5, 0x5, 0x7}, &(0x7f0000000280)={0x100, 0x2, 0x4, 0x2, 0xc, 0xda, 0x4, 0x2}, &(0x7f00000002c0)={0x4, 0x4, 0x3, 0x9, 0x33, 0x81, 0x1, 0xcf}, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={[0x8]}, 0x8})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009c0000000b"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000500000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r8}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
nanosleep(0x0, 0x0)
futimesat(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x304, 0x36}, "2cd65ab78100", "9e8ecc7bb5352776725e1047711330ff2bb17b550800", '\x00', "46b0dc72b7b1d30e"}, 0x38)
ioctl$KDSKBENT(r3, 0x4b47, &(0x7f0000000400)={0x2, 0x66, 0x8})
open_by_handle_at(r3, &(0x7f00000003c0)=@OVL_FILEID_V1={0x18, 0xf8, {'\x00', {0x0, 0xfb, 0x15, 0x4, 0x8, "efdd4d911f5757151b0c975d1e44bb25"}}}, 0x208200)
r9 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0xc0200, 0x0)
ioctl$PPPIOCNEWUNIT(r9, 0xc004743e, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b700000081139000bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000071107c00000000001d300500000000004704000001ed00000f030000000000001d44020000000000620a00fe040400007203000000000000b500f7ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a8641aa05a1336b3b4c4becea710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3380d28e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51bf900000000000000d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616236fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a22048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343cccc953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93020000000000000080e69db384ac7eeedcf2ba3a9508f9d6aba582a896a9f1e096df6ecea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f006694d461b76a58d88cf0f520310a1e80dc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6032399f87a7a14245bbd796a09313b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c9102"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x101442, 0x0)

0s ago: executing program 1 (id=659):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30}, 0x9c)
r1 = syz_io_uring_setup(0x111, &(0x7f00000004c0)={0x0, 0x932c, 0x80}, &(0x7f0000000240)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x241}})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x580981, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x5}}, './file0\x00'})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYRES16=r5], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000000340)={0x6, 0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000680)=""/248, 0xf8}, {&(0x7f0000001080)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/32, 0x20}, {&(0x7f0000000200)=""/52, 0x34}, {&(0x7f0000002080)=""/4096, 0x1000}, {&(0x7f0000000880)=""/208, 0xd0}], &(0x7f0000000b00)=[0x9, 0xa7e, 0xaaa3, 0xc, 0x7, 0x0, 0x10001, 0x81, 0x80000001, 0x800]}, 0x20)
r7 = open$dir(0x0, 0x4002, 0x40)
fcntl$setsig(r7, 0xa, 0x24)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
unshare(0x22020400)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x2000, 0x0)
close(r9)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNGETVNETLE(r9, 0x4010744d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000840)='sched_switch\x00', r8, 0x0, 0x4}, 0x18)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYBLOB="b5"], 0x6c}}, 0x0)
io_uring_enter(r1, 0x47f6, 0x880e, 0x0, 0x0, 0x0)
r11 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000680)='/proc/locks\x00', 0x0, 0x0)
preadv(r11, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x8)
preadv(r11, &(0x7f00000003c0)=[{&(0x7f0000000440)=""/235, 0xeb}], 0x1, 0x3, 0x4)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)

kernel console output (not intermixed with test programs):

��ݡ�����
[   32.300788][ T3471] 
) failed (rc=-5)
[   32.332352][ T3464] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.357718][ T3465] EXT4-fs error (device loop2): ext4_search_dir:1505: inode #12: block 7: comm syz.2.9: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0
[   32.359865][ T3463] EXT4-fs error (device loop0) in ext4_delete_entry:2758: Corrupt filesystem
[   32.386187][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.411542][ T3465] EXT4-fs (loop2): Remounting filesystem read-only
[   32.418131][ T3463] EXT4-fs warning (device loop0): ext4_rename_delete:3742: inode #2: comm syz.0.10: Deleting old file: nlink 1, error=-117
[   32.439386][ T3487] loop3: detected capacity change from 0 to 512
[   32.452446][ T3463] EXT4-fs error (device loop0): ext4_find_dest_de:2079: inode #2: block 16: comm syz.0.10: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   32.472921][ T3487] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   32.490829][ T3491] loop4: detected capacity change from 0 to 256
[   32.509733][ T3487] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   32.567193][ T3487] syz.3.13 (3487) used greatest stack depth: 10280 bytes left
[   32.580118][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.603588][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.639151][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.652948][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.662490][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.672463][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.681668][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.691954][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.740382][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.787038][ T3300] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=11
[   32.816505][ T3510] netfs: Couldn't get user pages (rc=-14)
[   32.931588][ T3534] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   32.946028][ T3534] vcan0: entered promiscuous mode
[   32.951583][ T3534] vlan2: entered promiscuous mode
[   32.957478][ T3534] vcan0: left promiscuous mode
[   33.022341][ T3536] loop1: detected capacity change from 0 to 1024
[   33.067626][ T3536] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.084842][ T3536] EXT4-fs error (device loop1): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.1.26: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   33.104968][ T3536] EXT4-fs error (device loop1) in ext4_delete_entry:2758: Corrupt filesystem
[   33.115641][ T3536] EXT4-fs warning (device loop1): ext4_rename_delete:3742: inode #2: comm syz.1.26: Deleting old file: nlink 1, error=-117
[   33.192016][ T3536] EXT4-fs error (device loop1): ext4_find_dest_de:2079: inode #2: block 16: comm syz.1.26: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   33.283613][ T3545] loop0: detected capacity change from 0 to 256
[   33.290534][ T3545] vfat: Bad value for 'uid'
[   33.295047][ T3545] vfat: Bad value for 'uid'
[   33.820691][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.961745][ T3569] netlink: 104 bytes leftover after parsing attributes in process `syz.0.34'.
[   34.010434][ T3571] FAULT_INJECTION: forcing a failure.
[   34.010434][ T3571] name failslab, interval 1, probability 0, space 0, times 0
[   34.023144][ T3571] CPU: 1 UID: 0 PID: 3571 Comm: syz.3.33 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   34.023195][ T3571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   34.023210][ T3571] Call Trace:
[   34.023217][ T3571]  <TASK>
[   34.023225][ T3571]  dump_stack_lvl+0xf2/0x150
[   34.023258][ T3571]  dump_stack+0x15/0x1a
[   34.023279][ T3571]  should_fail_ex+0x24a/0x260
[   34.023381][ T3571]  should_failslab+0x8f/0xb0
[   34.023459][ T3571]  kmem_cache_alloc_noprof+0x52/0x320
[   34.023500][ T3571]  ? getname_flags+0x81/0x3b0
[   34.023542][ T3571]  getname_flags+0x81/0x3b0
[   34.023582][ T3571]  __x64_sys_rmdir+0x21/0x40
[   34.023673][ T3571]  x64_sys_call+0x27ca/0x2dc0
[   34.023700][ T3571]  do_syscall_64+0xc9/0x1c0
[   34.023779][ T3571]  ? clear_bhb_loop+0x55/0xb0
[   34.023809][ T3571]  ? clear_bhb_loop+0x55/0xb0
[   34.023908][ T3571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   34.024010][ T3571] RIP: 0033:0x7efda315d169
[   34.024025][ T3571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   34.024063][ T3571] RSP: 002b:00007efda17c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[   34.024085][ T3571] RAX: ffffffffffffffda RBX: 00007efda3375fa0 RCX: 00007efda315d169
[   34.024097][ T3571] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000700
[   34.024119][ T3571] RBP: 00007efda17c7090 R08: 0000000000000000 R09: 0000000000000000
[   34.024133][ T3571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   34.024147][ T3571] R13: 0000000000000000 R14: 00007efda3375fa0 R15: 00007fff96c22478
[   34.024167][ T3571]  </TASK>
[   34.225115][ T3575] netlink: 4 bytes leftover after parsing attributes in process `syz.0.36'.
[   34.261174][ T3575] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   34.268623][ T3575] batman_adv: batadv0: Removing interface: batadv_slave_0
[   34.291902][ T3575] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   34.299402][ T3575] batman_adv: batadv0: Removing interface: batadv_slave_1
[   34.336332][ T3577] netfs: Couldn't get user pages (rc=-14)
[   34.358837][ T3577] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3577 comm=syz.3.37
[   34.717227][ T3598] tipc: Started in network mode
[   34.722297][ T3598] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   34.729474][ T3598] tipc: Enabled bearer <eth:team0>, priority 0
[   34.792592][ T3601] loop0: detected capacity change from 0 to 512
[   34.799096][ T3601] EXT4-fs: quotafile must be on filesystem root
[   34.837036][ T3601] capability: warning: `syz.0.45' uses 32-bit capabilities (legacy support in use)
[   34.860519][ T3603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   34.886778][ T3603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   34.887648][ T3605] loop0: detected capacity change from 0 to 256
[   34.904186][ T3607] loop3: detected capacity change from 0 to 2048
[   34.914388][ T3607] EXT4-fs: Ignoring removed bh option
[   34.927582][ T3605] FAT-fs (loop0): IO charset maciceland not found
[   34.940240][ T3607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.991283][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.054776][  T166] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   35.161841][ T3615] loop0: detected capacity change from 0 to 256
[   35.233904][ T3611] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   35.250410][  T166] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   35.264633][ T3615] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   35.372237][  T166] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   35.401870][   T29] kauditd_printk_skb: 351 callbacks suppressed
[   35.401953][   T29] audit: type=1326 audit(1740647167.973:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1b7b4a4127 code=0x7ffc0000
[   35.454973][ T3611] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 30 with max blocks 34 with error 28
[   35.467483][ T3611] EXT4-fs (loop3): This should not happen!! Data will be lost
[   35.467483][ T3611] 
[   35.477180][ T3611] EXT4-fs (loop3): Total free blocks count 0
[   35.483184][ T3611] EXT4-fs (loop3): Free/Dirty block details
[   35.489156][ T3611] EXT4-fs (loop3): free_blocks=2415919104
[   35.494385][   T29] audit: type=1326 audit(1740647168.003:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1b7b449359 code=0x7ffc0000
[   35.494906][ T3611] EXT4-fs (loop3): dirty_blocks=8224
[   35.494920][ T3611] EXT4-fs (loop3): Block reservation details
[   35.494931][ T3611] EXT4-fs (loop3): i_reserved_data_blocks=514
[   35.518000][   T29] audit: type=1326 audit(1740647168.003:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1b7b4a4127 code=0x7ffc0000
[   35.558728][   T29] audit: type=1326 audit(1740647168.003:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1b7b449359 code=0x7ffc0000
[   35.581932][   T29] audit: type=1326 audit(1740647168.003:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7b4ad169 code=0x7ffc0000
[   35.605303][   T29] audit: type=1326 audit(1740647168.013:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1b7b4a4127 code=0x7ffc0000
[   35.605337][   T29] audit: type=1326 audit(1740647168.013:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1b7b449359 code=0x7ffc0000
[   35.605363][   T29] audit: type=1326 audit(1740647168.013:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7b4ad169 code=0x7ffc0000
[   35.661605][ T3629] netlink: 'syz.4.53': attribute type 4 has an invalid length.
[   35.672478][   T29] audit: type=1326 audit(1740647168.103:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1b7b4a4127 code=0x7ffc0000
[   35.672515][   T29] audit: type=1326 audit(1740647168.103:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3602 comm="syz.4.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1b7b449359 code=0x7ffc0000
[   35.673780][ T3623] netlink: 8 bytes leftover after parsing attributes in process `syz.1.52'.
