last executing test programs:

21.229711093s ago: executing program 0 (id=30):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
write(r0, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc02802000030004000500e1000c0400070080000900", 0x33a)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000140)={'full'}, 0xfffffdef)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000580)={@ipv4={'\x00', '\xff\xff', @private=0xa010100}, @remote, @dev={0xfe, 0x80, '\x00', 0x25}, 0x2000000, 0x0, 0x7d, 0x600, 0x2, 0x970310})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000040)={@private0, @empty, @dev={0xfe, 0x80, '\x00', 0x11}, 0x1, 0x0, 0x40, 0x0, 0x1, 0x410201})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000140)={'sit0\x00', &(0x7f0000000240)={'syztnl2\x00', <r3=>0x0, 0x0, 0x80, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @multicast2}}}})
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x1c, r5, 0x2586ad4018a3b31b, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r1, 0x89f8, &(0x7f0000000700)={'syztnl2\x00', &(0x7f0000000680)={'syztnl0\x00', r3, 0x8, 0x1, 0x7de, 0xf094, {{0x5, 0x4, 0x3, 0x4, 0x14, 0x68, 0x0, 0x1, 0x29, 0x0, @multicast1, @rand_addr=0x64010100}}}})

20.322128258s ago: executing program 0 (id=41):
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000004c0), 0x1, 0x0)
r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x8901)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f0000000680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000f00)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0xfffffe00, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r4 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r5 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc3}, &(0x7f0000000480)={0x0, "6035ae1e10e721441705322225930e6c1edb1a1402000000000000006e00beadb48b1dd499d2eff56da9c5d2e46d82ea00c508ba606269613800", 0x3b}, 0x48, 0xfffffffffffffffe)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000fc0)={0x11, 0xb, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000fc850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x13, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0xfffffffffffffffc}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x800048, &(0x7f0000000740)=ANY=[@ANYBLOB='\x00'/10])
ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f00000006c0)=<r7=>0x0)
ptrace$ARCH_GET_FS(0x1e, r7, &(0x7f0000000700), 0x1003)
keyctl$KEYCTL_MOVE(0x4, r5, r4, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x4, r3, r3, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r8 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x77359400}, {0x0, 0x3938700}}, &(0x7f00000003c0))
write$UHID_CREATE2(r8, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a00000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
memfd_secret(0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1048082, &(0x7f0000000340)={[{@test_dummy_encryption_v1}, {@bsdgroups}, {@init_itable}, {@errors_continue}, {@dioread_nolock}, {@noquota}, {@nomblk_io_submit}, {@nobarrier}]}, 0x0, 0x5e0, &(0x7f0000000900)="$eJzs3c1vVFUbAPDnTj9oKe/bQt68igtpYgwkSksLGGJcwNaQBj/ixo2VFkQKNLRGiyaUBDcmxo0xJq5ciP+FEtmy0pULN64MCVHD0sQxd3pv6bR3+kU7t3J/v2TouefM5Zzb6dNz5vScOwFU1mD6Ty1if0RMJxH9yfxiWWdkhYMLz3vw50dn00cS9fprvyeRZHn585Psa192ck9E/PhDEvs6VtY7M3ft4vjU1OTV7Hh49tL08MzctcMXLo2fnzw/eXn0hdETx48dPzFyZFPXdb0g7/TNd9/v/2TszW+++isZ+faXsSROxsvZE5dex1YZjMHG9yRZWdR3YqsrK0lH9nOy9CVOOoue2dW+RrFu+euXvjpPRH90xMMXrz8+fqXUxgHbqp5E1IGKSsQ/VFQ+Dsjf2y9/H1wrZVQCtMP9UwsTACvjv3NhbjB6GnMDux8ksXRaJ4mIzc3MNdsTEXfvjN08d2fsZmzTPBxQbP5GRDxZFP9JI/4HoicGGvFfa4r/dFxwJvua5r+6yfqXTxWLf2ifhfjvWTX+o0X8v7Uk/t/eZP2DD5Pv9DbFf+9mLwkAAAAAAAAq6/apiHi+6O//tcX1P1Gw/qcvIk5uQf2Dy45X/v2/dm8LqgEK3D8V8VLh+t9avvp3oCNL/aexHqArOXdhavJIRPw3Ig5F1670eGSVOg5/uu/LVmWD2fq//JHWfzdbC5i1417nruZzJsZnxx/1uoGI+zcinipc/5ss9v9JQf+f/j6YXmcd+569daZV2drxD2yX+tcRBwv7/4d3rUhWvz/HcGM8MJyPClZ6+sPPvmtV/2bjv/AWE8CGpP3/7tXjfyBZer+emY3XcXSus96qbLPj/+7k9cYtZ7qzvA/GZ2evjkR0J6c70tym/NGNtxkeR3k85PGSxv+hZ1af/ysa//dGxPyy/zv5o3lPce7/f/f92qo9xv9QnjT+JzbU/288MXpr4PtW9a+v/z/W6OsPZTnm/2DBF3mYdjfnF4RjZ1FRu9sLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAI+DWkTsiaQ2tJiu1YaGIvoi4n+xuzZ1ZWb2uXNX3rs8kZY1Pv+/ln/Sb//CcZJ//v/AkuPRZcdHI2JvRHze0ds4Hjp7ZWqi7IsHAAAAAAAAAAAAAAAAAACAHaKvxf7/1G8dZbcO2HadZTcAKE1B/P9URjuA9tP/Q3WJf6gu8Q/VJf6husQ/VJf4h+oS/1Bd4h8AAAAAAB4rew/c/jmJiPkXexuPVHdW1lVqy4DtViu7AUBp3OIHqsvSH6gu7/GBZI3ynpYnrXXmaqbPPsLJAAAAAAAAAAAAAFA5B/fb/w9VZf8/VJf9/1Bd+f7/AyW3A2g/7/GBWGMnf+H+/zXPAgAAAAAAAAAAAAC20szctYvjU1OTVyXe2BnNaGeiXq9fT38Kdkp7/uWJfCn8TmnPskS+1299Z5X3OwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGj2TwAAAP//+Ekkyg==")
r9 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
socket$nl_generic(0x10, 0x3, 0x10)
read$char_usb(r9, 0x0, 0x0)
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r10, 0xffffffffffffffff, 0x0)

19.864839395s ago: executing program 0 (id=52):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10)

19.855624186s ago: executing program 0 (id=53):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1a"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x178}, 0x18)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r2, &(0x7f0000000180)="521e6904484de5cef2b7ecc89becf1d5648de3f10455fb89c39937e007496c85667c", &(0x7f00000001c0)=@tcp=r3, 0x4}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r4}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6})
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000003c0)="5c00000013006bcd9e3fe3dceb48aa31086b8703110000001fa1ff0000000000040014000d000a000d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000280), 0x301140, 0x0)
ioctl$F2FS_IOC_DEFRAGMENT(r5, 0xc010f508, &(0x7f00000002c0)={0x3, 0xbd0})
socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x4042, &(0x7f00000000c0), 0x7, 0x4c6, &(0x7f0000000b00)="$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")
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r7 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r8}, 0x10)
ptrace(0x10, r7)
ptrace$getregset(0x4204, r7, 0x201, &(0x7f0000000440)={0x0})
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)

19.164971357s ago: executing program 0 (id=66):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x9, 0x0, 0x8, 0x8, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b40)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f00000004c0)={0x5, 0x40000}, 0x10)
sendmsg$nl_route(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000001200375f3fbd7000fcffffff07000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000a0001"], 0x2c}, 0x1, 0x0, 0x0, 0x40010}, 0x8884)
r4 = gettid()
timer_create(0x3, &(0x7f000049efa0)={0x0, 0x14, 0x4, @thr={&(0x7f0000000300)="ea7af237866d854d91542c5e3920629d22b2377a19d1043150e1c737228a89a56274b278ce", &(0x7f0000000380)="5f1d8fea3488d2a2ad2647a42a38e4d0a80122590c81659dbb8a9ee9364833caf33b48a3a7ae512d028400292509f98b83e2209e00f779bcf7b709048ac08147b19f67a82e63ca3087bf3c4a8dacd29989b7ec482e86956589a704164faa337da079f08a538263125edf2ebffb31733556bd8983"}}, &(0x7f0000044000))
getpgrp(r4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000040))
socket(0x10, 0x3, 0x9)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x10e, &(0x7f0000000280)={[{@jqfmt_vfsv1}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@noblock_validity}, {@jqfmt_vfsv0}, {@nobarrier}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")

18.778471183s ago: executing program 0 (id=69):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xb4}}, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x44, &(0x7f0000000200)=""/68}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

18.778012153s ago: executing program 32 (id=69):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xb4}}, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x44, &(0x7f0000000200)=""/68}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

1.478522976s ago: executing program 1 (id=437):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x409c884, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @mcast1, 0x4}, 0x1c)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x4, 0x0, 0x7ffc9ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x18)
uname(0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000003240)="0d0ad7c36d6617110e434332d6ac582208222cfb7c37ce1148f44845", 0x1c, 0x6d91fb6106d8d10c, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x4)
sendmsg$tipc(r3, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
accept4(r2, 0x0, 0x0, 0x400000000000000)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10, 0x0}, 0x3000c085)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

1.23760021s ago: executing program 4 (id=446):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

1.19714716s ago: executing program 4 (id=447):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000400)}], 0x1}, 0x0)

1.162211321s ago: executing program 4 (id=448):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000000)={0x1, 0x3, [@local, @multicast, @local]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3, 0x0, 0xffffffff}, 0x18)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r6 = dup(r5)
write$P9_RLERRORu(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r6, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])
stat(&(0x7f0000000040)='./file0\x00', 0x0)
r7 = getpid()
syz_pidfd_open(r7, 0x0)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(0x0)

954.962204ms ago: executing program 4 (id=455):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000100)=@req3={0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x861}, 0x1c)

804.613517ms ago: executing program 4 (id=462):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7, 0x0, 0x0, 0x10, &(0x7f0000001f00), &(0x7f0000000540), 0x8, 0x15, 0x8, 0x0, 0x0}}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001158000000000000800000850000006d00000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000008c0)={r1, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

776.852487ms ago: executing program 4 (id=464):
r0 = io_uring_setup(0x30d6, &(0x7f00000001c0)={0x0, 0xf487, 0x4000, 0x0, 0x1d})
r1 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r1, &(0x7f0000000080), 0xc)
syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x3800002, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r3 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r3, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000008000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r5, &(0x7f0000000000)='./file0\x00', 0x5)
read(r1, &(0x7f0000000180)=""/52, 0x34)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x891c, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

632.49517ms ago: executing program 5 (id=469):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="d00000001800010600000000fedbdf251c140000fe000001000000000500"], 0xd0}}, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000016c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="50000000020605000000000000000000000000000c00078008000640001000000500010006000000050005000200000005000400000000000900020073797a31000000000c000300686173"], 0x50}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="40000000090601020000000000000000000000000900020073797a31000000000500010007000000180007800c00018008000140fffffffe050003000800"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000d6000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r5}, 0x18)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x48442, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000280)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x65, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x15, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@lsrr={0x83, 0xb, 0x0, [@dev, @empty]}, @cipso={0x86, 0x32, 0x0, [{0x0, 0xc, "7c43c2605c732c60ba94"}, {0x0, 0x12, "ffd11634eea26b0faffa0dea2e903528"}, {0x0, 0x7, "02a20948fd"}, {0x7, 0x5, "ccf029"}, {0x0, 0x2}]}]}}}}}}}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r7 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r7, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file1\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x31001, 0x0)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r8}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r9}, 0x18)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x15, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

631.7275ms ago: executing program 1 (id=470):
open(&(0x7f0000000180)='./file0\x00', 0x40c5, 0x24)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x33}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
poll(&(0x7f0000000080)=[{r2, 0x30}, {r2, 0x1206}, {r2, 0x120}], 0x3, 0x9)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x2}, @func_proto={0x2, 0x0, 0x0, 0x8, 0x2}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x44, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
connect$inet(r3, &(0x7f0000000440)={0x2, 0x0, @multicast2}, 0x10)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @dev}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}})
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="500100001000130700000000000000007f0000010012000000000000000000000000007fffffff000000ffffac14140000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff010000697f000000000000000000010000000032000000ff02040000000000000000000000000100000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000400000000000000000060001200726663343534332867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000080"], 0x150}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = dup(r8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r9])

629.4976ms ago: executing program 3 (id=471):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)

568.301021ms ago: executing program 3 (id=472):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

567.091621ms ago: executing program 5 (id=473):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x2, 0x200}, 0x0, 0x0, 0x800000, 0x5, 0x21, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000008c0)={<r2=>0x0, 0xdc, "57379edd9cea29c179eb9a6c3524079f3b5c5bd300194c64c08c7f3d2db6ead53ca34aabae87034d846a6d1b12413d56f3d2bec6acb5090c265826450c493a1e85691099c9892d27c027e26de4bdd4a8e37d3a95d325e15bb503181a30e8cda2ba4bc752e71f58fb4f914a1d730eef3ed704324cb582d53f31d98ee2832f30826cf3d716bb5a8ec7fb3aba49b8cb862eec05c40a8964dba8c2142fc3f2ee6a5fc2a155bffda1c09cba184b58657f620b2d62911f022fc9f3fedd19860a0c2b70c85d8bdb1bc3a957986c52d9d0abcee787bfe09fb5c68cf8c5b8aa72"}, &(0x7f0000000400)=0xe4)
getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000009c0)={r2, 0xba1, 0xf0000000, 0x6}, &(0x7f0000000a00)=0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35bdabb49f35c25d456591f0c15a08769bcd5107053ea1f85250ac10e50c14ffda0a7a98740f8cb9694c01f2babb95936415d219753d982b3e6ab52070adabe6f61dce71ee97249cf86cdd7b9a6b4b3d24ddebcf8ea9f1ae197c9a9cd65f15210181d736b2d3da7d24857a8", 0x70)
write$qrtrtun(r0, &(0x7f0000000540)="9d8d645e53b6183d874f9e06a18dd009a0d07d18950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bfd9a315544fa0a1622d749faba7978890835497c9b7ab548704e680dae25bc94962f5fce4", 0x53)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0xc3], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x3}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bind$tipc(r4, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000280), 0xf6, 0x452, &(0x7f0000000440)="$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")

