last executing test programs:

38.865068975s ago: executing program 4 (id=448):
r0 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f0000000180), 0x4, 0x244, &(0x7f0000000480)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x1a40cc4, &(0x7f0000000700)=ANY=[@ANYRESDEC, @ANYBLOB="4ffef8a5fe039b069f473594fba9121a07732b", @ANYRESOCT=r0, @ANYRES8, @ANYBLOB="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", @ANYBLOB="1263a7b959383aa0a9fa10796416da755d29640e5041a395796348a83463470c07de0fe7c8e02a1a743587f58ffb22bbd585d0a5cbead9ca0823180dad88e609da79bbd442bddae537570748f21ac461994ea7754a096f9d50951ef0a07c555e2e53a20f4a407feef4892391f639afa0eccda43b87b58452d42073ba989bbdec9a81948e1f0c9cb8c0ad00fccafaefa58aadfc71bbd61088", @ANYBLOB="77547978e38e320f50bdd7df6357e7a8eac28eee73777c072fd754ff16057c4e2e94ae273453a667bca27b6bdd65affb3803ebf3b88c6805d2406b0830f6ba368a4f959d1e93b3b617c35d41e33c2d799d769bf502bfee8ee67474dfe84f791a870ae5d57882d3fe3748f65b3fbdf78474d113f0714564a190767d604a29f9d4051978fcbe47fc8ee3827dc31da8e939b4a365e5ac431e456b9e5e23aa7a313ce8cb7243c088adde6504e1327d54d765f7d150f83c2b6ae51bfaf987c5f1761fb43ee4447c32322ea4256c729627e930e0b98e11cb", @ANYRES64, @ANYBLOB="14a8d0ca3386858350717bda500a6e0d271cba7c24404f4fdd13b1b5922dc27fae2bb7656c2c9cf00076db74ad9da398465c271f3c99f9c8b75aa628562a36eae8e60442812741be1793c1486650f74ba8ad8536070000000000000065f3bc92da1e56d7ffa95c91b5c58ba55f9245a209ef24b8348e9ff4cb9b84333e1a13"], 0xde, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000280)='./bus/file0\x00', 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg(r2, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
renameat2(r1, &(0x7f00000001c0)='./bus/file0\x00', r1, &(0x7f0000000140)='./file0\x00', 0x4)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r6, &(0x7f00000004c0)='./bus/file0\x00', r7, &(0x7f0000000500)='./file0\x00', 0x2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r8}, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x1)
syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)

38.755900705s ago: executing program 4 (id=452):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}, 0x1, 0x7000000}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x62, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

38.676748085s ago: executing program 4 (id=454):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
socket$packet(0x11, 0x3, 0x300)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$packet(0x11, 0xa, 0x300)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0xff, @remote, @local, {[], {{0x600, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
bind$inet6(r5, &(0x7f00000003c0)={0xa, 0x4e22, 0x1000, @local, 0x80000001}, 0x1c)
capset(&(0x7f0000000940)={0x19980330}, &(0x7f0000002100)={0x0, 0x0, 0x0, 0x7, 0x9, 0x100})
r6 = socket$pppoe(0x18, 0x1, 0x0)
fgetxattr(r6, &(0x7f0000000000)=@known='security.selinux\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='sys_enter\x00', r1}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdc0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r8, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
setfsgid(0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004"], 0x48}}, 0x40000)

38.547347574s ago: executing program 4 (id=460):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000940)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x3d)
unlink(&(0x7f0000000180)='./file1\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000ad39a52026890000181100007bced1238f975e47b43317ff61918018c31de0f93a920b541816ac086e0215cb08302892d4bfa41cb312a3", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f00000004c0)='./file0/../file0\x00', 0x89901)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x80700a, 0x0)
fstat(r0, &(0x7f0000000180))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket(0x2, 0x2, 0xfffffffe)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={<r6=>0x0, <r7=>0x0, <r8=>0x0}, &(0x7f0000cab000)=0xa)
setresgid(0x0, 0xffffffffffffffff, r8)
sendmsg$unix(r4, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@cred={{0x1c, 0x1, 0x2, {r6, r7, r8}}}], 0x20, 0x440c2}, 0x14)
statx(r3, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x1, &(0x7f00000003c0))
getegid()
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
io_uring_setup(0x77bb, &(0x7f00000000c0)={0x0, 0xd70d, 0x2000, 0xf7fffffe, 0x2000062})
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r9, &(0x7f0000000440)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r9, 0x0)

38.370725204s ago: executing program 4 (id=470):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000010, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000700000e0000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002600000000c0a01080000000000000000010000000900020073797a32000000003400038030000080080003400000000224000b80200001800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30"], 0xe4}}, 0x0)

37.748354571s ago: executing program 4 (id=481):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x98}}, 0x0)

37.694538631s ago: executing program 32 (id=481):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xf}]}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x801, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x98}}, 0x0)

6.511049045s ago: executing program 3 (id=1320):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000009a0000000080000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000700), 0x3, 0x0)
ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f0000000040))

6.367050835s ago: executing program 3 (id=1324):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000000)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x10001, 0xfffffffc}, {0x0}, &(0x7f0000000400)=[{&(0x7f0000002880)=""/4065, 0xfe1}], 0x1, 0x0, 0xffffffffffffffff}}], 0x48, 0x8001}, 0x0)

6.286071495s ago: executing program 3 (id=1329):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000480)={0x1, &(0x7f0000000440)=[{0x69, 0x0, 0xfe, 0x100}]})
r1 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @remote, 0x200}, 0x1c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0xe)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
listen(r1, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0xffffff18)
connect$inet(0xffffffffffffffff, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
accept4(r1, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_SEC_TRIM_FILE(0xffffffffffffffff, 0x4018f514, &(0x7f0000000180)={0x7, 0x9, 0x3})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYRESHEX=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r3}, 0x11)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000300)={0xa, 0x0, &(0x7f0000000400)={&(0x7f00000008c0)=ANY=[], 0x80}, 0x1, 0x7}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000600)=ANY=[@ANYBLOB="609c4ddfb36c6762c6042d8393a23d6220c931c1817d8fdecfb17d38e526ad7c8591237b30633804028c51b86bc2b046f1408a177465397fb6993d6c13d22359f29b234ad3f54b86e63664550bed0611a72b842fd8053fb053cce36a83981fba2f450a524b919b792b7684d934924c11a0c982473d6a0807cb6d"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$inet6(0xa, 0x3, 0xff)
bind$inet6(r6, &(0x7f0000000880)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)
connect$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x0, @mcast1}, 0x1c)
r7 = dup2(r6, r6)
write$P9_RSTATFS(r7, &(0x7f0000000380)={0x43, 0x9, 0x0, {0x0, 0xfffffffd, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x3, 0x4a}}, 0x43)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r8}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000083, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYRES8, @ANYRES64, @ANYRES16], 0x0, 0x23e, &(0x7f0000000bc0)="$eJzs3c9qE1EUB+AzSdqmukgWrkRwQBeuStsnSJEKYldKFupCi21BklCwEGgVQ1c+gU/ic7jxDXwAoTtdFEYmSZsWUm0wf0r9vk0uzP3NOTe5Iau5eX2n1dja3ds5/PA9yuUkCrWoJUcR1ShEbiEAgOvmV5bFUdYzWrJUmFRPAMBkXfL3f3GKLQEAE/bs+Ysnaxsb60/TtBzR+tSuJ9F77V1f24m30YztWI5KHEdkp3rjR4831qOU5qpxv9Vp1/Nk69XX/v3XfkR08ytRierw/Eracybfadfn4ka/fi3Pr0Ylbg3Prw7JR30+Htw70/9SVOLbm9iNZmxFnh3kP66k6cPs88/3L/OO83zSadcXuvMGsuLUPxwAAAAAAAAAAAAAAAAAAAAAAK6tpTRN0yz7kmVZ1jl3/k7xuHt9KT1RPX8+Ty9/0flAnTPn6yznJZLe/EG+FLdLUZrl2gEAAAAAAAAAAAAAAAAAAOCq2Ns/aGw2m9vvxjo4eax//Hf+10EU+601k4gr0E93sJj3M51ad2PEWrURS0Rh/6Bxsrsam0n8JVWe0CbJhmy/4oWp+TFVn7853lUkETF3+mb+aXIh5sb8TQEAAAAAAAAAAAAAAAAAAKZs8NDvkIuHM2gIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGZg8P//Iww6/fAlUzNeIgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP+B3wEAAP//bkR7Lg==")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)

6.111773174s ago: executing program 3 (id=1332):
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000002000000073119d000000000016000000000000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f00000004c0)={[{@auto_da_alloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$eJzs3T1oLFUYBuB3Zne95t5FrtoI4g+IiAbCtRNsYqMQkBBEBBUiIjZKIsQEu8TKxkJrlVQ2QeyMlpIm2CiCVdQUsRE0WBgstFiZnURisuLPxh1xngdmZ2b3nPnOMPOe3WbYAK11Nclskk6S6SS9JMXpBnfWy9Xj3c2p3cVkMHjsh2LYrt6vnfS7kmQjyQNJdsoiL3STte2nDn7ae+Se11d7d7+7/eTURE/y2OHB/qNH78y/9sHc/WufffHdfJHZ9H93XhevGPFet0hu+jeK/UcU3aZHwF+x8Mr7X1a5vznJXcP891KmvnhvrFy308t9b/9R3ze///zWSY4VuHiDQa/6DtwYAK1TJumnKGeS1NtlOTNT/4b/qnO5fHF55eXp55dXl55reqYCLko/2X/4o0sfXjmT/287df6B/68q/48vbH1dbR91mh4NMBG31asq/9PPrN8b+YfWkX9oL/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aK/T+QcA2mVwqeknkIGmND3/AAAAAAAAAAAAAAAAAAAA521O7S6eLJOq+clbyeFDSbqj6neG/0ecXD98vfxjUTX7TVF3G8vTd4x5gDG91/DT1zd802z9T29vtv76UrLxapJr3e75+684vv/+uRv/5PPes2MW+JuKM/sPPjHZ+mf9stVs/bm95ONq/rk2av4pc8twPXr+6VfXb8z6L/085gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYmF8DAAD//xFQbUc=")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f00000002c0)='./bus\x00', 0x0, 0x1000, 0x0)
r3 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r3, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x2000, 0x200000, 0xe)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000040000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0x100000000}, 0x18)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r5, 0x5)
r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r6, 0x1)
flock(r6, 0x2)
dup3(r6, r5, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3b, 0x1, 0x0, 0x0, 0x0, 0x89, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x2, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810100850000006d000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
fsetxattr$security_selinux(r7, &(0x7f0000000080), &(0x7f0000000140)='system_u:object_r:dhcp_state_t:s0\x00', 0x22, 0x400000000000000)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, &(0x7f0000000000)=0x3)

5.517991112s ago: executing program 3 (id=1340):
r0 = socket(0x10, 0x3, 0x0)
getsockopt(r0, 0x10e, 0xb, &(0x7f0000005d40)=""/44, &(0x7f0000005d80)=0x2c)
socket$inet6(0xa, 0x800000000000002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000540), 0xfffffdd8)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0xa031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffc000/0x1000)=nil)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
mlockall(0x6)
syz_emit_ethernet(0xa3, &(0x7f0000000100)={@random="8fb1c3d7c6ad", @remote, @void, {@generic={0x15, "4a9203560179e0d5338c91345c3c2857754f22e5d35b63c5d13ced9890444d00c3090aa5517122a91d50e653dd69000010ceff732b7b992a174e35a9f0d696c19718b1908247b6ce3fb2284e04bac062a08affbde553ea0d6eb42c843ae963ef2a387e35d3fa28fe765e2e8caefce5a7537c14cc6ec184535e59aee642bc5c2da091f4ca6a90ca74bc0f2a2dbc2305f07480264093"}}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r1 = msgget$private(0x0, 0x0)
msgctl$IPC_SET(r1, 0x1, 0x0)
msgrcv(r1, 0x0, 0x0, 0x1, 0x1000)
msgrcv(r1, 0x0, 0x0, 0x0, 0x0)
msgctl$IPC_SET(r1, 0x1, &(0x7f0000258f88)={{0x1}, 0x0, 0x0, 0x800000000000000, 0x7, 0x2, 0x0, 0x3, 0xe8, 0x0, 0x0, 0x0, 0xffffffffffffffff})
msgsnd(r1, &(0x7f0000000380)={0x1, "c7612fc6bdefa1485b744d38f21b6e33d1ef7cf4a528c87005745aa74f5231ea5583bcf09e517edb34d888943945d537f7b0b1d0c3efa41893eb49e1d535ec2d12ef41b9e65fefdb237dec89e9dd8936b00f2ed51840ef7cf0d8f6971d7fb78796d0b1de1496cf345d5e24a64a3009092c73c1fe17b668b9c396b981270497f567296fd82c44fee973785f4302e425f250c1564e199008320c12743a"}, 0xa4, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mlockall(0x5)
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', &(0x7f0000000100)='devpts\x00', 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000880)={0xa, 0x4e21, 0x100, @rand_addr=' \x01\x00', 0x9}, 0x1c)

4.727724968s ago: executing program 3 (id=1359):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000100)=ANY=[@ANYRESDEC=r0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x100)
utimes(0x0, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$can_raw(r2, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
pread64(r4, &(0x7f0000001240)=""/102400, 0x200000, 0x0)

4.688575729s ago: executing program 33 (id=1359):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000100)=ANY=[@ANYRESDEC=r0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x100)
utimes(0x0, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$can_raw(r2, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
pread64(r4, &(0x7f0000001240)=""/102400, 0x200000, 0x0)

1.677293396s ago: executing program 2 (id=1437):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095", @ANYBLOB="1800000000000000000000000000000018120000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x0, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x200000000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x12}, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
shutdown(r2, 0x2)
r3 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x4c, 0x0, 0x4)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x10, 0x0, 0x5, 0x62228, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_config_ext={0x7, 0x9}, 0x100208, 0x0, 0x0, 0x6, 0x40, 0x0, 0x4}, 0x0, 0xc, 0xffffffffffffffff, 0x8)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000000400"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000040000000000000000000009500000000"], &(0x7f0000000080)='GPL\x00', 0x9, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, r4, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200)={0x1, 0xfffffffe, 0x0, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000a40))
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
lseek(0xffffffffffffffff, 0xfffffffffffffffa, 0x500)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000440)=ANY=[], 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000001c0)={'pim6reg0\x00', &(0x7f0000000c40)=@ethtool_stats={0x1d, 0xa, [0x7f, 0x10002, 0x4, 0x7, 0xe2, 0x6, 0xac2, 0x8, 0x6, 0xc5]}})
r6 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYRES8=r6], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.634488526s ago: executing program 1 (id=1438):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x3, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x18, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.575467426s ago: executing program 1 (id=1440):
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$usbfs(&(0x7f0000000040), 0xc, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="0200a006002a17006000000002000020d3"])

1.498756596s ago: executing program 1 (id=1444):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0}, 0x18)

1.464394365s ago: executing program 1 (id=1445):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00'})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
recvmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000380), 0x80, &(0x7f0000000200), 0x0, &(0x7f00000008c0)=""/243, 0xf3}}], 0x1, 0x2060, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000200)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000004c0)={&(0x7f00000005c0)={0x160, r2, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x7, 0x52}}}}, [@mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x24, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "8ffedf097c45e55e8e07044fe548c04cb489799d7e57ac16"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "200ba8acb66643ea4532e2214b22df71823b85e505f6383f"}], @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x1c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0x160}}, 0x4c051)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)={0x2c, r9, 0xc4fc9e906872338b, 0x10000, 0x0, {{0x15}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x540)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8)
bind$bt_hci(r11, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r11, &(0x7f0000000100), 0x6)

1.414762015s ago: executing program 1 (id=1448):
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
close(0xffffffffffffffff)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca5b", 0x26)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000b4bffc), 0x4)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
getsockname$packet(r0, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000810"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000140))
timer_settime(r2, 0x1, &(0x7f0000000280)={{0x0, 0x989680}}, &(0x7f0000000380))
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000180)='cpu<-0\t||')
timer_settime(0x0, 0x0, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x20000000, 0x4000000000003, 0x2, @thr={0x0, 0x0}})