[   35.682778][  T166] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   35.685761][ T3614] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   35.720043][ T3371] tipc: Node number set to 11578026
[   35.870361][ T3611] syz.3.47 (3611) used greatest stack depth: 10120 bytes left
[   35.885948][ T3643] ip6gre0: entered promiscuous mode
[   35.885976][ T3643] vlan2: entered promiscuous mode
[   35.887727][ T3643] ip6gre0: left promiscuous mode
[   35.954930][ T3617] chnl_net:caif_netlink_parms(): no params data found
[   35.980418][  T166] bridge_slave_1: left allmulticast mode
[   35.986114][  T166] bridge_slave_1: left promiscuous mode
[   35.986331][  T166] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.995487][  T166] bridge_slave_0: left allmulticast mode
[   35.995505][  T166] bridge_slave_0: left promiscuous mode
[   35.995582][  T166] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.190341][  T166] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   36.214893][ T3678] loop5: detected capacity change from 0 to 7
[   36.223322][ T3678] Buffer I/O error on dev loop5, logical block 0, async page read
[   36.231818][ T3678] Buffer I/O error on dev loop5, logical block 0, async page read
[   36.239681][ T3678]  loop5: unable to read partition table
[   36.248605][ T3678] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   36.248605][ T3678] 
) failed (rc=-5)
[   36.248828][  T166] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   36.284207][  T166] bond0 (unregistering): Released all slaves
[   36.302062][ T3669] syz_tun: entered promiscuous mode
[   36.307415][ T3669] vlan2: entered promiscuous mode
[   36.315438][ T3669] syz_tun: left promiscuous mode
[   36.366301][  T166] hsr_slave_0: left promiscuous mode
[   36.381155][  T166] hsr_slave_1: left promiscuous mode
[   36.386808][  T166] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   36.394502][  T166] batman_adv: batadv0: Removing interface: batadv_slave_0
[   36.415850][  T166] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   36.423411][  T166] batman_adv: batadv0: Removing interface: batadv_slave_1
[   36.451998][  T166] veth1_macvtap: left promiscuous mode
[   36.457515][  T166] veth0_macvtap: left promiscuous mode
[   36.473334][  T166] veth1_vlan: left promiscuous mode
[   36.478611][  T166] veth0_vlan: left promiscuous mode
[   36.569434][ T3692] 9pnet_fd: p9_fd_create_unix (3692): address too long: ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   36.611244][  T166] team0 (unregistering): Port device team_slave_1 removed
[   36.764593][  T166] team0 (unregistering): Port device team_slave_0 removed
[   36.772901][ T3694] loop0: detected capacity change from 0 to 1024
[   36.812625][ T3694] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.859041][ T3702] netlink: 'syz.1.66': attribute type 4 has an invalid length.
[   36.869667][ T3700] loop3: detected capacity change from 0 to 512
[   36.882857][ T3700] EXT4-fs: quotafile must be on filesystem root
[   36.949092][ T3617] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.956576][ T3617] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.981184][ T3617] bridge_slave_0: entered allmulticast mode
[   36.989254][ T3617] bridge_slave_0: entered promiscuous mode
[   36.996500][ T3617] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.003640][ T3617] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.011206][ T3617] bridge_slave_1: entered allmulticast mode
[   37.017974][ T3617] bridge_slave_1: entered promiscuous mode
[   37.026386][ T3709] netlink: 36 bytes leftover after parsing attributes in process `syz.0.65'.
[   37.035282][ T3709] netlink: 'syz.0.65': attribute type 1 has an invalid length.
[   37.042940][ T3709] netlink: 13 bytes leftover after parsing attributes in process `syz.0.65'.
[   37.184452][ T3711] FAULT_INJECTION: forcing a failure.
[   37.184452][ T3711] name failslab, interval 1, probability 0, space 0, times 0
[   37.197202][ T3711] CPU: 1 UID: 0 PID: 3711 Comm: syz.4.70 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   37.197281][ T3711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   37.197296][ T3711] Call Trace:
[   37.197304][ T3711]  <TASK>
[   37.197394][ T3711]  dump_stack_lvl+0xf2/0x150
[   37.197421][ T3711]  dump_stack+0x15/0x1a
[   37.197446][ T3711]  should_fail_ex+0x24a/0x260
[   37.197483][ T3711]  should_failslab+0x8f/0xb0
[   37.197564][ T3711]  kmem_cache_alloc_node_noprof+0x59/0x320
[   37.197587][ T3711]  ? __alloc_skb+0x10b/0x310
[   37.197608][ T3711]  __alloc_skb+0x10b/0x310
[   37.197627][ T3711]  __neigh_notify+0x5c/0x110
[   37.197730][ T3711]  neigh_cleanup_and_release+0x27/0x160
[   37.197823][ T3711]  neigh_flush_dev+0x50a/0x570
[   37.197922][ T3711]  ? __pfx_dev_map_notification+0x10/0x10
[   37.197946][ T3711]  ? __pfx_arp_netdev_event+0x10/0x10
[   37.197983][ T3711]  neigh_changeaddr+0x30/0x50
[   37.198009][ T3711]  arp_netdev_event+0x4f/0x1b0
[   37.198085][ T3711]  raw_notifier_call_chain+0x6f/0x1d0
[   37.198117][ T3711]  call_netdevice_notifiers_info+0xae/0x100
[   37.198156][ T3711]  dev_set_mac_address+0x1ff/0x260
[   37.198251][ T3711]  dev_set_mac_address_user+0x31/0x50
[   37.198284][ T3711]  do_setlink+0x40b/0x2370
[   37.198312][ T3711]  ? __schedule+0x75b/0x990
[   37.198334][ T3711]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[   37.198358][ T3711]  ? __list_del_entry_valid_or_report+0x66/0x130
[   37.198441][ T3711]  rtnl_newlink+0xcf9/0x1250
[   37.198463][ T3711]  ? cmp_ex_search+0x56/0x70
[   37.198516][ T3711]  ? rep_movs_alternative+0x13/0x70
[   37.198538][ T3711]  ? queue_map_peek_elem+0x1f/0x30
[   37.198562][ T3711]  ? __rcu_read_unlock+0x34/0x70
[   37.198605][ T3711]  ? bpf_trace_run3+0x12b/0x1d0
[   37.198634][ T3711]  ? __memcg_slab_free_hook+0xc9/0x1e0
[   37.198662][ T3711]  ? __rcu_read_unlock+0x4e/0x70
[   37.198683][ T3711]  ? avc_has_perm_noaudit+0x1cc/0x210
[   37.198784][ T3711]  ? selinux_capable+0x1f2/0x260
[   37.198822][ T3711]  ? security_capable+0x81/0x90
[   37.198863][ T3711]  ? ns_capable+0x7d/0xb0
[   37.198886][ T3711]  ? __pfx_rtnl_newlink+0x10/0x10
[   37.198936][ T3711]  rtnetlink_rcv_msg+0x651/0x710
[   37.198963][ T3711]  ? ref_tracker_free+0x3a5/0x410
[   37.199000][ T3711]  netlink_rcv_skb+0x12c/0x230
[   37.199114][ T3711]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   37.199154][ T3711]  rtnetlink_rcv+0x1c/0x30
[   37.199181][ T3711]  netlink_unicast+0x599/0x670
[   37.199253][ T3711]  netlink_sendmsg+0x5cc/0x6e0
[   37.199330][ T3711]  ? __pfx_netlink_sendmsg+0x10/0x10
[   37.199383][ T3711]  __sock_sendmsg+0x140/0x180
[   37.199420][ T3711]  ____sys_sendmsg+0x326/0x4b0
[   37.199454][ T3711]  __sys_sendmsg+0x19d/0x230
[   37.199501][ T3711]  __x64_sys_sendmsg+0x46/0x50
[   37.199592][ T3711]  x64_sys_call+0x2734/0x2dc0
[   37.199624][ T3711]  do_syscall_64+0xc9/0x1c0
[   37.199659][ T3711]  ? clear_bhb_loop+0x55/0xb0
[   37.199752][ T3711]  ? clear_bhb_loop+0x55/0xb0
[   37.199781][ T3711]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   37.199820][ T3711] RIP: 0033:0x7f1b7b4ad169
[   37.199838][ T3711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   37.199868][ T3711] RSP: 002b:00007f1b79b17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   37.199962][ T3711] RAX: ffffffffffffffda RBX: 00007f1b7b6c5fa0 RCX: 00007f1b7b4ad169
[   37.199975][ T3711] RDX: 0000000000000000 RSI: 0000400000000180 RDI: 0000000000000003
[   37.199996][ T3711] RBP: 00007f1b79b17090 R08: 0000000000000000 R09: 0000000000000000
[   37.200009][ T3711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   37.200021][ T3711] R13: 0000000000000000 R14: 00007f1b7b6c5fa0 R15: 00007ffc971bd298
[   37.200040][ T3711]  </TASK>
[   37.565243][ T3711] lo: entered promiscuous mode
[   37.570095][ T3711] lo: entered allmulticast mode
[   37.677893][ T3617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.710193][ T3717] ip6gre0: entered promiscuous mode
[   37.715552][ T3717] vlan2: entered promiscuous mode
[   37.783493][ T3717] ip6gre0: left promiscuous mode
[   37.824185][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.870512][ T3617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.886667][ T3729] netfs: Couldn't get user pages (rc=-14)
[   37.894465][ T3740] syz_tun: entered promiscuous mode
[   37.899742][ T3740] vlan2: entered promiscuous mode
[   37.914924][ T3742] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3742 comm=syz.1.73
[   37.929089][ T3740] syz_tun: left promiscuous mode
[   37.986070][ T3751] mmap: syz.3.77 (3751) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   38.006474][ T3617] team0: Port device team_slave_0 added
[   38.022046][ T3617] team0: Port device team_slave_1 added
[   38.102301][ T3617] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.109434][ T3617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.135525][ T3617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.250570][ T3617] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.257589][ T3617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.283612][ T3617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.320959][ T3761] netlink: 128 bytes leftover after parsing attributes in process `syz.1.80'.
[   38.338889][ T3761] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   38.378714][ T3761] =======================================================
[   38.378714][ T3761] WARNING: The mand mount option has been deprecated and
[   38.378714][ T3761]          and is ignored by this kernel. Remove the mand
[   38.378714][ T3761]          option from the mount to silence this warning.
[   38.378714][ T3761] =======================================================
[   38.414204][ T3763] netlink: 16 bytes leftover after parsing attributes in process `syz.0.82'.
[   38.417258][ T3764] loop4: detected capacity change from 0 to 256
[   38.423104][ T3763] netlink: 20 bytes leftover after parsing attributes in process `syz.0.82'.
[   38.477439][ T3761] 9pnet_fd: Insufficient options for proto=fd
[   38.517452][ T3617] hsr_slave_0: entered promiscuous mode
[   38.527894][ T3617] hsr_slave_1: entered promiscuous mode
[   38.546431][ T3617] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   38.579867][ T3617] Cannot create hsr debugfs directory
[   38.589728][ T3763] geneve2: entered allmulticast mode
[   38.605928][ T3763] loop0: detected capacity change from 0 to 512
[   38.612878][ T3763] EXT4-fs: Ignoring removed orlov option
[   38.670230][ T3763] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.682823][ T3763] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   38.727858][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.903171][ T3617] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   39.026020][ T3792] loop1: detected capacity change from 0 to 1024
[   39.039331][ T3617] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   39.065845][ T3792] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   39.075770][ T3792] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   39.090556][ T3792] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   39.092056][ T3617] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   39.144885][ T3788] ip6gre0: entered promiscuous mode
[   39.151043][ T3788] vlan2: entered promiscuous mode
[   39.158131][ T3788] ip6gre0: left promiscuous mode
[   39.180579][ T3617] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   39.187337][ T3792] EXT4-fs error (device loop1): ext4_get_journal_inode:5798: inode #5: comm syz.1.89: unexpected bad inode w/o EXT4_IGET_BAD
[   39.219216][ T3792] EXT4-fs (loop1): no journal found
[   39.224519][ T3792] EXT4-fs (loop1): can't get journal size
[   39.225962][ T3794] netfs: Couldn't get user pages (rc=-14)
[   39.249997][ T3795] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3795 comm=syz.4.90
[   39.253559][ T3792] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.288234][ T3617] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.309659][ T3617] 8021q: adding VLAN 0 to HW filter on device team0
[   39.331711][  T132] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.338892][  T132] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.389752][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.407821][  T132] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.414948][  T132] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.467178][ T3804] vlan2: entered promiscuous mode
[   39.507577][ T3617] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   39.600248][ T3617] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.037649][ T3839] ip6gre0: entered promiscuous mode
[   40.062098][ T3839] vlan2: entered promiscuous mode
[   40.085451][ T3839] ip6gre0: left promiscuous mode
[   40.114794][ T3842] loop4: detected capacity change from 0 to 128
[   40.165102][ T3617] veth0_vlan: entered promiscuous mode
[   40.196564][ T3617] veth1_vlan: entered promiscuous mode
[   40.218913][ T3617] veth0_macvtap: entered promiscuous mode
[   40.226596][ T3617] veth1_macvtap: entered promiscuous mode
[   40.247285][ T3617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.257855][ T3617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.267973][ T3617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.278575][ T3617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.288484][ T3617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.299032][ T3617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.338066][ T3617] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.365895][ T3845] ipvlan2: entered promiscuous mode
[   40.371226][ T3845] ipvlan2: entered allmulticast mode
[   40.376588][ T3845] bridge0: entered allmulticast mode
[   40.384768][ T3845] bridge0: port 3(ipvlan2) entered blocking state
[   40.391296][ T3845] bridge0: port 3(ipvlan2) entered disabled state
[   40.407669][ T3617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.418294][ T3617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.428245][ T3617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.438888][ T3617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.448861][ T3617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.459369][ T3617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.470779][ T3617] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.479443][ T3617] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.488305][ T3617] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.497129][ T3617] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.505857][ T3617] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.516749][ T3848] netfs: Couldn't get user pages (rc=-14)
[   40.518651][ T3852] netlink: 28 bytes leftover after parsing attributes in process `syz.1.105'.