545.296831ms ago: executing program 3 (id=474):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r0, &(0x7f0000000000)='./file0\x00', 0x5)

447.370873ms ago: executing program 3 (id=479):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x2, 0x200}, 0x0, 0x0, 0x800000, 0x5, 0x21, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f00000008c0)={<r3=>0x0, 0xdc, "57379edd9cea29c179eb9a6c3524079f3b5c5bd300194c64c08c7f3d2db6ead53ca34aabae87034d846a6d1b12413d56f3d2bec6acb5090c265826450c493a1e85691099c9892d27c027e26de4bdd4a8e37d3a95d325e15bb503181a30e8cda2ba4bc752e71f58fb4f914a1d730eef3ed704324cb582d53f31d98ee2832f30826cf3d716bb5a8ec7fb3aba49b8cb862eec05c40a8964dba8c2142fc3f2ee6a5fc2a155bffda1c09cba184b58657f620b2d62911f022fc9f3fedd19860a0c2b70c85d8bdb1bc3a957986c52d9d0abcee787bfe09fb5c68cf8c5b8aa72"}, &(0x7f0000000400)=0xe4)
getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f00000009c0)={r3, 0xba1, 0xf0000000, 0x6}, &(0x7f0000000a00)=0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r1, &(0x7f0000000300)="ca0e808bb35bdabb49f35c25d456591f0c15a08769bcd5107053ea1f85250ac10e50c14ffda0a7a98740f8cb9694c01f2babb95936415d219753d982b3e6ab52070adabe6f61dce71ee97249cf86cdd7b9a6b4b3d24ddebcf8ea9f1ae197c9a9cd65f15210181d736b2d3da7d24857a8", 0x70)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000280), 0xf6, 0x452, &(0x7f0000000440)="$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")

435.202253ms ago: executing program 1 (id=480):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="c3aa00fe0000000071101af87538466a7da217fd00000000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000580)='ext4_da_release_space\x00', r0}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000540)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0xb3)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="46ec0800000000002800128009000100766c616e00000000180002800c0002001f0000001f000000060001000100000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)
ioperm(0x3, 0x6, 0x3)
socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)={0xd0, r5, 0xc4fc9e906872338b, 0x20, 0x200, {{0x15}, {@val={0x8}, @val={0xc, 0x99, {0xfffffffc}}}}, [@NL80211_ATTR_TID_CONFIG={0xa8, 0x11d, 0x0, 0x1, [{0xa4, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0xa0, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x9c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14, 0x5, {[0x7503, 0x5, 0x7fff, 0x7, 0x5b6, 0xb, 0x0, 0x3]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HT={0x12, 0x2, [{0x2, 0x5}, {0x5, 0x2}, {0x2, 0x7}, {0x1, 0x7}, {0x6, 0x9}, {0x1, 0x6}, {0x1, 0x4}, {0x0, 0x7}, {0x7, 0x1}, {0x1, 0x2}, {0x7, 0x4}, {0x5, 0x8}, {0x2, 0x5}, {0x4, 0x6}]}, @NL80211_TXRATE_HT={0x1f, 0x2, [{0x7, 0x6}, {0x0, 0x3}, {0x1}, {0x7, 0x1}, {0x1, 0xa}, {0x5, 0x5}, {0x2, 0x1}, {0x7, 0x7}, {0x0, 0x9}, {0x0, 0x2}, {0x7, 0x3}, {0x7, 0x6}, {0x4, 0x4}, {0x4, 0x3}, {0x0, 0x6}, {0x7, 0x9}, {0x4, 0x7}, {0x0, 0x7}, {0x0, 0x4}, {0x1, 0xa}, {0x2, 0x7}, {0x0, 0x6}, {0x5, 0x8}, {0x0, 0x5}, {0x0, 0x6}, {0x3, 0x3}, {}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfdd, 0xc, 0x1, 0x4, 0x7fff, 0x5, 0x0, 0xfff]}}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x0, 0x2, 0x1, 0x36, 0x2, 0x0, 0x6c, 0x3, 0x1b, 0x16, 0x36, 0x6, 0x6, 0x1, 0x6c, 0x12, 0x30, 0x6c, 0x6, 0x1f, 0x16, 0xb, 0x48, 0x18, 0xc, 0x1, 0x4, 0x24, 0x18]}]}]}]}]}]}, 0xd0}}, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
umount2(0x0, 0xa)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000740))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0xf})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740))
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x4, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f00000006c0)=""/43, 0x2b}, {&(0x7f0000000480)=""/165, 0xa5}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x19, 0x0)
ioctl$BLKTRACESETUP(r7, 0xc0481273, &(0x7f0000000e80)={'\x00', 0x1000, 0x9, 0x7fff, 0xfffffffffffffe01, 0x5})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="050000000600000008000000ae00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00\x00\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)

403.131213ms ago: executing program 2 (id=481):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x8)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f00000006c0)=@v3={0x3000000, [{0x3, 0x2}, {0x9, 0x56}], 0xee01}, 0x18, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], &(0x7f00000002c0)=""/203, 0xfffffffffffffe5f)

365.185224ms ago: executing program 2 (id=482):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)

312.048325ms ago: executing program 1 (id=483):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000280)=ANY=[@ANYRESHEX], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095", @ANYRESDEC=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b0000000500000002000000ff00000005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
lsm_get_self_attr(0x67, 0x0, &(0x7f0000000040), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000040)={0x80, 0x18, 0x2, 0xfffffff9, 0x0, 0x9})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000380)={0xf, 0x7, 0x1, {{0x2, '\x00\x00'}, 0x1}}, 0xf)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="18000000141407"], 0x18}}, 0x4010010)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001040)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
pwrite64(r1, &(0x7f0000000200)="1976318b9bcc0f896fba2f5074f97f1c1a", 0x11, 0x4)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

293.098735ms ago: executing program 5 (id=484):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000100)=@req3={0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x861}, 0x1c)

235.993786ms ago: executing program 2 (id=485):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, 0x0}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

222.836176ms ago: executing program 2 (id=486):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x409c884, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @mcast1, 0x4}, 0x1c)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x4, 0x0, 0x7ffc9ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x18)
uname(0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000003240)="0d0ad7c36d6617110e434332d6ac582208222cfb7c37ce1148f44845", 0x1c, 0x6d91fb6106d8d10c, 0x0, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r2, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r3, &(0x7f0000002300)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x44}, 0x4)
sendmsg$tipc(r3, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r5, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10, 0x0}, 0x3000c085)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r5, 0x1, 0x3e, &(0x7f0000000100)=r6, 0x4)
sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

220.087097ms ago: executing program 1 (id=487):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x2, 0x200}, 0x0, 0x0, 0x800000, 0x5, 0x21, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000008c0)={<r2=>0x0, 0xdc, "57379edd9cea29c179eb9a6c3524079f3b5c5bd300194c64c08c7f3d2db6ead53ca34aabae87034d846a6d1b12413d56f3d2bec6acb5090c265826450c493a1e85691099c9892d27c027e26de4bdd4a8e37d3a95d325e15bb503181a30e8cda2ba4bc752e71f58fb4f914a1d730eef3ed704324cb582d53f31d98ee2832f30826cf3d716bb5a8ec7fb3aba49b8cb862eec05c40a8964dba8c2142fc3f2ee6a5fc2a155bffda1c09cba184b58657f620b2d62911f022fc9f3fedd19860a0c2b70c85d8bdb1bc3a957986c52d9d0abcee787bfe09fb5c68cf8c5b8aa72"}, &(0x7f0000000400)=0xe4)
getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000009c0)={r2, 0xba1, 0xf0000000, 0x6}, &(0x7f0000000a00)=0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35bdabb49f35c25d456591f0c15a08769bcd5107053ea1f85250ac10e50c14ffda0a7a98740f8cb9694c01f2babb95936415d219753d982b3e6ab52070adabe6f61dce71ee97249cf86cdd7b9a6b4b3d24ddebcf8ea9f1ae197c9a9cd65f15210181d736b2d3da7d24857a8", 0x70)
write$qrtrtun(r0, &(0x7f0000000540)="9d8d645e53b6183d874f9e06a18dd009a0d07d18950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bfd9a315544fa0a1622d749faba7978890835497c9b7ab548704e680dae25bc94962f5fce4", 0x53)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0xc3], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x3}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00'}, 0x10)
bind$tipc(r4, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000280), 0xf6, 0x452, &(0x7f0000000440)="$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")

187.032307ms ago: executing program 3 (id=488):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000000)={0x1, 0x3, [@local, @multicast, @local]})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])

155.594097ms ago: executing program 5 (id=489):
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200000, 0x7})
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)

126.080608ms ago: executing program 2 (id=490):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x18)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)

102.846758ms ago: executing program 3 (id=491):
open(&(0x7f0000000180)='./file0\x00', 0x40c5, 0x24)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x33}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
poll(&(0x7f0000000080)=[{r2, 0x30}, {r2, 0x1206}, {r2, 0x120}], 0x3, 0x9)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x1}]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x48, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
connect$inet(r3, &(0x7f0000000440)={0x2, 0x0, @multicast2}, 0x10)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @dev}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}})
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="500100001000130700000000000000007f0000010012000000000000000000000000007fffffff000000ffffac14140000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff010000697f000000000000000000010000000032000000ff02040000000000000000000000000100000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000400000000000000000060001200726663343534332867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000080"], 0x150}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x56)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e24, @local}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = dup(r8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r9])

82.479499ms ago: executing program 2 (id=492):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x2, 0x200}, 0x0, 0x0, 0x800000, 0x5, 0x21, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f00000008c0)={<r2=>0x0, 0xdc, "57379edd9cea29c179eb9a6c3524079f3b5c5bd300194c64c08c7f3d2db6ead53ca34aabae87034d846a6d1b12413d56f3d2bec6acb5090c265826450c493a1e85691099c9892d27c027e26de4bdd4a8e37d3a95d325e15bb503181a30e8cda2ba4bc752e71f58fb4f914a1d730eef3ed704324cb582d53f31d98ee2832f30826cf3d716bb5a8ec7fb3aba49b8cb862eec05c40a8964dba8c2142fc3f2ee6a5fc2a155bffda1c09cba184b58657f620b2d62911f022fc9f3fedd19860a0c2b70c85d8bdb1bc3a957986c52d9d0abcee787bfe09fb5c68cf8c5b8aa72"}, &(0x7f0000000400)=0xe4)
getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000009c0)={r2, 0xba1, 0xf0000000, 0x6}, &(0x7f0000000a00)=0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35bdabb49f35c25d456591f0c15a08769bcd5107053ea1f85250ac10e50c14ffda0a7a98740f8cb9694c01f2babb95936415d219753d982b3e6ab52070adabe6f61dce71ee97249cf86cdd7b9a6b4b3d24ddebcf8ea9f1ae197c9a9cd65f15210181d736b2d3da7d24857a8", 0x70)
write$qrtrtun(r0, &(0x7f0000000540)="9d8d645e53b6183d874f9e06a18dd009a0d07d18950d4dfe49f13a19e24320444a7d6c121741ba3dc510dba4f980bfd9a315544fa0a1622d749faba7978890835497c9b7ab548704e680dae25bc94962f5fce4", 0x53)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000001c0)={r3, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0xc3], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x3}, 0x10)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00'}, 0x10)
bind$tipc(r4, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000280), 0xf6, 0x452, &(0x7f0000000440)="$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")

77.285669ms ago: executing program 5 (id=493):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0xffffffff}, 0x1100, 0x5dd8, 0x3a65, 0x9, 0x0, 0x8, 0x8, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff)
r1 = socket$rxrpc(0x21, 0x2, 0xa)
connect$rxrpc(r1, &(0x7f0000000000)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast1}}, 0x24)
sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0xfffffffffffffd6b, 0x0, 0x0, &(0x7f00000000c0)=[@ip_tos_int={{0x18, 0x110}}], 0x18, 0x4c00}, 0x0)

1.73256ms ago: executing program 1 (id=494):
bpf$BPF_MAP_FREEZE(0x16, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = getpid()
syz_pidfd_open(r0, 0x0)
timer_create(0x4, 0x0, &(0x7f0000000440))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_bp={0x0, 0x8}, 0x8002, 0x4011, 0x2, 0x5, 0x0, 0x8, 0xff7b, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000400)={0x2, [0x0, 0x0]}, &(0x7f0000000380)=0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x68, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0xa2, 0x8000}, 0x0, 0x0, 0x800000, 0x9, 0x1, 0x20005, 0xfffe, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)