835.905703ms ago: executing program 2 (id=1467):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
syz_genetlink_get_family_id$fou(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3, &(0x7f0000000000)={[{@nogrpid}, {@noload}, {@noload}]}, 0x1, 0x626, &(0x7f0000000100)="$eJzs3c1vVOUaAPDnTKff994WcnOvuJAmxkCitLSCIcZE2BOCHzvdVFoIUiihNVoksSS4MRo3LkxcuRD/CpXErf+ACzeuDAkxhoUYImPOzDll2s5MP6endH6/5NDz0TnvM6VPn3feec+cADrWSPpPKeJARFxNIobqjpUjOzhS+777f9w4ly5JVCpv/J7EjY+SxfpzJdnXfdmD/x6KJH34/onvVrU7t3D90uTMzPS1bHts/vLVsbmF60cuXp68MH1h+srESxMnjh87fmL86NafX+b0rXffH/rkzFvffPUwGf/2lzNJnIxHXbVj6fNa+djeLbWctj0SlZoH9fvTn+uJLZ57t/hzKP89yfVHUi4sHDbofPb72B0R/4+h6Kr73xyKj18rNDigrSpJ5DUK6DjJpvK/b/sDAXZY3g/IX9s3eh28WqnNvRJgJ9w7VRsAqOV+d0Tk+V/Oxs76qmMDA/eTZeM8SURsbWSuJm3jpx/P3EqXaDIOB7TH4s3ebNx+Zf1Pqrk5HH3VrYH7pWX5X6pb0v2vb7L9kRXb8h92zuLNiHgqq/898Tj/a2/7tcz/kbr8f2eT7ct/AAAAAAAA2D53TkXEC43m/5WW5v/0NJj/MxgRJ7eh/bXf/yvdzVaSbWgOqHPvVMQrDef/Ls3xHe7Ktv5dnQ/QnZy/ODN9NCL+ExGHo7s33R5fcd76GcJHPtv/ZbP26+f/pUvafj4XMDvT3fKKC3GnJucnt/q8gYh7NyOers7/PZjtWT7/L63/SYP6n+b31XW2sf+522ebHVs7/4F2qXwdcahh/X/c3U5afz7HWLU/MJb3CnKPewDPfPj5983al/9QnLT+D7TO/96k/vN65iIWN3D+noh4caFcaXZ8s/3/nuTNrvz8qQ8m5+evjUf0JKdX75/YQMCwh+X5kOdLmv+Hn209/rfU/6/Lw/5o8HegyQjd/x4N/tosHvUfipPm/1Tr+j+8vP5vYCU/xe3hH5q1f3Zd9f9YtaYfzvYY/4N6qz+PY72ZWki4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPCEK0XEvyIpjS6tl0qjoxGDEfHfGCjNzM7NP39+9r0rU+mx6v3/S/mdfodq20l+///huu2J5dv9aVv7IuKLrv7q8dFzszNTRT95AAAAAAAAAAAAAAAAAAAA2CUGq9f8V3pXXv+f+q2r6OiAtitnX+U7dJ4s/z99e8OPrPRufzTATioXHQBQmPXnf3db4wB2XvP8f/CwUrWj4QA7SP8fOtcm89/bBbAHqP/QqdY5ptfX7jiAIqj/AAAAAACwp+w7eOfnJCIWX+6vLqme7JjJ/rC3lYoOACiMObzQucqzRUcAFMVrfCBZWvur4cX+zWf/J+0JCAAAAAAAAAAAAABY5dAB1/9Dp2p9/b+5/bCXtbj+v5r85XV/O/CkaX7rD7Uf9rqVr/HrCrwbfkGHWKvau/4fAAAAAAAAAAAAAHaBvuuXJmdmpq/NLTx5K6/ujjA2trI4ueb3dMfuCLXVSn9ELO151J62uiNi+89cLvpHt46V/CM4Cgyj4L9LAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAkn8CAAD//0vxInQ=")

828.947002ms ago: executing program 5 (id=1468):
r0 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f0000000180), 0x4, 0x244, &(0x7f0000000480)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x1a40cc4, &(0x7f0000000700)=ANY=[@ANYRESDEC, @ANYBLOB="4ffef8a5fe039b069f473594fba9121a07732b", @ANYRESOCT=r0, @ANYRES8, @ANYBLOB="bab44e31f8deff1431e4636edd55f637aed9cafb33edf184a7cb1b0eba595affa9bf118a3444c4520a835f62d434ace1ccb1260ab47dfca4666b9b6a9eb0708af98c10a39bea9e5f1a3d1796dc418aba8b0800be64a012c5fe91ae8558f6594ccc0c903163045e8699ece57e70d8b03f7f9acdad754bfb0d2fda181cfcc2b9270bfab8d1a5bf11dcffb41587b97fba268864cc697e5ac812657ead20fe2b57c4c6362910cfee7f936f06c9108967c96c2cf29723a9746c91490e63a16c4480dc70d0a7105d832fc334caadfae31a67edf1ac56ca4cc7b85ca295f89a346730ef87fc89443f397b16087ae9b53e13803b4dcba22cf6af052e86c22ce41332251938493c45a5419eaf9ffcb4ed18ad875ba11b64e471656c98d0677945f509f3704c5dd43a02e7d3a9240dfb090b6d843ce48a250f29acda15a369b29e328aa16c692823ad29fca897c88fbeef9a09d5b5c163cf7b", @ANYBLOB="1263a7b959383aa0a9fa10796416da755d29640e5041a395796348a83463470c07de0fe7c8e02a1a743587f58ffb22bbd585d0a5cbead9ca0823180dad88e609da79bbd442bddae537570748f21ac461994ea7754a096f9d50951ef0a07c555e2e53a20f4a407feef4892391f639afa0eccda43b87b58452d42073ba989bbdec9a81948e1f0c9cb8c0ad00fccafaefa58aadfc71bbd61088", @ANYBLOB="77547978e38e320f50bdd7df6357e7a8eac28eee73777c072fd754ff16057c4e2e94ae273453a667bca27b6bdd65affb3803ebf3b88c6805d2406b0830f6ba368a4f959d1e93b3b617c35d41e33c2d799d769bf502bfee8ee67474dfe84f791a870ae5d57882d3fe3748f65b3fbdf78474d113f0714564a190767d604a29f9d4051978fcbe47fc8ee3827dc31da8e939b4a365e5ac431e456b9e5e23aa7a313ce8cb7243c088adde6504e1327d54d765f7d150f83c2b6ae51bfaf987c5f1761fb43ee4447c32322ea4256c729627e930e0b98e11cb", @ANYRES64, @ANYBLOB="14a8d0ca3386858350717bda500a6e0d271cba7c24404f4fdd13b1b5922dc27fae2bb7656c2c9cf00076db74ad9da398465c271f3c99f9c8b75aa628562a36eae8e60442812741be1793c1486650f74ba8ad8536070000000000000065f3bc92da1e56d7ffa95c91b5c58ba55f9245a209ef24b8348e9ff4cb9b84333e1a13"], 0xde, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000280)='./bus/file0\x00', 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg(r2, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
renameat2(r1, &(0x7f00000001c0)='./bus/file0\x00', r1, &(0x7f0000000140)='./file0\x00', 0x4)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r6, &(0x7f00000004c0)='./bus/file0\x00', r7, &(0x7f0000000500)='./file0\x00', 0x2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r8}, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x1)
syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)

809.387273ms ago: executing program 6 (id=1469):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0}, 0x18)

719.687362ms ago: executing program 6 (id=1472):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000005c0)='kfree\x00', r4, 0x0, 0x2}, 0x18)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

654.249902ms ago: executing program 5 (id=1473):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x70bf2c, 0x25dfdbfd}, 0x1c}, 0x1, 0x0, 0x0, 0x8081}, 0x44)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0x1, 0x58, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0}}, 0x10)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000180)={'tunl0\x00', <r4=>0x0, 0x10, 0x20, 0x2, 0x9, {{0x14, 0x4, 0x1, 0x4, 0x50, 0x66, 0x0, 0x5, 0x29, 0x0, @remote, @rand_addr=0x64010101, {[@ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0xc, 0x9, 0x3, 0xd, [{@multicast1, 0x3}]}, @lsrr={0x83, 0xb, 0xa1, [@multicast2, @remote]}, @generic={0x82, 0xa, "87ee6d7023e606c1"}, @rr={0x7, 0x13, 0x40, [@remote, @multicast1, @empty, @multicast2]}, @noop]}}}}})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r0, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x9c, r2, 0x0, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x1}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x8}, @ETHTOOL_A_CHANNELS_TX_COUNT={0x8, 0x7, 0x8}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x3}, @ETHTOOL_A_CHANNELS_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4040081}, 0x2000c094)

629.294212ms ago: executing program 2 (id=1474):
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{0x0}], 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
socket$tipc(0x1e, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000076000018110000", @ANYRES8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r2, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
pipe2$9p(&(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_tos={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x20)
truncate(&(0x7f0000000040)='./file0\x00', 0xff8c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)

609.773682ms ago: executing program 2 (id=1475):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x3, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x18, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

597.246642ms ago: executing program 5 (id=1477):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x1c, 0x2, 0x3, 0x5, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000a00)={0x14, 0x1, 0x3, 0x301, 0x0, 0x0, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x81}, 0x4080)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r1}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x1f0a3cbb, 0x3, 0x7, 0x30112, 0x1, 0xe4b7, '\x00', r2, 0xffffffffffffffff, 0x4, 0x0, 0x3, 0x6, @void, @value, @value=r3}, 0x50)
prctl$PR_SET_NAME(0xf, &(0x7f0000000080)='+}[@\x00')
pipe2(&(0x7f0000001cc0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB="2c756e616d653dd0"])
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r6}, 0x0, &(0x7f0000000040)}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1e, 0x1, &(0x7f0000000280)=@raw=[@call={0x85, 0x0, 0x0, 0x96}], &(0x7f0000000380)='syzkaller\x00', 0x1ff, 0x1000, &(0x7f0000000bc0)=""/4096, 0x41100, 0x40, '\x00', r2, @sk_lookup=0x24, r4, 0x8, &(0x7f0000000400)={0x6, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x5, 0x8, 0x1ff, 0x2}, 0x10, 0xffffffffffffffff, r7, 0x5, 0x0, &(0x7f0000000500)=[{0x5, 0x1, 0xe, 0xc}, {0x0, 0x1, 0x4, 0x7}, {0x4, 0x5, 0x8, 0xc}, {0x0, 0x3, 0xc, 0x2}, {0x3, 0x4, 0x10, 0x5}], 0x10, 0xfffffffb, @void, @value}, 0x94)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000200)={0x6, 0xa, 0x2, 0x7f, 0x0, [@empty, @ipv4={'\x00', '\xff\xff', @broadcast}, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}, @private0]}, 0x58)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000300240248ff050005001200", 0x2e}], 0x1}, 0x0)

579.601762ms ago: executing program 6 (id=1478):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)=@ipv6_delroute={0x28, 0x19, 0x200, 0x70bd27, 0x25dfdbfb, {0xa, 0x80, 0x30, 0x5, 0xfc, 0x2, 0xc8, 0x4, 0x3a00}, [@RTA_ENCAP={0xc, 0x16, 0x0, 0x1, @LWTUNNEL_IP_DST={0x8, 0x2, @broadcast}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000040}, 0x20000000)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000100)={@empty}, 0x14)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14)
r3 = syz_open_procfs(0x0, &(0x7f00000006c0)='net/anycast6\x00')
lseek(r3, 0x7fffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x24, 0x0, 0xb, 0x101, 0x0, 0x0, {0x3, 0x0, 0x8}, [@NFTA_COMPAT_REV={0x8}, @NFTA_COMPAT_NAME={0x8, 0x1, 'jfs\x00'}]}, 0x24}}, 0x1800)
r5 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6d89, 0x8}, &(0x7f00000000c0), &(0x7f0000000240))
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r5, 0x18, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x6, {0x1, 0x8000000000000001}, 0x54}, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newlink={0x34, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x44b, 0x18003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}}, 0x0)

542.738432ms ago: executing program 0 (id=1479):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
connect$unix(0xffffffffffffffff, 0x0, 0x0)

524.524902ms ago: executing program 1 (id=1480):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095", @ANYBLOB="1800000000000000000000000000000018120000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x0, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x200000000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x12}, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
shutdown(r2, 0x2)
r3 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x4c, 0x0, 0x4)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x10, 0x0, 0x5, 0x62228, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_config_ext={0x7, 0x9}, 0x100208, 0x0, 0x0, 0x6, 0x40, 0x0, 0x4}, 0x0, 0xc, 0xffffffffffffffff, 0x8)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000000400"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000040000000000000000000009500000000"], &(0x7f0000000080)='GPL\x00', 0x9, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, r4, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200)={0x1, 0xfffffffe, 0x0, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000a40))
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
lseek(0xffffffffffffffff, 0xfffffffffffffffa, 0x500)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000440)=ANY=[], 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000001c0)={'pim6reg0\x00', &(0x7f0000000c40)=@ethtool_stats={0x1d, 0xa, [0x7f, 0x10002, 0x4, 0x7, 0xe2, 0x6, 0xac2, 0x8, 0x6, 0xc5]}})
r6 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYRES8=r6], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

324.755111ms ago: executing program 0 (id=1481):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r6}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f000000a3c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x70bd2c, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {}, {0xa}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_TBF={0x3c, 0x1, {0x2, 0x0, 0x6, 0x800, 0x400, {0x2, 0x1, 0x2, 0x90, 0x9, 0xf5}, {0x6, 0x1, 0x9, 0xb, 0xd5f1}, 0x6, 0x10000, 0x7}}, @TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x4, 0x7, 0x1000, 0x6, 0x8, 0x2, 0x6, 0x7f, 0x7, 0x7, 0x2, 0x8, 0x1000000, 0x5, 0x76fd, 0x3, 0x39d, 0xffffff90, 0x2, 0x4, 0x4, 0x39570808, 0xa, 0xb3c, 0x1, 0x6, 0xffffffff, 0x35e5, 0x1e, 0x10, 0x19, 0xfe, 0x93, 0xfffffeff, 0x10001, 0x4, 0x800, 0x5, 0x2, 0xff, 0x9, 0x1, 0x2, 0xaa8, 0x84a, 0x1, 0x0, 0xfa4a, 0x1000, 0x8, 0x3ff, 0x2, 0xb, 0x0, 0x5, 0x8, 0x3, 0x5, 0xd, 0x7, 0x100, 0x5, 0x1, 0xe0000, 0x6, 0xc3bf16e, 0x2, 0x0, 0x7fffffff, 0x0, 0x2, 0xc0, 0x6, 0x8cf, 0xa, 0x4, 0x101, 0x7fffffff, 0x82, 0xfffff202, 0x2, 0x5b, 0xfffffffd, 0x0, 0xffffff00, 0x8, 0xfff, 0x7fff, 0x2, 0xfffff3fc, 0x51, 0x1, 0x4, 0xc, 0x5, 0x47, 0x2e, 0xfb8a, 0x80, 0xc0000000, 0x5, 0x0, 0xd0, 0x6, 0x6, 0x100, 0x1, 0x8, 0x2, 0x3735, 0x0, 0x5, 0x2d5, 0xa, 0x8, 0x6, 0x4, 0x0, 0x7, 0x1, 0x5, 0x35, 0x5, 0x4, 0x7, 0x0, 0x10000, 0x8, 0x67ec6f6a, 0xffffffff, 0x5, 0x6, 0x800, 0x3, 0x2, 0x1, 0x1000, 0xee5d, 0x4, 0x8, 0x1000, 0x3ff, 0x3, 0x4, 0x80000001, 0x6, 0xffff, 0x8, 0xfffffff1, 0x56f1, 0x9, 0x401, 0x6, 0x8, 0x6, 0x4, 0x10, 0x3, 0x0, 0x5, 0xe, 0x3, 0x8, 0x9, 0xb6, 0x6, 0xf, 0x2, 0x5, 0x10000, 0x218e, 0x3, 0xa, 0x8001, 0xff8, 0x0, 0x1, 0x7fffffff, 0x0, 0xeb6c, 0xc0000, 0x1, 0x81, 0x2, 0x5, 0x8001, 0x4, 0x4, 0x4, 0x1, 0x401, 0x0, 0x7, 0x0, 0x2, 0xffff, 0x0, 0x6, 0x8001, 0x7, 0xf, 0x7f, 0x1, 0x8, 0x9, 0x0, 0x1, 0x5, 0x8, 0x80000000, 0x7fff, 0x8e, 0x7, 0x8, 0x7fffffff, 0x6, 0x3ff, 0x2, 0x1, 0xb40, 0x2, 0x6a6, 0x7, 0x0, 0xe, 0x2094, 0xd502, 0xffff, 0xfffffffb, 0x6, 0x1, 0x3d, 0x9, 0x8, 0x1, 0x800, 0x4, 0x81, 0x1, 0x7fc0, 0x7, 0x1800, 0x0, 0x10001, 0xffff, 0x1b5, 0x8, 0x5, 0x7ff, 0xfffffffd, 0x14, 0x258f10db, 0x5, 0xd, 0x5]}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x3}}]}, 0x480}, 0x1, 0x0, 0x0, 0x40}, 0x0)

324.273621ms ago: executing program 6 (id=1482):
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = syz_open_dev$usbfs(&(0x7f0000000040), 0xc, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="0200a006002a17006000000002000020d3"])

279.300581ms ago: executing program 2 (id=1483):
r0 = syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2200054, &(0x7f0000000180), 0x4, 0x244, &(0x7f0000000480)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x1a40cc4, &(0x7f0000000700)=ANY=[@ANYRESDEC, @ANYBLOB="4ffef8a5fe039b069f473594fba9121a07732b", @ANYRESOCT=r0, @ANYRES8, @ANYBLOB="bab44e31f8deff1431e4636edd55f637aed9cafb33edf184a7cb1b0eba595affa9bf118a3444c4520a835f62d434ace1ccb1260ab47dfca4666b9b6a9eb0708af98c10a39bea9e5f1a3d1796dc418aba8b0800be64a012c5fe91ae8558f6594ccc0c903163045e8699ece57e70d8b03f7f9acdad754bfb0d2fda181cfcc2b9270bfab8d1a5bf11dcffb41587b97fba268864cc697e5ac812657ead20fe2b57c4c6362910cfee7f936f06c9108967c96c2cf29723a9746c91490e63a16c4480dc70d0a7105d832fc334caadfae31a67edf1ac56ca4cc7b85ca295f89a346730ef87fc89443f397b16087ae9b53e13803b4dcba22cf6af052e86c22ce41332251938493c45a5419eaf9ffcb4ed18ad875ba11b64e471656c98d0677945f509f3704c5dd43a02e7d3a9240dfb090b6d843ce48a250f29acda15a369b29e328aa16c692823ad29fca897c88fbeef9a09d5b5c163cf7b", @ANYBLOB="1263a7b959383aa0a9fa10796416da755d29640e5041a395796348a83463470c07de0fe7c8e02a1a743587f58ffb22bbd585d0a5cbead9ca0823180dad88e609da79bbd442bddae537570748f21ac461994ea7754a096f9d50951ef0a07c555e2e53a20f4a407feef4892391f639afa0eccda43b87b58452d42073ba989bbdec9a81948e1f0c9cb8c0ad00fccafaefa58aadfc71bbd61088", @ANYBLOB="77547978e38e320f50bdd7df6357e7a8eac28eee73777c072fd754ff16057c4e2e94ae273453a667bca27b6bdd65affb3803ebf3b88c6805d2406b0830f6ba368a4f959d1e93b3b617c35d41e33c2d799d769bf502bfee8ee67474dfe84f791a870ae5d57882d3fe3748f65b3fbdf78474d113f0714564a190767d604a29f9d4051978fcbe47fc8ee3827dc31da8e939b4a365e5ac431e456b9e5e23aa7a313ce8cb7243c088adde6504e1327d54d765f7d150f83c2b6ae51bfaf987c5f1761fb43ee4447c32322ea4256c729627e930e0b98e11cb", @ANYRES64, @ANYBLOB="14a8d0ca3386858350717bda500a6e0d271cba7c24404f4fdd13b1b5922dc27fae2bb7656c2c9cf00076db74ad9da398465c271f3c99f9c8b75aa628562a36eae8e60442812741be1793c1486650f74ba8ad8536070000000000000065f3bc92da1e56d7ffa95c91b5c58ba55f9245a209ef24b8348e9ff4cb9b84333e1a13"], 0xde, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000280)='./bus/file0\x00', 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg(r2, &(0x7f0000003b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
renameat2(r1, &(0x7f00000001c0)='./bus/file0\x00', r1, &(0x7f0000000140)='./file0\x00', 0x4)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r6, &(0x7f00000004c0)='./bus/file0\x00', r7, &(0x7f0000000500)='./file0\x00', 0x2)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r8}, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x1)
syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)