[   40.528766][ T3851] vlan2: entered promiscuous mode
[   40.557495][   T29] kauditd_printk_skb: 173 callbacks suppressed
[   40.557509][   T29] audit: type=1400 audit(1740647173.123:654): avc:  denied  { mounton } for  pid=3617 comm="syz-executor" path="/root/syzkaller.tYRlBZ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   40.601863][   T29] audit: type=1326 audit(1740647173.163:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.625250][   T29] audit: type=1326 audit(1740647173.163:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.634650][ T3859] loop4: detected capacity change from 0 to 512
[   40.649520][   T29] audit: type=1326 audit(1740647173.163:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.665647][ T3860] netlink: 'syz.4.109': attribute type 1 has an invalid length.
[   40.678045][   T29] audit: type=1326 audit(1740647173.173:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.685703][ T3860] netlink: 'syz.4.109': attribute type 1 has an invalid length.
[   40.716644][   T29] audit: type=1326 audit(1740647173.173:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.739871][   T29] audit: type=1326 audit(1740647173.173:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.763220][   T29] audit: type=1326 audit(1740647173.173:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.763605][ T3860] netlink: 'syz.4.109': attribute type 1 has an invalid length.
[   40.786352][   T29] audit: type=1326 audit(1740647173.173:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.786382][   T29] audit: type=1326 audit(1740647173.173:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3847 comm="syz.1.105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   40.794034][ T3860] netlink: 'syz.4.109': attribute type 1 has an invalid length.
[   40.849017][ T3861] FAULT_INJECTION: forcing a failure.
[   40.849017][ T3861] name failslab, interval 1, probability 0, space 0, times 0
[   40.861679][ T3861] CPU: 0 UID: 0 PID: 3861 Comm: syz.3.108 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   40.861708][ T3861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   40.861722][ T3861] Call Trace:
[   40.861731][ T3861]  <TASK>
[   40.861739][ T3861]  dump_stack_lvl+0xf2/0x150
[   40.861770][ T3861]  dump_stack+0x15/0x1a
[   40.861790][ T3861]  should_fail_ex+0x24a/0x260
[   40.861817][ T3861]  should_failslab+0x8f/0xb0
[   40.861845][ T3861]  kmem_cache_alloc_noprof+0x52/0x320
[   40.861870][ T3861]  ? vm_area_alloc+0x2c/0x130
[   40.861895][ T3861]  vm_area_alloc+0x2c/0x130
[   40.861915][ T3861]  mmap_region+0x819/0x1620
[   40.861949][ T3861]  do_mmap+0x98a/0xc30
[   40.861981][ T3861]  vm_mmap_pgoff+0x16d/0x2d0
[   40.862010][ T3861]  ksys_mmap_pgoff+0xd0/0x330
[   40.862037][ T3861]  ? fpregs_assert_state_consistent+0x83/0xa0
[   40.862060][ T3861]  x64_sys_call+0x1940/0x2dc0
[   40.862091][ T3861]  do_syscall_64+0xc9/0x1c0
[   40.862118][ T3861]  ? clear_bhb_loop+0x55/0xb0
[   40.862143][ T3861]  ? clear_bhb_loop+0x55/0xb0
[   40.862175][ T3861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.862201][ T3861] RIP: 0033:0x7efda315d1a3
[   40.862215][ T3861] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   40.862231][ T3861] RSP: 002b:00007efda17a5e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   40.862247][ T3861] RAX: ffffffffffffffda RBX: 0000000000000510 RCX: 00007efda315d1a3
[   40.862260][ T3861] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   40.862273][ T3861] RBP: 0000400000000382 R08: 00000000ffffffff R09: 0000000000000000
[   40.862287][ T3861] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000005
[   40.862300][ T3861] R13: 00007efda17a5ef0 R14: 00007efda17a5eb0 R15: 0000400000000000
[   40.862317][ T3861]  </TASK>
[   41.137474][ T3879] ip6gre0: entered promiscuous mode
[   41.152983][ T3879] vlan2: entered promiscuous mode
[   41.163475][ T3879] ip6gre0: left promiscuous mode
[   41.209314][ T3884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.116'.
[   43.022542][ T3911] loop0: detected capacity change from 0 to 1024
[   43.084561][ T3914] loop1: detected capacity change from 0 to 256
[   43.091132][ T3914] vfat: Bad value for 'uid'
[   43.095701][ T3914] vfat: Bad value for 'uid'
[   43.159381][ T3916] loop5: detected capacity change from 0 to 7
[   43.175855][ T3916] Buffer I/O error on dev loop5, logical block 0, async page read
[   43.184817][ T3911] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.216113][ T3916] Buffer I/O error on dev loop5, logical block 0, async page read
[   43.224044][ T3916]  loop5: unable to read partition table
[   43.254943][ T3921] loop4: detected capacity change from 0 to 1024
[   43.293089][ T3916] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   43.293089][ T3916] 
) failed (rc=-5)
[   43.320998][ T3921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.341699][ T3911] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   43.366691][ T3921] EXT4-fs error (device loop4): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.4.128: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   43.408142][ T3911] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1032 with error 28
[   43.420698][ T3911] EXT4-fs (loop0): This should not happen!! Data will be lost
[   43.420698][ T3911] 
[   43.430425][ T3911] EXT4-fs (loop0): Total free blocks count 0
[   43.436414][ T3911] EXT4-fs (loop0): Free/Dirty block details
[   43.442353][ T3911] EXT4-fs (loop0): free_blocks=68451041280
[   43.448161][ T3911] EXT4-fs (loop0): dirty_blocks=1040
[   43.453481][ T3911] EXT4-fs (loop0): Block reservation details
[   43.459480][ T3911] EXT4-fs (loop0): i_reserved_data_blocks=65
[   43.510969][ T3921] EXT4-fs error (device loop4) in ext4_delete_entry:2758: Corrupt filesystem
[   43.534170][ T3921] EXT4-fs warning (device loop4): ext4_rename_delete:3742: inode #2: comm syz.4.128: Deleting old file: nlink 1, error=-117
[   43.587051][ T3921] EXT4-fs error (device loop4): ext4_find_dest_de:2079: inode #2: block 16: comm syz.4.128: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   43.628140][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.682449][ T3942] netfs: Couldn't get user pages (rc=-14)
[   43.692448][ T3944] vlan2: entered promiscuous mode
[   43.846289][ T3942] netlink: 28 bytes leftover after parsing attributes in process `syz.4.132'.
[   43.883130][  T132] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1032 with error 28
[   45.693250][ T3959] 9pnet_fd: Insufficient options for proto=fd
[   45.754572][ T3958] syzkaller1: entered promiscuous mode
[   45.762133][ T3958] syzkaller1: entered allmulticast mode
[   45.800829][   T29] kauditd_printk_skb: 92 callbacks suppressed
[   45.800843][   T29] audit: type=1400 audit(1740647178.363:756): avc:  denied  { create } for  pid=3957 comm="syz.4.138" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   45.834996][ T3961] loop1: detected capacity change from 0 to 4096
[   45.852801][   T29] audit: type=1326 audit(1740647178.423:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   45.876208][   T29] audit: type=1326 audit(1740647178.423:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   45.899652][   T29] audit: type=1326 audit(1740647178.453:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   45.922901][   T29] audit: type=1326 audit(1740647178.453:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   45.946308][   T29] audit: type=1326 audit(1740647178.453:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   45.969588][   T29] audit: type=1326 audit(1740647178.453:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   45.993321][   T29] audit: type=1326 audit(1740647178.503:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   46.016658][   T29] audit: type=1326 audit(1740647178.563:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3966 comm="syz.5.141" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   46.033861][ T3975] loop0: detected capacity change from 0 to 1024
[   46.056561][   T29] audit: type=1400 audit(1740647178.623:765): avc:  denied  { connect } for  pid=3977 comm="syz.5.144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   46.082606][ T3961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.101805][ T3975] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.153549][ T3975] EXT4-fs error (device loop0): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.0.143: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   46.178104][ T3984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.139'.
[   46.206792][ T3975] EXT4-fs error (device loop0) in ext4_delete_entry:2758: Corrupt filesystem
[   46.236900][ T3975] EXT4-fs warning (device loop0): ext4_rename_delete:3742: inode #2: comm syz.0.143: Deleting old file: nlink 1, error=-117
[   46.269250][ T3975] EXT4-fs error (device loop0): ext4_find_dest_de:2079: inode #2: block 16: comm syz.0.143: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   46.306496][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.340508][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.563611][ T4003] loop0: detected capacity change from 0 to 256
[   46.570235][ T4003] vfat: Bad value for 'uid'
[   46.574746][ T4003] vfat: Bad value for 'uid'
[   47.266337][ T4014] FAULT_INJECTION: forcing a failure.
[   47.266337][ T4014] name failslab, interval 1, probability 0, space 0, times 0
[   47.279065][ T4014] CPU: 0 UID: 0 PID: 4014 Comm: syz.5.154 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   47.279167][ T4014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   47.279182][ T4014] Call Trace:
[   47.279190][ T4014]  <TASK>
[   47.279198][ T4014]  dump_stack_lvl+0xf2/0x150
[   47.279225][ T4014]  dump_stack+0x15/0x1a
[   47.279250][ T4014]  should_fail_ex+0x24a/0x260
[   47.279344][ T4014]  should_failslab+0x8f/0xb0
[   47.279380][ T4014]  kmem_cache_alloc_node_noprof+0x59/0x320
[   47.279408][ T4014]  ? __alloc_skb+0x10b/0x310
[   47.279454][ T4014]  __alloc_skb+0x10b/0x310
[   47.279471][ T4014]  ? audit_log_start+0x34c/0x6b0
[   47.279579][ T4014]  audit_log_start+0x368/0x6b0
[   47.279622][ T4014]  audit_seccomp+0x4b/0x130
[   47.279655][ T4014]  __seccomp_filter+0x6fa/0x1180
[   47.279735][ T4014]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   47.279772][ T4014]  ? vfs_write+0x644/0x920
[   47.279850][ T4014]  ? __schedule+0x75b/0x990
[   47.279945][ T4014]  __secure_computing+0x9f/0x1c0
[   47.279973][ T4014]  syscall_trace_enter+0xd1/0x1f0
[   47.279998][ T4014]  do_syscall_64+0xaa/0x1c0
[   47.280041][ T4014]  ? clear_bhb_loop+0x55/0xb0
[   47.280067][ T4014]  ? clear_bhb_loop+0x55/0xb0
[   47.280097][ T4014]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.280128][ T4014] RIP: 0033:0x7f39ca19d169
[   47.280143][ T4014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.280221][ T4014] RSP: 002b:00007f39c8807038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   47.280238][ T4014] RAX: ffffffffffffffda RBX: 00007f39ca3b5fa0 RCX: 00007f39ca19d169
[   47.280250][ T4014] RDX: 000000000000001c RSI: 0000400000000180 RDI: 0000000000000006
[   47.280261][ T4014] RBP: 00007f39c8807090 R08: 0000000000000000 R09: 0000000000000000
[   47.280274][ T4014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.280288][ T4014] R13: 0000000000000000 R14: 00007f39ca3b5fa0 R15: 00007fff54eb5b38
[   47.280307][ T4014]  </TASK>
[   47.509695][ T4018] FAULT_INJECTION: forcing a failure.