0s ago: executing program 5 (id=495):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000280)=ANY=[@ANYRESHEX], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095", @ANYRESDEC=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b0000000500000002000000ff00000005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
lsm_get_self_attr(0x67, 0x0, &(0x7f0000000040), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, &(0x7f0000000040)={0x80, 0x18, 0x2, 0xfffffff9, 0x0, 0x9})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000380)={0xf, 0x7, 0x1, {{0x2, '\x00\x00'}, 0x1}}, 0xf)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="18000000141407"], 0x18}}, 0x4010010)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001040)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
pwrite64(r1, &(0x7f0000000200)="1976318b9bcc0f896fba2f5074f97f1c1a", 0x11, 0x4)
r4 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

kernel console output (not intermixed with test programs):

 entered allmulticast mode
[   29.186244][ T3303] bridge_slave_0: entered promiscuous mode
[   29.197761][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.204865][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.212279][ T3307] bridge_slave_1: entered allmulticast mode
[   29.218617][ T3307] bridge_slave_1: entered promiscuous mode
[   29.225785][ T3299] team0: Port device team_slave_1 added
[   29.240257][ T3303] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.247380][ T3303] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.254614][ T3303] bridge_slave_1: entered allmulticast mode
[   29.261090][ T3303] bridge_slave_1: entered promiscuous mode
[   29.292012][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_0
[   29.298990][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.325150][ T3299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   29.337156][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   29.347526][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   29.362697][ T3303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   29.371900][ T3300] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.378968][ T3300] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.386210][ T3300] bridge_slave_0: entered allmulticast mode
[   29.392658][ T3300] bridge_slave_0: entered promiscuous mode
[   29.399924][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   29.410607][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   29.420112][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_1
[   29.427171][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.453130][ T3299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   29.469877][ T3303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   29.479049][ T3300] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.486120][ T3300] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.493375][ T3300] bridge_slave_1: entered allmulticast mode
[   29.499814][ T3300] bridge_slave_1: entered promiscuous mode
[   29.537491][ T3307] team0: Port device team_slave_0 added
[   29.543922][ T3306] team0: Port device team_slave_0 added
[   29.550158][ T3307] team0: Port device team_slave_1 added
[   29.556619][ T3303] team0: Port device team_slave_0 added
[   29.568604][ T3300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   29.578503][ T3306] team0: Port device team_slave_1 added
[   29.594762][ T3303] team0: Port device team_slave_1 added
[   29.615218][ T3300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   29.626392][ T3299] hsr_slave_0: entered promiscuous mode
[   29.632457][ T3299] hsr_slave_1: entered promiscuous mode
[   29.647899][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   29.654910][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.681174][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   29.692439][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   29.699415][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.725404][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   29.745861][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   29.752974][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.779114][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   29.808173][ T3300] team0: Port device team_slave_0 added
[   29.814761][ T3300] team0: Port device team_slave_1 added
[   29.825853][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   29.832877][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.858932][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   29.869972][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_0
[   29.876986][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.902999][ T3303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   29.914198][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_1
[   29.921225][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   29.947152][ T3303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   29.986421][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_0
[   29.993434][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   30.019383][ T3300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   30.030647][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_1
[   30.037659][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   30.063661][ T3300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   30.092867][ T3307] hsr_slave_0: entered promiscuous mode
[   30.098970][ T3307] hsr_slave_1: entered promiscuous mode
[   30.104877][ T3307] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   30.112494][ T3307] Cannot create hsr debugfs directory
[   30.126463][ T3306] hsr_slave_0: entered promiscuous mode
[   30.132653][ T3306] hsr_slave_1: entered promiscuous mode
[   30.138414][ T3306] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   30.146107][ T3306] Cannot create hsr debugfs directory
[   30.200563][ T3303] hsr_slave_0: entered promiscuous mode
[   30.206525][ T3303] hsr_slave_1: entered promiscuous mode
[   30.212620][ T3303] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   30.220182][ T3303] Cannot create hsr debugfs directory
[   30.244065][ T3300] hsr_slave_0: entered promiscuous mode
[   30.250043][ T3300] hsr_slave_1: entered promiscuous mode
[   30.256008][ T3300] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   30.263622][ T3300] Cannot create hsr debugfs directory
[   30.394613][ T3299] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   30.413128][ T3299] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   30.424376][ T3299] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   30.439431][ T3299] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   30.461383][ T3306] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   30.471421][ T3306] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   30.482828][ T3306] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   30.494205][ T3306] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   30.524089][ T3307] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   30.538897][ T3307] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   30.547527][ T3307] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   30.563612][ T3307] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   30.582030][ T3300] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   30.592383][ T3300] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   30.621535][ T3300] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   30.630316][ T3300] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   30.663681][ T3299] 8021q: adding VLAN 0 to HW filter on device bond0
[   30.676296][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   30.693584][ T3303] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   30.702613][ T3303] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   30.711280][ T3303] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   30.720556][ T3303] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   30.741683][ T3299] 8021q: adding VLAN 0 to HW filter on device team0
[   30.757286][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   30.772734][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   30.786268][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   30.804854][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.812041][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   30.822260][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.829400][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   30.838096][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.845278][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   30.853844][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.860903][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   30.883148][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.890352][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   30.900254][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.907378][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   30.927126][ T3307] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   30.937554][ T3307] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   30.984200][ T3299] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   30.994769][ T3299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   31.011752][ T3300] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.052942][ T3300] 8021q: adding VLAN 0 to HW filter on device team0
[   31.065971][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.073169][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.095468][ T3303] 8021q: adding VLAN 0 to HW filter on device bond0
[   31.113280][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.120435][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.133771][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.150403][ T3300] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   31.161032][ T3300] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   31.195741][ T3303] 8021q: adding VLAN 0 to HW filter on device team0
[   31.208220][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.219157][ T3299] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.256572][ T3334] bridge0: port 1(bridge_slave_0) entered blocking state
[   31.263753][ T3334] bridge0: port 1(bridge_slave_0) entered forwarding state
[   31.284706][ T3334] bridge0: port 2(bridge_slave_1) entered blocking state
[   31.291842][ T3334] bridge0: port 2(bridge_slave_1) entered forwarding state
[   31.313588][ T3300] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.395272][ T3299] veth0_vlan: entered promiscuous mode
[   31.414413][ T3306] veth0_vlan: entered promiscuous mode
[   31.425400][ T3299] veth1_vlan: entered promiscuous mode
[   31.456011][ T3306] veth1_vlan: entered promiscuous mode
[   31.474998][ T3306] veth0_macvtap: entered promiscuous mode
[   31.481696][ T3300] veth0_vlan: entered promiscuous mode
[   31.499990][ T3299] veth0_macvtap: entered promiscuous mode
[   31.506656][ T3300] veth1_vlan: entered promiscuous mode
[   31.517072][ T3303] 8021q: adding VLAN 0 to HW filter on device batadv0
[   31.525376][ T3306] veth1_macvtap: entered promiscuous mode
[   31.537033][ T3299] veth1_macvtap: entered promiscuous mode
[   31.544214][ T3307] veth0_vlan: entered promiscuous mode
[   31.562281][ T3307] veth1_vlan: entered promiscuous mode
[   31.576671][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.587000][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.597610][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.608548][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.625323][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.643149][ T3300] veth0_macvtap: entered promiscuous mode
[   31.650493][ T3307] veth0_macvtap: entered promiscuous mode
[   31.657813][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.668368][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.678822][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.686465][ T3300] veth1_macvtap: entered promiscuous mode
[   31.695845][ T3306] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.704674][ T3306] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.713559][ T3306] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.722442][ T3306] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.736868][ T3299] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.745664][ T3299] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.754493][ T3299] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.763254][ T3299] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.774309][ T3307] veth1_macvtap: entered promiscuous mode
[   31.789773][ T3300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.800296][ T3300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.810273][ T3300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.820744][ T3300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.831620][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.852452][ T3303] veth0_vlan: entered promiscuous mode
[   31.858212][ T3300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.868709][ T3300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.878604][ T3300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.889097][ T3300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.900244][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.910047][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.920575][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.930427][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.940896][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.950738][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   31.961235][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.971899][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   31.987388][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   31.987405][   T29] audit: type=1400 audit(1743939117.575:110): avc:  denied  { mounton } for  pid=3306 comm="syz-executor" path="/root/syzkaller.2xisQi/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   32.002359][ T3303] veth1_vlan: entered promiscuous mode
[   32.020569][   T29] audit: type=1400 audit(1743939117.575:111): avc:  denied  { mount } for  pid=3299 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   32.038843][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.045477][   T29] audit: type=1400 audit(1743939117.575:112): avc:  denied  { mounton } for  pid=3299 comm="syz-executor" path="/root/syzkaller.51GzoJ/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   32.055987][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.081084][   T29] audit: type=1400 audit(1743939117.575:113): avc:  denied  { mount } for  pid=3299 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   32.090929][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.112731][   T29] audit: type=1400 audit(1743939117.575:114): avc:  denied  { mounton } for  pid=3299 comm="syz-executor" path="/root/syzkaller.51GzoJ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   32.123167][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.123181][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.149823][   T29] audit: type=1400 audit(1743939117.585:115): avc:  denied  { mounton } for  pid=3299 comm="syz-executor" path="/root/syzkaller.51GzoJ/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4174 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   32.159622][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.170038][   T29] audit: type=1400 audit(1743939117.585:116): avc:  denied  { unmount } for  pid=3299 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   32.204408][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.210117][   T29] audit: type=1400 audit(1743939117.615:117): avc:  denied  { mounton } for  pid=3299 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   32.227564][ T3300] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.234037][   T29] audit: type=1400 audit(1743939117.615:118): avc:  denied  { mount } for  pid=3299 comm="syz-executor" name="/" dev="gadgetfs" ino=4181 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   32.256810][ T3300] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.296921][ T3300] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.305918][ T3300] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.316853][ T3299] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   32.327851][ T3303] veth0_macvtap: entered promiscuous mode
[   32.344443][ T3307] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.353235][ T3307] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.362034][ T3307] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.370761][ T3307] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.384339][ T3303] veth1_macvtap: entered promiscuous mode
[   32.398994][   T29] audit: type=1400 audit(1743939117.985:119): avc:  denied  { read write } for  pid=3299 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   32.428074][ T3445] loop1: detected capacity change from 0 to 1024
[   32.428061][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   32.442772][ T3445] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   32.445013][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.455851][ T3445] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   32.463180][ T3445] JBD2: no valid journal superblock found
[   32.465699][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   32.475283][ T3445] EXT4-fs (loop1): Could not load journal inode