231.338161ms ago: executing program 0 (id=1484):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
syz_genetlink_get_family_id$fou(0x0, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x3, &(0x7f0000000000)={[{@nogrpid}, {@noload}, {@noload}]}, 0x1, 0x626, &(0x7f0000000100)="$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")

208.42756ms ago: executing program 5 (id=1485):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={0x0, r0}, 0x18)

143.47137ms ago: executing program 5 (id=1486):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1218088, &(0x7f00000001c0)=ANY=[], 0x6, 0x2c2, &(0x7f00000008c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r0}, 0x10)
rename(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

142.75719ms ago: executing program 0 (id=1487):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000005c0)='kfree\x00', r4, 0x0, 0x2}, 0x18)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

120.135ms ago: executing program 2 (id=1488):
bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095", @ANYBLOB="1800000000000000000000000000000018120000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x0, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x200000000000005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x12}, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
shutdown(r2, 0x2)
r3 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x4c, 0x0, 0x4)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x10, 0x0, 0x5, 0x62228, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, @perf_config_ext={0x7, 0x9}, 0x100208, 0x0, 0x0, 0x6, 0x40, 0x0, 0x4}, 0x0, 0xc, 0xffffffffffffffff, 0x8)
r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000000400"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000040000000000000000000009500000000"], &(0x7f0000000080)='GPL\x00', 0x9, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, r4, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200)={0x1, 0xfffffffe, 0x0, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000a40))
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
lseek(0xffffffffffffffff, 0xfffffffffffffffa, 0x500)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000440)=ANY=[], 0x0) (fail_nth: 3)
r5 = socket$key(0xf, 0x3, 0x2)
socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000001c0)={'pim6reg0\x00', &(0x7f0000000c40)=@ethtool_stats={0x1d, 0xa, [0x7f, 0x10002, 0x4, 0x7, 0xe2, 0x6, 0xac2, 0x8, 0x6, 0xc5]}})
r6 = socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYRES8=r6], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

106.61963ms ago: executing program 6 (id=1489):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$selinux_relabel(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000700), 0x3, 0x0)
ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f0000000040))

62.071359ms ago: executing program 6 (id=1490):
r0 = syz_io_uring_setup(0x233, &(0x7f0000000140)={0x0, 0x0, 0x10100}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, 0x0, 0x1})
io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0)

61.32716ms ago: executing program 0 (id=1491):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f000000a3c0)=@newtfilter={0x480, 0x2c, 0xd27, 0x70bd2c, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {}, {0xa}}, [@filter_kind_options=@f_flow={{0x9}, {0x448, 0x2, [@TCA_FLOW_POLICE={0x444, 0xa, 0x0, 0x1, [@TCA_POLICE_TBF={0x3c, 0x1, {0x2, 0x0, 0x6, 0x800, 0x400, {0x2, 0x1, 0x2, 0x90, 0x9, 0xf5}, {0x6, 0x1, 0x9, 0xb, 0xd5f1}, 0x6, 0x10000, 0x7}}, @TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x4, 0x7, 0x1000, 0x6, 0x8, 0x2, 0x6, 0x7f, 0x7, 0x7, 0x2, 0x8, 0x1000000, 0x5, 0x76fd, 0x3, 0x39d, 0xffffff90, 0x2, 0x4, 0x4, 0x39570808, 0xa, 0xb3c, 0x1, 0x6, 0xffffffff, 0x35e5, 0x1e, 0x10, 0x19, 0xfe, 0x93, 0xfffffeff, 0x10001, 0x4, 0x800, 0x5, 0x2, 0xff, 0x9, 0x1, 0x2, 0xaa8, 0x84a, 0x1, 0x0, 0xfa4a, 0x1000, 0x8, 0x3ff, 0x2, 0xb, 0x0, 0x5, 0x8, 0x3, 0x5, 0xd, 0x7, 0x100, 0x5, 0x1, 0xe0000, 0x6, 0xc3bf16e, 0x2, 0x0, 0x7fffffff, 0x0, 0x2, 0xc0, 0x6, 0x8cf, 0xa, 0x4, 0x101, 0x7fffffff, 0x82, 0xfffff202, 0x2, 0x5b, 0xfffffffd, 0x0, 0xffffff00, 0x8, 0xfff, 0x7fff, 0x2, 0xfffff3fc, 0x51, 0x1, 0x4, 0xc, 0x5, 0x47, 0x2e, 0xfb8a, 0x80, 0xc0000000, 0x5, 0x0, 0xd0, 0x6, 0x6, 0x100, 0x1, 0x8, 0x2, 0x3735, 0x0, 0x5, 0x2d5, 0xa, 0x8, 0x6, 0x4, 0x0, 0x7, 0x1, 0x5, 0x35, 0x5, 0x4, 0x7, 0x0, 0x10000, 0x8, 0x67ec6f6a, 0xffffffff, 0x5, 0x6, 0x800, 0x3, 0x2, 0x1, 0x1000, 0xee5d, 0x4, 0x8, 0x1000, 0x3ff, 0x3, 0x4, 0x80000001, 0x6, 0xffff, 0x8, 0xfffffff1, 0x56f1, 0x9, 0x401, 0x6, 0x8, 0x6, 0x4, 0x10, 0x3, 0x0, 0x5, 0xe, 0x3, 0x8, 0x9, 0xb6, 0x6, 0xf, 0x2, 0x5, 0x10000, 0x218e, 0x3, 0xa, 0x8001, 0xff8, 0x0, 0x1, 0x7fffffff, 0x0, 0xeb6c, 0xc0000, 0x1, 0x81, 0x2, 0x5, 0x8001, 0x4, 0x4, 0x4, 0x1, 0x401, 0x0, 0x7, 0x0, 0x2, 0xffff, 0x0, 0x6, 0x8001, 0x7, 0xf, 0x7f, 0x1, 0x8, 0x9, 0x0, 0x1, 0x5, 0x8, 0x80000000, 0x7fff, 0x8e, 0x7, 0x8, 0x7fffffff, 0x6, 0x3ff, 0x2, 0x1, 0xb40, 0x2, 0x6a6, 0x7, 0x0, 0xe, 0x2094, 0xd502, 0xffff, 0xfffffffb, 0x6, 0x1, 0x3d, 0x9, 0x8, 0x1, 0x800, 0x4, 0x81, 0x1, 0x7fc0, 0x7, 0x1800, 0x0, 0x10001, 0xffff, 0x1b5, 0x8, 0x5, 0x7ff, 0xfffffffd, 0x14, 0x258f10db, 0x5, 0xd, 0x5]}]}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0x3}}]}, 0x480}, 0x1, 0x0, 0x0, 0x40}, 0x0)

3.769949ms ago: executing program 5 (id=1492):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000400)={'batadv0\x00', <r4=>0x0})
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x30, r2, 0x3196aee33d918dfd, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8}]}, 0x30}}, 0x0)

0s ago: executing program 0 (id=1493):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x3, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x18, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

kernel console output (not intermixed with test programs):