[   47.509695][ T4018] name failslab, interval 1, probability 0, space 0, times 0
[   47.522523][ T4018] CPU: 1 UID: 0 PID: 4018 Comm: syz.5.156 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   47.522588][ T4018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   47.522600][ T4018] Call Trace:
[   47.522608][ T4018]  <TASK>
[   47.522616][ T4018]  dump_stack_lvl+0xf2/0x150
[   47.522642][ T4018]  dump_stack+0x15/0x1a
[   47.522716][ T4018]  should_fail_ex+0x24a/0x260
[   47.522816][ T4018]  ? do_proc_control+0x1c4/0x850
[   47.522854][ T4018]  should_failslab+0x8f/0xb0
[   47.522881][ T4018]  __kmalloc_cache_noprof+0x4e/0x320
[   47.522905][ T4018]  do_proc_control+0x1c4/0x850
[   47.523001][ T4018]  ? should_fail_ex+0xd7/0x260
[   47.523036][ T4018]  usbdev_ioctl+0x2a5d/0x3f20
[   47.523075][ T4018]  ? do_vfs_ioctl+0x98b/0x1590
[   47.523181][ T4018]  ? selinux_file_ioctl+0x2f7/0x380
[   47.523212][ T4018]  ? __fget_files+0x17c/0x1c0
[   47.523249][ T4018]  ? __pfx_usbdev_ioctl+0x10/0x10
[   47.523306][ T4018]  __se_sys_ioctl+0xc9/0x140
[   47.523331][ T4018]  __x64_sys_ioctl+0x43/0x50
[   47.523353][ T4018]  x64_sys_call+0x1690/0x2dc0
[   47.523378][ T4018]  do_syscall_64+0xc9/0x1c0
[   47.523410][ T4018]  ? clear_bhb_loop+0x55/0xb0
[   47.523453][ T4018]  ? clear_bhb_loop+0x55/0xb0
[   47.523480][ T4018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.523640][ T4018] RIP: 0033:0x7f39ca19d169
[   47.523657][ T4018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.523746][ T4018] RSP: 002b:00007f39c8807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   47.523767][ T4018] RAX: ffffffffffffffda RBX: 00007f39ca3b5fa0 RCX: 00007f39ca19d169
[   47.523816][ T4018] RDX: 0000400000000000 RSI: 00000000c0105500 RDI: 0000000000000004
[   47.523837][ T4018] RBP: 00007f39c8807090 R08: 0000000000000000 R09: 0000000000000000
[   47.523851][ T4018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   47.523865][ T4018] R13: 0000000000000000 R14: 00007f39ca3b5fa0 R15: 00007fff54eb5b38
[   47.523885][ T4018]  </TASK>
[   47.529675][ T4016] loop0: detected capacity change from 0 to 256
[   47.637268][ T4024] loop3: detected capacity change from 0 to 1024
[   47.649178][ T4026] loop4: detected capacity change from 0 to 1024
[   47.787965][ T4024] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.802064][ T4026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.819183][ T4028] loop1: detected capacity change from 0 to 8192
[   47.834805][ T4026] EXT4-fs error (device loop4): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.4.158: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   47.861186][ T4026] EXT4-fs error (device loop4) in ext4_delete_entry:2758: Corrupt filesystem
[   47.866417][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.870274][ T4026] EXT4-fs warning (device loop4): ext4_rename_delete:3742: inode #2: comm syz.4.158: Deleting old file: nlink 1, error=-117
[   47.910775][ T4026] EXT4-fs error (device loop4): ext4_find_dest_de:2079: inode #2: block 16: comm syz.4.158: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   47.995111][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.028330][ T4022] loop5: detected capacity change from 0 to 1024
[   48.053321][ T4022] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.075398][ T4051] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (1088)
[   48.085071][ T4051] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023
[   48.147722][ T4052] loop0: detected capacity change from 0 to 256
[   48.154304][ T4052] vfat: Bad value for 'uid'
[   48.158819][ T4052] vfat: Bad value for 'uid'
[   48.296917][ T4022] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.588080][ T4022] vlan2: entered allmulticast mode
[   48.629113][ T4060] FAULT_INJECTION: forcing a failure.
[   48.629113][ T4060] name failslab, interval 1, probability 0, space 0, times 0
[   48.641870][ T4060] CPU: 1 UID: 0 PID: 4060 Comm: syz.4.168 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   48.641901][ T4060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   48.641914][ T4060] Call Trace:
[   48.641929][ T4060]  <TASK>
[   48.641936][ T4060]  dump_stack_lvl+0xf2/0x150
[   48.641965][ T4060]  dump_stack+0x15/0x1a
[   48.641991][ T4060]  should_fail_ex+0x24a/0x260
[   48.642034][ T4060]  should_failslab+0x8f/0xb0
[   48.642063][ T4060]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   48.642092][ T4060]  ? __d_alloc+0x3d/0x350
[   48.642151][ T4060]  __d_alloc+0x3d/0x350
[   48.642171][ T4060]  d_alloc_parallel+0x54/0xc80
[   48.642196][ T4060]  ? __rcu_read_unlock+0x4e/0x70
[   48.642302][ T4060]  ? __d_lookup+0x342/0x370
[   48.642322][ T4060]  ? make_vfsuid+0x52/0xa0
[   48.642391][ T4060]  ? down_read+0x171/0x4b0
[   48.642430][ T4060]  path_openat+0x6c8/0x1fc0
[   48.642484][ T4060]  ? _parse_integer_limit+0x167/0x180
[   48.642548][ T4060]  do_filp_open+0x107/0x230
[   48.642581][ T4060]  ? __pfx_kfree_link+0x10/0x10
[   48.642620][ T4060]  do_sys_openat2+0xab/0x120
[   48.642645][ T4060]  __x64_sys_openat+0xf3/0x120
[   48.642671][ T4060]  x64_sys_call+0x2b30/0x2dc0
[   48.642726][ T4060]  do_syscall_64+0xc9/0x1c0
[   48.642830][ T4060]  ? clear_bhb_loop+0x55/0xb0
[   48.642857][ T4060]  ? clear_bhb_loop+0x55/0xb0
[   48.642887][ T4060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.642951][ T4060] RIP: 0033:0x7f1b7b4abad0
[   48.642969][ T4060] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   48.642990][ T4060] RSP: 002b:00007f1b79b16f10 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   48.643075][ T4060] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f1b7b4abad0
[   48.643087][ T4060] RDX: 0000000000000002 RSI: 00007f1b79b16fa0 RDI: 00000000ffffff9c
[   48.643098][ T4060] RBP: 00007f1b79b16fa0 R08: 0000000000000000 R09: 0000000000000000
[   48.643112][ T4060] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   48.643126][ T4060] R13: 0000000000000000 R14: 00007f1b7b6c5fa0 R15: 00007ffc971bd298
[   48.643147][ T4060]  </TASK>
[   48.985773][ T4066] loop5: detected capacity change from 0 to 7
[   48.996124][ T4066] Buffer I/O error on dev loop5, logical block 0, async page read
[   49.004357][ T4066] Buffer I/O error on dev loop5, logical block 0, async page read
[   49.012264][ T4066]  loop5: unable to read partition table
[   49.031986][ T4066] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   49.031986][ T4066] 
) failed (rc=-5)
[   49.075168][ T4070] loop1: detected capacity change from 0 to 1024
[   49.105690][ T4070] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.131217][ T4070] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.173: Allocating blocks 385-513 which overlap fs metadata
[   49.168570][ T4070] EXT4-fs (loop1): pa ffff8881005d3070: logic 16, phys. 129, len 24
[   49.176773][ T4070] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 8
[   49.189361][ T4070] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[   49.201794][ T4070] EXT4-fs (loop1): This should not happen!! Data will be lost
[   49.201794][ T4070] 
[   49.211571][ T4070] EXT4-fs (loop1): Total free blocks count 0
[   49.217718][ T4070] EXT4-fs (loop1): Free/Dirty block details
[   49.223803][ T4070] EXT4-fs (loop1): free_blocks=128
[   49.229096][ T4070] EXT4-fs (loop1): dirty_blocks=0
[   49.234222][ T4070] EXT4-fs (loop1): Block reservation details
[   49.235476][ T4086] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   49.240230][ T4070] EXT4-fs (loop1): i_reserved_data_blocks=0
[   49.260770][ T4083] loop3: detected capacity change from 0 to 1024
[   49.277383][ T4086] binfmt_misc: register: failed to install interpreter file ./file0
[   49.286191][ T4083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.305672][ T4083] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.3.177: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   49.326076][ T4086] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[   49.336387][ T4083] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[   49.349520][ T4086] loop0: detected capacity change from 0 to 512
[   49.368559][ T4070] syz.1.173 (4070) used greatest stack depth: 9528 bytes left
[   49.376940][ T4083] EXT4-fs warning (device loop3): ext4_rename_delete:3742: inode #2: comm syz.3.177: Deleting old file: nlink 1, error=-117
[   49.453839][ T4086] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   49.463086][ T4083] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #2: block 16: comm syz.3.177: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   49.521138][ T4086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.540015][ T4086] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.560744][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.600537][ T4086] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.611336][ T4101] loop1: detected capacity change from 0 to 256
[   49.618028][ T4101] vfat: Bad value for 'uid'
[   49.622645][ T4101] vfat: Bad value for 'uid'
[   49.744477][ T4105] xt_CT: You must specify a L4 protocol and not use inversions on it
[   50.416757][ T4114] nlmon0: entered promiscuous mode
[   50.445579][ T4114] vlan2: entered promiscuous mode
[   50.497677][ T4114] nlmon0: left promiscuous mode
[   50.803460][ T4128] random: crng reseeded on system resumption
[   50.966483][ T4137] loop3: detected capacity change from 0 to 1024
[   51.022555][ T4137] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.046501][ T4137] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.3.193: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   51.133019][ T4137] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[   51.142893][   T29] kauditd_printk_skb: 81 callbacks suppressed
[   51.142993][   T29] audit: type=1400 audit(1740647183.713:845): avc:  denied  { mount } for  pid=4146 comm="syz.5.195" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   51.171473][ T4148] FAULT_INJECTION: forcing a failure.
[   51.171473][ T4148] name failslab, interval 1, probability 0, space 0, times 0
[   51.184137][ T4148] CPU: 1 UID: 0 PID: 4148 Comm: syz.5.195 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   51.184167][ T4148] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   51.184201][ T4148] Call Trace:
[   51.184210][ T4148]  <TASK>
[   51.184219][ T4148]  dump_stack_lvl+0xf2/0x150
[   51.184252][ T4148]  dump_stack+0x15/0x1a
[   51.184308][ T4148]  should_fail_ex+0x24a/0x260
[   51.184337][ T4148]  should_failslab+0x8f/0xb0
[   51.184372][ T4148]  kmem_cache_alloc_noprof+0x52/0x320
[   51.184429][ T4148]  ? security_file_alloc+0x32/0x100
[   51.184511][ T4148]  security_file_alloc+0x32/0x100
[   51.184546][ T4148]  init_file+0x5d/0x1b0
[   51.184565][ T4148]  alloc_empty_file+0xea/0x200
[   51.184587][ T4148]  alloc_file_pseudo+0xc9/0x160
[   51.184615][ T4148]  __shmem_file_setup+0x1bb/0x1f0
[   51.184758][ T4148]  shmem_file_setup+0x3b/0x50
[   51.184793][ T4148]  __se_sys_memfd_create+0x2e1/0x5a0
[   51.184820][ T4148]  __x64_sys_memfd_create+0x31/0x40
[   51.184843][ T4148]  x64_sys_call+0x2d4c/0x2dc0
[   51.184896][ T4148]  do_syscall_64+0xc9/0x1c0
[   51.184986][ T4148]  ? clear_bhb_loop+0x55/0xb0
[   51.185037][ T4148]  ? clear_bhb_loop+0x55/0xb0
[   51.185063][ T4148]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.185089][ T4148] RIP: 0033:0x7f39ca19d169
[   51.185104][ T4148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.185141][ T4148] RSP: 002b:00007f39c8806e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   51.185163][ T4148] RAX: ffffffffffffffda RBX: 00000000000004eb RCX: 00007f39ca19d169
[   51.185177][ T4148] RDX: 00007f39c8806ef0 RSI: 0000000000000000 RDI: 00007f39ca21ec3c
[   51.185235][ T4148] RBP: 0000400000000540 R08: 00007f39c8806bb7 R09: 00007f39c8806e40
[   51.185249][ T4148] R10: 000000000000000a R11: 0000000000000202 R12: 0000400000000500
[   51.185262][ T4148] R13: 00007f39c8806ef0 R14: 00007f39c8806eb0 R15: 0000400000000100
[   51.185284][ T4148]  </TASK>
[   51.232043][ T4137] EXT4-fs warning (device loop3): ext4_rename_delete:3742: inode #2: comm syz.3.193: Deleting old file: nlink 1, error=-117
[   51.405555][ T4137] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #2: block 16: comm syz.3.193: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   51.450679][   T29] audit: type=1400 audit(1740647184.023:846): avc:  denied  { unmount } for  pid=3617 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   51.508533][   T29] audit: type=1326 audit(1740647184.063:847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.531999][   T29] audit: type=1326 audit(1740647184.063:848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.542419][ T4156] netfs: Couldn't get user pages (rc=-14)
[   51.555082][   T29] audit: type=1326 audit(1740647184.063:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.584182][   T29] audit: type=1326 audit(1740647184.063:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.607489][   T29] audit: type=1326 audit(1740647184.063:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.630796][   T29] audit: type=1326 audit(1740647184.063:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.657494][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.690286][   T29] audit: type=1326 audit(1740647184.223:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.713587][   T29] audit: type=1326 audit(1740647184.223:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   51.922955][ T4169] loop0: detected capacity change from 0 to 256
[   51.982604][ T4174] loop3: detected capacity change from 0 to 256
[   51.989286][ T4174] vfat: Bad value for 'uid'
[   51.993868][ T4174] vfat: Bad value for 'uid'
[   52.019478][ T4176] dummy0: entered promiscuous mode
[   52.024931][ T4176] vlan2: entered promiscuous mode
[   52.031966][ T4176] dummy0: left promiscuous mode
[   52.973287][ T4192] loop3: detected capacity change from 0 to 1024
[   53.038104][ T4193] ip6gre0: entered promiscuous mode
[   53.046193][ T4192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.072257][ T4193] vlan2: entered promiscuous mode
[   53.111828][ T4193] ip6gre0: left promiscuous mode
[   53.159619][ T4192] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.3.208: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   53.253269][ T4192] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[   53.283182][ T4192] EXT4-fs warning (device loop3): ext4_rename_delete:3742: inode #2: comm syz.3.208: Deleting old file: nlink 1, error=-117
[   53.355238][ T4192] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #2: block 16: comm syz.3.208: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   53.432527][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.522125][ T4206] netfs: Couldn't get user pages (rc=-14)
[   53.625738][ T4220] bond_slave_1: entered promiscuous mode
[   53.631701][ T4222] netlink: 24 bytes leftover after parsing attributes in process `syz.1.219'.