[   32.480963][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.481012][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   32.518087][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.527989][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   32.538600][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.549551][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.579593][ T3445] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[   32.590568][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.601198][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.611108][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.621579][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.631498][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.641961][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.645551][ T3445] netlink: 14 bytes leftover after parsing attributes in process `syz.1.2'.
[   32.651798][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   32.651819][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   32.681905][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.701336][ T3303] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.710197][ T3303] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.718971][ T3303] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.727722][ T3303] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.785435][ T3454] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5'.
[   32.797896][ T3454] loop4: detected capacity change from 0 to 512
[   32.823190][ T3454] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   32.836494][ T3454] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   32.894247][ T3454] EXT4-fs (loop4): 1 orphan inode deleted
[   32.896773][ T3462] FAULT_INJECTION: forcing a failure.
[   32.896773][ T3462] name failslab, interval 1, probability 0, space 0, times 1
[   32.900032][ T3454] EXT4-fs (loop4): 1 truncate cleaned up
[   32.912700][ T3462] CPU: 1 UID: 0 PID: 3462 Comm: syz.2.6 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   32.912746][ T3462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   32.912765][ T3462] Call Trace:
[   32.912771][ T3462]  <TASK>
[   32.912778][ T3462]  dump_stack_lvl+0xf6/0x150
[   32.912810][ T3462]  dump_stack+0x15/0x1a
[   32.912832][ T3462]  should_fail_ex+0x261/0x270
[   32.912870][ T3462]  should_failslab+0x8f/0xb0
[   32.912963][ T3462]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   32.912992][ T3462]  ? __alloc_skb+0x10d/0x320
[   32.913067][ T3462]  __alloc_skb+0x10d/0x320
[   32.913096][ T3462]  netlink_alloc_large_skb+0xad/0xe0
[   32.913141][ T3462]  netlink_sendmsg+0x3da/0x720
[   32.913177][ T3462]  ? __pfx_netlink_sendmsg+0x10/0x10
[   32.913208][ T3462]  __sock_sendmsg+0x140/0x180
[   32.913291][ T3462]  ____sys_sendmsg+0x350/0x4e0
[   32.913330][ T3462]  __sys_sendmsg+0x1a0/0x240
[   32.913444][ T3462]  __x64_sys_sendmsg+0x46/0x50
[   32.913477][ T3462]  x64_sys_call+0x26f3/0x2e10
[   32.913505][ T3462]  do_syscall_64+0xc9/0x1c0
[   32.913634][ T3462]  ? clear_bhb_loop+0x25/0x80
[   32.913662][ T3462]  ? clear_bhb_loop+0x25/0x80
[   32.913688][ T3462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   32.913758][ T3462] RIP: 0033:0x7f13b30ed169
[   32.913778][ T3462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   32.913799][ T3462] RSP: 002b:00007f13b1757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   32.913824][ T3462] RAX: ffffffffffffffda RBX: 00007f13b3305fa0 RCX: 00007f13b30ed169
[   32.913839][ T3462] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000003
[   32.913854][ T3462] RBP: 00007f13b1757090 R08: 0000000000000000 R09: 0000000000000000
[   32.913869][ T3462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   32.913928][ T3462] R13: 0000000000000000 R14: 00007f13b3305fa0 R15: 00007ffe2d6b92f8
[   32.913952][ T3462]  </TASK>
[   33.123500][ T3469] loop2: detected capacity change from 0 to 512
[   33.141834][ T3469] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   33.152084][ T3454] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.191688][ T3455] syz.1.2 (3455) used greatest stack depth: 10864 bytes left
[   33.199825][ T3469] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.7: Failed to acquire dquot type 0
[   33.213045][ T3469] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   33.228481][ T3469] EXT4-fs (loop2): 1 truncate cleaned up
[   33.234498][ T3476] FAULT_INJECTION: forcing a failure.
[   33.234498][ T3476] name failslab, interval 1, probability 0, space 0, times 0
[   33.236424][ T3469] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.247194][ T3476] CPU: 1 UID: 0 PID: 3476 Comm: syz.1.9 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   33.247225][ T3476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   33.247239][ T3476] Call Trace:
[   33.247246][ T3476]  <TASK>
[   33.247256][ T3476]  dump_stack_lvl+0xf6/0x150
[   33.247301][ T3476]  dump_stack+0x15/0x1a
[   33.247323][ T3476]  should_fail_ex+0x261/0x270
[   33.247434][ T3476]  should_failslab+0x8f/0xb0
[   33.247481][ T3476]  __kmalloc_cache_noprof+0x55/0x320
[   33.247511][ T3476]  ? __se_sys_memfd_create+0x1ea/0x5a0
[   33.247556][ T3476]  __se_sys_memfd_create+0x1ea/0x5a0
[   33.247590][ T3476]  __x64_sys_memfd_create+0x31/0x40
[   33.247660][ T3476]  x64_sys_call+0x1163/0x2e10
[   33.247688][ T3476]  do_syscall_64+0xc9/0x1c0
[   33.247725][ T3476]  ? clear_bhb_loop+0x25/0x80
[   33.247753][ T3476]  ? clear_bhb_loop+0x25/0x80
[   33.247785][ T3476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   33.247877][ T3476] RIP: 0033:0x7f7ffcf7d169
[   33.247897][ T3476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   33.247920][ T3476] RSP: 002b:00007f7ffb5dee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   33.247958][ T3476] RAX: ffffffffffffffda RBX: 00000000000004e1 RCX: 00007f7ffcf7d169
[   33.247974][ T3476] RDX: 00007f7ffb5deef0 RSI: 0000000000000000 RDI: 00007f7ffcffec3c
[   33.247989][ T3476] RBP: 0000200000001400 R08: 00007f7ffb5debb7 R09: 00007f7ffb5dee40
[   33.248004][ T3476] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000100
[   33.248018][ T3476] R13: 00007f7ffb5deef0 R14: 00007f7ffb5deeb0 R15: 0000200000000080
[   33.248041][ T3476]  </TASK>
[   33.416810][ T3479] loop1: detected capacity change from 0 to 512
[   33.448536][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.462603][ T3479] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   33.484394][ T3479] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.10: Failed to acquire dquot type 0
[   33.496300][ T3479] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   33.514559][ T3479] EXT4-fs (loop1): 1 truncate cleaned up
[   33.520728][ T3479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.538374][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.566477][ T3484] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12'.
[   33.581444][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.600203][ T3484] team0 (unregistering): Port device team_slave_0 removed
[   33.628683][ T3484] team0 (unregistering): Port device team_slave_1 removed
[   33.639835][ T3491] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14'.
[   33.651945][ T3491] openvswitch: netlink: Message has 6 unknown bytes.
[   33.690082][ T3494] netlink: 60 bytes leftover after parsing attributes in process `syz.4.13'.
[   33.715171][ T3496] netlink: 28 bytes leftover after parsing attributes in process `syz.3.17'.
[   33.729183][ T3496] loop3: detected capacity change from 0 to 512
[   33.740191][ T3496] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   33.753636][ T3496] EXT4-fs (loop3): 1 orphan inode deleted
[   33.759469][ T3496] EXT4-fs (loop3): 1 truncate cleaned up
[   33.762023][ T3501] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19'.
[   33.766143][ T3496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   33.776926][ T3501] openvswitch: netlink: Message has 6 unknown bytes.
[   33.889034][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.908817][    C1] hrtimer: interrupt took 39596 ns
[   33.993868][ T3510] loop3: detected capacity change from 0 to 512
[   34.012964][ T3512] netlink: 'syz.1.25': attribute type 1 has an invalid length.
[   34.025147][ T3510] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #3: comm syz.3.22: corrupted inode contents
[   34.043731][ T3510] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #3: comm syz.3.22: mark_inode_dirty error
[   34.064297][ T3510] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #3: comm syz.3.22: corrupted inode contents
[   34.064466][ T3510] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #3: comm syz.3.22: mark_inode_dirty error
[   34.064816][ T3510] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.22: Failed to acquire dquot type 0
[   34.065229][ T3510] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.22: corrupted inode contents
[   34.065396][ T3510] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.22: mark_inode_dirty error
[   34.065515][ T3510] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.22: corrupted inode contents
[   34.065671][ T3510] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.22: mark_inode_dirty error
[   34.065909][ T3510] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.22: corrupted inode contents
[   34.066050][ T3510] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   34.066248][ T3510] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.22: corrupted inode contents
[   34.066344][ T3510] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.22: mark_inode_dirty error
[   34.066517][ T3510] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   34.066820][ T3510] EXT4-fs (loop3): 1 truncate cleaned up
[   34.067266][ T3510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.067386][ T3510] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   34.102685][ T3507] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.22: corrupted xattr block 19: invalid ea_ino
[   34.113983][ T3521] loop1: detected capacity change from 0 to 512
[   34.151165][ T3519] 9pnet: Could not find request transport: fd:object_r:hwdata_t:s0
[   34.166468][ T3521] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   34.186353][ T3507] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   34.218749][ T3521] EXT4-fs (loop1): 1 truncate cleaned up
[   34.230879][ T3507] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.22: corrupted xattr block 19: invalid ea_ino
[   34.240291][ T3521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.254156][ T3507] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   34.328540][ T3507] EXT4-fs error (device loop3): ext4_xattr_block_find:1869: inode #15: comm syz.3.22: corrupted xattr block 19: invalid ea_ino
[   34.360938][ T3510] syz.3.22 (3510) used greatest stack depth: 9760 bytes left
[   34.379766][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.390719][   T51] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 1
[   34.406120][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.457210][ T3534] netlink: 666 bytes leftover after parsing attributes in process `syz.0.30'.
[   34.474279][ T3532] loop1: detected capacity change from 0 to 2048
[   34.497339][ T3538] netlink: 8 bytes leftover after parsing attributes in process `syz.3.32'.
[   34.507884][ T3532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   34.520410][ T3536] netlink: 12 bytes leftover after parsing attributes in process `syz.4.31'.
[   34.535185][ T3538] openvswitch: netlink: Message has 6 unknown bytes.
[   34.556396][ T3532] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   34.622945][   T51] EXT4-fs (loop1): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 1 with error 28
[   34.635366][   T51] EXT4-fs (loop1): This should not happen!! Data will be lost
[   34.635366][   T51] 
[   34.645119][   T51] EXT4-fs (loop1): Total free blocks count 0
[   34.651143][   T51] EXT4-fs (loop1): Free/Dirty block details
[   34.657060][   T51] EXT4-fs (loop1): free_blocks=2415919120
[   34.662830][   T51] EXT4-fs (loop1): dirty_blocks=16
[   34.667954][   T51] EXT4-fs (loop1): Block reservation details
[   34.674034][   T51] EXT4-fs (loop1): i_reserved_data_blocks=1
[   34.686272][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   34.710436][ T3534] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   34.752591][ T3553] FAULT_INJECTION: forcing a failure.
[   34.752591][ T3553] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   34.752740][ T3553] CPU: 1 UID: 0 PID: 3553 Comm: syz.1.35 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   34.752773][ T3553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   34.752854][ T3553] Call Trace:
[   34.752861][ T3553]  <TASK>
[   34.752870][ T3553]  dump_stack_lvl+0xf6/0x150
[   34.752901][ T3553]  dump_stack+0x15/0x1a
[   34.752923][ T3553]  should_fail_ex+0x261/0x270
[   34.752957][ T3553]  should_fail+0xb/0x10
[   34.753023][ T3553]  should_fail_usercopy+0x1a/0x20
[   34.753060][ T3553]  _copy_from_user+0x1c/0xa0
[   34.753102][ T3553]  copy_msghdr_from_user+0x54/0x2b0
[   34.753148][ T3553]  ? __fget_files+0x186/0x1c0
[   34.753293][ T3553]  __sys_sendmsg+0x141/0x240
[   34.753463][ T3553]  __x64_sys_sendmsg+0x46/0x50
[   34.753496][ T3553]  x64_sys_call+0x26f3/0x2e10
[   34.753598][ T3553]  do_syscall_64+0xc9/0x1c0
[   34.753637][ T3553]  ? clear_bhb_loop+0x25/0x80
[   34.753662][ T3553]  ? clear_bhb_loop+0x25/0x80
[   34.753683][ T3553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   34.753702][ T3553] RIP: 0033:0x7f7ffcf7d169
[   34.753716][ T3553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   34.753748][ T3553] RSP: 002b:00007f7ffb5df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   34.753771][ T3553] RAX: ffffffffffffffda RBX: 00007f7ffd195fa0 RCX: 00007f7ffcf7d169
[   34.753783][ T3553] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[   34.753794][ T3553] RBP: 00007f7ffb5df090 R08: 0000000000000000 R09: 0000000000000000
[   34.753805][ T3553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   34.753816][ T3553] R13: 0000000000000000 R14: 00007f7ffd195fa0 R15: 00007fffeee7bb28
[   34.753834][ T3553]  </TASK>
[   34.794320][ T3549] loop3: detected capacity change from 0 to 512
[   34.812206][ T3558] loop1: detected capacity change from 0 to 164
[   34.813061][ T3549] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #3: comm syz.3.37: corrupted inode contents
[   34.813225][ T3549] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #3: comm syz.3.37: mark_inode_dirty error
[   34.813618][ T3549] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #3: comm syz.3.37: corrupted inode contents
[   34.813781][ T3549] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #3: comm syz.3.37: mark_inode_dirty error
[   34.814119][ T3549] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.37: Failed to acquire dquot type 0
[   34.814430][ T3549] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.37: corrupted inode contents
[   34.814681][ T3549] EXT4-fs error (device loop3): ext4_dirty_inode:6074: inode #16: comm syz.3.37: mark_inode_dirty error
[   34.814860][ T3549] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.37: corrupted inode contents
[   34.814991][ T3549] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #16: comm syz.3.37: mark_inode_dirty error
[   34.815207][ T3549] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.37: corrupted inode contents
[   34.815314][ T3549] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   34.815416][ T3549] EXT4-fs error (device loop3): ext4_do_update_inode:5182: inode #16: comm syz.3.37: corrupted inode contents
[   34.815549][ T3549] EXT4-fs error (device loop3): ext4_truncate:4254: inode #16: comm syz.3.37: mark_inode_dirty error
[   34.815745][ T3549] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   34.816145][ T3549] EXT4-fs (loop3): 1 truncate cleaned up
[   34.817148][ T3549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.818200][ T3554] xt_CT: You must specify a L4 protocol and not use inversions on it
[   34.820837][ T3549] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.37: corrupted xattr block 19: invalid ea_ino
[   34.821163][ T3549] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   34.821197][ T3549] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.37: corrupted xattr block 19: invalid ea_ino
[   34.821867][ T3549] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   34.829343][ T3549] EXT4-fs error (device loop3): ext4_xattr_block_find:1869: inode #15: comm syz.3.37: corrupted xattr block 19: invalid ea_ino
[   34.979724][ T3558] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   35.102405][ T3549] syz.3.37 (3549) used greatest stack depth: 9720 bytes left
[   35.116836][ T3558] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   35.255987][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.256187][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:1: Failed to release dquot type 1
[   35.280531][ T3558] capability: warning: `syz.1.39' uses deprecated v2 capabilities in a way that may be insecure
[   35.334565][ T3562] loop3: detected capacity change from 0 to 512
[   35.342266][ T3562] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   35.374447][ T3562] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.40: Failed to acquire dquot type 0
[   35.386014][ T3562] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   35.407964][ T3562] EXT4-fs (loop3): 1 truncate cleaned up
[   35.414570][ T3562] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.442591][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.483945][ T3564] =======================================================
[   35.483945][ T3564] WARNING: The mand mount option has been deprecated and