me="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   56.471397][ T5249] EXT4-fs (loop1): mount failed
[   56.732419][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.876089][ T5283] loop3: detected capacity change from 0 to 1024
[   56.898798][ T5283] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   56.905067][ T5285] netlink: 36 bytes leftover after parsing attributes in process `syz.2.644'.
[   56.909694][ T5283] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   56.929522][ T5286] syz.1.651[5286] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.929593][ T5286] syz.1.651[5286] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.942938][ T5286] syz.1.651[5286] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   56.954647][ T5283] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: inode #32: comm syz.3.650: iget: special inode unallocated
[   56.981238][ T5283] EXT4-fs (loop3): no journal found
[   56.986476][ T5283] EXT4-fs (loop3): can't get journal size
[   56.993898][ T5283] EXT4-fs error (device loop3): ext4_protect_reserved_inode:160: inode #32: comm syz.3.650: iget: special inode unallocated
[   57.007864][ T5283] EXT4-fs (loop3): failed to initialize system zone (-117)
[   57.012242][    C1] hrtimer: interrupt took 45286 ns
[   57.015360][ T5283] EXT4-fs (loop3): mount failed
[   57.266343][ T5305] loop3: detected capacity change from 0 to 512
[   57.465218][ T5227] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.546154][ T5227] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.652226][ T5227] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.664294][ T5329] loop2: detected capacity change from 0 to 128
[   57.691648][ T5329] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   57.711165][ T5329] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.736306][ T5227] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.752785][ T5227] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.762215][ T3300] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   57.777750][ T5227] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.810897][ T5227] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.874094][ T5351] FAULT_INJECTION: forcing a failure.
[   57.874094][ T5351] name failslab, interval 1, probability 0, space 0, times 0
[   57.886841][ T5351] CPU: 0 UID: 0 PID: 5351 Comm: syz.2.679 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   57.897458][ T5351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.907545][ T5351] Call Trace:
[   57.910840][ T5351]  <TASK>
[   57.913785][ T5351]  dump_stack_lvl+0xf2/0x150
[   57.918410][ T5351]  dump_stack+0x15/0x1a
[   57.922670][ T5351]  should_fail_ex+0x223/0x230
[   57.922851][ T5356] netlink: 4 bytes leftover after parsing attributes in process `syz.3.682'.
[   57.927451][ T5351]  should_failslab+0x8f/0xb0
[   57.941037][ T5351]  kmem_cache_alloc_noprof+0x52/0x320
[   57.946492][ T5351]  ? security_file_alloc+0x32/0x100
[   57.951806][ T5351]  security_file_alloc+0x32/0x100
[   57.956872][ T5351]  init_file+0x5b/0x1b0
[   57.961122][ T5351]  alloc_empty_file+0xea/0x200
[   57.965917][ T5351]  alloc_file_pseudo+0xc3/0x140
[   57.970862][ T5351]  __shmem_file_setup+0x1bb/0x1f0
[   57.975973][ T5351]  shmem_file_setup+0x3b/0x50
[   57.980669][ T5351]  __se_sys_memfd_create+0x31d/0x5c0
[   57.986017][ T5351]  __x64_sys_memfd_create+0x31/0x40
[   57.991272][ T5351]  x64_sys_call+0x2d4c/0x2dc0
[   57.995972][ T5351]  do_syscall_64+0xc9/0x1c0
[   58.000562][ T5351]  ? clear_bhb_loop+0x55/0xb0
[   58.005254][ T5351]  ? clear_bhb_loop+0x55/0xb0
[   58.009944][ T5351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.015863][ T5351] RIP: 0033:0x7f9d81595d29
[   58.020317][ T5351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.040053][ T5351] RSP: 002b:00007f9d7fc06d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   58.048536][ T5351] RAX: ffffffffffffffda RBX: 00000000000005cf RCX: 00007f9d81595d29
[   58.056593][ T5351] RDX: 00007f9d7fc06dec RSI: 0000000000000000 RDI: 00007f9d81612469
[   58.064572][ T5351] RBP: 0000000020000240 R08: 00007f9d7fc06b07 R09: 0000000000000000
[   58.072556][ T5351] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   58.080564][ T5351] R13: 00007f9d7fc06dec R14: 00007f9d7fc06df0 R15: 00007ffd3e9246d8
[   58.088592][ T5351]  </TASK>
[   58.135807][ T5362] IPVS: length: 93 != 24
[   58.139535][ T5356] ALSA: seq fatal error: cannot create timer (-22)
[   58.148462][ T5356] netlink: 4 bytes leftover after parsing attributes in process `syz.3.682'.
[   58.185532][ T5367] netlink: 4 bytes leftover after parsing attributes in process `syz.0.686'.
[   58.242248][ T5367] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.249707][ T5367] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.261682][ T5367] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.269265][ T5367] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.337647][ T5374] loop1: detected capacity change from 0 to 8192
[   58.346346][ T5378] loop3: detected capacity change from 0 to 2048
[   58.410017][ T5378]  loop3: p2 p3 < > p4 < >
[   58.414497][ T5378] loop3: partition table partially beyond EOD, truncated
[   58.426839][ T5378] loop3: p2 start 16908804 is beyond EOD, truncated
[   58.433565][ T5378] loop3: p3 start 4284289 is beyond EOD, truncated
[   58.503446][ T5390] IPVS: length: 93 != 24
[   58.538080][ T3774] udevd[3774]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   58.538320][ T5398] 9pnet_fd: Insufficient options for proto=fd
[   58.638585][ T5402] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   58.782183][ T5424] IPVS: length: 93 != 24
[   58.840645][ T5429] can: request_module (can-proto-3) failed.
[   58.870590][ T5432] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   58.936902][ T5438] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   58.965258][ T5438] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   58.990873][ T5432] vhci_hcd: invalid port number 254
[   58.996124][ T5432] vhci_hcd: invalid port number 254
[   59.106714][ T5457] IPVS: length: 93 != 24
[   59.203170][ T5465] loop2: detected capacity change from 0 to 512
[   59.447009][ T5469] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   59.488878][ T5469] vhci_hcd: invalid port number 23
[   59.570857][ T5477] loop3: detected capacity change from 0 to 1024
[   59.594572][ T5477] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.731: Failed to acquire dquot type 0
[   59.609160][ T5477] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   59.624654][ T5477] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.731: corrupted inode contents
[   59.637992][ T5477] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.731: mark_inode_dirty error
[   59.649500][ T5477] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.731: corrupted inode contents
[   59.663326][ T5477] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.731: mark_inode_dirty error
[   59.674874][ T5477] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.731: corrupted inode contents
[   59.688006][ T5477] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   59.697736][ T5477] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.731: corrupted inode contents
[   59.710456][ T5477] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.731: mark_inode_dirty error
[   59.722619][ T5477] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   59.732910][ T5477] EXT4-fs (loop3): 1 truncate cleaned up
[   59.738962][ T5477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.753882][ T5477] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.841990][ T5500] syz.3.741[5500] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.842085][ T5500] syz.3.741[5500] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.864154][ T5500] syz.3.741[5500] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.926976][ T5513] FAULT_INJECTION: forcing a failure.
[   59.926976][ T5513] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.952115][ T5513] CPU: 0 UID: 0 PID: 5513 Comm: syz.3.745 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   59.962762][ T5513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.972845][ T5513] Call Trace:
[   59.976120][ T5513]  <TASK>
[   59.979062][ T5513]  dump_stack_lvl+0xf2/0x150
[   59.983705][ T5513]  dump_stack+0x15/0x1a
[   59.987961][ T5513]  should_fail_ex+0x223/0x230
[   59.992672][ T5513]  should_fail+0xb/0x10
[   59.996829][ T5513]  should_fail_usercopy+0x1a/0x20
[   60.001896][ T5513]  _copy_to_user+0x20/0xa0
[   60.006387][ T5513]  simple_read_from_buffer+0xa0/0x110
[   60.011848][ T5513]  proc_fail_nth_read+0xf9/0x140
[   60.016925][ T5513]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.022480][ T5513]  vfs_read+0x1a2/0x700
[   60.026723][ T5513]  ? __rcu_read_unlock+0x4e/0x70
[   60.031735][ T5513]  ? __fget_files+0x17c/0x1c0
[   60.036571][ T5513]  ksys_read+0xe8/0x1b0
[   60.040734][ T5513]  __x64_sys_read+0x42/0x50
[   60.045333][ T5513]  x64_sys_call+0x2874/0x2dc0
[   60.050018][ T5513]  do_syscall_64+0xc9/0x1c0
[   60.054598][ T5513]  ? clear_bhb_loop+0x55/0xb0
[   60.059342][ T5513]  ? clear_bhb_loop+0x55/0xb0
[   60.064105][ T5513]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.070112][ T5513] RIP: 0033:0x7ff4065e473c
[   60.074607][ T5513] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   60.094305][ T5513] RSP: 002b:00007ff404c51030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   60.102751][ T5513] RAX: ffffffffffffffda RBX: 00007ff4067d5fa0 RCX: 00007ff4065e473c
[   60.110732][ T5513] RDX: 000000000000000f RSI: 00007ff404c510a0 RDI: 0000000000000006
[   60.118727][ T5513] RBP: 00007ff404c51090 R08: 0000000000000000 R09: 0000000000000000
[   60.126728][ T5513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.134729][ T5513] R13: 0000000000000000 R14: 00007ff4067d5fa0 R15: 00007ffdd1d8bc28
[   60.142830][ T5513]  </TASK>
[   60.423644][ T5543] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.449314][ T5545] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   60.495051][ T5543] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.527957][ T5552] nlmon0: entered promiscuous mode
[   60.534918][ T5552] vlan2: entered promiscuous mode
[   60.541910][ T5552] nlmon0: left promiscuous mode
[   60.547236][ T5556] FAULT_INJECTION: forcing a failure.
[   60.547236][ T5556] name failslab, interval 1, probability 0, space 0, times 0
[   60.560001][ T5556] CPU: 1 UID: 0 PID: 5556 Comm: syz.2.764 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   60.570715][ T5556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.580855][ T5556] Call Trace:
[   60.584131][ T5556]  <TASK>
[   60.587063][ T5556]  dump_stack_lvl+0xf2/0x150
[   60.591731][ T5556]  dump_stack+0x15/0x1a
[   60.595897][ T5556]  should_fail_ex+0x223/0x230
[   60.600615][ T5556]  should_failslab+0x8f/0xb0
[   60.605261][ T5556]  kmem_cache_alloc_noprof+0x52/0x320
[   60.610651][ T5556]  ? skb_clone+0x154/0x1f0
[   60.615123][ T5556]  skb_clone+0x154/0x1f0
[   60.619389][ T5556]  __netlink_deliver_tap+0x2bd/0x4f0
[   60.624753][ T5556]  netlink_sendskb+0x126/0x150
[   60.629585][ T5556]  netlink_unicast+0x291/0x670
[   60.634446][ T5556]  netlink_ack+0x4bb/0x4f0
[   60.638894][ T5556]  netlink_rcv_skb+0x19c/0x230
[   60.643676][ T5556]  ? __pfx_genl_rcv_msg+0x10/0x10
[   60.648746][ T5556]  genl_rcv+0x28/0x40
[   60.652808][ T5556]  netlink_unicast+0x599/0x670
[   60.657608][ T5556]  netlink_sendmsg+0x5cc/0x6e0
[   60.662494][ T5556]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.667852][ T5556]  __sock_sendmsg+0x140/0x180
[   60.672600][ T5556]  ____sys_sendmsg+0x312/0x410
[   60.677442][ T5556]  __sys_sendmsg+0x19d/0x230
[   60.682092][ T5556]  __x64_sys_sendmsg+0x46/0x50
[   60.686882][ T5556]  x64_sys_call+0x2734/0x2dc0
[   60.691599][ T5556]  do_syscall_64+0xc9/0x1c0
[   60.696129][ T5556]  ? clear_bhb_loop+0x55/0xb0
[   60.700840][ T5556]  ? clear_bhb_loop+0x55/0xb0
[   60.705544][ T5556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.711622][ T5556] RIP: 0033:0x7f9d81595d29
[   60.716063][ T5556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.735792][ T5556] RSP: 002b:00007f9d7fc07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.744232][ T5556] RAX: ffffffffffffffda RBX: 00007f9d81785fa0 RCX: 00007f9d81595d29
[   60.752207][ T5556] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[   60.760176][ T5556] RBP: 00007f9d7fc07090 R08: 0000000000000000 R09: 0000000000000000
[   60.768193][ T5556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   60.776221][ T5556] R13: 0000000000000000 R14: 00007f9d81785fa0 R15: 00007ffd3e9246d8
[   60.784223][ T5556]  </TASK>
[   60.808029][ T5543] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.863259][ T5570] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   60.877215][ T5543] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.942580][ T5576] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   61.004211][ T5543] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.017026][ T5543] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.020482][ T5581] netlink: 'syz.1.775': attribute type 4 has an invalid length.
[   61.028790][ T5543] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.045878][ T5543] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.061368][ T5583] loop2: detected capacity change from 0 to 8192
[   61.089635][ T5586] FAULT_INJECTION: forcing a failure.
[   61.089635][ T5586] name failslab, interval 1, probability 0, space 0, times 0
[   61.103055][ T5586] CPU: 0 UID: 0 PID: 5586 Comm: syz.5.777 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   61.113743][ T5586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.123828][ T5586] Call Trace:
[   61.127115][ T5586]  <TASK>
[   61.130055][ T5586]  dump_stack_lvl+0xf2/0x150
[   61.134720][ T5586]  dump_stack+0x15/0x1a
[   61.138973][ T5586]  should_fail_ex+0x223/0x230
[   61.143711][ T5586]  ? alloc_fs_context+0x44/0x4e0
[   61.148673][ T5586]  should_failslab+0x8f/0xb0
[   61.153283][ T5586]  __kmalloc_cache_noprof+0x4e/0x320
[   61.158651][ T5586]  alloc_fs_context+0x44/0x4e0
[   61.163488][ T5586]  ? __pfx_public_dev_mount+0x10/0x10
[   61.168932][ T5586]  fs_context_for_reconfigure+0x46/0x60
[   61.174502][ T5586]  reconfigure_single+0x2e/0x90
[   61.179432][ T5586]  public_dev_mount+0x4f/0xb0
[   61.184170][ T5586]  legacy_get_tree+0x77/0xd0
[   61.188789][ T5586]  vfs_get_tree+0x56/0x1e0
[   61.193225][ T5586]  do_new_mount+0x227/0x690
[   61.197779][ T5586]  path_mount+0x49b/0xb30
[   61.202211][ T5586]  __se_sys_mount+0x27c/0x2d0
[   61.206962][ T5586]  ? fput+0x1c4/0x200
[   61.210978][ T5586]  __x64_sys_mount+0x67/0x80
[   61.215594][ T5586]  x64_sys_call+0x2c84/0x2dc0
[   61.220287][ T5586]  do_syscall_64+0xc9/0x1c0
[   61.224798][ T5586]  ? clear_bhb_loop+0x55/0xb0
[   61.229500][ T5586]  ? clear_bhb_loop+0x55/0xb0
[   61.234207][ T5586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.240131][ T5586] RIP: 0033:0x7f3bc4a45d29
[   61.244556][ T5586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.264243][ T5586] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   61.272670][ T5586] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   61.280649][ T5586] RDX: 0000000020000040 RSI: 00000000200003c0 RDI: 0000000000000000
[   61.288853][ T5586] RBP: 00007f3bc30b7090 R08: 0000000000000000 R09: 0000000000000000
[   61.296899][ T5586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.304900][ T5586] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   61.312948][ T5586]  </TASK>
[   61.320737][ T5588] FAULT_INJECTION: forcing a failure.
[   61.320737][ T5588] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.333917][ T5588] CPU: 0 UID: 0 PID: 5588 Comm: syz.0.778 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   61.344548][ T5588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.354630][ T5588] Call Trace:
[   61.358006][ T5588]  <TASK>
[   61.360955][ T5588]  dump_stack_lvl+0xf2/0x150
[   61.365590][ T5588]  dump_stack+0x15/0x1a
[   61.369829][ T5588]  should_fail_ex+0x223/0x230
[   61.374559][ T5588]  should_fail+0xb/0x10
[   61.378749][ T5588]  should_fail_usercopy+0x1a/0x20
[   61.383856][ T5588]  _copy_from_user+0x1e/0xb0
[   61.388506][ T5588]  input_event_from_user+0x126/0x1e0
[   61.390908][   T29] kauditd_printk_skb: 440 callbacks suppressed
[   61.390925][   T29] audit: type=1400 audit(1736232659.917:2386): avc:  denied  { append } for  pid=5589 comm="syz.5.780" name="random" dev="devtmpfs" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[   61.394078][ T5588]  ? input_inject_event+0xe1/0x100
[   61.429704][ T5588]  evdev_write+0x29d/0x440
[   61.434166][ T5588]  ? __pfx_evdev_write+0x10/0x10
[   61.439177][ T5588]  vfs_write+0x281/0x920
[   61.443473][ T5588]  ? putname+0xcf/0xf0
[   61.447659][ T5588]  ? __fget_files+0x17c/0x1c0
[   61.452476][ T5588]  ksys_write+0xe8/0x1b0
[   61.456920][ T5588]  __x64_sys_write+0x42/0x50
[   61.461547][ T5588]  x64_sys_call+0x287e/0x2dc0
[   61.466327][ T5588]  do_syscall_64+0xc9/0x1c0
[   61.471150][ T5588]  ? clear_bhb_loop+0x55/0xb0
[   61.475944][ T5588]  ? clear_bhb_loop+0x55/0xb0
[   61.480679][ T5588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.486624][ T5588] RIP: 0033:0x7f263bb05d29
[   61.491245][ T5588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.497396][   T29] audit: type=1400 audit(1736232660.077:2387): avc:  denied  { read } for  pid=5589 comm="syz.5.780" path="socket:[12045]" dev="sockfs" ino=12045 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   61.511039][ T5588] RSP: 002b:00007f263a177038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   61.511077][ T5588] RAX: ffffffffffffffda RBX: 00007f263bcf5fa0 RCX: 00007f263bb05d29
[   61.511091][ T5588] RDX: 00000000000012d8 RSI: 0000000020000040 RDI: 000000000000000b
[   61.511107][ T5588] RBP: 00007f263a177090 R08: 0000000000000000 R09: 0000000000000000
[   61.566880][ T5588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.574878][ T5588] R13: 0000000000000000 R14: 00007f263bcf5fa0 R15: 00007ffed72c8e58
[   61.582977][ T5588]  </TASK>
[   61.601736][   T29] audit: type=1400 audit(1736232660.187:2388): avc:  denied  { write } for  pid=5589 comm="syz.5.780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   61.687716][ T5597] loop1: detected capacity change from 0 to 1024
[   61.702363][ T5597] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   61.714902][ T5597] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   61.725502][ T5604] FAULT_INJECTION: forcing a failure.
[   61.725502][ T5604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.738682][ T5604] CPU: 1 UID: 0 PID: 5604 Comm: syz.3.781 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   61.739533][ T5597] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #32: comm syz.1.783: iget: special inode unallocated
[   61.749280][ T5604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.749299][ T5604] Call Trace:
[   61.749307][ T5604]  <TASK>