[   53.660242][ T4220] netlink: 12 bytes leftover after parsing attributes in process `syz.3.218'.
[   53.700882][ T4220] netlink: 4 bytes leftover after parsing attributes in process `syz.3.218'.
[   53.709156][ T4228] loop1: detected capacity change from 0 to 256
[   53.733485][ T4220] bond0: (slave bond_slave_1): Releasing backup interface
[   53.761997][ T4220] bond_slave_1 (unregistering): left promiscuous mode
[   54.070296][ T4234] loop5: detected capacity change from 0 to 1024
[   54.091956][ T4234] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.112532][ T4234] EXT4-fs error (device loop5): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.5.223: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   54.357299][ T4234] EXT4-fs error (device loop5) in ext4_delete_entry:2758: Corrupt filesystem
[   54.424191][ T4234] EXT4-fs warning (device loop5): ext4_rename_delete:3742: inode #2: comm syz.5.223: Deleting old file: nlink 1, error=-117
[   54.495920][ T4242] EXT4-fs error (device loop5): ext4_find_dest_de:2079: inode #2: block 16: comm syz.5.223: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   54.540042][ T3617] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.620358][ T4248] loop0: detected capacity change from 0 to 512
[   54.648741][ T4248] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   54.689095][ T4253] netfs: Couldn't get user pages (rc=-14)
[   54.705513][ T4257] 9pnet_fd: Insufficient options for proto=fd
[   54.730319][ T4248] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   54.747632][ T4262] loop3: detected capacity change from 0 to 256
[   54.754104][ T4248] EXT4-fs (loop0): 1 truncate cleaned up
[   54.760573][ T4248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.807517][ T4265] loop5: detected capacity change from 0 to 7
[   54.813747][ T4265] Buffer I/O error on dev loop5, logical block 0, async page read
[   54.845403][ T4265] Buffer I/O error on dev loop5, logical block 0, async page read
[   54.853349][ T4265]  loop5: unable to read partition table
[   54.885692][ T4265] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   54.885692][ T4265] 
) failed (rc=-5)
[   55.073151][ T4290] FAULT_INJECTION: forcing a failure.
[   55.073151][ T4290] name failslab, interval 1, probability 0, space 0, times 0
[   55.085869][ T4290] CPU: 1 UID: 0 PID: 4290 Comm: syz.5.237 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   55.085900][ T4290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   55.085972][ T4290] Call Trace:
[   55.085980][ T4290]  <TASK>
[   55.085989][ T4290]  dump_stack_lvl+0xf2/0x150
[   55.086016][ T4290]  dump_stack+0x15/0x1a
[   55.086036][ T4290]  should_fail_ex+0x24a/0x260
[   55.086064][ T4290]  should_failslab+0x8f/0xb0
[   55.086099][ T4290]  kmem_cache_alloc_noprof+0x52/0x320
[   55.086154][ T4290]  ? security_inode_alloc+0x37/0x100
[   55.086206][ T4290]  security_inode_alloc+0x37/0x100
[   55.086228][ T4290]  inode_init_always_gfp+0x4a2/0x4f0
[   55.086258][ T4290]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[   55.086307][ T4290]  alloc_inode+0x82/0x160
[   55.086337][ T4290]  new_inode+0x1e/0x100
[   55.086373][ T4290]  hugetlbfs_get_inode+0x7d/0x380
[   55.086404][ T4290]  hugetlb_file_setup+0x1e0/0x3c0
[   55.086431][ T4290]  newseg+0x357/0x690
[   55.086458][ T4290]  ipcget+0x399/0x4e0
[   55.086534][ T4290]  __x64_sys_shmget+0xa6/0xd0
[   55.086563][ T4290]  x64_sys_call+0x28ec/0x2dc0
[   55.086641][ T4290]  do_syscall_64+0xc9/0x1c0
[   55.086676][ T4290]  ? clear_bhb_loop+0x55/0xb0
[   55.086784][ T4290]  ? clear_bhb_loop+0x55/0xb0
[   55.086817][ T4290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.086849][ T4290] RIP: 0033:0x7f39ca19d169
[   55.086866][ T4290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.086962][ T4290] RSP: 002b:00007f39c8807038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d
[   55.086984][ T4290] RAX: ffffffffffffffda RBX: 00007f39ca3b5fa0 RCX: 00007f39ca19d169
[   55.086998][ T4290] RDX: 0000000000000800 RSI: 0000000000001000 RDI: 0000000000000000
[   55.087012][ T4290] RBP: 00007f39c8807090 R08: 0000000000000000 R09: 0000000000000000
[   55.087024][ T4290] R10: 00004000002a2000 R11: 0000000000000246 R12: 0000000000000002
[   55.087060][ T4290] R13: 0000000000000000 R14: 00007f39ca3b5fa0 R15: 00007fff54eb5b38
[   55.087081][ T4290]  </TASK>
[   55.296029][ T4281] ref_ctr_offset mismatch. inode: 0x12e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   55.315416][ T4274] nlmon0: entered promiscuous mode
[   55.327342][ T4274] vlan2: entered promiscuous mode
[   55.340936][ T4274] nlmon0: left promiscuous mode
[   55.471902][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.484404][ T4294] FAULT_INJECTION: forcing a failure.
[   55.484404][ T4294] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.497690][ T4294] CPU: 1 UID: 0 PID: 4294 Comm: syz.5.240 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   55.497735][ T4294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   55.497750][ T4294] Call Trace:
[   55.497756][ T4294]  <TASK>
[   55.497763][ T4294]  dump_stack_lvl+0xf2/0x150
[   55.497791][ T4294]  dump_stack+0x15/0x1a
[   55.497812][ T4294]  should_fail_ex+0x24a/0x260
[   55.497940][ T4294]  should_fail+0xb/0x10
[   55.497972][ T4294]  should_fail_usercopy+0x1a/0x20
[   55.498009][ T4294]  _copy_to_iter+0x248/0xd00
[   55.498045][ T4294]  ? down_read+0x171/0x4b0
[   55.498123][ T4294]  copy_page_to_iter+0x171/0x2b0
[   55.498155][ T4294]  process_vm_rw+0x5b6/0x890
[   55.498262][ T4294]  ? ksys_write+0x176/0x1b0
[   55.498294][ T4294]  __x64_sys_process_vm_readv+0x7a/0x90
[   55.498318][ T4294]  x64_sys_call+0xb24/0x2dc0
[   55.498402][ T4294]  do_syscall_64+0xc9/0x1c0
[   55.498480][ T4294]  ? clear_bhb_loop+0x55/0xb0
[   55.498511][ T4294]  ? clear_bhb_loop+0x55/0xb0
[   55.498542][ T4294]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.498573][ T4294] RIP: 0033:0x7f39ca19d169
[   55.498610][ T4294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.498630][ T4294] RSP: 002b:00007f39c8807038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[   55.498651][ T4294] RAX: ffffffffffffffda RBX: 00007f39ca3b5fa0 RCX: 00007f39ca19d169
[   55.498665][ T4294] RDX: 0000000000000002 RSI: 0000400000008400 RDI: 000000000000005d
[   55.498735][ T4294] RBP: 00007f39c8807090 R08: 0000000000000286 R09: 0000000000000000
[   55.498749][ T4294] R10: 0000400000008640 R11: 0000000000000246 R12: 0000000000000001
[   55.498760][ T4294] R13: 0000000000000000 R14: 00007f39ca3b5fa0 R15: 00007fff54eb5b38
[   55.498795][ T4294]  </TASK>
[   55.810252][ T4289] ref_ctr_offset mismatch. inode: 0x12e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   56.157866][ T4310] loop0: detected capacity change from 0 to 256
[   56.343514][ T4312] netfs: Couldn't get user pages (rc=-14)
[   56.369306][   T29] kauditd_printk_skb: 56 callbacks suppressed
[   56.369323][   T29] audit: type=1326 audit(1740647188.933:911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.490908][   T29] audit: type=1326 audit(1740647188.963:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.514235][   T29] audit: type=1326 audit(1740647188.963:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.537386][   T29] audit: type=1326 audit(1740647188.963:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.560710][   T29] audit: type=1326 audit(1740647188.963:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.584076][   T29] audit: type=1326 audit(1740647188.973:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.607233][   T29] audit: type=1326 audit(1740647188.973:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.630492][   T29] audit: type=1326 audit(1740647188.973:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.653800][   T29] audit: type=1326 audit(1740647188.973:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   56.676988][   T29] audit: type=1326 audit(1740647188.973:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4311 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   57.352158][ T4342] loop0: detected capacity change from 0 to 256
[   57.726026][ T4365] loop5: detected capacity change from 0 to 7
[   57.761582][ T4365] Buffer I/O error on dev loop5, logical block 0, async page read
[   57.816288][ T4365] Buffer I/O error on dev loop5, logical block 0, async page read
[   57.824229][ T4365]  loop5: unable to read partition table
[   57.894525][ T4369] nlmon0: entered promiscuous mode
[   57.923814][ T4369] vlan2: entered promiscuous mode
[   57.965541][ T4369] nlmon0: left promiscuous mode
[   57.978455][ T4370] ref_ctr_offset mismatch. inode: 0x13b offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   58.052303][ T4365] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   58.052303][ T4365] 
) failed (rc=-5)
[   58.188896][ T4374] ref_ctr_offset mismatch. inode: 0x13b offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   58.424144][ T4384] loop0: detected capacity change from 0 to 256
[   58.530489][ T4391] netlink: 24 bytes leftover after parsing attributes in process `syz.0.272'.
[   58.714049][ T4395] loop0: detected capacity change from 0 to 1024
[   58.732923][ T4395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.768082][ T4395] EXT4-fs error (device loop0): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.0.274: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   58.811180][ T4395] EXT4-fs error (device loop0) in ext4_delete_entry:2758: Corrupt filesystem
[   58.832248][ T4395] EXT4-fs warning (device loop0): ext4_rename_delete:3742: inode #2: comm syz.0.274: Deleting old file: nlink 1, error=-117
[   58.862987][ T4398] EXT4-fs error (device loop0): ext4_find_dest_de:2079: inode #2: block 16: comm syz.0.274: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   58.929751][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.114145][ T4423] loop4: detected capacity change from 0 to 256
[   60.332898][ T4430] bridge0: port 3(vlan2) entered blocking state
[   60.339309][ T4430] bridge0: port 3(vlan2) entered disabled state
[   60.397802][ T4436] loop1: detected capacity change from 0 to 764
[   60.404631][ T4430] vlan2: entered allmulticast mode
[   60.409797][ T4430] erspan0: entered allmulticast mode
[   60.520855][ T4437] netlink: 9 bytes leftover after parsing attributes in process `syz.4.285'.
[   60.546144][ T4440] netlink: 'syz.3.286': attribute type 4 has an invalid length.
[   60.564448][ T4430] vlan2: entered promiscuous mode
[   60.569516][ T4430] erspan0: entered promiscuous mode
[   60.603563][ T3395] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   60.620312][ T4430] bridge0: port 3(vlan2) entered blocking state
[   60.626672][ T4430] bridge0: port 3(vlan2) entered forwarding state
[   60.646396][ T3395] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   60.710275][ T4437] gretap0: entered promiscuous mode
[   60.724376][ T4449] loop1: detected capacity change from 0 to 1024
[   60.783830][ T4450] nlmon0: entered promiscuous mode
[   60.789093][ T4450] vlan2: entered promiscuous mode
[   60.800783][ T4449] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.818845][ T4449] EXT4-fs error (device loop1): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.1.291: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   60.840176][ T4450] nlmon0: left promiscuous mode
[   60.943577][ T4449] EXT4-fs error (device loop1) in ext4_delete_entry:2758: Corrupt filesystem
[   60.965223][ T4449] EXT4-fs warning (device loop1): ext4_rename_delete:3742: inode #2: comm syz.1.291: Deleting old file: nlink 1, error=-117
[   61.071011][ T4449] EXT4-fs error (device loop1): ext4_find_dest_de:2079: inode #2: block 16: comm syz.1.291: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   61.191436][ T4464] netlink: 16 bytes leftover after parsing attributes in process `syz.3.293'.