[   35.483945][ T3564]          and is ignored by this kernel. Remove the mand
[   35.483945][ T3564]          option from the mount to silence this warning.
[   35.483945][ T3564] =======================================================
[   35.527456][ T3568] loop4: detected capacity change from 0 to 512
[   35.539940][ T3380] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   35.557460][ T3568] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.43: bg 0: block 35: padding at end of block bitmap is not set
[   35.557764][ T3380] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v1.18 Device [syz1] on syz0
[   35.591545][ T3569] loop0: detected capacity change from 0 to 1024
[   35.601161][ T3568] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   35.618242][ T3568] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.43: invalid indirect mapped block 4294967295 (level 1)
[   35.620568][ T3568] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.43: invalid indirect mapped block 4294967295 (level 2)
[   35.620774][ T3568] EXT4-fs (loop4): 1 truncate cleaned up
[   35.625873][ T3568] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.632820][ T3568] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.720577][ T3587] netlink: 'syz.3.45': attribute type 10 has an invalid length.
[   35.735337][ T3587] team0: Port device geneve1 added
[   35.738338][ T3589] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   35.775659][ T3583] pim6reg: entered allmulticast mode
[   35.833055][ T3597] netlink: 'syz.0.53': attribute type 10 has an invalid length.
[   35.843901][ T3599] loop4: detected capacity change from 0 to 512
[   35.847404][ T3597] dummy0: entered promiscuous mode
[   35.856216][ T3597] bridge0: port 3(dummy0) entered blocking state
[   35.862785][ T3597] bridge0: port 3(dummy0) entered disabled state
[   35.888632][ T3599] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #3: comm syz.4.50: corrupted inode contents
[   35.901948][ T3597] dummy0: entered allmulticast mode
[   35.907700][ T3599] EXT4-fs error (device loop4): ext4_dirty_inode:6074: inode #3: comm syz.4.50: mark_inode_dirty error
[   35.908196][ T3597] bridge0: port 3(dummy0) entered blocking state
[   35.925229][ T3597] bridge0: port 3(dummy0) entered forwarding state
[   35.946998][ T3606] loop0: detected capacity change from 0 to 512
[   35.967534][ T3599] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #3: comm syz.4.50: corrupted inode contents
[   35.987667][ T3599] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #3: comm syz.4.50: mark_inode_dirty error
[   35.988305][ T3614] cgroup: none used incorrectly
[   36.006875][ T3606] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   36.017327][ T3606] EXT4-fs (loop0): orphan cleanup on readonly fs
[   36.024184][ T3606] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.53: invalid indirect mapped block 256 (level 2)
[   36.028159][ T3599] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.50: Failed to acquire dquot type 0
[   36.069137][ T3606] EXT4-fs (loop0): 2 truncates cleaned up
[   36.070185][ T3599] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #16: comm syz.4.50: corrupted inode contents
[   36.088395][ T3599] EXT4-fs error (device loop4): ext4_dirty_inode:6074: inode #16: comm syz.4.50: mark_inode_dirty error
[   36.088770][ T3606] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   36.100106][ T3599] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #16: comm syz.4.50: corrupted inode contents
[   36.125240][ T3599] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #16: comm syz.4.50: mark_inode_dirty error
[   36.138266][ T3599] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #16: comm syz.4.50: corrupted inode contents
[   36.162845][ T3599] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   36.189805][ T3599] EXT4-fs error (device loop4): ext4_do_update_inode:5182: inode #16: comm syz.4.50: corrupted inode contents
[   36.211056][ T3599] EXT4-fs error (device loop4): ext4_truncate:4254: inode #16: comm syz.4.50: mark_inode_dirty error
[   36.223717][ T3599] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   36.242680][ T3618] loop2: detected capacity change from 0 to 512
[   36.260337][ T3599] EXT4-fs (loop4): 1 truncate cleaned up
[   36.276622][ T3618] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.61: bg 0: block 35: padding at end of block bitmap is not set
[   36.296015][ T3599] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.331076][ T3618] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   36.370418][ T3618] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.61: invalid indirect mapped block 4294967295 (level 1)
[   36.437789][ T3618] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.61: invalid indirect mapped block 4294967295 (level 2)
[   36.495733][ T3303] EXT4-fs error (device loop0): ext4_map_blocks:674: inode #2: block 13: comm syz-executor: lblock 0 mapped to illegal pblock 13 (length 1)
[   36.510132][ T3592] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.50: corrupted xattr block 19: invalid ea_ino
[   36.511756][ T3618] EXT4-fs (loop2): 1 truncate cleaned up
[   36.545128][ T3635] loop3: detected capacity change from 0 to 512
[   36.557712][ T3618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.572258][ T3592] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   36.581874][ T3635] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   36.591780][ T3303] EXT4-fs warning (device loop0): htree_dirblock_to_tree:1053: inode #2: lblock 0: comm syz-executor: error -117 reading directory block
[   36.630085][ T3592] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.50: corrupted xattr block 19: invalid ea_ino
[   36.645473][ T3592] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop4 ino=15
[   36.660430][ T3592] EXT4-fs error (device loop4): ext4_xattr_block_find:1869: inode #15: comm syz.4.50: corrupted xattr block 19: invalid ea_ino
[   36.675986][ T3618] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.700481][ T3635] EXT4-fs (loop3): 1 orphan inode deleted
[   36.706324][ T3635] EXT4-fs (loop3): 1 truncate cleaned up
[   36.715640][ T3635] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.740486][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.773105][ T1673] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:5: Failed to release dquot type 1
[   36.810447][ T3620] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.830615][ T3638] netlink: 'syz.4.68': attribute type 10 has an invalid length.
[   36.856042][ T1673] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   36.891175][ T3638] team0: Port device geneve1 added
[   36.917095][ T1673] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   36.951605][ T3640] pim6reg: entered allmulticast mode
[   36.967920][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.006478][ T1673] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.069505][ T1673] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.084864][   T29] kauditd_printk_skb: 541 callbacks suppressed
[   37.084881][   T29] audit: type=1326 audit(19849713.675:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.116683][   T29] audit: type=1326 audit(19849713.705:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.139899][   T29] audit: type=1326 audit(19849713.705:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.163221][   T29] audit: type=1326 audit(19849713.705:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.186721][   T29] audit: type=1326 audit(19849713.705:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.209716][   T29] audit: type=1326 audit(19849713.705:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.232699][   T29] audit: type=1326 audit(19849713.705:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.255988][   T29] audit: type=1326 audit(19849713.705:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.279375][   T29] audit: type=1326 audit(19849713.705:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.314374][   T29] audit: type=1326 audit(19849713.745:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3659 comm="syz.4.77" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   37.346601][ T3643] chnl_net:caif_netlink_parms(): no params data found
[   37.354713][ T3668] loop3: detected capacity change from 0 to 512
[   37.362841][ T3668] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   37.375627][ T3668] EXT4-fs (loop3): 1 orphan inode deleted
[   37.381449][ T3668] EXT4-fs (loop3): 1 truncate cleaned up
[   37.387613][ T3668] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   37.403085][ T3672] loop2: detected capacity change from 0 to 512
[   37.424976][ T3675] loop4: detected capacity change from 0 to 128
[   37.434914][ T3672] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #3: comm syz.2.78: corrupted inode contents
[   37.452937][ T3672] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #3: comm syz.2.78: mark_inode_dirty error
[   37.453057][ T3675] process 'syz.4.81' launched './file1' with NULL argv: empty string added
[   37.465450][ T3677] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.492168][ T3672] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #3: comm syz.2.78: corrupted inode contents
[   37.504282][ T3672] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #3: comm syz.2.78: mark_inode_dirty error
[   37.517121][ T3672] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.78: Failed to acquire dquot type 0
[   37.540783][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.555521][ T3672] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.78: corrupted inode contents
[   37.570595][ T3672] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #16: comm syz.2.78: mark_inode_dirty error
[   37.588728][ T3672] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.78: corrupted inode contents
[   37.608185][ T3672] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #16: comm syz.2.78: mark_inode_dirty error
[   37.622210][ T3672] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.78: corrupted inode contents
[   37.649632][ T3677] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.661219][ T3672] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   37.671647][ T3672] EXT4-fs error (device loop2): ext4_do_update_inode:5182: inode #16: comm syz.2.78: corrupted inode contents
[   37.693083][ T3692] 9pnet_fd: Insufficient options for proto=fd
[   37.713877][ T3672] EXT4-fs error (device loop2): ext4_truncate:4254: inode #16: comm syz.2.78: mark_inode_dirty error
[   37.713935][ T3643] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.713964][ T3643] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.751393][ T3672] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   37.764583][ T3643] bridge_slave_0: entered allmulticast mode
[   37.781730][ T3672] EXT4-fs (loop2): 1 truncate cleaned up
[   37.781859][ T3643] bridge_slave_0: entered promiscuous mode
[   37.801215][ T3672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.818356][ T3643] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.825511][ T3643] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.867478][ T3643] bridge_slave_1: entered allmulticast mode
[   37.880824][ T3643] bridge_slave_1: entered promiscuous mode
[   37.887601][ T3666] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.78: corrupted xattr block 19: invalid ea_ino
[   37.925917][ T3666] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   37.954098][ T3677] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   37.965556][ T3666] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.78: corrupted xattr block 19: invalid ea_ino
[   37.980274][ T1673] dummy0: left allmulticast mode
[   37.985358][ T1673] bridge0: port 3(dummy0) entered disabled state
[   38.001728][ T1673] bridge_slave_1: left allmulticast mode
[   38.007502][ T1673] bridge_slave_1: left promiscuous mode
[   38.013292][ T1673] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.025508][ T3666] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   38.035375][ T1673] bridge_slave_0: left allmulticast mode
[   38.041365][ T1673] bridge_slave_0: left promiscuous mode
[   38.047102][ T1673] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.055037][ T3666] EXT4-fs error (device loop2): ext4_xattr_block_find:1869: inode #15: comm syz.2.78: corrupted xattr block 19: invalid ea_ino
[   38.134528][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.144876][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[   38.244633][ T1673] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   38.255464][ T1673] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   38.265545][ T1673] bond0 (unregistering): Released all slaves
[   38.285077][ T3643] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.297295][ T3677] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.316057][ T3707] wireguard0: entered promiscuous mode
[   38.321697][ T3707] wireguard0: entered allmulticast mode
[   38.335291][ T3712] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.357944][ T3719] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   38.374376][ T3719] batman_adv: batadv0: Removing interface: batadv_slave_1
[   38.388412][ T3643] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.399972][ T1673] hsr_slave_0: left promiscuous mode
[   38.407818][ T1673] hsr_slave_1: left promiscuous mode
[   38.413932][ T1673] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   38.421465][ T1673] batman_adv: batadv0: Removing interface: batadv_slave_0
[   38.430485][ T1673] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   38.438054][ T1673] batman_adv: batadv0: Removing interface: batadv_slave_1
[   38.454959][ T1673] veth1_macvtap: left promiscuous mode
[   38.460679][ T1673] veth0_macvtap: left promiscuous mode
[   38.473384][ T1673] veth1_vlan: left promiscuous mode
[   38.478742][ T1673] veth0_vlan: left promiscuous mode
[   38.565618][ T1673] team0 (unregistering): Port device team_slave_1 removed
[   38.576786][ T1673] team0 (unregistering): Port device team_slave_0 removed
[   38.626087][ T3712] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.664185][ T3643] team0: Port device team_slave_0 added
[   38.677910][ T3643] team0: Port device team_slave_1 added
[   38.712585][ T3377] Process accounting resumed
[   38.722130][ T3712] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.740642][ T3643] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.747729][ T3643] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.773754][ T3643] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.787467][ T3643] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.794573][ T3643] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   38.820883][ T3643] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.835033][ T3712] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   38.875349][ T3643] hsr_slave_0: entered promiscuous mode
[   38.883023][ T3643] hsr_slave_1: entered promiscuous mode
[   38.889106][ T3643] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   38.898495][ T3643] Cannot create hsr debugfs directory
[   38.909466][ T3730] xt_TCPMSS: Only works on TCP SYN packets
[   38.932525][ T3712] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.965383][ T3730] 9pnet: Could not find request transport: 0xffffffffffffffff
[   38.974835][ T3712] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.024524][ T3712] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.072943][ T3751] __nla_validate_parse: 11 callbacks suppressed
[   39.072961][ T3751] netlink: 12 bytes leftover after parsing attributes in process `syz.1.94'.
[   39.088215][ T3751] tipc: Started in network mode
[   39.093205][ T3751] tipc: Node identity 1, cluster identity 4711
[   39.099432][ T3751] tipc: Node number set to 1
[   39.136605][ T3712] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.219781][ T3759] netlink: 4 bytes leftover after parsing attributes in process `syz.2.98'.
[   39.237844][ T3376] Process accounting resumed
[   39.338492][ T3643] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   39.369554][ T3643] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   39.413163][ T3643] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   39.441600][ T3643] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   39.569764][ T3643] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.592905][ T3643] 8021q: adding VLAN 0 to HW filter on device team0
[   39.610351][ T3798] loop4: detected capacity change from 0 to 512
[   39.620305][ T3403] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.621763][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.627465][ T3403] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.634899][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.649453][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.656931][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.664449][ T3798] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   39.691327][ T3403] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.698444][ T3403] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.728674][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.736198][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.743687][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.751155][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.758724][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.766220][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.773756][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.781244][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.788686][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.796074][ T3643] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   39.796258][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.806627][ T3643] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   39.861149][ T3798] EXT4-fs (loop4): mount failed