[   61.749317][ T5604]  dump_stack_lvl+0xf2/0x150
[   61.749401][ T5604]  dump_stack+0x15/0x1a
[   61.749439][ T5604]  should_fail_ex+0x223/0x230
[   61.749504][ T5604]  should_fail+0xb/0x10
[   61.749531][ T5604]  should_fail_usercopy+0x1a/0x20
[   61.749630][ T5604]  _copy_from_iter+0xd5/0xd00
[   61.749663][ T5604]  ? should_fail_ex+0xd7/0x230
[   61.749691][ T5604]  ? should_failslab+0x8f/0xb0
[   61.749729][ T5604]  ? __virt_addr_valid+0x1ed/0x250
[   61.749849][ T5604]  ? __check_object_size+0x364/0x520
[   61.749876][ T5604]  sctp_make_abort_user+0x1cc/0x500
[   61.749907][ T5604]  sctp_sendmsg_check_sflags+0x17c/0x1d0
[   61.749946][ T5604]  sctp_sendmsg+0x754/0x1920
[   61.841647][ T5604]  ? __pfx_sctp_sendmsg+0x10/0x10
[   61.846705][ T5604]  inet_sendmsg+0xc5/0xd0
[   61.851126][ T5604]  __sock_sendmsg+0x102/0x180
[   61.855826][ T5604]  ____sys_sendmsg+0x312/0x410
[   61.860649][ T5604]  __sys_sendmmsg+0x227/0x4b0
[   61.865364][ T5604]  __x64_sys_sendmmsg+0x57/0x70
[   61.870232][ T5604]  x64_sys_call+0x29aa/0x2dc0
[   61.874928][ T5604]  do_syscall_64+0xc9/0x1c0
[   61.879437][ T5604]  ? clear_bhb_loop+0x55/0xb0
[   61.884170][ T5604]  ? clear_bhb_loop+0x55/0xb0
[   61.889010][ T5604]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.894981][ T5604] RIP: 0033:0x7ff4065e5d29
[   61.899449][ T5604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.919247][ T5604] RSP: 002b:00007ff404c30038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   61.927719][ T5604] RAX: ffffffffffffffda RBX: 00007ff4067d6080 RCX: 00007ff4065e5d29
[   61.935699][ T5604] RDX: 0000000000000001 RSI: 0000000020000bc0 RDI: 0000000000000005
[   61.943672][ T5604] RBP: 00007ff404c30090 R08: 0000000000000000 R09: 0000000000000000
[   61.951648][ T5604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.959732][ T5604] R13: 0000000000000001 R14: 00007ff4067d6080 R15: 00007ffdd1d8bc28
[   61.967720][ T5604]  </TASK>
[   61.982384][ T5597] EXT4-fs (loop1): no journal found
[   61.987640][ T5597] EXT4-fs (loop1): can't get journal size
[   61.993654][ T5601] syz.2.779[5601] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   61.993740][ T5601] syz.2.779[5601] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.010140][ T5601] syz.2.779[5601] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   62.023004][ T5609] netlink: 4 bytes leftover after parsing attributes in process `syz.0.784'.
[   62.024729][ T5597] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #32: comm syz.1.783: iget: special inode unallocated
[   62.045582][   T29] audit: type=1400 audit(1736232660.627:2389): avc:  denied  { append } for  pid=5606 comm="syz.0.784" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   62.058982][ T5597] EXT4-fs (loop1): failed to initialize system zone (-117)
[   62.088147][ T5597] EXT4-fs (loop1): mount failed
[   62.113806][   T29] audit: type=1400 audit(1736232660.697:2390): avc:  denied  { unmount } for  pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   62.165594][   T29] audit: type=1400 audit(1736232660.747:2391): avc:  denied  { connect } for  pid=5606 comm="syz.0.784" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   62.212998][ T5618] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   62.248052][   T29] audit: type=1326 audit(1736232660.827:2392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   62.250302][ T5625] $Hÿ: renamed from bond0 (while UP)
[   62.272181][   T29] audit: type=1326 audit(1736232660.827:2393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   62.300185][   T29] audit: type=1400 audit(1736232660.827:2394): avc:  denied  { ioctl } for  pid=5624 comm="syz.1.791" path="socket:[12102]" dev="sockfs" ino=12102 ioctlcmd=0xf507 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   62.326212][   T29] audit: type=1326 audit(1736232660.827:2395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5624 comm="syz.1.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   62.360823][ T5625] $Hÿ: entered promiscuous mode
[   62.365915][ T5625] bond_slave_0: entered promiscuous mode
[   62.371842][ T5625] bond_slave_1: entered promiscuous mode
[   62.511630][ T5640] loop5: detected capacity change from 0 to 128
[   62.526401][ T5643] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   62.662895][ T5640] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   62.710560][ T5640] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.735877][ T5640] netlink: 4 bytes leftover after parsing attributes in process `syz.5.796'.
[   62.756110][ T5640] netlink: 4 bytes leftover after parsing attributes in process `syz.5.796'.
[   62.771626][ T5656] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   62.786963][ T5640] ext4: Unknown parameter 'aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[   62.825850][ T5662] FAULT_INJECTION: forcing a failure.
[   62.825850][ T5662] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.838975][ T5662] CPU: 1 UID: 0 PID: 5662 Comm: syz.2.805 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   62.844831][ T5664] IPVS: length: 93 != 24
[   62.849667][ T5662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.864021][ T5662] Call Trace:
[   62.867311][ T5662]  <TASK>
[   62.870255][ T5662]  dump_stack_lvl+0xf2/0x150
[   62.874941][ T5662]  dump_stack+0x15/0x1a
[   62.879126][ T5662]  should_fail_ex+0x223/0x230
[   62.883844][ T5662]  should_fail+0xb/0x10
[   62.888009][ T5662]  should_fail_usercopy+0x1a/0x20
[   62.893048][ T5662]  _copy_to_user+0x20/0xa0
[   62.897486][ T5662]  simple_read_from_buffer+0xa0/0x110
[   62.902969][ T5662]  proc_fail_nth_read+0xf9/0x140
[   62.908019][ T5662]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   62.913589][ T5662]  vfs_read+0x1a2/0x700
[   62.917763][ T5662]  ? __rcu_read_unlock+0x4e/0x70
[   62.922725][ T5662]  ? __fget_files+0x17c/0x1c0
[   62.927427][ T5662]  ksys_read+0xe8/0x1b0
[   62.931660][ T5662]  __x64_sys_read+0x42/0x50
[   62.936261][ T5662]  x64_sys_call+0x2874/0x2dc0
[   62.940992][ T5662]  do_syscall_64+0xc9/0x1c0
[   62.945503][ T5662]  ? clear_bhb_loop+0x55/0xb0
[   62.950202][ T5662]  ? clear_bhb_loop+0x55/0xb0
[   62.954920][ T5662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.960843][ T5662] RIP: 0033:0x7f9d8159473c
[   62.965288][ T5662] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   62.984966][ T5662] RSP: 002b:00007f9d7fc07030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   62.993520][ T5662] RAX: ffffffffffffffda RBX: 00007f9d81785fa0 RCX: 00007f9d8159473c
[   63.001518][ T5662] RDX: 000000000000000f RSI: 00007f9d7fc070a0 RDI: 0000000000000004
[   63.009558][ T5662] RBP: 00007f9d7fc07090 R08: 0000000000000000 R09: 0000000000000000
[   63.017580][ T5662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.025558][ T5662] R13: 0000000000000000 R14: 00007f9d81785fa0 R15: 00007ffd3e9246d8
[   63.033562][ T5662]  </TASK>
[   63.053339][ T5660] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   63.064780][ T5660] vhci_hcd: invalid port number 23
[   63.078728][ T4727] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   63.108145][ T5672] FAULT_INJECTION: forcing a failure.
[   63.108145][ T5672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.121376][ T5672] CPU: 0 UID: 0 PID: 5672 Comm: syz.3.810 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   63.131995][ T5672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.142137][ T5672] Call Trace:
[   63.145422][ T5672]  <TASK>
[   63.148364][ T5672]  dump_stack_lvl+0xf2/0x150
[   63.152985][ T5672]  dump_stack+0x15/0x1a
[   63.157160][ T5672]  should_fail_ex+0x223/0x230
[   63.161896][ T5672]  should_fail+0xb/0x10
[   63.166059][ T5672]  should_fail_usercopy+0x1a/0x20
[   63.171240][ T5672]  _copy_to_user+0x20/0xa0
[   63.175702][ T5672]  simple_read_from_buffer+0xa0/0x110
[   63.181183][ T5672]  proc_fail_nth_read+0xf9/0x140
[   63.186139][ T5672]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   63.191773][ T5672]  vfs_read+0x1a2/0x700
[   63.196059][ T5672]  ? __rcu_read_unlock+0x4e/0x70
[   63.201037][ T5672]  ? __fget_files+0x17c/0x1c0
[   63.205802][ T5672]  ksys_read+0xe8/0x1b0
[   63.209976][ T5672]  __x64_sys_read+0x42/0x50
[   63.214519][ T5672]  x64_sys_call+0x2874/0x2dc0
[   63.219207][ T5672]  do_syscall_64+0xc9/0x1c0
[   63.223903][ T5672]  ? clear_bhb_loop+0x55/0xb0
[   63.228772][ T5672]  ? clear_bhb_loop+0x55/0xb0
[   63.233498][ T5672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.239417][ T5672] RIP: 0033:0x7ff4065e473c
[   63.243907][ T5672] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   63.263524][ T5672] RSP: 002b:00007ff404c51030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   63.271952][ T5672] RAX: ffffffffffffffda RBX: 00007ff4067d5fa0 RCX: 00007ff4065e473c
[   63.279965][ T5672] RDX: 000000000000000f RSI: 00007ff404c510a0 RDI: 0000000000000005
[   63.287943][ T5672] RBP: 00007ff404c51090 R08: 0000000000000000 R09: 0000000000000000
[   63.295917][ T5672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   63.303898][ T5672] R13: 0000000000000000 R14: 00007ff4067d5fa0 R15: 00007ffdd1d8bc28
[   63.311892][ T5672]  </TASK>
[   63.437836][ T5693] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   63.496020][ T5706] loop2: detected capacity change from 0 to 764
[   63.556010][ T5701] hsr_slave_0 (unregistering): left promiscuous mode
[   63.621715][ T5715] loop5: detected capacity change from 0 to 512
[   63.638398][ T5715] EXT4-fs: Invalid want_extra_isize 0
[   63.696356][ T5715] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[   63.696356][ T5715] n'º|$@OOݱµ’-®+·el'
[   63.749899][ T5715] veth0_to_team: entered promiscuous mode
[   63.755706][ T5715] veth0_to_team: entered allmulticast mode
[   63.863951][   T35] IPVS: starting estimator thread 0...
[   63.871202][ T5731] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[   63.927230][ T5742] loop1: detected capacity change from 0 to 1024
[   63.951637][ T5742] ext4 filesystem being mounted at /179/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.962283][ T5737] IPVS: using max 2448 ests per chain, 122400 per kthread
[   64.591175][ T5801] FAULT_INJECTION: forcing a failure.
[   64.591175][ T5801] name failslab, interval 1, probability 0, space 0, times 0
[   64.603980][ T5801] CPU: 1 UID: 0 PID: 5801 Comm: syz.2.860 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   64.614689][ T5801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   64.624761][ T5801] Call Trace:
[   64.628078][ T5801]  <TASK>
[   64.631011][ T5801]  dump_stack_lvl+0xf2/0x150
[   64.635692][ T5801]  dump_stack+0x15/0x1a
[   64.639975][ T5801]  should_fail_ex+0x223/0x230
[   64.644760][ T5801]  should_failslab+0x8f/0xb0
[   64.649429][ T5801]  kmem_cache_alloc_noprof+0x52/0x320
[   64.654813][ T5801]  ? skb_clone+0x154/0x1f0
[   64.659252][ T5801]  skb_clone+0x154/0x1f0
[   64.663516][ T5801]  __netlink_deliver_tap+0x2bd/0x4f0
[   64.668818][ T5801]  netlink_unicast+0x64a/0x670
[   64.673663][ T5801]  netlink_sendmsg+0x5cc/0x6e0
[   64.678444][ T5801]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.683748][ T5801]  __sock_sendmsg+0x140/0x180
[   64.688533][ T5801]  ____sys_sendmsg+0x312/0x410
[   64.693317][ T5801]  __sys_sendmsg+0x19d/0x230
[   64.698064][ T5801]  __x64_sys_sendmsg+0x46/0x50
[   64.702900][ T5801]  x64_sys_call+0x2734/0x2dc0
[   64.707585][ T5801]  do_syscall_64+0xc9/0x1c0
[   64.712131][ T5801]  ? clear_bhb_loop+0x55/0xb0
[   64.716829][ T5801]  ? clear_bhb_loop+0x55/0xb0
[   64.721517][ T5801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.727437][ T5801] RIP: 0033:0x7f9d81595d29
[   64.731909][ T5801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.751608][ T5801] RSP: 002b:00007f9d7fc07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.760079][ T5801] RAX: ffffffffffffffda RBX: 00007f9d81785fa0 RCX: 00007f9d81595d29
[   64.768062][ T5801] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[   64.776088][ T5801] RBP: 00007f9d7fc07090 R08: 0000000000000000 R09: 0000000000000000
[   64.784064][ T5801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.792042][ T5801] R13: 0000000000000000 R14: 00007f9d81785fa0 R15: 00007ffd3e9246d8
[   64.800090][ T5801]  </TASK>
[   64.813955][ T5807] FAULT_INJECTION: forcing a failure.
[   64.813955][ T5807] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   64.827832][ T5807] CPU: 0 UID: 0 PID: 5807 Comm: syz.1.863 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   64.838562][ T5807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   64.848704][ T5807] Call Trace:
[   64.851983][ T5807]  <TASK>
[   64.854914][ T5807]  dump_stack_lvl+0xf2/0x150
[   64.859550][ T5807]  dump_stack+0x15/0x1a
[   64.863753][ T5807]  should_fail_ex+0x223/0x230
[   64.868475][ T5807]  should_fail_alloc_page+0xfd/0x110
[   64.873783][ T5807]  __alloc_pages_noprof+0x109/0x340
[   64.879032][ T5807]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   64.884518][ T5807]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   64.889907][ T5807]  handle_mm_fault+0xdd7/0x2ac0
[   64.894800][ T5807]  exc_page_fault+0x296/0x650
[   64.899507][ T5807]  asm_exc_page_fault+0x26/0x30
[   64.904363][ T5807] RIP: 0010:rep_movs_alternative+0x15/0x70
[   64.910264][ T5807] Code: cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84
[   64.930326][ T5807] RSP: 0018:ffffc9000178feb0 EFLAGS: 00050202
[   64.936483][ T5807] RAX: ffff8881036ddc00 RBX: 0000000020000284 RCX: 0000000000000004
[   64.944460][ T5807] RDX: 0000000000000000 RSI: ffffc9000178fee8 RDI: 0000000020000280
[   64.952434][ T5807] RBP: ffffc9000178ff48 R08: 0000000080000000 R09: 0000000000000000
[   64.960412][ T5807] R10: 0001c9000178fee8 R11: 0001c9000178feeb R12: 0000000000000004
[   64.968390][ T5807] R13: 00007ffffffff000 R14: 0000000020000280 R15: ffffc9000178fee8
[   64.976520][ T5807]  _copy_to_user+0x7c/0xa0
[   64.980959][ T5807]  __se_sys_sched_getparam+0xaf/0xf0
[   64.986318][ T5807]  x64_sys_call+0x115c/0x2dc0
[   64.991063][ T5807]  do_syscall_64+0xc9/0x1c0
[   64.995691][ T5807]  ? clear_bhb_loop+0x55/0xb0
[   65.000376][ T5807]  ? clear_bhb_loop+0x55/0xb0
[   65.005148][ T5807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.011104][ T5807] RIP: 0033:0x7fd70d695d29
[   65.015520][ T5807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.035275][ T5807] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 000000000000008f
[   65.043694][ T5807] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   65.051667][ T5807] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000000
[   65.059641][ T5807] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   65.067616][ T5807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.075589][ T5807] R13: 0000000000000001 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   65.083569][ T5807]  </TASK>
[   65.435671][ T5840] netlink: 12 bytes leftover after parsing attributes in process `syz.1.870'.
[   65.553880][ T5848] wireguard0: entered promiscuous mode
[   65.559579][ T5848] wireguard0: entered allmulticast mode
[   65.571135][ T5854] IPVS: length: 93 != 24
[   66.014488][ T5907] IPVS: length: 93 != 24
[   66.088121][ T5918] wireguard0: entered promiscuous mode
[   66.093839][ T5918] wireguard0: entered allmulticast mode
[   66.130954][ T5922] loop1: detected capacity change from 0 to 164
[   66.178971][ T5922] Unable to read rock-ridge attributes
[   66.336739][ T5948] netlink: 'syz.2.896': attribute type 10 has an invalid length.
[   66.349923][ T5950] netlink: 'syz.2.896': attribute type 10 has an invalid length.
[   66.380344][ T5950] geneve1: entered promiscuous mode
[   66.391065][ T5950] bond0: (slave geneve1): Enslaving as an active interface with an up link
[   66.426309][   T29] kauditd_printk_skb: 435 callbacks suppressed
[   66.426324][   T29] audit: type=1400 audit(1736232665.007:2831): avc:  denied  { create } for  pid=5944 comm="syz.2.896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   66.426683][ T5945] lo speed is unknown, defaulting to 1000
[   66.443455][   T29] audit: type=1400 audit(1736232665.007:2832): avc:  denied  { write } for  pid=5944 comm="syz.2.896" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   66.497887][ T5945] lo speed is unknown, defaulting to 1000
[   66.518525][ T5945] lo speed is unknown, defaulting to 1000
[   66.525026][ T5966] IPVS: length: 93 != 24
[   66.542283][ T5945] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   66.550373][   T29] audit: type=1326 audit(1736232665.137:2833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5961 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bc4a45d29 code=0x7ffc0000
[   66.570270][ T5945] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   66.621825][   T29] audit: type=1326 audit(1736232665.137:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5961 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3bc4a45d29 code=0x7ffc0000
[   66.645951][   T29] audit: type=1326 audit(1736232665.137:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5961 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bc4a45d29 code=0x7ffc0000
[   66.669302][   T29] audit: type=1400 audit(1736232665.187:2836): avc:  denied  { bind } for  pid=5952 comm="syz.1.897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.689231][   T29] audit: type=1400 audit(1736232665.187:2837): avc:  denied  { write } for  pid=5952 comm="syz.1.897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   66.745455][ T5945] lo speed is unknown, defaulting to 1000
[   66.754342][ T5945] lo speed is unknown, defaulting to 1000
[   66.768564][ T5945] lo speed is unknown, defaulting to 1000
[   66.854651][ T5945] lo speed is unknown, defaulting to 1000
[   66.860743][ T5945] lo speed is unknown, defaulting to 1000
[   66.897448][   T29] audit: type=1326 audit(1736232665.467:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5994 comm="syz.1.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   66.921592][   T29] audit: type=1326 audit(1736232665.477:2839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5994 comm="syz.1.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   66.951058][ T5995] xt_CT: You must specify a L4 protocol and not use inversions on it
[   66.965236][   T29] audit: type=1107 audit(1736232665.507:2840): pid=5990 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='¯'
[   67.072015][ T6005] IPVS: length: 93 != 24
[   67.857245][ T6059] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   67.875166][ T6059] SELinux: failed to load policy
[   67.930579][ T6059] loop5: detected capacity change from 0 to 1024
[   67.956406][ T6064] lo speed is unknown, defaulting to 1000
[   67.963118][ T6059] EXT4-fs mount: 2 callbacks suppressed
[   67.963136][ T6059] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.046132][ T4727] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.113525][ T6081] FAULT_INJECTION: forcing a failure.
[   68.113525][ T6081] name failslab, interval 1, probability 0, space 0, times 0