[   61.269270][ T4452] netfs: Couldn't get user pages (rc=-14)
[   61.302679][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.435960][ T4475] loop3: detected capacity change from 0 to 512
[   61.465803][ T4475] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   61.513057][ T4475] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.644009][   T29] kauditd_printk_skb: 184 callbacks suppressed
[   61.644042][   T29] audit: type=1400 audit(1740647194.213:1103): avc:  denied  { append open } for  pid=4470 comm="syz.3.297" path=2F36322F66696C65302F233138202864656C6574656429 dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   61.918679][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.952552][   T29] audit: type=1326 audit(1740647194.503:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9f38794127 code=0x7ffc0000
[   61.975896][   T29] audit: type=1326 audit(1740647194.503:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9f38739359 code=0x7ffc0000
[   61.999167][   T29] audit: type=1326 audit(1740647194.503:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   62.022603][   T29] audit: type=1326 audit(1740647194.503:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9f38794127 code=0x7ffc0000
[   62.045872][   T29] audit: type=1326 audit(1740647194.503:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9f38739359 code=0x7ffc0000
[   62.069215][   T29] audit: type=1326 audit(1740647194.503:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9f38794127 code=0x7ffc0000
[   62.092534][   T29] audit: type=1326 audit(1740647194.503:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9f38739359 code=0x7ffc0000
[   62.115782][   T29] audit: type=1326 audit(1740647194.503:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   62.139174][   T29] audit: type=1326 audit(1740647194.503:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4486 comm="syz.0.303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9f38794127 code=0x7ffc0000
[   62.663070][ T4496] ref_ctr_offset mismatch. inode: 0x18b offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   62.763344][ T4499] loop4: detected capacity change from 0 to 1024
[   62.851972][ T4499] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.004058][ T4499] EXT4-fs error (device loop4): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.4.308: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   63.064592][ T4499] EXT4-fs error (device loop4) in ext4_delete_entry:2758: Corrupt filesystem
[   63.107629][ T4499] EXT4-fs warning (device loop4): ext4_rename_delete:3742: inode #2: comm syz.4.308: Deleting old file: nlink 1, error=-117
[   63.155428][ T4502] nlmon0: entered promiscuous mode
[   63.161789][ T4502] vlan1: entered promiscuous mode
[   63.168565][ T4502] nlmon0: left promiscuous mode
[   63.173636][ T4499] EXT4-fs error (device loop4): ext4_find_dest_de:2079: inode #2: block 16: comm syz.4.308: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   63.238756][ T4510] bridge0: port 3(vlan2) entered blocking state
[   63.245149][ T4510] bridge0: port 3(vlan2) entered disabled state
[   63.259943][ T4510] vlan2: entered allmulticast mode
[   63.265206][ T4510] erspan0: entered allmulticast mode
[   63.271931][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.290313][ T4513] netlink: 9 bytes leftover after parsing attributes in process `syz.3.304'.
[   63.309742][ T4510] vlan2: entered promiscuous mode
[   63.314844][ T4510] erspan0: entered promiscuous mode
[   63.329935][ T4510] bridge0: port 3(vlan2) entered blocking state
[   63.336275][ T4510] bridge0: port 3(vlan2) entered forwarding state
[   63.352845][ T1038] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   63.362996][ T1038] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   63.381905][ T4513] gretap0: entered promiscuous mode
[   63.608951][ T4530] syz_tun: entered promiscuous mode
[   63.622095][ T4530] vlan3: entered promiscuous mode
[   63.634396][ T4530] syz_tun: left promiscuous mode
[   64.104012][ T4551] netlink: 'syz.4.323': attribute type 4 has an invalid length.
[   64.334086][ T4555] vlan3: entered promiscuous mode
[   64.390249][ T4557] loop3: detected capacity change from 0 to 512
[   64.397150][ T4557] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   64.536594][ T4557] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.643554][ T4575] loop5: detected capacity change from 0 to 7
[   64.649737][ T4575] Buffer I/O error on dev loop5, logical block 0, async page read
[   64.658025][ T4575] Buffer I/O error on dev loop5, logical block 0, async page read
[   64.665978][ T4575]  loop5: unable to read partition table
[   64.671932][ T4575] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   64.671932][ T4575] 
) failed (rc=-5)
[   64.686668][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.772835][ T4588] netlink: 'syz.1.336': attribute type 4 has an invalid length.
[   64.799698][ T4591] syz_tun: entered promiscuous mode
[   64.809916][ T4591] vlan3: entered promiscuous mode
[   64.828782][ T4591] syz_tun: left promiscuous mode
[   65.369157][ T4613] vlan3: entered promiscuous mode
[   65.504135][ T4616] loop4: detected capacity change from 0 to 512
[   65.534763][ T4616] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   65.563241][ T4616] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   65.625159][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.684604][ T4624] loop5: detected capacity change from 0 to 7
[   65.692114][ T4624] Buffer I/O error on dev loop5, logical block 0, async page read
[   65.716051][ T4624] Buffer I/O error on dev loop5, logical block 0, async page read
[   65.723989][ T4624]  loop5: unable to read partition table
[   65.730123][ T4624] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   65.730123][ T4624] 
) failed (rc=-5)
[   65.758178][ T4626] syz_tun: entered promiscuous mode
[   65.766920][ T4626] vlan3: entered promiscuous mode
[   65.777476][ T4626] syz_tun: left promiscuous mode
[   65.945695][ T4648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.355'.
[   66.132963][ T4657] loop4: detected capacity change from 0 to 512
[   66.156625][ T4657] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   66.210332][ T4666] vlan2: entered promiscuous mode
[   66.221850][ T4657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.258272][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.825447][ T4690] syz_tun: entered promiscuous mode
[   66.835823][ T4690] vlan2: entered promiscuous mode
[   66.843324][ T4690] syz_tun: left promiscuous mode
[   67.042193][ T4705] loop4: detected capacity change from 0 to 512
[   67.059508][ T4707] netlink: 8 bytes leftover after parsing attributes in process `syz.3.368'.
[   67.071168][ T4709] netlink: 'syz.0.374': attribute type 4 has an invalid length.
[   67.081362][ T4705] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   67.166582][ T4720] loop5: detected capacity change from 0 to 7
[   67.173720][ T4720] Buffer I/O error on dev loop5, logical block 0, async page read
[   67.200414][ T4705] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.220729][ T4720] Buffer I/O error on dev loop5, logical block 0, async page read
[   67.228720][ T4720]  loop5: unable to read partition table
[   68.050001][ T4720] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   68.050001][ T4720] 
) failed (rc=-5)
[   68.086439][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.154000][   T29] kauditd_printk_skb: 146 callbacks suppressed
[   68.154018][   T29] audit: type=1326 audit(1740647200.723:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4729 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   68.183835][   T29] audit: type=1326 audit(1740647200.723:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4729 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   68.207210][   T29] audit: type=1326 audit(1740647200.723:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4729 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   68.250887][   T29] audit: type=1326 audit(1740647200.773:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4729 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   68.293807][ T4720] ref_ctr_offset mismatch. inode: 0x1e1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   68.484136][ T4724] ref_ctr_offset mismatch. inode: 0x1e1 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[   68.554312][ T4743] syz_tun: entered promiscuous mode
[   68.566243][ T4743] vlan2: entered promiscuous mode
[   68.586212][ T4743] syz_tun: left promiscuous mode
[   68.627202][ T4749] netlink: 'syz.5.387': attribute type 4 has an invalid length.
[   68.676398][ T4755] netlink: 8 bytes leftover after parsing attributes in process `syz.5.389'.
[   68.770611][ T4764] loop0: detected capacity change from 0 to 512
[   68.777814][ T4764] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   68.791368][ T4764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.850618][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.568490][ T4784] loop0: detected capacity change from 0 to 256
[   69.576391][ T4784] vfat: Bad value for 'uid'
[   69.580989][ T4784] vfat: Bad value for 'uid'
[   69.970635][ T4785] netlink: 9 bytes leftover after parsing attributes in process `syz.5.397'.
[   70.296619][    T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   70.314411][    T9] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   70.332281][ T4785] gretap0: entered promiscuous mode
[   70.518868][ T4794] netlink: 'syz.1.400': attribute type 4 has an invalid length.
[   70.538481][ T4795] netlink: 8 bytes leftover after parsing attributes in process `syz.3.401'.
[   70.650205][ T4797] syz_tun: entered promiscuous mode
[   70.670035][ T4797] vlan1: entered promiscuous mode
[   70.691664][ T4797] syz_tun: left promiscuous mode
[   70.764754][ T4807] loop0: detected capacity change from 0 to 512
[   70.775184][ T4807] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   70.797040][ T4807] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.828479][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.880262][ T4829] netlink: 'syz.4.412': attribute type 4 has an invalid length.
[   70.898288][   T29] audit: type=1326 audit(1740647203.463:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   70.921771][   T29] audit: type=1326 audit(1740647203.463:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   70.949354][   T29] audit: type=1326 audit(1740647203.523:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   70.972790][ T4834] netlink: 8 bytes leftover after parsing attributes in process `syz.4.414'.
[   70.981701][   T29] audit: type=1326 audit(1740647203.523:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   71.005184][   T29] audit: type=1326 audit(1740647203.523:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4830 comm="syz.3.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   71.155531][ T4854] loop5: detected capacity change from 0 to 512
[   71.163124][ T4854] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.185397][ T4858] netlink: 9 bytes leftover after parsing attributes in process `syz.0.419'.
[   71.220070][ T4858] gretap0: entered promiscuous mode
[   71.268097][ T3371] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   71.276331][ T3371] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   71.299092][ T4854] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.322428][   T29] audit: type=1326 audit(1740647203.893:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4870 comm="syz.0.425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   71.356299][ T3617] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.369164][ T4873] netlink: 8 bytes leftover after parsing attributes in process `syz.0.427'.
[   71.420660][ T4876] loop1: detected capacity change from 0 to 256
[   71.427234][ T4876] vfat: Bad value for 'uid'
[   71.431910][ T4876] vfat: Bad value for 'uid'
[   71.502300][ T4882] syz_tun: entered promiscuous mode
[   71.514451][ T4882] vlan2: entered promiscuous mode
[   71.529476][ T4882] syz_tun: left promiscuous mode
[   71.537037][ T4888] netlink: 12 bytes leftover after parsing attributes in process `syz.4.432'.
[   71.555041][ T4888] vlan3: entered promiscuous mode
[   71.560209][ T4888] syz_tun: entered promiscuous mode
[   71.568331][ T4888] syz_tun: left promiscuous mode
[   71.687791][ T4902] netlink: 9 bytes leftover after parsing attributes in process `syz.0.435'.
[   71.698189][ T4901] loop3: detected capacity change from 0 to 512
[   71.716668][ T4901] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.758935][ T4911] netlink: 8 bytes leftover after parsing attributes in process `syz.0.440'.
[   71.784270][ T4901] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.831101][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.835976][ T4917] netfs: Couldn't get user pages (rc=-14)
[   71.872480][ T4917] netlink: 16 bytes leftover after parsing attributes in process `syz.0.442'.
[   71.912569][ T4930] syz_tun: entered promiscuous mode
[   71.917978][ T4930] vlan3: entered promiscuous mode
[   71.925008][ T4930] syz_tun: left promiscuous mode
[   72.014155][ T4936] Zero length message leads to an empty skb
[   72.059523][ T4945] netlink: 9 bytes leftover after parsing attributes in process `syz.5.451'.
[   72.114575][ T4953] netlink: 8 bytes leftover after parsing attributes in process `syz.3.453'.
[   72.126309][ T4949] netlink: 12 bytes leftover after parsing attributes in process `syz.4.452'.