[   39.866992][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.874494][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.882204][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.889610][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.897060][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.904522][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.904799][ T3814] loop2: detected capacity change from 0 to 2048
[   39.911987][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.912021][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.933228][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.940645][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.948084][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.955514][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.962972][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.970393][ T3376] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   39.988793][ T3819] netlink: 8 bytes leftover after parsing attributes in process `syz.3.110'.
[   39.991383][ T3376] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   40.014492][ T3814] Alternate GPT is invalid, using primary GPT.
[   40.020855][ T3814]  loop2: p1 p2 p3
[   40.061891][ T3003] Alternate GPT is invalid, using primary GPT.
[   40.068191][ T3003]  loop2: p1 p2 p3
[   40.094440][ T3643] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.101904][ T3003] Alternate GPT is invalid, using primary GPT.
[   40.108261][ T3003]  loop2: p1 p2 p3
[   40.167289][ T3825] loop3: detected capacity change from 0 to 512
[   40.182705][ T3825] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.111: bg 0: block 35: padding at end of block bitmap is not set
[   40.208297][ T3825] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   40.222518][ T3825] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.111: invalid indirect mapped block 4294967295 (level 1)
[   40.264584][ T3844] gretap0: refused to change device tx_queue_len
[   40.268676][ T3825] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.111: invalid indirect mapped block 4294967295 (level 2)
[   40.285674][ T3844] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   40.300915][ T3273] udevd[3273]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   40.314720][ T3520] udevd[3520]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   40.335407][ T3825] EXT4-fs (loop3): 1 truncate cleaned up
[   40.344447][ T3859] udevd[3859]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   40.344618][ T3825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.375529][ T3825] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.415727][ T3293] udevd[3293]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   40.419233][ T3584] udevd[3584]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   40.427160][ T3582] udevd[3582]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   40.451036][ T3643] veth0_vlan: entered promiscuous mode
[   40.458733][ T3844] netlink: 16 bytes leftover after parsing attributes in process `syz.4.114'.
[   40.464022][ T3643] veth1_vlan: entered promiscuous mode
[   40.483669][ T3273] udevd[3273]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   40.498316][ T3584] udevd[3584]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   40.500836][ T3872] loop2: detected capacity change from 0 to 128
[   40.518439][ T3582] udevd[3582]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   40.529146][ T3872] FAT-fs (loop2): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[   40.594860][ T3643] veth0_macvtap: entered promiscuous mode
[   40.605674][ T3879] netlink: 8 bytes leftover after parsing attributes in process `syz.1.121'.
[   40.633942][ T3643] veth1_macvtap: entered promiscuous mode
[   40.656758][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.667321][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.677252][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.680939][ T3884] netlink: 4 bytes leftover after parsing attributes in process `syz.1.124'.
[   40.687754][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.687769][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.687785][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.687797][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   40.687812][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.704167][ T3643] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.779579][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.790157][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.800281][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.810782][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.820819][ T3643] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   40.831313][ T3643] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   40.848860][ T3643] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.884683][ T3643] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.893640][ T3643] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.902521][ T3643] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.907439][ T3869] syz.2.117: attempt to access beyond end of device
[   40.907439][ T3869] loop2: rw=2049, sector=129, nr_sectors = 8 limit=128
[   40.911314][ T3643] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.943821][ T3903] netlink: 8 bytes leftover after parsing attributes in process `syz.4.128'.
[   40.955253][ T3869] syz.2.117: attempt to access beyond end of device
[   40.955253][ T3869] loop2: rw=2049, sector=145, nr_sectors = 8 limit=128
[   40.971128][ T3899] netlink: 28 bytes leftover after parsing attributes in process `syz.1.127'.
[   40.981462][ T3903] openvswitch: netlink: Message has 6 unknown bytes.
[   41.011154][ T3869] syz.2.117: attempt to access beyond end of device
[   41.011154][ T3869] loop2: rw=2049, sector=161, nr_sectors = 8 limit=128
[   41.014019][ T3910] netlink: 4 bytes leftover after parsing attributes in process `syz.4.129'.
[   41.036378][ T3869] syz.2.117: attempt to access beyond end of device
[   41.036378][ T3869] loop2: rw=2049, sector=177, nr_sectors = 8 limit=128
[   41.050215][ T3869] syz.2.117: attempt to access beyond end of device
[   41.050215][ T3869] loop2: rw=2049, sector=193, nr_sectors = 8 limit=128
[   41.064091][ T3869] syz.2.117: attempt to access beyond end of device
[   41.064091][ T3869] loop2: rw=2049, sector=209, nr_sectors = 8 limit=128
[   41.100198][ T3869] syz.2.117: attempt to access beyond end of device
[   41.100198][ T3869] loop2: rw=2049, sector=225, nr_sectors = 8 limit=128
[   41.118911][ T3910] team0 (unregistering): Port device team_slave_0 removed
[   41.122091][ T3869] syz.2.117: attempt to access beyond end of device
[   41.122091][ T3869] loop2: rw=2049, sector=241, nr_sectors = 8 limit=128
[   41.158989][ T3910] team0 (unregistering): Port device team_slave_1 removed
[   41.159160][ T3869] syz.2.117: attempt to access beyond end of device
[   41.159160][ T3869] loop2: rw=2049, sector=257, nr_sectors = 8 limit=128
[   41.184244][ T3910] team0 (unregistering): Port device geneve1 removed
[   41.215483][ T3869] syz.2.117: attempt to access beyond end of device
[   41.215483][ T3869] loop2: rw=2049, sector=273, nr_sectors = 8 limit=128
[   41.258339][ T3934] loop5: detected capacity change from 0 to 128
[   41.282319][ T3934] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   41.349703][ T3427] FAT-fs (loop2): Invalid FSINFO signature: 0x00615252, 0x61417272 (sector = 1)
[   41.366065][ T3947] netlink: 'syz.1.133': attribute type 1 has an invalid length.
[   41.409405][ T3947] 8021q: adding VLAN 0 to HW filter on device bond1
[   41.429684][ T3957] 8021q: adding VLAN 0 to HW filter on device bond1
[   41.443514][ T3960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.135'.
[   41.453273][ T3957] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address
[   41.488698][ T3957] bond1: (slave wireguard0): Error -95 calling set_mac_address
[   41.501668][ T3643] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   41.506371][ T3947] serio: Serial port ptm0
[   41.665328][   T10] Process accounting resumed
[   41.728425][ T3947] loop1: detected capacity change from 0 to 8192
[   41.770605][   T10] Process accounting resumed
[   41.792085][ T3991] loop4: detected capacity change from 0 to 1024
[   41.799655][ T3991] EXT4-fs: Ignoring removed nobh option
[   41.805359][ T3991] EXT4-fs: Ignoring removed bh option
[   41.855129][ T3991] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.874560][ T3991] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm syz.4.141: Allocating blocks 385-513 which overlap fs metadata
[   41.978855][ T4007] loop2: detected capacity change from 0 to 512
[   42.009835][ T4014] loop1: detected capacity change from 0 to 512
[   42.019921][ T4012] loop5: detected capacity change from 0 to 512
[   42.042086][ T4007] EXT4-fs: Ignoring removed i_version option
[   42.048140][ T4007] EXT4-fs: Ignoring removed nobh option
[   42.056944][ T4007] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   42.070627][ T4007] EXT4-fs (loop2): 1 truncate cleaned up
[   42.080773][ T4012] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.095428][ T4007] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.097659][ T4014] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.112151][   T29] kauditd_printk_skb: 344 callbacks suppressed
[   42.112170][   T29] audit: type=1400 audit(19849718.695:996): avc:  denied  { read append open } for  pid=4006 comm="syz.2.146" path="/29/bus/cpuset.effective_cpus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   42.127860][   T10] Process accounting resumed
[   42.167466][   T29] audit: type=1400 audit(19849718.755:997): avc:  denied  { write } for  pid=4006 comm="syz.2.146" name="cpuset.effective_cpus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   42.177918][ T4024] EXT4-fs (loop4): pa ffff888106699000: logic 16, phys. 129, len 24
[   42.177943][ T4024] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 8
[   42.296863][   T29] audit: type=1400 audit(19849718.885:998): avc:  denied  { connect } for  pid=4011 comm="syz.1.148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   42.480420][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.585752][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.658800][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.728789][   T29] audit: type=1326 audit(19849719.315:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4046 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b30ed169 code=0x7ffc0000
[   42.760651][   T29] audit: type=1326 audit(19849719.345:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4046 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f13b30ed169 code=0x7ffc0000
[   42.784030][   T29] audit: type=1326 audit(19849719.345:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4046 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b30ed169 code=0x7ffc0000
[   42.807419][   T29] audit: type=1326 audit(19849719.345:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4046 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13b30ed169 code=0x7ffc0000
[   42.831937][ T4045] loop4: detected capacity change from 0 to 2048
[   42.875808][ T4045] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.898043][ T3643] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.911638][   T29] audit: type=1400 audit(19849719.505:1003): avc:  denied  { append } for  pid=4054 comm="syz.2.159" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   42.947160][ T4031] Process accounting resumed
[   42.970093][ T4064] tmpfs: Bad value for 'mpol'
[   42.979892][   T29] audit: type=1400 audit(19849719.555:1004): avc:  denied  { mounton } for  pid=4043 comm="syz.4.155" path="/38/file1/file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   43.039559][ T4069] netlink: 'syz.1.165': attribute type 10 has an invalid length.
[   43.042113][ T4072] netlink: 'syz.3.166': attribute type 10 has an invalid length.
[   43.058600][ T4073] loop5: detected capacity change from 0 to 512
[   43.086264][ T4069] team0: Port device geneve1 added
[   43.095924][ T4073] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   43.112837][ T4077] SELinux: syz.4.155 (4077) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   43.115859][ T4076] pim6reg: entered allmulticast mode
[   43.141020][ T4073] EXT4-fs (loop5): 1 orphan inode deleted
[   43.146879][ T4073] EXT4-fs (loop5): 1 truncate cleaned up
[   43.165483][ T4073] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.252717][ T4085] openvswitch: netlink: Message has 6 unknown bytes.
[   43.260772][ T4083] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[   43.287205][   T29] audit: type=1326 audit(19849719.875:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4086 comm="syz.1.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ffcf7d169 code=0x7ffc0000
[   43.332958][ T3643] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.410156][ T3440] Process accounting resumed
[   43.463513][ T4077] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.155: bg 0: block 345: padding at end of block bitmap is not set
[   43.480253][ T4077] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[   43.492878][ T4077] EXT4-fs (loop4): This should not happen!! Data will be lost
[   43.492878][ T4077] 
[   43.510521][ T4077] syz.4.155 (4077) used greatest stack depth: 9120 bytes left
[   43.533184][ T4097] loop5: detected capacity change from 0 to 512
[   43.543541][ T4097] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.175: bg 0: block 35: padding at end of block bitmap is not set
[   43.558307][ T4100] syz.1.173 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   43.565919][ T4097] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   43.569563][ T4100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.588074][   T51] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[   43.590393][ T4100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.600764][   T51] EXT4-fs (loop4): This should not happen!! Data will be lost
[   43.600764][   T51] 
[   43.612148][ T4100] SELinux:  policydb magic number 0x6 does not match expected magic number 0xf97cff8c
[   43.621671][ T4097] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.175: invalid indirect mapped block 4294967295 (level 1)
[   43.627931][ T4100] SELinux: failed to load policy
[   43.644058][ T4097] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.175: invalid indirect mapped block 4294967295 (level 2)
[   43.661595][ T4097] EXT4-fs (loop5): 1 truncate cleaned up
[   43.674847][   T51] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[   43.687664][   T51] EXT4-fs (loop4): This should not happen!! Data will be lost
[   43.687664][   T51] 
[   43.697475][   T51] EXT4-fs (loop4): Total free blocks count 0
[   43.698278][ T4097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.703506][   T51] EXT4-fs (loop4): Free/Dirty block details
[   43.719793][ T4097] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.726476][   T51] EXT4-fs (loop4): free_blocks=0
[   43.804475][ T4107] netlink: 'syz.5.177': attribute type 10 has an invalid length.
[   43.817727][ T4107] team0: Port device geneve1 added
[   43.829492][ T4107] pim6reg: entered allmulticast mode
[   43.924783][ T4120] openvswitch: netlink: Message has 6 unknown bytes.
[   43.933756][ T4119] openvswitch: netlink: Message has 6 unknown bytes.
[   43.953184][ T4123] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[   43.964460][ T4122] IPVS: stopping master sync thread 4123 ...
[   44.016006][ T3377] Process accounting resumed
[   44.085221][ T3377] Process accounting resumed
[   44.097565][ T4140] __nla_validate_parse: 11 callbacks suppressed
[   44.097585][ T4140] netlink: 28 bytes leftover after parsing attributes in process `syz.3.191'.
[   44.100394][ T4136] netlink: 'syz.4.190': attribute type 10 has an invalid length.
[   44.107321][ T4140] loop3: detected capacity change from 0 to 512
[   44.112828][ T4136] netlink: 40 bytes leftover after parsing attributes in process `syz.4.190'.
[   44.136436][ T4140] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   44.136597][ T4136] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[   44.166412][ T4140] EXT4-fs (loop3): 1 orphan inode deleted
[   44.172268][ T4140] EXT4-fs (loop3): 1 truncate cleaned up
[   44.184108][ T4140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.293289][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.302599][ T4157] netlink: 132 bytes leftover after parsing attributes in process `syz.5.198'.
[   44.372194][ T3358] Process accounting resumed
[   44.447233][ T4178] loop4: detected capacity change from 0 to 128
[   44.462873][ T4180] loop1: detected capacity change from 0 to 512
[   44.473023][ T4178] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   44.473391][ T4180] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.205: bg 0: block 35: padding at end of block bitmap is not set
[   44.506327][ T4180] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   44.514192][ T4182] 9pnet_fd: Insufficient options for proto=fd
[   44.516172][ T4180] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.205: invalid indirect mapped block 4294967295 (level 1)
[   44.536828][ T4180] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.205: invalid indirect mapped block 4294967295 (level 2)
[   44.564295][ T4180] EXT4-fs (loop1): 1 truncate cleaned up