[   68.126215][ T6081] CPU: 1 UID: 0 PID: 6081 Comm: syz.1.943 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   68.136896][ T6081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.147007][ T6081] Call Trace:
[   68.150365][ T6081]  <TASK>
[   68.153313][ T6081]  dump_stack_lvl+0xf2/0x150
[   68.158073][ T6081]  dump_stack+0x15/0x1a
[   68.162339][ T6081]  should_fail_ex+0x223/0x230
[   68.167062][ T6081]  ? selinux_bpf_map_create+0x35/0xd0
[   68.172450][ T6081]  should_failslab+0x8f/0xb0
[   68.177099][ T6081]  __kmalloc_cache_noprof+0x4e/0x320
[   68.182439][ T6081]  selinux_bpf_map_create+0x35/0xd0
[   68.187656][ T6081]  security_bpf_map_create+0x47/0x80
[   68.193005][ T6081]  map_create+0xace/0xb70
[   68.197369][ T6081]  __sys_bpf+0x667/0x7a0
[   68.201709][ T6081]  __x64_sys_bpf+0x43/0x50
[   68.206210][ T6081]  x64_sys_call+0x2914/0x2dc0
[   68.210930][ T6081]  do_syscall_64+0xc9/0x1c0
[   68.215458][ T6081]  ? clear_bhb_loop+0x55/0xb0
[   68.220146][ T6081]  ? clear_bhb_loop+0x55/0xb0
[   68.224902][ T6081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.230820][ T6081] RIP: 0033:0x7fd70d695d29
[   68.235241][ T6081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.254903][ T6081] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   68.263478][ T6081] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   68.271459][ T6081] RDX: 0000000000000050 RSI: 00000000200009c0 RDI: 0000000000000000
[   68.279436][ T6081] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   68.287414][ T6081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.295425][ T6081] R13: 0000000000000000 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   68.303416][ T6081]  </TASK>
[   68.336746][ T6076] netlink: '+}[@': attribute type 13 has an invalid length.
[   68.344179][ T6076] netlink: 152 bytes leftover after parsing attributes in process `+}[@'.
[   68.353558][ T6076] syz_tun: refused to change device tx_queue_len
[   68.372854][ T6087] FAULT_INJECTION: forcing a failure.
[   68.372854][ T6087] name failslab, interval 1, probability 0, space 0, times 0
[   68.385522][ T6087] CPU: 1 UID: 0 PID: 6087 Comm: syz.1.945 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   68.396180][ T6087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.406276][ T6087] Call Trace:
[   68.409564][ T6087]  <TASK>
[   68.412585][ T6087]  dump_stack_lvl+0xf2/0x150
[   68.417264][ T6087]  dump_stack+0x15/0x1a
[   68.421513][ T6087]  should_fail_ex+0x223/0x230
[   68.426235][ T6087]  ? __inet_diag_dump_start+0x53/0x780
[   68.431743][ T6087]  should_failslab+0x8f/0xb0
[   68.436434][ T6087]  __kmalloc_cache_noprof+0x4e/0x320
[   68.441757][ T6087]  __inet_diag_dump_start+0x53/0x780
[   68.447105][ T6087]  ? __netlink_lookup+0x253/0x290
[   68.452191][ T6087]  inet_diag_dump_start_compat+0x1a/0x20
[   68.457852][ T6087]  __netlink_dump_start+0x32a/0x520
[   68.463170][ T6087]  inet_diag_rcv_msg_compat+0x114/0x200
[   68.468738][ T6087]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[   68.475093][ T6087]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[   68.480918][ T6087]  ? __pfx_inet_diag_dump_done+0x10/0x10
[   68.486687][ T6087]  sock_diag_rcv_msg+0x163/0x2e0
[   68.491661][ T6087]  netlink_rcv_skb+0x12c/0x230
[   68.496519][ T6087]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[   68.502017][ T6087]  sock_diag_rcv+0x1c/0x30
[   68.506536][ T6087]  netlink_unicast+0x599/0x670
[   68.511325][ T6087]  netlink_sendmsg+0x5cc/0x6e0
[   68.516143][ T6087]  ? __pfx_netlink_sendmsg+0x10/0x10
[   68.521461][ T6087]  __sock_sendmsg+0x140/0x180
[   68.526172][ T6087]  ____sys_sendmsg+0x312/0x410
[   68.531012][ T6087]  __sys_sendmsg+0x19d/0x230
[   68.535649][ T6087]  __x64_sys_sendmsg+0x46/0x50
[   68.540541][ T6087]  x64_sys_call+0x2734/0x2dc0
[   68.545245][ T6087]  do_syscall_64+0xc9/0x1c0
[   68.549776][ T6087]  ? clear_bhb_loop+0x55/0xb0
[   68.554543][ T6087]  ? clear_bhb_loop+0x55/0xb0
[   68.559238][ T6087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.565210][ T6087] RIP: 0033:0x7fd70d695d29
[   68.569677][ T6087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.589445][ T6087] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.597953][ T6087] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   68.606080][ T6087] RDX: 0000000000000000 RSI: 0000000020002980 RDI: 0000000000000003
[   68.614061][ T6087] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   68.622047][ T6087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.630037][ T6087] R13: 0000000000000000 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   68.638034][ T6087]  </TASK>
[   69.123024][ T6124] FAULT_INJECTION: forcing a failure.
[   69.123024][ T6124] name failslab, interval 1, probability 0, space 0, times 0
[   69.135751][ T6124] CPU: 1 UID: 0 PID: 6124 Comm: syz.5.958 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   69.146361][ T6124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.156502][ T6124] Call Trace:
[   69.159792][ T6124]  <TASK>
[   69.162735][ T6124]  dump_stack_lvl+0xf2/0x150
[   69.167350][ T6124]  dump_stack+0x15/0x1a
[   69.171638][ T6124]  should_fail_ex+0x223/0x230
[   69.176335][ T6124]  should_failslab+0x8f/0xb0
[   69.181004][ T6124]  __kmalloc_noprof+0xab/0x3f0
[   69.185854][ T6124]  ? alloc_trace_uprobe+0x37/0x1f0
[   69.191227][ T6124]  alloc_trace_uprobe+0x37/0x1f0
[   69.196184][ T6124]  create_local_trace_uprobe+0xb7/0x2d0
[   69.201845][ T6124]  perf_uprobe_init+0xc2/0x140
[   69.206639][ T6124]  perf_uprobe_event_init+0xe2/0x140
[   69.211964][ T6124]  perf_try_init_event+0xcb/0x4f0
[   69.217065][ T6124]  ? perf_event_alloc+0xac6/0x12e0
[   69.222222][ T6124]  perf_event_alloc+0xad1/0x12e0
[   69.227177][ T6124]  __se_sys_perf_event_open+0x5ac/0x2230
[   69.232858][ T6124]  ? proc_fail_nth_write+0x12a/0x150
[   69.238225][ T6124]  ? vfs_write+0x4d1/0x920
[   69.242656][ T6124]  ? putname+0xcf/0xf0
[   69.246754][ T6124]  __x64_sys_perf_event_open+0x67/0x80
[   69.252231][ T6124]  x64_sys_call+0x1deb/0x2dc0
[   69.256972][ T6124]  do_syscall_64+0xc9/0x1c0
[   69.261501][ T6124]  ? clear_bhb_loop+0x55/0xb0
[   69.266236][ T6124]  ? clear_bhb_loop+0x55/0xb0
[   69.271019][ T6124]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.276947][ T6124] RIP: 0033:0x7f3bc4a45d29
[   69.281379][ T6124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.301012][ T6124] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   69.309443][ T6124] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   69.317437][ T6124] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000020000400
[   69.325414][ T6124] RBP: 00007f3bc30b7090 R08: 0000000000000000 R09: 0000000000000000
[   69.333450][ T6124] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[   69.341518][ T6124] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   69.349503][ T6124]  </TASK>
[   69.352644][ T6124] trace_uprobe: Failed to allocate trace_uprobe.(-12)
[   69.473129][ T6131] IPVS: length: 93 != 24
[   69.669103][ T6147] xt_TPROXY: Can be used only with -p tcp or -p udp
[   69.854488][ T6159] wireguard0: entered promiscuous mode
[   69.860014][ T6159] wireguard0: entered allmulticast mode
[   70.474824][ T6207] IPVS: length: 93 != 24
[   70.621307][ T6222] loop3: detected capacity change from 0 to 164
[   70.642381][ T6222] Unable to read rock-ridge attributes
[   70.729083][ T6233] IPVS: length: 93 != 24
[   70.755325][ T6235] loop1: detected capacity change from 0 to 512
[   70.793874][ T6235] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.826774][ T6235] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   70.842371][ T6235] Process accounting resumed
[   70.899829][ T6222] serio: Serial port ptm0
[   70.934601][ T6235] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   70.946303][ T6251] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1013'.
[   70.967100][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.090223][ T6266] IPVS: length: 93 != 24
[   71.121301][ T6271] netlink: zone id is out of range
[   71.122326][ T6272] syz.5.1021[6272] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.131609][ T6272] syz.5.1021[6272] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.165662][ T6272] syz.5.1021[6272] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.226815][ T6274] loop3: detected capacity change from 0 to 8192
[   71.315030][ T6281] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1026'.
[   71.425049][ T6285] loop5: detected capacity change from 0 to 128
[   71.431588][   T29] kauditd_printk_skb: 3796 callbacks suppressed
[   71.431604][   T29] audit: type=1326 audit(1736232670.007:6635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd70d695db7 code=0x7ffc0000
[   71.439529][ T6276] loop1: detected capacity change from 0 to 512
[   71.467685][ T6285] FAT-fs (loop5): bogus number of reserved sectors
[   71.474736][ T6285] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   71.484268][ T6285] FAT-fs (loop5): Can't find a valid FAT filesystem
[   71.492766][   T29] audit: type=1326 audit(1736232670.017:6636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd70d68cce7 code=0x7ffc0000
[   71.516487][   T29] audit: type=1326 audit(1736232670.017:6637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd70d631f29 code=0x7ffc0000
[   71.540043][   T29] audit: type=1326 audit(1736232670.017:6638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd70d68cce7 code=0x7ffc0000
[   71.564184][   T29] audit: type=1326 audit(1736232670.017:6639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd70d631f29 code=0x7ffc0000
[   71.587920][   T29] audit: type=1326 audit(1736232670.017:6640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd70d694690 code=0x7ffc0000
[   71.612111][   T29] audit: type=1326 audit(1736232670.017:6641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6275 comm="syz.1.1023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd70d69592b code=0x7ffc0000
[   71.635592][   T29] audit: type=1326 audit(1736232670.047:6642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6267 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9d8158cce7 code=0x7ffc0000
[   71.659654][   T29] audit: type=1326 audit(1736232670.047:6643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6267 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9d81531f29 code=0x7ffc0000
[   71.683663][   T29] audit: type=1326 audit(1736232670.047:6644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6267 comm="syz.2.1020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9d8158cce7 code=0x7ffc0000
[   71.796457][ T6299] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1034'.
[   71.806461][ T6276] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   71.830718][ T6304] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   71.852422][ T6276] EXT4-fs (loop1): mount failed
[   71.888134][ T6311] tipc: Started in network mode
[   71.893120][ T6311] tipc: Node identity ac14140f, cluster identity 4711
[   71.901895][ T6311] tipc: New replicast peer: 255.255.255.255
[   71.907978][ T6311] tipc: Enabled bearer <udp:syz1>, priority 10
[   71.946045][ T6311] loop5: detected capacity change from 0 to 512
[   71.983825][ T6311] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.012775][ T6311] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.027775][ T6311] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.215754][ T6337] loop2: detected capacity change from 0 to 8192
[   72.802243][ T6395] netlink: 'syz.1.1071': attribute type 4 has an invalid length.
[   72.823796][ T6395] netlink: 'syz.1.1071': attribute type 4 has an invalid length.
[   72.850658][ T6395] loop1: detected capacity change from 0 to 512
[   72.867112][ T6395] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a856c098, mo2=0002]
[   72.884690][ T6395] System zones: 1-12
[   72.895203][ T6395] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1071: corrupted in-inode xattr: invalid ea_ino
[   72.927031][ T6395] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1071: couldn't read orphan inode 15 (err -117)
[   72.952319][ T3374] tipc: Node number set to 2886997007
[   73.034562][ T6395] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.063934][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.175176][ T6429] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   73.302512][ T6439] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1091'.
[   73.311635][ T6439] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1091'.
[   73.321483][ T6439] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1091'.
[   73.349099][ T6439] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1091'.
[   73.382044][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   73.538023][ T6468] loop1: detected capacity change from 0 to 128
[   73.578906][ T6468] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.602422][ T6468] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.716299][ T3303] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.804175][ T6487] loop5: detected capacity change from 0 to 1024
[   73.849524][ T6487] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   73.887336][ T6485] loop3: detected capacity change from 0 to 8192
[   73.897641][ T6487] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   73.919360][ T6487] EXT4-fs error (device loop5): ext4_get_journal_inode:5809: inode #32: comm syz.5.1109: iget: special inode unallocated
[   73.944775][ T6487] EXT4-fs (loop5): no journal found
[   73.950083][ T6487] EXT4-fs (loop5): can't get journal size
[   73.960880][ T6487] EXT4-fs error (device loop5): ext4_protect_reserved_inode:160: inode #32: comm syz.5.1109: iget: special inode unallocated
[   74.023946][ T6487] EXT4-fs (loop5): failed to initialize system zone (-117)
[   74.056324][ T6487] EXT4-fs (loop5): mount failed
[   74.154960][ T6514] loop5: detected capacity change from 0 to 7
[   74.170126][ T6514] Buffer I/O error on dev loop5, logical block 0, async page read
[   74.184396][ T6514] Buffer I/O error on dev loop5, logical block 0, async page read
[   74.193037][ T6514]  loop5: unable to read partition table
[   74.201384][ T6514] loop_reread_partitions: partition scan of loop5 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[   74.201384][ T6514] 
) failed (rc=-5)
[   74.351152][ T6526] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   74.369400][ T6526] vhci_hcd: invalid port number 23
[   74.417168][ T6544] IPVS: length: 93 != 24
[   74.453541][ T6550] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   74.533734][ T6558] FAULT_INJECTION: forcing a failure.
[   74.533734][ T6558] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.546909][ T6558] CPU: 0 UID: 0 PID: 6558 Comm: syz.1.1136 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   74.557714][ T6558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   74.567771][ T6558] Call Trace:
[   74.571048][ T6558]  <TASK>
[   74.573977][ T6558]  dump_stack_lvl+0xf2/0x150
[   74.578600][ T6558]  dump_stack+0x15/0x1a
[   74.582850][ T6558]  should_fail_ex+0x223/0x230
[   74.587536][ T6558]  should_fail+0xb/0x10
[   74.591701][ T6558]  should_fail_usercopy+0x1a/0x20
[   74.596738][ T6558]  _copy_from_user+0x1e/0xb0
[   74.601362][ T6558]  write_ldt+0x71/0x480
[   74.605614][ T6558]  __se_sys_modify_ldt+0x6e/0x250
[   74.610671][ T6558]  x64_sys_call+0x2af4/0x2dc0
[   74.615425][ T6558]  do_syscall_64+0xc9/0x1c0
[   74.619931][ T6558]  ? clear_bhb_loop+0x55/0xb0
[   74.624628][ T6558]  ? clear_bhb_loop+0x55/0xb0
[   74.629312][ T6558]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.635252][ T6558] RIP: 0033:0x7fd70d695d29
[   74.639680][ T6558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.659299][ T6558] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 000000000000009a
[   74.667739][ T6558] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   74.675742][ T6558] RDX: 0000000000000010 RSI: 00000000200001c0 RDI: 0000000000000001
[   74.683774][ T6558] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   74.691838][ T6558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.699854][ T6558] R13: 0000000000000000 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   74.707837][ T6558]  </TASK>
[   74.737621][ T6565] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1142'.
[   74.771479][ T6569] IPVS: length: 93 != 24
[   74.883567][ T6582] FAULT_INJECTION: forcing a failure.
[   74.883567][ T6582] name failslab, interval 1, probability 0, space 0, times 0
[   74.896390][ T6582] CPU: 1 UID: 0 PID: 6582 Comm: syz.1.1150 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   74.907086][ T6582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   74.917148][ T6582] Call Trace:
[   74.920437][ T6582]  <TASK>
[   74.923378][ T6582]  dump_stack_lvl+0xf2/0x150
[   74.928005][ T6582]  dump_stack+0x15/0x1a
[   74.932318][ T6582]  should_fail_ex+0x223/0x230
[   74.937026][ T6582]  ? nh_notifier_info_init+0xc8/0x4b0
[   74.942620][ T6582]  should_failslab+0x8f/0xb0
[   74.947372][ T6582]  __kmalloc_cache_noprof+0x4e/0x320
[   74.952698][ T6582]  nh_notifier_info_init+0xc8/0x4b0
[   74.957915][ T6582]  call_nexthop_notifiers+0xa7/0x230
[   74.963322][ T6582]  remove_nexthop+0x23/0x110
[   74.967921][ T6582]  rtm_del_nexthop+0x34c/0x360
[   74.972768][ T6582]  ? __pfx_rtm_del_nexthop+0x10/0x10
[   74.978086][ T6582]  rtnetlink_rcv_msg+0x6aa/0x710
[   74.983048][ T6582]  ? __dev_queue_xmit+0x186/0x2090
[   74.988220][ T6582]  netlink_rcv_skb+0x12c/0x230
[   74.993068][ T6582]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   74.998546][ T6582]  rtnetlink_rcv+0x1c/0x30
[   75.003017][ T6582]  netlink_unicast+0x599/0x670
[   75.007796][ T6582]  netlink_sendmsg+0x5cc/0x6e0
[   75.012654][ T6582]  ? __pfx_netlink_sendmsg+0x10/0x10
[   75.017952][ T6582]  __sock_sendmsg+0x140/0x180
[   75.022649][ T6582]  ____sys_sendmsg+0x312/0x410
[   75.027483][ T6582]  __sys_sendmsg+0x19d/0x230
[   75.032176][ T6582]  __x64_sys_sendmsg+0x46/0x50
[   75.036953][ T6582]  x64_sys_call+0x2734/0x2dc0
[   75.041676][ T6582]  do_syscall_64+0xc9/0x1c0
[   75.046230][ T6582]  ? clear_bhb_loop+0x55/0xb0
[   75.050940][ T6582]  ? clear_bhb_loop+0x55/0xb0
[   75.055624][ T6582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.061649][ T6582] RIP: 0033:0x7fd70d695d29
[   75.066069][ T6582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.085749][ T6582] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.094207][ T6582] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   75.102181][ T6582] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000009
[   75.110202][ T6582] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   75.118175][ T6582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.126149][ T6582] R13: 0000000000000000 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   75.134175][ T6582]  </TASK>
[   75.189478][ T6589] loop3: detected capacity change from 0 to 512
[   75.209795][ T6589] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   75.251795][ T6598] IPVS: length: 93 != 24
[   75.262477][ T6589] EXT4-fs (loop3): 1 truncate cleaned up