[   72.138556][ T4949] vlan3: entered promiscuous mode
[   72.143684][ T4949] syz_tun: entered promiscuous mode
[   72.153403][ T4949] syz_tun: left promiscuous mode
[   72.165862][ T4950] loop1: detected capacity change from 0 to 512
[   72.173802][ T4950] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   72.222907][ T4950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.257819][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.259328][ T4961] netfs: Couldn't get user pages (rc=-14)
[   72.699005][ T4982] loop0: detected capacity change from 0 to 1024
[   72.722075][ T3371] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   72.731850][ T3371] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   72.754539][ T4982] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.774875][ T4982] EXT4-fs error (device loop0): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.0.465: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   72.797067][ T4982] EXT4-fs error (device loop0) in ext4_delete_entry:2758: Corrupt filesystem
[   72.806419][ T4982] EXT4-fs warning (device loop0): ext4_rename_delete:3742: inode #2: comm syz.0.465: Deleting old file: nlink 1, error=-117
[   72.885916][ T5001] loop3: detected capacity change from 0 to 512
[   72.907514][ T5001] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   72.913493][ T4982] EXT4-fs error (device loop0): ext4_find_dest_de:2079: inode #2: block 16: comm syz.0.465: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   72.931405][ T5001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.952818][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.027509][ T5009] loop1: detected capacity change from 0 to 256
[   73.034323][ T5009] vfat: Bad value for 'uid'
[   73.038920][ T5009] vfat: Bad value for 'uid'
[   73.060810][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.076229][ T5013] vlan2: entered promiscuous mode
[   73.081473][ T5013] syz_tun: entered promiscuous mode
[   73.090548][ T5013] syz_tun: left promiscuous mode
[   73.117867][ T5008] nlmon0: entered promiscuous mode
[   73.125381][ T5008] vlan2: entered promiscuous mode
[   73.133526][ T5008] nlmon0: left promiscuous mode
[   73.186048][ T3395] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   73.195498][ T3395] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   73.336854][   T29] kauditd_printk_skb: 45 callbacks suppressed
[   73.336873][   T29] audit: type=1326 audit(1740647205.903:1314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5036 comm="syz.4.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7b4ad169 code=0x7ffc0000
[   73.368663][ T5040] loop3: detected capacity change from 0 to 1024
[   73.378016][   T29] audit: type=1326 audit(1740647205.903:1315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5036 comm="syz.4.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7b4ad169 code=0x7ffc0000
[   73.401487][   T29] audit: type=1326 audit(1740647205.903:1316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5036 comm="syz.4.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f1b7b4ad169 code=0x7ffc0000
[   73.403119][ T5043] loop4: detected capacity change from 0 to 512
[   73.424883][   T29] audit: type=1326 audit(1740647205.903:1317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5036 comm="syz.4.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b7b4ad169 code=0x7ffc0000
[   73.431868][ T5046] loop0: detected capacity change from 0 to 256
[   73.467527][ T5043] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.478874][ T5040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.496702][ T5040] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.3.483: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   73.518105][ T5043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.523164][ T5040] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[   73.541318][ T5040] EXT4-fs warning (device loop3): ext4_rename_delete:3742: inode #2: comm syz.3.483: Deleting old file: nlink 1, error=-117
[   73.557262][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.559061][ T5040] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #2: block 16: comm syz.3.483: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   73.597795][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.609763][   T35] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   73.617982][   T35] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   73.658370][ T5059] vlan2: entered promiscuous mode
[   73.663488][ T5059] syz_tun: entered promiscuous mode
[   73.670612][ T5059] syz_tun: left promiscuous mode
[   73.754605][   T29] audit: type=1326 audit(1740647206.323:1318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5074 comm="syz.5.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   73.778161][   T29] audit: type=1326 audit(1740647206.323:1319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5074 comm="syz.5.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   73.801530][   T29] audit: type=1326 audit(1740647206.323:1320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5074 comm="syz.5.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   73.824900][   T29] audit: type=1326 audit(1740647206.323:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5074 comm="syz.5.496" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   73.862456][ T5081] loop5: detected capacity change from 0 to 1024
[   73.871682][ T5083] loop3: detected capacity change from 0 to 512
[   73.880167][ T5083] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   73.892590][ T5081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.933922][ T5081] EXT4-fs error (device loop5): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.5.500: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   73.936260][ T5079] nlmon0: entered promiscuous mode
[   73.958659][ T5079] vlan1: entered promiscuous mode
[   73.959045][ T5083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.965606][ T5079] nlmon0: left promiscuous mode
[   73.983501][ T5081] EXT4-fs error (device loop5) in ext4_delete_entry:2758: Corrupt filesystem
[   73.998732][ T5081] EXT4-fs warning (device loop5): ext4_rename_delete:3742: inode #2: comm syz.5.500: Deleting old file: nlink 1, error=-117
[   74.012822][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.028639][ T5081] EXT4-fs error (device loop5): ext4_find_dest_de:2079: inode #2: block 16: comm syz.5.500: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   74.098145][ T3617] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.296123][ T5112] loop5: detected capacity change from 0 to 1024
[   74.304096][ T5115] loop3: detected capacity change from 0 to 256
[   74.310694][ T5115] vfat: Bad value for 'uid'
[   74.315201][ T5115] vfat: Bad value for 'uid'
[   74.328038][ T5114] FAULT_INJECTION: forcing a failure.
[   74.328038][ T5114] name failslab, interval 1, probability 0, space 0, times 0
[   74.340811][ T5114] CPU: 1 UID: 0 PID: 5114 Comm: syz.0.509 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   74.340842][ T5114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   74.340854][ T5114] Call Trace:
[   74.340862][ T5114]  <TASK>
[   74.340871][ T5114]  dump_stack_lvl+0xf2/0x150
[   74.340902][ T5114]  dump_stack+0x15/0x1a
[   74.340927][ T5114]  should_fail_ex+0x24a/0x260
[   74.340956][ T5114]  ? tc_ctl_chain+0x5d7/0xd60
[   74.340994][ T5114]  should_failslab+0x8f/0xb0
[   74.341102][ T5114]  __kmalloc_cache_noprof+0x4e/0x320
[   74.341131][ T5114]  tc_ctl_chain+0x5d7/0xd60
[   74.341159][ T5114]  ? __rcu_read_unlock+0x4e/0x70
[   74.341192][ T5114]  ? ns_capable+0x7d/0xb0
[   74.341236][ T5114]  ? __pfx_tc_ctl_chain+0x10/0x10
[   74.341320][ T5114]  rtnetlink_rcv_msg+0x6aa/0x710
[   74.341351][ T5114]  ? ref_tracker_free+0x3a5/0x410
[   74.341386][ T5114]  netlink_rcv_skb+0x12c/0x230
[   74.341497][ T5114]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   74.341600][ T5114]  rtnetlink_rcv+0x1c/0x30
[   74.341684][ T5114]  netlink_unicast+0x599/0x670
[   74.341718][ T5114]  netlink_sendmsg+0x5cc/0x6e0
[   74.341799][ T5114]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.341834][ T5114]  __sock_sendmsg+0x140/0x180
[   74.341871][ T5114]  ____sys_sendmsg+0x326/0x4b0
[   74.341904][ T5114]  __sys_sendmsg+0x19d/0x230
[   74.342017][ T5114]  __x64_sys_sendmsg+0x46/0x50
[   74.342043][ T5114]  x64_sys_call+0x2734/0x2dc0
[   74.342068][ T5114]  do_syscall_64+0xc9/0x1c0
[   74.342096][ T5114]  ? clear_bhb_loop+0x55/0xb0
[   74.342169][ T5114]  ? clear_bhb_loop+0x55/0xb0
[   74.342200][ T5114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.342227][ T5114] RIP: 0033:0x7f9f3879d169
[   74.342241][ T5114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.342257][ T5114] RSP: 002b:00007f9f36e01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.342275][ T5114] RAX: ffffffffffffffda RBX: 00007f9f389b5fa0 RCX: 00007f9f3879d169
[   74.342291][ T5114] RDX: 0000000000000000 RSI: 0000400000000280 RDI: 0000000000000003
[   74.342302][ T5114] RBP: 00007f9f36e01090 R08: 0000000000000000 R09: 0000000000000000
[   74.342312][ T5114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.342394][ T5114] R13: 0000000000000000 R14: 00007f9f389b5fa0 R15: 00007ffdc28e4188
[   74.342442][ T5114]  </TASK>
[   74.371930][ T5112] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.391088][ T5112] EXT4-fs error (device loop5): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.5.508: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   74.391411][ T5112] EXT4-fs error (device loop5) in ext4_delete_entry:2758: Corrupt filesystem
[   74.391953][ T5112] EXT4-fs warning (device loop5): ext4_rename_delete:3742: inode #2: comm syz.5.508: Deleting old file: nlink 1, error=-117
[   74.395805][ T5112] EXT4-fs error (device loop5): ext4_find_dest_de:2079: inode #2: block 16: comm syz.5.508: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   74.438284][ T5120] netlink: 'syz.0.511': attribute type 4 has an invalid length.
[   74.482102][ T3617] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.552743][ T5126] loop1: detected capacity change from 0 to 1024
[   74.572248][ T5126] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.577348][ T5126] EXT4-fs error (device loop1): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.1.514: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   74.577538][ T5126] EXT4-fs error (device loop1) in ext4_delete_entry:2758: Corrupt filesystem
[   74.577755][ T5126] EXT4-fs warning (device loop1): ext4_rename_delete:3742: inode #2: comm syz.1.514: Deleting old file: nlink 1, error=-117
[   74.579624][ T5126] EXT4-fs error (device loop1): ext4_find_dest_de:2079: inode #2: block 16: comm syz.1.514: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   74.620004][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.673573][ T5135] loop1: detected capacity change from 0 to 512
[   74.674645][ T5135] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   74.701000][ T5135] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.104985][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.197770][ T5151] vlan2: entered promiscuous mode
[   75.203066][ T5151] syz_tun: entered promiscuous mode
[   75.211456][ T5151] syz_tun: left promiscuous mode
[   75.250104][ T5148] nlmon0: entered promiscuous mode
[   75.255471][ T5148] vlan3: entered promiscuous mode
[   75.262462][ T5148] nlmon0: left promiscuous mode
[   75.447991][   T29] audit: type=1400 audit(1740647208.013:1322): avc:  denied  { setopt } for  pid=5156 comm="syz.4.523" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   75.557822][ T5163] syz_tun: entered promiscuous mode
[   75.563232][ T5163] vlan3: entered promiscuous mode
[   75.569936][ T5163] syz_tun: left promiscuous mode
[   75.647651][   T29] audit: type=1326 audit(1740647208.213:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.0.527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   75.684198][ T5170] loop0: detected capacity change from 0 to 512
[   75.701420][    T9] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   75.711081][ T5170] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   75.720559][    T9] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   75.753284][ T5170] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.795983][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.996695][ T5193] __nla_validate_parse: 15 callbacks suppressed
[   75.996713][ T5193] netlink: 12 bytes leftover after parsing attributes in process `syz.3.535'.
[   76.015961][ T5193] vlan3: entered promiscuous mode
[   76.021052][ T5193] syz_tun: entered promiscuous mode
[   76.028366][ T5193] syz_tun: left promiscuous mode
[   76.069044][ T5196] loop5: detected capacity change from 0 to 7
[   76.075311][ T5196] Buffer I/O error on dev loop5, logical block 0, async page read
[   76.085006][ T5196] Buffer I/O error on dev loop5, logical block 0, async page read
[   76.092908][ T5196]  loop5: unable to read partition table
[   76.108442][ T5197] nlmon0: entered promiscuous mode
[   76.111242][ T5196] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   76.111242][ T5196] 
) failed (rc=-5)
[   76.129931][ T5197] vlan2: entered promiscuous mode
[   76.147399][ T5197] nlmon0: left promiscuous mode
[   76.383424][ T5209] loop3: detected capacity change from 0 to 256
[   76.390150][ T5209] vfat: Bad value for 'uid'
[   76.394716][ T5209] vfat: Bad value for 'uid'
[   76.489308][ T5207] syz_tun: entered promiscuous mode
[   76.512473][ T5207] vlan2: entered promiscuous mode
[   76.532970][ T5207] syz_tun: left promiscuous mode
[   76.568614][ T5213] netlink: 9 bytes leftover after parsing attributes in process `syz.4.541'.
[   76.596832][   T35] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   76.606282][   T35] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   76.664850][ T5215] loop4: detected capacity change from 0 to 512
[   76.681058][ T5215] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   76.724013][ T5215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.956832][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.145172][ T5240] netlink: 'syz.1.549': attribute type 4 has an invalid length.
[   77.211987][ T5243] loop1: detected capacity change from 0 to 256
[   77.244238][ T5245] loop0: detected capacity change from 0 to 256
[   77.359387][ T5254] loop5: detected capacity change from 0 to 7
[   77.366108][ T5254] Buffer I/O error on dev loop5, logical block 0, async page read
[   77.374264][ T5254] Buffer I/O error on dev loop5, logical block 0, async page read
[   77.382214][ T5254]  loop5: unable to read partition table
[   77.388220][ T5254] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   77.388220][ T5254] 
) failed (rc=-5)
[   77.483412][ T5264] nlmon0: entered promiscuous mode
[   77.488934][ T5264] vlan2: entered promiscuous mode
[   77.504566][ T5264] nlmon0: left promiscuous mode
[   77.711477][ T5268] loop3: detected capacity change from 0 to 256
[   77.718197][ T5268] vfat: Bad value for 'uid'
[   77.722734][ T5268] vfat: Bad value for 'uid'
[   77.963063][ T5272] netlink: 'syz.0.561': attribute type 4 has an invalid length.
[   78.181355][ T5281] netfs: Couldn't get user pages (rc=-14)
[   78.199234][ T5288] netlink: 16 bytes leftover after parsing attributes in process `syz.0.563'.