[   44.577849][ T4180] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.592651][ T4180] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.629138][ T3307] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.795941][ T4191] netlink: 8 bytes leftover after parsing attributes in process `syz.1.211'.
[   44.813933][ T4191] openvswitch: netlink: Message has 6 unknown bytes.
[   44.929514][ T4202] FAULT_INJECTION: forcing a failure.
[   44.929514][ T4202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.942712][ T4202] CPU: 1 UID: 0 PID: 4202 Comm: syz.4.215 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   44.942743][ T4202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   44.942759][ T4202] Call Trace:
[   44.942767][ T4202]  <TASK>
[   44.942843][ T4202]  dump_stack_lvl+0xf6/0x150
[   44.942871][ T4202]  dump_stack+0x15/0x1a
[   44.942892][ T4202]  should_fail_ex+0x261/0x270
[   44.942924][ T4202]  should_fail+0xb/0x10
[   44.942947][ T4202]  should_fail_usercopy+0x1a/0x20
[   44.943050][ T4202]  _copy_to_user+0x20/0xa0
[   44.943087][ T4202]  simple_read_from_buffer+0xb2/0x130
[   44.943124][ T4202]  proc_fail_nth_read+0x103/0x140
[   44.943247][ T4202]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   44.943336][ T4202]  vfs_read+0x1b2/0x710
[   44.943367][ T4202]  ? __rcu_read_unlock+0x4e/0x70
[   44.943442][ T4202]  ? __fget_files+0x186/0x1c0
[   44.943463][ T4202]  ksys_read+0xeb/0x1b0
[   44.943512][ T4202]  __x64_sys_read+0x42/0x50
[   44.943641][ T4202]  x64_sys_call+0x2a3b/0x2e10
[   44.943663][ T4202]  do_syscall_64+0xc9/0x1c0
[   44.943696][ T4202]  ? clear_bhb_loop+0x25/0x80
[   44.943721][ T4202]  ? clear_bhb_loop+0x25/0x80
[   44.943745][ T4202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.943765][ T4202] RIP: 0033:0x7f09559abb7c
[   44.943783][ T4202] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   44.943846][ T4202] RSP: 002b:00007f095400f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   44.943867][ T4202] RAX: ffffffffffffffda RBX: 00007f0955bc5fa0 RCX: 00007f09559abb7c
[   44.943960][ T4202] RDX: 000000000000000f RSI: 00007f095400f0a0 RDI: 0000000000000007
[   44.943973][ T4202] RBP: 00007f095400f090 R08: 0000000000000000 R09: 0000000000000000
[   44.943990][ T4202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.944003][ T4202] R13: 0000000000000000 R14: 00007f0955bc5fa0 R15: 00007ffd9e668138
[   44.944026][ T4202]  </TASK>
[   45.196737][ T4213] loop1: detected capacity change from 0 to 128
[   45.220179][ T3377] Process accounting resumed
[   45.235857][ T4213] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   45.340343][ T4212] wireguard0: entered promiscuous mode
[   45.346054][ T4212] wireguard0: entered allmulticast mode
[   45.359668][ T3299] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   45.383374][ T4220] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   45.417860][ T4220] batman_adv: batadv0: Removing interface: batadv_slave_1
[   45.540275][ T4235] netlink: 8 bytes leftover after parsing attributes in process `syz.4.228'.
[   45.559134][ T4233] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   45.568950][ T4235] openvswitch: netlink: Message has 6 unknown bytes.
[   45.580393][ T4233] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   45.595032][ T4233] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   45.619477][ T4233] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.677413][ T4240] loop3: detected capacity change from 0 to 1024
[   45.794069][ T4250] netlink: 28 bytes leftover after parsing attributes in process `syz.4.235'.
[   45.828311][ T4252] loop3: detected capacity change from 0 to 512
[   45.842151][ T4250] loop4: detected capacity change from 0 to 512
[   45.853004][ T4252] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.234: bg 0: block 35: padding at end of block bitmap is not set
[   45.892219][ T4250] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   45.895100][ T4252] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   45.925673][ T4250] EXT4-fs (loop4): 1 orphan inode deleted
[   45.931544][ T4250] EXT4-fs (loop4): 1 truncate cleaned up
[   45.940874][ T4256] program syz.1.236 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   45.956224][ T4250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.975640][ T4259] FAULT_INJECTION: forcing a failure.
[   45.975640][ T4259] name failslab, interval 1, probability 0, space 0, times 0
[   45.988464][ T4259] CPU: 0 UID: 0 PID: 4259 Comm: syz.2.237 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   45.988494][ T4259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   45.988506][ T4259] Call Trace:
[   45.988514][ T4259]  <TASK>
[   45.988523][ T4259]  dump_stack_lvl+0xf6/0x150
[   45.988607][ T4259]  dump_stack+0x15/0x1a
[   45.988624][ T4259]  should_fail_ex+0x261/0x270
[   45.988654][ T4259]  should_failslab+0x8f/0xb0
[   45.988691][ T4259]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   45.988753][ T4259]  ? __alloc_skb+0x10d/0x320
[   45.988777][ T4259]  __alloc_skb+0x10d/0x320
[   45.988800][ T4259]  netlink_alloc_large_skb+0xad/0xe0
[   45.988879][ T4259]  netlink_sendmsg+0x3da/0x720
[   45.988907][ T4259]  ? __pfx_netlink_sendmsg+0x10/0x10
[   45.988931][ T4259]  __sock_sendmsg+0x140/0x180
[   45.988964][ T4259]  ____sys_sendmsg+0x350/0x4e0
[   45.989077][ T4259]  __sys_sendmsg+0x1a0/0x240
[   45.989118][ T4259]  __x64_sys_sendmsg+0x46/0x50
[   45.989145][ T4259]  x64_sys_call+0x26f3/0x2e10
[   45.989213][ T4259]  do_syscall_64+0xc9/0x1c0
[   45.989242][ T4259]  ? clear_bhb_loop+0x25/0x80
[   45.989264][ T4259]  ? clear_bhb_loop+0x25/0x80
[   45.989284][ T4259]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.989305][ T4259] RIP: 0033:0x7f13b30ed169
[   45.989348][ T4259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.989365][ T4259] RSP: 002b:00007f13b1757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   45.989458][ T4259] RAX: ffffffffffffffda RBX: 00007f13b3305fa0 RCX: 00007f13b30ed169
[   45.989469][ T4259] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[   45.989481][ T4259] RBP: 00007f13b1757090 R08: 0000000000000000 R09: 0000000000000000
[   45.989492][ T4259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.989503][ T4259] R13: 0000000000000000 R14: 00007f13b3305fa0 R15: 00007ffe2d6b92f8
[   45.989521][ T4259]  </TASK>
[   46.185685][ T4252] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.234: invalid indirect mapped block 4294967295 (level 1)
[   46.204491][ T4252] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.234: invalid indirect mapped block 4294967295 (level 2)
[   46.230332][ T4252] EXT4-fs (loop3): 1 truncate cleaned up
[   46.252293][ T4262] loop1: detected capacity change from 0 to 2048
[   46.268399][ T4262] EXT4-fs: Ignoring removed i_version option
[   46.275345][ T4252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.309158][ T4252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.325042][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.353919][ T4262] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.410773][ T3299] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.437978][ T4271] netlink: 8 bytes leftover after parsing attributes in process `syz.2.240'.
[   46.476302][ T4271] openvswitch: netlink: Message has 6 unknown bytes.
[   46.508159][ T4278] FAULT_INJECTION: forcing a failure.
[   46.508159][ T4278] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.521465][ T4278] CPU: 1 UID: 0 PID: 4278 Comm: syz.1.244 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   46.521494][ T4278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   46.521508][ T4278] Call Trace:
[   46.521515][ T4278]  <TASK>
[   46.521523][ T4278]  dump_stack_lvl+0xf6/0x150
[   46.521563][ T4278]  dump_stack+0x15/0x1a
[   46.521584][ T4278]  should_fail_ex+0x261/0x270
[   46.521617][ T4278]  should_fail+0xb/0x10
[   46.521643][ T4278]  should_fail_usercopy+0x1a/0x20
[   46.521695][ T4278]  strncpy_from_user+0x25/0x230
[   46.521747][ T4278]  ? getname_flags+0x81/0x3b0
[   46.521775][ T4278]  getname_flags+0xb0/0x3b0
[   46.521797][ T4278]  __se_sys_acct+0x40/0x4a0
[   46.521823][ T4278]  __x64_sys_acct+0x1f/0x30
[   46.521844][ T4278]  x64_sys_call+0x1871/0x2e10
[   46.521872][ T4278]  do_syscall_64+0xc9/0x1c0
[   46.521960][ T4278]  ? clear_bhb_loop+0x25/0x80
[   46.521987][ T4278]  ? clear_bhb_loop+0x25/0x80
[   46.522019][ T4278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.522044][ T4278] RIP: 0033:0x7f7ffcf7d169
[   46.522076][ T4278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.522125][ T4278] RSP: 002b:00007f7ffb5df038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[   46.522143][ T4278] RAX: ffffffffffffffda RBX: 00007f7ffd195fa0 RCX: 00007f7ffcf7d169
[   46.522158][ T4278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000001c0
[   46.522172][ T4278] RBP: 00007f7ffb5df090 R08: 0000000000000000 R09: 0000000000000000
[   46.522186][ T4278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.522200][ T4278] R13: 0000000000000000 R14: 00007f7ffd195fa0 R15: 00007fffeee7bb28
[   46.522222][ T4278]  </TASK>
[   46.526269][ T4274] loop3: detected capacity change from 0 to 512
[   46.732362][ T4274] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.242: bg 0: block 35: padding at end of block bitmap is not set
[   46.762229][ T4274] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   46.789541][ T4274] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.242: invalid indirect mapped block 4294967295 (level 1)
[   46.875322][ T4291] 9pnet_fd: Insufficient options for proto=fd
[   46.905025][ T4274] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.242: invalid indirect mapped block 4294967295 (level 2)
[   46.905748][ T3376] Process accounting resumed
[   46.973469][ T4274] EXT4-fs (loop3): 1 truncate cleaned up
[   46.979576][ T4274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.040186][ T4274] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.083422][ T4304] netlink: 4 bytes leftover after parsing attributes in process `syz.1.256'.
[   47.137855][ T4311] loop2: detected capacity change from 0 to 164
[   47.164427][   T29] kauditd_printk_skb: 161 callbacks suppressed
[   47.164445][   T29] audit: type=1400 audit(19849723.755:1167): avc:  denied  { remount } for  pid=4310 comm="syz.2.259" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   47.219685][ T4311] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.228371][ T4311] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.260048][   T29] audit: type=1400 audit(19849723.845:1168): avc:  denied  { bind } for  pid=4321 comm="syz.4.264" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   47.282279][   T29] audit: type=1400 audit(19849723.845:1169): avc:  denied  { listen } for  pid=4321 comm="syz.4.264" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   47.337708][ T3376] Process accounting resumed
[   47.343389][   T29] audit: type=1326 audit(19849723.915:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.366789][   T29] audit: type=1326 audit(19849723.915:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.390074][   T29] audit: type=1326 audit(19849723.915:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.413341][   T29] audit: type=1326 audit(19849723.915:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.436531][   T29] audit: type=1326 audit(19849723.915:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.459923][   T29] audit: type=1326 audit(19849723.915:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.483135][   T29] audit: type=1326 audit(19849723.915:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4323 comm="syz.4.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09559ad169 code=0x7ffc0000
[   47.584295][ T4335] netlink: 4 bytes leftover after parsing attributes in process `syz.3.269'.
[   47.616209][ T4337] 9pnet_fd: Insufficient options for proto=fd
[   47.872808][ T4354] wireguard0: entered promiscuous mode
[   47.878339][ T4354] wireguard0: entered allmulticast mode
[   47.888079][ T4358] loop4: detected capacity change from 0 to 512
[   47.909832][ T4358] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.280: bg 0: block 35: padding at end of block bitmap is not set
[   47.925390][ T4358] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   47.937047][ T4366] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.949100][ T4358] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.280: invalid indirect mapped block 4294967295 (level 1)
[   47.949673][ T4366] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.988980][ T4358] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.280: invalid indirect mapped block 4294967295 (level 2)
[   48.006734][ T4358] EXT4-fs (loop4): 1 truncate cleaned up
[   48.031918][ T4358] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.048089][ T4358] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.084118][ T4378] 9pnet_fd: Insufficient options for proto=fd
[   48.256492][ T4397] loop2: detected capacity change from 0 to 512
[   48.277327][ T4397] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.439528][ T4423] 9pnet_fd: Insufficient options for proto=fd
[   48.683425][ T4444] netlink: 8 bytes leftover after parsing attributes in process `syz.5.314'.
[   48.693373][ T4444] openvswitch: netlink: Message has 6 unknown bytes.
[   48.755589][ T4449] loop1: detected capacity change from 0 to 512
[   48.777304][ T4449] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.316: bg 0: block 35: padding at end of block bitmap is not set
[   48.812730][ T4449] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   48.822179][ T4449] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.316: invalid indirect mapped block 4294967295 (level 1)
[   48.837989][ T4449] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.316: invalid indirect mapped block 4294967295 (level 2)
[   48.852375][ T4449] EXT4-fs (loop1): 1 truncate cleaned up
[   48.858669][ T4449] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.875481][ T4461] loop5: detected capacity change from 0 to 512
[   48.894961][ T4461] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.321: bg 0: block 35: padding at end of block bitmap is not set
[   48.895759][ T4449] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.926536][ T4461] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   48.942315][ T4461] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.321: invalid indirect mapped block 4294967295 (level 1)
[   48.978825][ T4461] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.321: invalid indirect mapped block 4294967295 (level 2)
[   48.993549][ T4461] EXT4-fs (loop5): 1 truncate cleaned up
[   48.999707][ T4461] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.018257][ T4461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.061814][ T4474] loop4: detected capacity change from 0 to 512
[   49.068926][ T4474] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   49.084941][ T4474] EXT4-fs (loop4): 1 orphan inode deleted
[   49.090846][ T4474] EXT4-fs (loop4): 1 truncate cleaned up
[   49.097657][ T4474] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.119501][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.173929][ T4479] FAULT_INJECTION: forcing a failure.
[   49.173929][ T4479] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.187098][ T4479] CPU: 1 UID: 0 PID: 4479 Comm: syz.2.330 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   49.187183][ T4479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   49.187198][ T4479] Call Trace:
[   49.187204][ T4479]  <TASK>
[   49.187211][ T4479]  dump_stack_lvl+0xf6/0x150
[   49.187235][ T4479]  dump_stack+0x15/0x1a
[   49.187251][ T4479]  should_fail_ex+0x261/0x270
[   49.187345][ T4479]  should_fail+0xb/0x10
[   49.187390][ T4479]  should_fail_usercopy+0x1a/0x20
[   49.187417][ T4479]  _copy_to_user+0x20/0xa0
[   49.187450][ T4479]  simple_read_from_buffer+0xb2/0x130
[   49.187482][ T4479]  proc_fail_nth_read+0x103/0x140
[   49.187546][ T4479]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   49.187580][ T4479]  vfs_read+0x1b2/0x710
[   49.187613][ T4479]  ksys_read+0xeb/0x1b0
[   49.187712][ T4479]  __x64_sys_read+0x42/0x50
[   49.187740][ T4479]  x64_sys_call+0x2a3b/0x2e10
[   49.187762][ T4479]  do_syscall_64+0xc9/0x1c0
[   49.187821][ T4479]  ? clear_bhb_loop+0x25/0x80
[   49.187894][ T4479]  ? clear_bhb_loop+0x25/0x80
[   49.187915][ T4479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.187936][ T4479] RIP: 0033:0x7f13b30ebb7c
[   49.187951][ T4479] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   49.187977][ T4479] RSP: 002b:00007f13b1757030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.187995][ T4479] RAX: ffffffffffffffda RBX: 00007f13b3305fa0 RCX: 00007f13b30ebb7c
[   49.188007][ T4479] RDX: 000000000000000f RSI: 00007f13b17570a0 RDI: 0000000000000006
[   49.188019][ T4479] RBP: 00007f13b1757090 R08: 0000000000000000 R09: 0000000000000000
[   49.188077][ T4479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.188088][ T4479] R13: 0000000000000000 R14: 00007f13b3305fa0 R15: 00007ffe2d6b92f8
[   49.188106][ T4479]  </TASK>
[   49.389902][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.449358][ T4490] loop1: detected capacity change from 0 to 164
[   49.458740][ T4492] __nla_validate_parse: 1 callbacks suppressed
[   49.458755][ T4492] netlink: 8 bytes leftover after parsing attributes in process `syz.3.337'.
[   49.505481][ T4492] openvswitch: netlink: Message has 6 unknown bytes.
[   49.517586][ T4500] netlink: 'syz.5.339': attribute type 10 has an invalid length.
[   49.525426][ T4500] netlink: 40 bytes leftover after parsing attributes in process `syz.5.339'.