[   75.280548][ T6589] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.332848][ T6589] IPv6: NLM_F_CREATE should be specified when creating new route
[   75.375019][ T6614] loop1: detected capacity change from 0 to 2048
[   75.400094][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.414708][ T6614] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.416360][ T6621] FAULT_INJECTION: forcing a failure.
[   75.416360][ T6621] name failslab, interval 1, probability 0, space 0, times 0
[   75.439316][ T6614] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   75.439463][ T6621] CPU: 1 UID: 0 PID: 6621 Comm: syz.5.1166 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   75.455536][ T6614] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[   75.464754][ T6621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   75.464817][ T6621] Call Trace:
[   75.464826][ T6621]  <TASK>
[   75.464841][ T6621]  dump_stack_lvl+0xf2/0x150
[   75.464889][ T6621]  dump_stack+0x15/0x1a
[   75.464930][ T6621]  should_fail_ex+0x223/0x230
[   75.464958][ T6621]  ? nfnl_osf_add_callback+0x13a/0x2c0
[   75.465066][ T6621]  should_failslab+0x8f/0xb0
[   75.465100][ T6621]  __kmalloc_cache_noprof+0x4e/0x320
[   75.465171][ T6621]  nfnl_osf_add_callback+0x13a/0x2c0
[   75.465197][ T6621]  nfnetlink_rcv_msg+0x4a9/0x570
[   75.465314][ T6621]  netlink_rcv_skb+0x12c/0x230
[   75.465350][ T6621]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   75.465447][ T6621]  nfnetlink_rcv+0x16c/0x15d0
[   75.477747][ T6614] EXT4-fs (loop1): This should not happen!! Data will be lost
[   75.477747][ T6614] 
[   75.487754][ T6621]  ? kmem_cache_free+0xdc/0x2d0
[   75.487794][ T6621]  ? nlmon_xmit+0x51/0x60
[   75.487819][ T6621]  ? __kfree_skb+0x102/0x150
[   75.491937][ T6614] EXT4-fs (loop1): Total free blocks count 0
[   75.494017][ T6621]  ? consume_skb+0x49/0x160
[   75.498593][ T6614] EXT4-fs (loop1): Free/Dirty block details
[   75.502733][ T6621]  ? nlmon_xmit+0x51/0x60
[   75.507420][ T6614] EXT4-fs (loop1): free_blocks=2415919504
[   75.512882][ T6621]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   75.512919][ T6621]  ? __dev_queue_xmit+0xb6e/0x2090
[   75.517508][ T6614] EXT4-fs (loop1): dirty_blocks=48
[   75.522781][ T6621]  ? ref_tracker_free+0x3a5/0x410
[   75.522879][ T6621]  ? __dev_queue_xmit+0x186/0x2090
[   75.522916][ T6621]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   75.522969][ T6621]  netlink_unicast+0x599/0x670
[   75.522997][ T6621]  netlink_sendmsg+0x5cc/0x6e0
[   75.523051][ T6621]  ? __pfx_netlink_sendmsg+0x10/0x10
[   75.523083][ T6621]  __sock_sendmsg+0x140/0x180
[   75.523123][ T6621]  ____sys_sendmsg+0x312/0x410
[   75.523157][ T6621]  __sys_sendmsg+0x19d/0x230
[   75.523269][ T6621]  __x64_sys_sendmsg+0x46/0x50
[   75.523299][ T6621]  x64_sys_call+0x2734/0x2dc0
[   75.523323][ T6621]  do_syscall_64+0xc9/0x1c0
[   75.523347][ T6621]  ? clear_bhb_loop+0x55/0xb0
[   75.523402][ T6621]  ? clear_bhb_loop+0x55/0xb0
[   75.523429][ T6621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.523476][ T6621] RIP: 0033:0x7f3bc4a45d29
[   75.528759][ T6614] EXT4-fs (loop1): Block reservation details
[   75.533680][ T6621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.533706][ T6621] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246
[   75.538454][ T6614] EXT4-fs (loop1): i_reserved_data_blocks=3
[   75.556588][ T6624] FAULT_INJECTION: forcing a failure.
[   75.556588][ T6624] name failslab, interval 1, probability 0, space 0, times 0
[   75.558234][ T6621]  ORIG_RAX: 000000000000002e
[   75.747260][ T6621] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   75.755382][ T6621] RDX: 0000000000000090 RSI: 00000000200007c0 RDI: 0000000000000003
[   75.763358][ T6621] RBP: 00007f3bc30b7090 R08: 0000000000000000 R09: 0000000000000000
[   75.771337][ T6621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.779311][ T6621] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   75.787296][ T6621]  </TASK>
[   75.790428][ T6624] CPU: 0 UID: 0 PID: 6624 Comm: syz.3.1165 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   75.801219][ T6624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   75.811286][ T6624] Call Trace:
[   75.814580][ T6624]  <TASK>
[   75.817530][ T6624]  dump_stack_lvl+0xf2/0x150
[   75.822179][ T6624]  dump_stack+0x15/0x1a
[   75.826432][ T6624]  should_fail_ex+0x223/0x230
[   75.831142][ T6624]  ? audit_log_d_path+0x96/0x250
[   75.836122][ T6624]  should_failslab+0x8f/0xb0
[   75.840779][ T6624]  __kmalloc_cache_noprof+0x4e/0x320
[   75.846155][ T6624]  audit_log_d_path+0x96/0x250
[   75.850958][ T6624]  ? __rcu_read_unlock+0x4e/0x70
[   75.856006][ T6624]  audit_log_d_path_exe+0x42/0x70
[   75.861063][ T6624]  audit_log_task+0x192/0x1c0
[   75.865800][ T6624]  audit_seccomp+0x68/0x130
[   75.870407][ T6624]  __seccomp_filter+0x6fa/0x1180
[   75.875506][ T6624]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   75.881258][ T6624]  ? vfs_write+0x596/0x920
[   75.885717][ T6624]  ? putname+0xcf/0xf0
[   75.889807][ T6624]  __secure_computing+0x9f/0x1c0
[   75.894874][ T6624]  syscall_trace_enter+0xd1/0x1f0
[   75.899927][ T6624]  ? fpregs_assert_state_consistent+0x83/0xa0
[   75.906020][ T6624]  do_syscall_64+0xaa/0x1c0
[   75.910546][ T6624]  ? clear_bhb_loop+0x55/0xb0
[   75.915277][ T6624]  ? clear_bhb_loop+0x55/0xb0
[   75.919994][ T6624]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.926018][ T6624] RIP: 0033:0x7ff4065e5d29
[   75.930455][ T6624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.950169][ T6624] RSP: 002b:00007ff404c51038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   75.958654][ T6624] RAX: ffffffffffffffda RBX: 00007ff4067d5fa0 RCX: 00007ff4065e5d29
[   75.966685][ T6624] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000020000200
[   75.974694][ T6624] RBP: 00007ff404c51090 R08: 0000000000000000 R09: 0000000000000000
[   75.982678][ T6624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.990666][ T6624] R13: 0000000000000000 R14: 00007ff4067d5fa0 R15: 00007ffdd1d8bc28
[   75.998781][ T6624]  </TASK>
[   76.046220][ T6630] FAULT_INJECTION: forcing a failure.
[   76.046220][ T6630] name failslab, interval 1, probability 0, space 0, times 0
[   76.058985][ T6630] CPU: 0 UID: 0 PID: 6630 Comm: syz.5.1168 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   76.069775][ T6630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.079891][ T6630] Call Trace:
[   76.083184][ T6630]  <TASK>
[   76.086126][ T6630]  dump_stack_lvl+0xf2/0x150
[   76.090828][ T6630]  dump_stack+0x15/0x1a
[   76.095133][ T6630]  should_fail_ex+0x223/0x230
[   76.099862][ T6630]  should_failslab+0x8f/0xb0
[   76.104554][ T6630]  kmem_cache_alloc_noprof+0x52/0x320
[   76.109961][ T6630]  ? skb_clone+0x154/0x1f0
[   76.114581][ T6630]  skb_clone+0x154/0x1f0
[   76.118879][ T6630]  __netlink_deliver_tap+0x2bd/0x4f0
[   76.124246][ T6630]  netlink_unicast+0x64a/0x670
[   76.129071][ T6630]  netlink_sendmsg+0x5cc/0x6e0
[   76.133934][ T6630]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.139223][ T6630]  __sock_sendmsg+0x140/0x180
[   76.143931][ T6630]  ____sys_sendmsg+0x312/0x410
[   76.148765][ T6630]  __sys_sendmsg+0x19d/0x230
[   76.153372][ T6630]  __x64_sys_sendmsg+0x46/0x50
[   76.158177][ T6630]  x64_sys_call+0x2734/0x2dc0
[   76.162873][ T6630]  do_syscall_64+0xc9/0x1c0
[   76.167423][ T6630]  ? clear_bhb_loop+0x55/0xb0
[   76.172204][ T6630]  ? clear_bhb_loop+0x55/0xb0
[   76.176893][ T6630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.182836][ T6630] RIP: 0033:0x7f3bc4a45d29
[   76.187255][ T6630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.206879][ T6630] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.215147][ T6635] IPVS: length: 93 != 24
[   76.215430][ T6630] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   76.227712][ T6630] RDX: 0000000000040000 RSI: 00000000200000c0 RDI: 0000000000000003
[   76.235900][ T6630] RBP: 00007f3bc30b7090 R08: 0000000000000000 R09: 0000000000000000
[   76.244012][ T6630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.252096][ T6630] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   76.260096][ T6630]  </TASK>
[   76.311636][ T6643] FAULT_INJECTION: forcing a failure.
[   76.311636][ T6643] name failslab, interval 1, probability 0, space 0, times 0
[   76.324439][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz.2.1175 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   76.335158][ T6643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   76.345343][ T6643] Call Trace:
[   76.348642][ T6643]  <TASK>
[   76.351581][ T6643]  dump_stack_lvl+0xf2/0x150
[   76.356207][ T6643]  dump_stack+0x15/0x1a
[   76.360409][ T6643]  should_fail_ex+0x223/0x230
[   76.365115][ T6643]  should_failslab+0x8f/0xb0
[   76.369803][ T6643]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   76.375569][ T6643]  ? __d_alloc+0x3d/0x340
[   76.380032][ T6643]  __d_alloc+0x3d/0x340
[   76.384208][ T6643]  d_alloc_pseudo+0x1e/0x80
[   76.388731][ T6643]  alloc_file_pseudo+0x70/0x140
[   76.393919][ T6643]  ? __se_sys_memfd_create+0x230/0x5c0
[   76.399407][ T6643]  __shmem_file_setup+0x1bb/0x1f0
[   76.404542][ T6643]  shmem_file_setup+0x3b/0x50
[   76.409235][ T6643]  __se_sys_memfd_create+0x31d/0x5c0
[   76.414594][ T6643]  __x64_sys_memfd_create+0x31/0x40
[   76.419870][ T6643]  x64_sys_call+0x2d4c/0x2dc0
[   76.424627][ T6643]  do_syscall_64+0xc9/0x1c0
[   76.429178][ T6643]  ? clear_bhb_loop+0x55/0xb0
[   76.433895][ T6643]  ? clear_bhb_loop+0x55/0xb0
[   76.438662][ T6643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.444584][ T6643] RIP: 0033:0x7f9d81595d29
[   76.449005][ T6643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.468648][ T6643] RSP: 002b:00007f9d7fc06d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   76.477147][ T6643] RAX: ffffffffffffffda RBX: 00000000000005d1 RCX: 00007f9d81595d29
[   76.485140][ T6643] RDX: 00007f9d7fc06dec RSI: 0000000000000000 RDI: 00007f9d81612469
[   76.493139][ T6643] RBP: 0000000020000840 R08: 00007f9d7fc06b07 R09: 0000000000000000
[   76.501146][ T6643] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   76.509154][ T6643] R13: 00007f9d7fc06dec R14: 00007f9d7fc06df0 R15: 00007ffd3e9246d8
[   76.517194][ T6643]  </TASK>
[   76.528321][   T29] kauditd_printk_skb: 5986 callbacks suppressed
[   76.528336][   T29] audit: type=1326 audit(1736232675.107:12630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.530563][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.535824][   T29] audit: type=1326 audit(1736232675.117:12631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.638318][   T29] audit: type=1326 audit(1736232675.147:12632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.662721][   T29] audit: type=1326 audit(1736232675.147:12633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.3.1173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.695232][   T29] audit: type=1326 audit(1736232675.267:12634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.3.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.718807][   T29] audit: type=1326 audit(1736232675.267:12635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.3.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.743174][   T29] audit: type=1326 audit(1736232675.267:12636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.3.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.766815][   T29] audit: type=1326 audit(1736232675.267:12637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.3.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.791252][   T29] audit: type=1326 audit(1736232675.267:12638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.3.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.794394][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   76.814778][   T29] audit: type=1326 audit(1736232675.267:12639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6656 comm="syz.3.1179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   76.823762][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   76.858287][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   76.859614][ T6666] IPVS: length: 93 != 24
[   76.886444][ T6662] loop3: detected capacity change from 0 to 512
[   76.906486][ T6662] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.1181: casefold flag without casefold feature
[   76.932019][ T6674] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   76.952818][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   76.961948][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   76.988809][ T6662] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1181: couldn't read orphan inode 15 (err -117)
[   77.011548][ T6662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.051581][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   77.125877][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   77.134903][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   77.146907][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1180'.
[   77.147013][ T6689] FAULT_INJECTION: forcing a failure.
[   77.147013][ T6689] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.169016][ T6689] CPU: 1 UID: 0 PID: 6689 Comm: syz.2.1188 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   77.179780][ T6689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.189929][ T6689] Call Trace:
[   77.193302][ T6689]  <TASK>
[   77.196254][ T6689]  dump_stack_lvl+0xf2/0x150
[   77.200917][ T6689]  dump_stack+0x15/0x1a
[   77.205154][ T6689]  should_fail_ex+0x223/0x230
[   77.210059][ T6689]  should_fail+0xb/0x10
[   77.214230][ T6689]  should_fail_usercopy+0x1a/0x20
[   77.219271][ T6689]  _copy_to_user+0x20/0xa0
[   77.223717][ T6689]  simple_read_from_buffer+0xa0/0x110
[   77.229112][ T6689]  proc_fail_nth_read+0xf9/0x140
[   77.234069][ T6689]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   77.239691][ T6689]  vfs_read+0x1a2/0x700
[   77.243917][ T6689]  ? __rcu_read_unlock+0x4e/0x70
[   77.248985][ T6689]  ? __fget_files+0x17c/0x1c0
[   77.253754][ T6689]  ksys_read+0xe8/0x1b0
[   77.257936][ T6689]  __x64_sys_read+0x42/0x50
[   77.262590][ T6689]  x64_sys_call+0x2874/0x2dc0
[   77.267324][ T6689]  do_syscall_64+0xc9/0x1c0
[   77.271929][ T6689]  ? clear_bhb_loop+0x55/0xb0
[   77.276708][ T6689]  ? clear_bhb_loop+0x55/0xb0
[   77.281398][ T6689]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.287390][ T6689] RIP: 0033:0x7f9d8159473c
[   77.291814][ T6689] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   77.311608][ T6689] RSP: 002b:00007f9d7fbe6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   77.320048][ T6689] RAX: ffffffffffffffda RBX: 00007f9d81786080 RCX: 00007f9d8159473c
[   77.328072][ T6689] RDX: 000000000000000f RSI: 00007f9d7fbe60a0 RDI: 0000000000000004
[   77.336139][ T6689] RBP: 00007f9d7fbe6090 R08: 0000000000000000 R09: 0000000000000000
[   77.344151][ T6689] R10: 0000000020001f00 R11: 0000000000000246 R12: 0000000000000001
[   77.352128][ T6689] R13: 0000000000000001 R14: 00007f9d81786080 R15: 00007ffd3e9246d8
[   77.360115][ T6689]  </TASK>
[   77.406350][ T6695] IPVS: length: 93 != 24
[   77.468482][ T3308] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.518037][ T6708] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1200'.
[   77.580400][ T6708] loop7: detected capacity change from 0 to 16384
[   77.620118][ T6708] loop7: detected capacity change from 16384 to 16383
[   77.643139][ T6727] IPVS: length: 93 != 24
[   77.654551][ T6721] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   77.661960][ T6721] vhci_hcd: invalid port number 23
[   77.823442][ T6751] loop2: detected capacity change from 0 to 128
[   77.852494][ T6751] FAT-fs (loop2): bogus number of reserved sectors
[   77.859191][ T6751] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[   77.868558][ T6751] FAT-fs (loop2): Can't find a valid FAT filesystem
[   77.878549][ T6758] IPVS: length: 93 != 24
[   77.940318][ T6759] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   77.948383][ T6759] vhci_hcd: invalid port number 23
[   78.001520][ T6775] FAULT_INJECTION: forcing a failure.
[   78.001520][ T6775] name failslab, interval 1, probability 0, space 0, times 0
[   78.014344][ T6775] CPU: 1 UID: 0 PID: 6775 Comm: syz.2.1232 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   78.025090][ T6775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.035231][ T6775] Call Trace:
[   78.038589][ T6775]  <TASK>
[   78.041527][ T6775]  dump_stack_lvl+0xf2/0x150
[   78.046163][ T6775]  dump_stack+0x15/0x1a
[   78.050385][ T6775]  should_fail_ex+0x223/0x230
[   78.055093][ T6775]  ? nd_alloc_stack+0x4e/0x90
[   78.059812][ T6775]  should_failslab+0x8f/0xb0
[   78.064495][ T6775]  __kmalloc_cache_noprof+0x4e/0x320
[   78.069859][ T6775]  nd_alloc_stack+0x4e/0x90
[   78.074425][ T6775]  pick_link+0x745/0x7e0
[   78.078677][ T6775]  ? selinux_inode_permission+0x341/0x410
[   78.084560][ T6775]  step_into+0x756/0x840
[   78.088964][ T6775]  link_path_walk+0x54c/0x820
[   78.093657][ T6775]  path_openat+0x1af/0x1fa0
[   78.098228][ T6775]  do_filp_open+0x107/0x230
[   78.102836][ T6775]  ? __pfx_shmem_put_link+0x10/0x10
[   78.108058][ T6775]  ? __pfx_shmem_put_link+0x10/0x10
[   78.113343][ T6775]  do_open_execat+0xd0/0x280
[   78.117968][ T6775]  alloc_bprm+0x28/0x5d0
[   78.122286][ T6775]  do_execveat_common+0x134/0x800
[   78.127420][ T6775]  __x64_sys_execve+0x5a/0x70
[   78.132181][ T6775]  x64_sys_call+0x1333/0x2dc0
[   78.136930][ T6775]  do_syscall_64+0xc9/0x1c0
[   78.141532][ T6775]  ? clear_bhb_loop+0x55/0xb0
[   78.146218][ T6775]  ? clear_bhb_loop+0x55/0xb0
[   78.150904][ T6775]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.156824][ T6775] RIP: 0033:0x7f9d81595d29
[   78.161265][ T6775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.180962][ T6775] RSP: 002b:00007f9d7fc07038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   78.189382][ T6775] RAX: ffffffffffffffda RBX: 00007f9d81785fa0 RCX: 00007f9d81595d29
[   78.197399][ T6775] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[   78.205395][ T6775] RBP: 00007f9d7fc07090 R08: 0000000000000000 R09: 0000000000000000
[   78.213413][ T6775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.221392][ T6775] R13: 0000000000000000 R14: 00007f9d81785fa0 R15: 00007ffd3e9246d8
[   78.229377][ T6775]  </TASK>
[   78.302355][ T6791] IPVS: length: 93 != 24
[   78.457744][ T6816] FAULT_INJECTION: forcing a failure.
[   78.457744][ T6816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.471138][ T6816] CPU: 0 UID: 0 PID: 6816 Comm: syz.3.1244 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   78.481902][ T6816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.492005][ T6816] Call Trace:
[   78.495287][ T6816]  <TASK>
[   78.498229][ T6816]  dump_stack_lvl+0xf2/0x150
[   78.502872][ T6816]  dump_stack+0x15/0x1a
[   78.507050][ T6816]  should_fail_ex+0x223/0x230
[   78.511769][ T6816]  should_fail+0xb/0x10
[   78.515948][ T6816]  should_fail_usercopy+0x1a/0x20