[   78.495008][ T5303] loop3: detected capacity change from 0 to 512
[   78.511677][   T29] kauditd_printk_skb: 25 callbacks suppressed
[   78.511769][   T29] audit: type=1326 audit(1740647211.083:1349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5304 comm="syz.1.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   78.566035][ T5303] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   78.589847][   T29] audit: type=1326 audit(1740647211.123:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5304 comm="syz.1.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   78.613504][   T29] audit: type=1326 audit(1740647211.123:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5304 comm="syz.1.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   78.668956][ T5303] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.693325][ T5311] netlink: 'syz.4.573': attribute type 4 has an invalid length.
[   78.733451][ T5309] nlmon0: entered promiscuous mode
[   78.746169][ T5309] vlan1: entered promiscuous mode
[   78.782557][ T5309] nlmon0: left promiscuous mode
[   78.806831][ T5316] loop4: detected capacity change from 0 to 256
[   78.831808][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.918048][ T5318] netfs: Couldn't get user pages (rc=-14)
[   78.955166][ T5327] netlink: 16 bytes leftover after parsing attributes in process `syz.3.575'.
[   78.965455][   T29] audit: type=1326 audit(1740647211.543:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.026967][   T29] audit: type=1326 audit(1740647211.563:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.050423][   T29] audit: type=1326 audit(1740647211.563:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.073796][   T29] audit: type=1326 audit(1740647211.563:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.097067][   T29] audit: type=1326 audit(1740647211.563:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.120531][   T29] audit: type=1326 audit(1740647211.563:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.143858][   T29] audit: type=1326 audit(1740647211.563:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5317 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efda315d169 code=0x7ffc0000
[   79.603057][ T5352] syz_tun: entered promiscuous mode
[   79.608400][ T5352] vlan3: entered promiscuous mode
[   79.639269][ T5352] syz_tun: left promiscuous mode
[   79.707598][ T5357] loop0: detected capacity change from 0 to 512
[   79.715396][ T5357] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   79.781164][ T5357] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.803584][ T5363] all: renamed from bridge_slave_0 (while UP)
[   79.837469][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.872594][ T5365] netfs: Couldn't get user pages (rc=-14)
[   79.927560][ T5365] netlink: 16 bytes leftover after parsing attributes in process `syz.4.589'.
[   80.057953][ T5378] netlink: 4 bytes leftover after parsing attributes in process `syz.4.591'.
[   80.110710][ T5384] geneve2: entered promiscuous mode
[   80.116007][ T5384] geneve2: entered allmulticast mode
[   80.214524][ T5393] loop5: detected capacity change from 0 to 7
[   80.220861][ T5393] Buffer I/O error on dev loop5, logical block 0, async page read
[   80.228886][ T5393] Buffer I/O error on dev loop5, logical block 0, async page read
[   80.236900][ T5393]  loop5: unable to read partition table
[   80.242986][ T5393] loop_reread_partitions: partition scan of loop5 (�被x������ڬ��dƤ����ݡ�����
[   80.242986][ T5393] 
) failed (rc=-5)
[   80.287544][ T5402] loop4: detected capacity change from 0 to 1024
[   80.301456][ T5402] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.315992][ T5404] loop3: detected capacity change from 0 to 1024
[   80.328147][ T5402] EXT4-fs error (device loop4): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.4.601: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   80.355398][ T5402] EXT4-fs error (device loop4) in ext4_delete_entry:2758: Corrupt filesystem
[   80.366675][ T5404] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.386803][ T5404] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.3.602: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   80.407829][ T5402] EXT4-fs warning (device loop4): ext4_rename_delete:3742: inode #2: comm syz.4.601: Deleting old file: nlink 1, error=-117
[   80.423167][ T5404] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[   80.434584][ T5402] EXT4-fs error (device loop4): ext4_find_dest_de:2079: inode #2: block 16: comm syz.4.601: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   80.454750][ T5404] EXT4-fs warning (device loop3): ext4_rename_delete:3742: inode #2: comm syz.3.602: Deleting old file: nlink 1, error=-117
[   80.481757][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.506960][ T5404] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #2: block 16: comm syz.3.602: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   80.538392][ T5416] all: renamed from bridge_slave_0 (while UP)
[   80.546438][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.654298][ T5426] FAULT_INJECTION: forcing a failure.
[   80.654298][ T5426] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   80.667554][ T5426] CPU: 0 UID: 0 PID: 5426 Comm: syz.3.609 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   80.667584][ T5426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   80.667598][ T5426] Call Trace:
[   80.667606][ T5426]  <TASK>
[   80.667615][ T5426]  dump_stack_lvl+0xf2/0x150
[   80.667670][ T5426]  dump_stack+0x15/0x1a
[   80.667695][ T5426]  should_fail_ex+0x24a/0x260
[   80.667737][ T5426]  should_fail+0xb/0x10
[   80.667819][ T5426]  should_fail_usercopy+0x1a/0x20
[   80.667920][ T5426]  _copy_from_user+0x1c/0xa0
[   80.667984][ T5426]  sk_getsockopt+0xbd/0x1720
[   80.668010][ T5426]  ? selinux_socket_getsockopt+0x185/0x1c0
[   80.668055][ T5426]  ? should_fail_ex+0xd7/0x260
[   80.668089][ T5426]  do_sock_getsockopt+0x14a/0x260
[   80.668118][ T5426]  __x64_sys_getsockopt+0x18c/0x200
[   80.668173][ T5426]  x64_sys_call+0x1288/0x2dc0
[   80.668205][ T5426]  do_syscall_64+0xc9/0x1c0
[   80.668280][ T5426]  ? clear_bhb_loop+0x55/0xb0
[   80.668309][ T5426]  ? clear_bhb_loop+0x55/0xb0
[   80.668334][ T5426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.668358][ T5426] RIP: 0033:0x7efda315d169
[   80.668372][ T5426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.668428][ T5426] RSP: 002b:00007efda17c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   80.668445][ T5426] RAX: ffffffffffffffda RBX: 00007efda3375fa0 RCX: 00007efda315d169
[   80.668456][ T5426] RDX: 000000000000001f RSI: 0000000000000001 RDI: 0000000000000003
[   80.668468][ T5426] RBP: 00007efda17c7090 R08: 0000400000001000 R09: 0000000000000000
[   80.668482][ T5426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.668495][ T5426] R13: 0000000000000000 R14: 00007efda3375fa0 R15: 00007fff96c22478
[   80.668516][ T5426]  </TASK>
[   80.954022][ T5441] loop3: detected capacity change from 0 to 1024
[   81.043543][ T5443] loop1: detected capacity change from 0 to 512
[   81.084204][ T5441] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.124684][ T5441] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.3.614: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   81.275607][ T5441] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[   81.339852][ T5441] EXT4-fs warning (device loop3): ext4_rename_delete:3742: inode #2: comm syz.3.614: Deleting old file: nlink 1, error=-117
[   81.391273][ T5485] EXT4-fs error (device loop3): ext4_find_dest_de:2079: inode #2: block 16: comm syz.3.614: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   81.821079][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.862822][ T5501] loop3: detected capacity change from 0 to 256
[   82.050015][ T5509] random: crng reseeded on system resumption
[   82.497273][ T5515] loop4: detected capacity change from 0 to 128
[   82.517063][ T5515] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.530984][ T5515] ext4 filesystem being mounted at /140/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   82.575495][ T5520] netlink: 'syz.5.631': attribute type 4 has an invalid length.
[   82.598034][ T3296] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.613588][ T5522] loop1: detected capacity change from 0 to 1024
[   82.633096][ T5522] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.638424][ T5526] loop4: detected capacity change from 0 to 512
[   82.653109][ T5526] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   82.664906][ T5522] EXT4-fs error (device loop1): ext4_generic_delete_entry:2687: inode #2: block 16: comm syz.1.633: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   82.700477][ T5522] EXT4-fs error (device loop1) in ext4_delete_entry:2758: Corrupt filesystem
[   82.701074][ T5526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.751605][ T5522] EXT4-fs warning (device loop1): ext4_rename_delete:3742: inode #2: comm syz.1.633: Deleting old file: nlink 1, error=-117
[   82.770665][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.810253][ T5522] EXT4-fs error (device loop1): ext4_find_dest_de:2079: inode #2: block 16: comm syz.1.633: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[   82.834360][ T5541] loop4: detected capacity change from 0 to 256
[   82.991869][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.351041][ T5563] netlink: 16 bytes leftover after parsing attributes in process `syz.3.645'.
[   83.502678][ T5560] netfs: Couldn't get user pages (rc=-14)
[   83.586538][ T5577] loop5: detected capacity change from 0 to 512
[   83.594524][ T5577] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[   83.611818][ T5577] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.636554][ T3617] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.656546][ T5579] syz_tun: entered promiscuous mode
[   83.661950][ T5583] netlink: 12 bytes leftover after parsing attributes in process `syz.3.650'.
[   83.670924][ T5579] vlan1: entered promiscuous mode
[   83.684932][ T5579] syz_tun: left promiscuous mode
[   83.686410][   T29] kauditd_printk_skb: 105 callbacks suppressed
[   83.686425][   T29] audit: type=1326 audit(1740647216.253:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5584 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   83.725786][   T29] audit: type=1326 audit(1740647216.293:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5586 comm="syz.5.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   83.749243][   T29] audit: type=1326 audit(1740647216.293:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5586 comm="syz.5.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   83.772619][   T29] audit: type=1326 audit(1740647216.293:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5586 comm="syz.5.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   83.795995][   T29] audit: type=1326 audit(1740647216.293:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5586 comm="syz.5.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39ca19d169 code=0x7ffc0000
[   83.803489][ T5589] loop1: detected capacity change from 0 to 256
[   83.819631][   T29] audit: type=1326 audit(1740647216.293:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5584 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   83.849176][   T29] audit: type=1326 audit(1740647216.293:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5584 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   83.872490][   T29] audit: type=1326 audit(1740647216.293:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5584 comm="syz.1.652" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4edcadd169 code=0x7ffc0000
[   83.910907][ T5583] vlan3: entered promiscuous mode
[   83.916027][ T5583] syz_tun: entered promiscuous mode
[   83.943611][ T5583] syz_tun: left promiscuous mode
[   83.979198][ T5593] netfs: Couldn't get user pages (rc=-14)
[   83.994273][ T5474] ==================================================================
[   84.002413][ T5474] BUG: KCSAN: data-race in netfs_advance_write / netfs_write_collection_worker
[   84.011401][ T5474] 
[   84.013726][ T5474] write to 0xffff888100e79238 of 8 bytes by task 5593 on cpu 1:
[   84.021356][ T5474]  netfs_advance_write+0x36f/0x610
[   84.026484][ T5474]  netfs_unbuffered_write+0xde/0x330
[   84.031784][ T5474]  netfs_unbuffered_write_iter_locked+0x2b7/0x570
[   84.038214][ T5474]  netfs_unbuffered_write_iter+0x2b7/0x3b0
[   84.044035][ T5474]  v9fs_file_write_iter+0x60/0x80
[   84.049072][ T5474]  vfs_write+0x77b/0x920
[   84.053327][ T5474]  ksys_write+0xe8/0x1b0
[   84.057588][ T5474]  __x64_sys_write+0x42/0x50
[   84.062187][ T5474]  x64_sys_call+0x287e/0x2dc0
[   84.066873][ T5474]  do_syscall_64+0xc9/0x1c0
[   84.071391][ T5474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.077294][ T5474] 
[   84.079636][ T5474] read to 0xffff888100e79238 of 8 bytes by task 5474 on cpu 0:
[   84.087181][ T5474]  netfs_write_collection_worker+0x3ee/0x2530
[   84.093263][ T5474]  process_scheduled_works+0x4db/0xa20
[   84.098733][ T5474]  worker_thread+0x51d/0x6f0
[   84.103334][ T5474]  kthread+0x4ae/0x520
[   84.107421][ T5474]  ret_from_fork+0x4b/0x60
[   84.111846][ T5474]  ret_from_fork_asm+0x1a/0x30
[   84.116623][ T5474] 
[   84.118945][ T5474] value changed: 0x0000000000000000 -> 0xffff888101d8b0c0
[   84.126060][ T5474] 
[   84.128388][ T5474] Reported by Kernel Concurrency Sanitizer on:
[   84.134540][ T5474] CPU: 0 UID: 0 PID: 5474 Comm: kworker/u8:23 Not tainted 6.14.0-rc4-syzkaller-00073-g5394eea10651 #0
[   84.145483][ T5474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.155540][ T5474] Workqueue: events_unbound netfs_write_collection_worker
[   84.162667][ T5474] ==================================================================
[   84.186523][ T5607] geneve2: entered promiscuous mode
[   84.191827][ T5607] geneve2: entered allmulticast mode
[   84.212092][ T5611] netlink: 16 bytes leftover after parsing attributes in process `syz.0.656'.
[   84.237960][   T29] audit: type=1326 audit(1740647216.803:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.0.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000
[   84.261337][   T29] audit: type=1326 audit(1740647216.803:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.0.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f3879d169 code=0x7ffc0000