[   49.557185][ T4501] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.588502][ T4501] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.640130][ T3440] Process accounting resumed
[   49.654444][ T4510] loop3: detected capacity change from 0 to 512
[   49.677197][ T4510] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.343: bg 0: block 35: padding at end of block bitmap is not set
[   49.695139][ T4512] loop5: detected capacity change from 0 to 512
[   49.702390][ T4510] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   49.713296][ T4512] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.344: bg 0: block 35: padding at end of block bitmap is not set
[   49.732393][ T4510] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.343: invalid indirect mapped block 4294967295 (level 1)
[   49.746570][ T4510] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.343: invalid indirect mapped block 4294967295 (level 2)
[   49.762401][ T4512] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   49.768888][ T4510] EXT4-fs (loop3): 1 truncate cleaned up
[   49.777247][ T4510] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.793555][ T4524] Zero length message leads to an empty skb
[   49.803394][ T4512] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.344: invalid indirect mapped block 4294967295 (level 1)
[   49.818573][ T4510] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.838712][ T4512] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.344: invalid indirect mapped block 4294967295 (level 2)
[   49.854390][ T4512] EXT4-fs (loop5): 1 truncate cleaned up
[   49.860646][ T4512] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.880394][ T4512] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.929546][ T4535] FAULT_INJECTION: forcing a failure.
[   49.929546][ T4535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.942813][ T4535] CPU: 1 UID: 0 PID: 4535 Comm: syz.3.354 Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   49.942846][ T4535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   49.942861][ T4535] Call Trace:
[   49.942870][ T4535]  <TASK>
[   49.942879][ T4535]  dump_stack_lvl+0xf6/0x150
[   49.942908][ T4535]  dump_stack+0x15/0x1a
[   49.942981][ T4535]  should_fail_ex+0x261/0x270
[   49.943015][ T4535]  should_fail+0xb/0x10
[   49.943046][ T4535]  should_fail_usercopy+0x1a/0x20
[   49.943080][ T4535]  _copy_to_iter+0xd8/0xd10
[   49.943116][ T4535]  ? chacha_block_generic+0x253/0x280
[   49.943187][ T4535]  get_random_bytes_user+0x131/0x290
[   49.943225][ T4535]  ? vfs_write+0x669/0x950
[   49.943257][ T4535]  ? import_ubuf+0xeb/0x120
[   49.943274][ T4535]  __x64_sys_getrandom+0xba/0x190
[   49.943306][ T4535]  x64_sys_call+0x29cd/0x2e10
[   49.943345][ T4535]  do_syscall_64+0xc9/0x1c0
[   49.943437][ T4535]  ? clear_bhb_loop+0x25/0x80
[   49.943502][ T4535]  ? clear_bhb_loop+0x25/0x80
[   49.943538][ T4535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.943560][ T4535] RIP: 0033:0x7fa80e39d169
[   49.943575][ T4535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.943593][ T4535] RSP: 002b:00007fa80c9ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000013e
[   49.943684][ T4535] RAX: ffffffffffffffda RBX: 00007fa80e5b5fa0 RCX: 00007fa80e39d169
[   49.943698][ T4535] RDX: 0000000000000002 RSI: fffffffffffffdde RDI: 0000200000000040
[   49.943710][ T4535] RBP: 00007fa80c9ff090 R08: 0000000000000000 R09: 0000000000000000
[   49.943722][ T4535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.943733][ T4535] R13: 0000000000000000 R14: 00007fa80e5b5fa0 R15: 00007ffd52017fd8
[   49.943776][ T4535]  </TASK>
[   50.176877][ T4542] 9pnet_fd: Insufficient options for proto=fd
[   50.240494][ T4547] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.709816][ T4547] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.734280][ T4564] netlink: 8 bytes leftover after parsing attributes in process `syz.5.364'.
[   50.745252][ T4564] openvswitch: netlink: Message has 6 unknown bytes.
[   50.773720][ T4547] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.810845][ T4568] loop4: detected capacity change from 0 to 128
[   50.824176][ T4547] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.835298][ T4568] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   50.852436][ T4563] loop1: detected capacity change from 0 to 512
[   50.873925][ T4563] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.365: bg 0: block 35: padding at end of block bitmap is not set
[   50.909514][ T4547] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.921155][ T4547] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.933098][ T4547] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.944877][ T3307] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   50.945238][ T4547] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.971029][ T4563] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   50.985567][ T4575] loop5: detected capacity change from 0 to 512
[   50.996044][ T4575] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   51.020826][ T4563] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.365: invalid indirect mapped block 4294967295 (level 1)
[   51.042353][ T4563] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.365: invalid indirect mapped block 4294967295 (level 2)
[   51.059402][ T4575] EXT4-fs (loop5): 1 orphan inode deleted
[   51.065274][ T4575] EXT4-fs (loop5): 1 truncate cleaned up
[   51.073460][ T4575] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.113971][ T4563] EXT4-fs (loop1): 1 truncate cleaned up
[   51.137419][ T4563] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.182420][ T4563] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.253382][ T3643] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.340119][ T4616] 9pnet_fd: Insufficient options for proto=fd
[   51.677379][ T4649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.395'.
[   51.688947][ T4650] loop4: detected capacity change from 0 to 512
[   51.700902][ T4649] openvswitch: netlink: Message has 6 unknown bytes.
[   51.739447][ T4650] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.769810][ T4658] openvswitch: netlink: Message has 6 unknown bytes.
[   51.806285][ T4654] loop3: detected capacity change from 0 to 512
[   51.854468][ T4654] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.397: bg 0: block 35: padding at end of block bitmap is not set
[   51.892832][ T4654] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   51.902489][ T4654] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.397: invalid indirect mapped block 4294967295 (level 1)
[   51.924052][ T4654] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.397: invalid indirect mapped block 4294967295 (level 2)
[   51.940024][ T4654] EXT4-fs (loop3): 1 truncate cleaned up
[   51.946700][ T4654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.962006][ T4654] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.162590][ T4672] netlink: 8 bytes leftover after parsing attributes in process `syz.5.403'.
[   52.178904][   T29] kauditd_printk_skb: 787 callbacks suppressed
[   52.178927][   T29] audit: type=1326 audit(19849728.765:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f13b30e4127 code=0x7ffc0000
[   52.215763][ T4672] openvswitch: netlink: Message has 6 unknown bytes.
[   52.224220][ T3307] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.250435][   T29] audit: type=1326 audit(19849728.795:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f13b3089359 code=0x7ffc0000
[   52.273591][   T29] audit: type=1326 audit(19849728.795:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f13b30e4127 code=0x7ffc0000
[   52.296732][   T29] audit: type=1326 audit(19849728.795:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f13b3089359 code=0x7ffc0000
[   52.319871][   T29] audit: type=1326 audit(19849728.795:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f13b30e4127 code=0x7ffc0000
[   52.342970][   T29] audit: type=1326 audit(19849728.795:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f13b3089359 code=0x7ffc0000
[   52.366191][   T29] audit: type=1326 audit(19849728.795:1970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4614 comm="syz.2.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f13b30ed169 code=0x7ffc0000
[   52.389436][   T29] audit: type=1400 audit(19849728.835:1971): avc:  denied  { unlink } for  pid=3306 comm="syz-executor" name="file0" dev="tmpfs" ino=350 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   52.456626][ T4685] loop4: detected capacity change from 0 to 164
[   52.472215][   T29] audit: type=1400 audit(19849729.045:1972): avc:  denied  { listen } for  pid=4683 comm="syz.5.407" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   52.491566][   T29] audit: type=1400 audit(19849729.045:1973): avc:  denied  { write } for  pid=4683 comm="syz.5.407" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   52.553301][ T4685] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   52.590084][ T4685] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   52.645929][ T4704] netlink: 'syz.3.412': attribute type 10 has an invalid length.
[   52.653823][ T4704] netlink: 40 bytes leftover after parsing attributes in process `syz.3.412'.
[   53.037026][ T4753] loop5: detected capacity change from 0 to 512
[   53.049063][ T4753] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.421: bg 0: block 35: padding at end of block bitmap is not set
[   53.065092][ T4753] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   53.075467][ T4753] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.421: invalid indirect mapped block 4294967295 (level 1)
[   53.091045][ T4753] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.421: invalid indirect mapped block 4294967295 (level 2)
[   53.112984][ T4753] EXT4-fs (loop5): 1 truncate cleaned up
[   53.119563][ T4753] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.147979][ T4753] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.178296][ T4766] loop2: detected capacity change from 0 to 128
[   53.202034][ T4766] netlink: 3 bytes leftover after parsing attributes in process `syz.2.425'.
[   53.231900][ T4766] 0ªX¹¦À: renamed from caif0
[   53.245973][ T4766] 0ªX¹¦À: entered allmulticast mode
[   53.251345][ T4766] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   53.283066][ T4776] FAT-fs (loop2): error, invalid FAT chain (i_pos 548, last_block 8)
[   53.291316][ T4776] FAT-fs (loop2): Filesystem has been set read-only
[   53.302702][ T4776] FAT-fs (loop2): error, corrupted file size (i_pos 548, 522)
[   53.946254][ T4795] loop4: detected capacity change from 0 to 128
[   53.981422][ T4795] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   54.000208][ T4801] loop2: detected capacity change from 0 to 512
[   54.064323][ T4801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.167687][ T4817] netlink: 8 bytes leftover after parsing attributes in process `syz.4.436'.
[   54.190054][ T4817] openvswitch: netlink: Message has 6 unknown bytes.
[   54.208602][ T4824] loop5: detected capacity change from 0 to 512
[   54.217275][ T4824] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.438: bg 0: block 35: padding at end of block bitmap is not set
[   54.250143][ T4811] wireguard0: entered promiscuous mode
[   54.255715][ T4811] wireguard0: entered allmulticast mode
[   54.290651][ T4824] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   54.299655][ T4824] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.438: invalid indirect mapped block 4294967295 (level 1)
[   54.319274][ T4824] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.438: invalid indirect mapped block 4294967295 (level 2)
[   54.337195][ T4824] EXT4-fs (loop5): 1 truncate cleaned up
[   54.394937][ T3440] Process accounting resumed
[   54.445385][ T4857] loop5: detected capacity change from 0 to 128
[   54.502270][ T4853] loop2: detected capacity change from 0 to 512
[   54.533456][ T4853] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.444: bg 0: block 35: padding at end of block bitmap is not set
[   54.569556][ T4853] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   54.588212][ T4853] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.444: invalid indirect mapped block 4294967295 (level 1)
[   54.605016][ T4853] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.444: invalid indirect mapped block 4294967295 (level 2)
[   54.627024][ T4853] EXT4-fs (loop2): 1 truncate cleaned up
[   54.640687][ T4872] netlink: 'syz.3.451': attribute type 10 has an invalid length.
[   54.648534][ T4872] netlink: 40 bytes leftover after parsing attributes in process `syz.3.451'.
[   54.986594][ T4918] netlink: 'syz.2.467': attribute type 10 has an invalid length.
[   54.994440][ T4918] netlink: 40 bytes leftover after parsing attributes in process `syz.2.467'.
[   55.018691][ T4921] netlink: 24 bytes leftover after parsing attributes in process `syz.5.468'.
[   55.044166][ T4918] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[   55.063326][ T4926] netlink: 172 bytes leftover after parsing attributes in process `syz.5.469'.
[   55.074930][ T3378] Process accounting resumed
[   55.114847][ T4918] pim6reg: entered allmulticast mode
[   55.148837][ T4935] loop5: detected capacity change from 0 to 512
[   55.168155][ T4935] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.473: bg 0: block 35: padding at end of block bitmap is not set
[   55.209777][ T4935] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   55.250116][ T4935] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.473: invalid indirect mapped block 4294967295 (level 1)
[   55.272826][ T4935] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.473: invalid indirect mapped block 4294967295 (level 2)
[   55.287093][ T4935] EXT4-fs (loop5): 1 truncate cleaned up
[   55.300934][ T4949] loop3: detected capacity change from 0 to 512
[   55.316994][ T3440] Process accounting resumed
[   55.332383][ T4949] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.479: bg 0: block 35: padding at end of block bitmap is not set
[   55.350590][ T4949] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   55.362256][ T4949] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.479: invalid indirect mapped block 4294967295 (level 1)
[   55.389946][ T4949] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.479: invalid indirect mapped block 4294967295 (level 2)
[   55.392882][ T4958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.483'.
[   55.424624][ T4958] openvswitch: netlink: Message has 6 unknown bytes.
[   55.425383][ T4949] EXT4-fs (loop3): 1 truncate cleaned up
[   55.536973][ T4972] loop1: detected capacity change from 0 to 512
[   55.568990][ T4972] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.487: bg 0: block 35: padding at end of block bitmap is not set
[   55.590241][ T4972] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   55.605291][ T4972] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.487: invalid indirect mapped block 4294967295 (level 1)
[   55.620062][ T4972] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.487: invalid indirect mapped block 4294967295 (level 2)
[   55.634658][ T4972] EXT4-fs (loop1): 1 truncate cleaned up
[   55.676630][ T4983] loop2: detected capacity change from 0 to 512
[   55.686307][ T4983] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.492: bg 0: block 35: padding at end of block bitmap is not set
[   55.703930][ T3003] ==================================================================
[   55.712064][ T3003] BUG: KCSAN: data-race in dont_mount / step_into
[   55.718505][ T3003] 
[   55.720833][ T3003] read-write to 0xffff8881066f2240 of 4 bytes by task 3273 on cpu 0:
[   55.728909][ T3003]  dont_mount+0x2a/0x40
[   55.733086][ T3003]  vfs_unlink+0x298/0x430
[   55.737435][ T3003]  do_unlinkat+0x21b/0x4b0
[   55.741867][ T3003]  __x64_sys_unlink+0x2e/0x40
[   55.746568][ T3003]  x64_sys_call+0x2358/0x2e10
[   55.751256][ T3003]  do_syscall_64+0xc9/0x1c0
[   55.755778][ T3003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.761682][ T3003] 
[   55.764010][ T3003] read to 0xffff8881066f2240 of 4 bytes by task 3003 on cpu 1:
[   55.771559][ T3003]  step_into+0x128/0x860
[   55.775812][ T3003]  walk_component+0x178/0x240
[   55.780498][ T3003]  path_lookupat+0x103/0x2a0
[   55.785097][ T3003]  filename_lookup+0x14b/0x340
[   55.789882][ T3003]  do_readlinkat+0x8b/0x210
[   55.794401][ T3003]  __x64_sys_readlink+0x47/0x60
[   55.799281][ T3003]  x64_sys_call+0x2a81/0x2e10
[   55.803969][ T3003]  do_syscall_64+0xc9/0x1c0
[   55.808494][ T3003]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.814396][ T3003] 
[   55.816722][ T3003] value changed: 0x00300008 -> 0x00004008
[   55.822440][ T3003] 
[   55.824764][ T3003] Reported by Kernel Concurrency Sanitizer on:
[   55.830918][ T3003] CPU: 1 UID: 0 PID: 3003 Comm: udevd Not tainted 6.14.0-syzkaller-13524-gf4d2ef48250a #0 PREEMPT(voluntary) 
[   55.842559][ T3003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   55.852629][ T3003] ==================================================================
[   55.865398][ T4988] netlink: 8 bytes leftover after parsing attributes in process `syz.5.495'.
[   55.894073][ T4988] openvswitch: netlink: Message has 6 unknown bytes.
[   55.910496][ T4983] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   55.928920][ T4983] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.492: invalid indirect mapped block 4294967295 (level 1)
[   55.943219][ T4983] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.492: invalid indirect mapped block 4294967295 (level 2)
[   55.957815][ T4983] EXT4-fs (loop2): 1 truncate cleaned up