[   78.521100][ T6816]  _copy_to_user+0x20/0xa0
[   78.525554][ T6816]  simple_read_from_buffer+0xa0/0x110
[   78.530959][ T6816]  proc_fail_nth_read+0xf9/0x140
[   78.535932][ T6816]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   78.541546][ T6816]  vfs_read+0x1a2/0x700
[   78.545773][ T6816]  ? __rcu_read_unlock+0x4e/0x70
[   78.550738][ T6816]  ? __fget_files+0x17c/0x1c0
[   78.555573][ T6816]  ksys_read+0xe8/0x1b0
[   78.559751][ T6816]  __x64_sys_read+0x42/0x50
[   78.564402][ T6816]  x64_sys_call+0x2874/0x2dc0
[   78.569166][ T6816]  do_syscall_64+0xc9/0x1c0
[   78.573741][ T6816]  ? clear_bhb_loop+0x55/0xb0
[   78.578954][ T6816]  ? clear_bhb_loop+0x55/0xb0
[   78.583699][ T6816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.589692][ T6816] RIP: 0033:0x7ff4065e473c
[   78.594127][ T6816] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   78.613829][ T6816] RSP: 002b:00007ff404c51030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   78.622322][ T6816] RAX: ffffffffffffffda RBX: 00007ff4067d5fa0 RCX: 00007ff4065e473c
[   78.630366][ T6816] RDX: 000000000000000f RSI: 00007ff404c510a0 RDI: 0000000000000003
[   78.638454][ T6816] RBP: 00007ff404c51090 R08: 0000000000000000 R09: 0000000000000000
[   78.646463][ T6816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.654480][ T6816] R13: 0000000000000001 R14: 00007ff4067d5fa0 R15: 00007ffdd1d8bc28
[   78.662521][ T6816]  </TASK>
[   78.685555][ T6822] IPVS: length: 93 != 24
[   78.754797][ T6830] FAULT_INJECTION: forcing a failure.
[   78.754797][ T6830] name failslab, interval 1, probability 0, space 0, times 0
[   78.767679][ T6830] CPU: 1 UID: 0 PID: 6830 Comm: syz.1.1254 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   78.778379][ T6830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.788543][ T6830] Call Trace:
[   78.791830][ T6830]  <TASK>
[   78.794792][ T6830]  dump_stack_lvl+0xf2/0x150
[   78.799426][ T6830]  dump_stack+0x15/0x1a
[   78.803623][ T6830]  should_fail_ex+0x223/0x230
[   78.808344][ T6830]  should_failslab+0x8f/0xb0
[   78.812986][ T6830]  kmem_cache_alloc_noprof+0x52/0x320
[   78.818383][ T6830]  ? skb_clone+0x154/0x1f0
[   78.822846][ T6830]  skb_clone+0x154/0x1f0
[   78.827133][ T6830]  __netlink_deliver_tap+0x2bd/0x4f0
[   78.832439][ T6830]  netlink_unicast+0x64a/0x670
[   78.837214][ T6830]  netlink_sendmsg+0x5cc/0x6e0
[   78.842040][ T6830]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.847395][ T6830]  __sock_sendmsg+0x140/0x180
[   78.852165][ T6830]  ____sys_sendmsg+0x312/0x410
[   78.856946][ T6830]  __sys_sendmsg+0x19d/0x230
[   78.861567][ T6830]  __x64_sys_sendmsg+0x46/0x50
[   78.866345][ T6830]  x64_sys_call+0x2734/0x2dc0
[   78.871080][ T6830]  do_syscall_64+0xc9/0x1c0
[   78.875590][ T6830]  ? clear_bhb_loop+0x55/0xb0
[   78.880365][ T6830]  ? clear_bhb_loop+0x55/0xb0
[   78.885096][ T6830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.891126][ T6830] RIP: 0033:0x7fd70d695d29
[   78.895556][ T6830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.915275][ T6830] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.923698][ T6830] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   78.931673][ T6830] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[   78.939689][ T6830] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   78.947663][ T6830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.955643][ T6830] R13: 0000000000000000 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   78.963717][ T6830]  </TASK>
[   79.008673][ T6836] FAULT_INJECTION: forcing a failure.
[   79.008673][ T6836] name failslab, interval 1, probability 0, space 0, times 0
[   79.021380][ T6836] CPU: 1 UID: 0 PID: 6836 Comm: syz.5.1258 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   79.032243][ T6836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.042319][ T6836] Call Trace:
[   79.045605][ T6836]  <TASK>
[   79.048540][ T6836]  dump_stack_lvl+0xf2/0x150
[   79.053173][ T6836]  dump_stack+0x15/0x1a
[   79.057406][ T6836]  should_fail_ex+0x223/0x230
[   79.062105][ T6836]  should_failslab+0x8f/0xb0
[   79.066781][ T6836]  kmem_cache_alloc_noprof+0x52/0x320
[   79.072222][ T6836]  ? skb_clone+0x154/0x1f0
[   79.076665][ T6836]  skb_clone+0x154/0x1f0
[   79.081025][ T6836]  __netlink_deliver_tap+0x2bd/0x4f0
[   79.086331][ T6836]  netlink_unicast+0x64a/0x670
[   79.091154][ T6836]  netlink_sendmsg+0x5cc/0x6e0
[   79.096028][ T6836]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.101401][ T6836]  __sock_sendmsg+0x140/0x180
[   79.106101][ T6836]  ____sys_sendmsg+0x312/0x410
[   79.110963][ T6836]  __sys_sendmsg+0x19d/0x230
[   79.115606][ T6836]  __x64_sys_sendmsg+0x46/0x50
[   79.120486][ T6836]  x64_sys_call+0x2734/0x2dc0
[   79.125199][ T6836]  do_syscall_64+0xc9/0x1c0
[   79.129718][ T6836]  ? clear_bhb_loop+0x55/0xb0
[   79.134488][ T6836]  ? clear_bhb_loop+0x55/0xb0
[   79.139268][ T6836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.145276][ T6836] RIP: 0033:0x7f3bc4a45d29
[   79.149704][ T6836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.169555][ T6836] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.177992][ T6836] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   79.186105][ T6836] RDX: 0000000002000800 RSI: 00000000200000c0 RDI: 0000000000000006
[   79.194103][ T6836] RBP: 00007f3bc30b7090 R08: 0000000000000000 R09: 0000000000000000
[   79.202144][ T6836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.210149][ T6836] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   79.218213][ T6836]  </TASK>
[   79.234266][ T6844] netlink: 'syz.3.1257': attribute type 29 has an invalid length.
[   79.248758][ T6843] netlink: 'syz.3.1257': attribute type 29 has an invalid length.
[   79.258246][ T6844] unsupported nla_type 40
[   79.407207][ T6854] IPVS: length: 93 != 24
[   79.739046][ T6885] IPVS: length: 93 != 24
[   79.757344][ T6887] loop5: detected capacity change from 0 to 512
[   79.768058][ T6889] loop1: detected capacity change from 0 to 512
[   79.777600][ T6889] EXT4-fs: inline encryption not supported
[   79.813510][ T6889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.826438][ T6889] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.850486][ T6889] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.1279: corrupted inode contents
[   79.862908][ T6889] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.1279: mark_inode_dirty error
[   79.876731][ T6902] FAULT_INJECTION: forcing a failure.
[   79.876731][ T6902] name failslab, interval 1, probability 0, space 0, times 0
[   79.889409][ T6902] CPU: 1 UID: 0 PID: 6902 Comm: syz.5.1285 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   79.891394][ T6889] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.1279: corrupted inode contents
[   79.900113][ T6902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.900132][ T6902] Call Trace:
[   79.900140][ T6902]  <TASK>
[   79.900150][ T6902]  dump_stack_lvl+0xf2/0x150
[   79.932795][ T6902]  dump_stack+0x15/0x1a
[   79.933403][ T6889] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.1279: corrupted inode contents
[   79.936980][ T6902]  should_fail_ex+0x223/0x230
[   79.949113][ T6889] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.1279: mark_inode_dirty error
[   79.953444][ T6902]  should_failslab+0x8f/0xb0
[   79.953486][ T6902]  kmem_cache_alloc_noprof+0x52/0x320
[   79.953514][ T6902]  ? getname_flags+0x81/0x3b0
[   79.953541][ T6902]  getname_flags+0x81/0x3b0
[   79.953625][ T6902]  user_path_at+0x26/0x120
[   79.953653][ T6902]  __se_sys_name_to_handle_at+0xfa/0x560
[   79.953691][ T6902]  ? ksys_write+0x176/0x1b0
[   79.953751][ T6902]  __x64_sys_name_to_handle_at+0x67/0x80
[   79.953795][ T6902]  x64_sys_call+0xe82/0x2dc0
[   79.953839][ T6902]  do_syscall_64+0xc9/0x1c0
[   79.953868][ T6902]  ? clear_bhb_loop+0x55/0xb0
[   79.953894][ T6902]  ? clear_bhb_loop+0x55/0xb0
[   79.953921][ T6902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.953998][ T6902] RIP: 0033:0x7f3bc4a45d29
[   79.954016][ T6902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.954040][ T6902] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246
[   79.967207][ T6889] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.1279: corrupted inode contents
[   79.969861][ T6902]  ORIG_RAX: 000000000000012f
[   79.969873][ T6902] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   79.975620][ T6889] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1279: mark_inode_dirty error
[   79.979955][ T6902] RDX: 0000000020000840 RSI: 0000000020004740 RDI: 0000000000000003
[   79.979974][ T6902] RBP: 00007f3bc30b7090 R08: 0000000000001200 R09: 0000000000000000
[   79.979991][ T6902] R10: 00000000200047c0 R11: 0000000000000246 R12: 0000000000000001
[   79.980007][ T6902] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   79.980033][ T6902]  </TASK>
[   80.134976][ T6889] EXT4-fs error (device loop1): ext4_do_update_inode:5153: inode #2: comm syz.1.1279: corrupted inode contents
[   80.147764][ T6889] EXT4-fs error (device loop1): ext4_dirty_inode:6041: inode #2: comm syz.1.1279: mark_inode_dirty error
[   80.159643][ T6914] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   80.218745][ T6921] IPVS: length: 93 != 24
[   80.257144][ T6889] vhci_hcd: default hub control req: 4001 v0220 i0001 l0
[   80.309155][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.465829][ T6949] IPVS: length: 93 != 24
[   80.512829][ T6953] loop2: detected capacity change from 0 to 128
[   80.519530][ T6953] vfat: Unknown parameter ''
[   80.567410][ T6955] FAULT_INJECTION: forcing a failure.
[   80.567410][ T6955] name failslab, interval 1, probability 0, space 0, times 0
[   80.580163][ T6955] CPU: 1 UID: 0 PID: 6955 Comm: syz.1.1309 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   80.590862][ T6955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.600940][ T6955] Call Trace:
[   80.604255][ T6955]  <TASK>
[   80.607300][ T6955]  dump_stack_lvl+0xf2/0x150
[   80.611925][ T6955]  dump_stack+0x15/0x1a
[   80.616179][ T6955]  should_fail_ex+0x223/0x230
[   80.620897][ T6955]  ? audit_log_d_path+0x96/0x250
[   80.625880][ T6955]  should_failslab+0x8f/0xb0
[   80.630524][ T6955]  __kmalloc_cache_noprof+0x4e/0x320
[   80.635881][ T6955]  audit_log_d_path+0x96/0x250
[   80.640706][ T6955]  ? __rcu_read_unlock+0x4e/0x70
[   80.645692][ T6955]  audit_log_d_path_exe+0x42/0x70
[   80.650896][ T6955]  audit_log_task+0x192/0x1c0
[   80.655654][ T6955]  audit_seccomp+0x68/0x130
[   80.660198][ T6955]  __seccomp_filter+0x6fa/0x1180
[   80.665181][ T6955]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   80.671001][ T6955]  ? vfs_write+0x596/0x920
[   80.675574][ T6955]  __secure_computing+0x9f/0x1c0
[   80.680563][ T6955]  syscall_trace_enter+0xd1/0x1f0
[   80.685720][ T6955]  ? fpregs_assert_state_consistent+0x83/0xa0
[   80.691833][ T6955]  do_syscall_64+0xaa/0x1c0
[   80.696382][ T6955]  ? clear_bhb_loop+0x55/0xb0
[   80.701089][ T6955]  ? clear_bhb_loop+0x55/0xb0
[   80.705845][ T6955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.711899][ T6955] RIP: 0033:0x7fd70d695d29
[   80.716325][ T6955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.735949][ T6955] RSP: 002b:00007fd70bd07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   80.744460][ T6955] RAX: ffffffffffffffda RBX: 00007fd70d885fa0 RCX: 00007fd70d695d29
[   80.752549][ T6955] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000020000200
[   80.760528][ T6955] RBP: 00007fd70bd07090 R08: 0000000000000000 R09: 0000000000000000
[   80.768504][ T6955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.776482][ T6955] R13: 0000000000000000 R14: 00007fd70d885fa0 R15: 00007ffe15a9e558
[   80.784466][ T6955]  </TASK>
[   80.874006][ T6958] lo speed is unknown, defaulting to 1000
[   80.960484][ T6979] FAULT_INJECTION: forcing a failure.
[   80.960484][ T6979] name failslab, interval 1, probability 0, space 0, times 0
[   80.973286][ T6979] CPU: 1 UID: 0 PID: 6979 Comm: syz.5.1315 Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   80.979237][ T6983] IPVS: length: 93 != 24
[   80.984056][ T6979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.984073][ T6979] Call Trace:
[   80.984081][ T6979]  <TASK>
[   80.984091][ T6979]  dump_stack_lvl+0xf2/0x150
[   80.984135][ T6979]  dump_stack+0x15/0x1a
[   80.984225][ T6979]  should_fail_ex+0x223/0x230
[   80.984257][ T6979]  should_failslab+0x8f/0xb0
[   80.984290][ T6979]  kmem_cache_alloc_noprof+0x52/0x320
[   80.984320][ T6979]  ? __mpol_dup+0x43/0x1b0
[   80.984378][ T6979]  __mpol_dup+0x43/0x1b0
[   80.984474][ T6979]  vma_dup_policy+0x2f/0x70
[   80.984503][ T6979]  __split_vma+0x26b/0x6a0
[   80.984533][ T6979]  vma_modify+0xd3/0x1e0
[   80.984558][ T6979]  vma_modify_policy+0xeb/0x120
[   80.984591][ T6979]  mbind_range+0x1d8/0x490
[   80.984692][ T6979]  __se_sys_set_mempolicy_home_node+0x35e/0x540
[   80.984728][ T6979]  __x64_sys_set_mempolicy_home_node+0x55/0x70
[   81.072337][ T6979]  x64_sys_call+0x2d10/0x2dc0
[   81.077100][ T6979]  do_syscall_64+0xc9/0x1c0
[   81.081629][ T6979]  ? clear_bhb_loop+0x55/0xb0
[   81.086462][ T6979]  ? clear_bhb_loop+0x55/0xb0
[   81.091174][ T6979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.097119][ T6979] RIP: 0033:0x7f3bc4a45d29
[   81.101558][ T6979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.121237][ T6979] RSP: 002b:00007f3bc30b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001c2
[   81.129683][ T6979] RAX: ffffffffffffffda RBX: 00007f3bc4c35fa0 RCX: 00007f3bc4a45d29
[   81.137673][ T6979] RDX: 0000000000000000 RSI: 000000000000a000 RDI: 0000000020349000
[   81.145837][ T6979] RBP: 00007f3bc30b7090 R08: 0000000000000000 R09: 0000000000000000
[   81.153889][ T6979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.161877][ T6979] R13: 0000000000000000 R14: 00007f3bc4c35fa0 R15: 00007ffdb7cb1238
[   81.169877][ T6979]  </TASK>
[   81.374027][ T7007] IPVS: length: 93 != 24
[   81.409033][ T7009] loop3: detected capacity change from 0 to 256
[   81.420639][ T7008] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.431454][ T7009] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ'
[   81.482604][ T7008] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.537674][ T7022] loop3: detected capacity change from 0 to 128
[   81.560550][ T7022] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   81.563477][ T7026] loop1: detected capacity change from 0 to 1024
[   81.579691][ T7022] ext4 filesystem being mounted at /246/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   81.591073][ T7008] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.605958][   T29] kauditd_printk_skb: 2475 callbacks suppressed
[   81.605976][   T29] audit: type=1400 audit(1736232680.187:15115): avc:  denied  { read append open } for  pid=7021 comm="syz.3.1332" path="/246/mnt/cpu.stat" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.655971][ T7026] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   81.666962][ T7026] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   81.681705][   T29] audit: type=1400 audit(1736232680.217:15116): avc:  denied  { ioctl } for  pid=7021 comm="syz.3.1332" path="/246/mnt/cpu.stat" dev="loop3" ino=12 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.706946][   T29] audit: type=1400 audit(1736232680.227:15117): avc:  denied  { write } for  pid=7021 comm="syz.3.1332" path="/246/mnt/bus" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.729718][   T29] audit: type=1400 audit(1736232680.227:15118): avc:  denied  { mounton } for  pid=7021 comm="syz.3.1332" path="/246/mnt/bus" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.753389][   T29] audit: type=1400 audit(1736232680.237:15119): avc:  denied  { lock } for  pid=7021 comm="syz.3.1332" path="/246/mnt/file0" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   81.781308][ T7026] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   81.791493][ T7026] EXT4-fs (loop1): external journal device major/minor numbers have changed
[   81.800289][ T7026] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[   81.816042][ T7008] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.827197][   T29] audit: type=1326 audit(1736232680.367:15120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   81.850735][   T29] audit: type=1326 audit(1736232680.367:15121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7021 comm="syz.3.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7ff4065e5d29 code=0x7ffc0000
[   81.874450][   T29] audit: type=1326 audit(1736232680.397:15122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f263bb05d29 code=0x7ffc0000
[   81.898273][   T29] audit: type=1326 audit(1736232680.397:15123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f263bb04690 code=0x7ffc0000
[   81.921922][   T29] audit: type=1326 audit(1736232680.397:15124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7031 comm="syz.0.1336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f263bb05d29 code=0x7ffc0000
[   81.967484][ T7026] Cannot find add_set index 0 as target
[   81.987969][ T7008] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.002680][ T7008] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.012280][ T7022] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[   82.023063][ T7040] $Hÿ: renamed from bond0 (while UP)
[   82.032959][ T7040] $Hÿ: entered promiscuous mode
[   82.038026][ T7040] bond_slave_0: entered promiscuous mode
[   82.043853][ T7040] bond_slave_1: entered promiscuous mode
[   82.058262][ T7008] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.082267][ T7008] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.110445][ T7045] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   82.117474][ T3308] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /246/mnt/lost+found: directory fails checksum at offset 1024
[   82.144094][ T3308] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   82.165591][ T7047] IPVS: length: 93 != 24
[   82.166457][ T3308] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /246/mnt/lost+found: directory fails checksum at offset 1024
[   82.186833][ T3308] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   82.201114][ T3308] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /246/mnt/lost+found: directory fails checksum at offset 1024
[   82.216699][ T3308] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   82.230277][ T3308] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /246/mnt/lost+found: directory fails checksum at offset 1024
[   82.269070][ T3308] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   82.296746][ T7056] __nla_validate_parse: 4 callbacks suppressed
[   82.296766][ T7056] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1345'.
[   82.303832][ T3308] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /246/mnt/lost+found: directory fails checksum at offset 1024
[   82.328338][ T3308] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   82.457462][ T7066] loop1: detected capacity change from 0 to 1024
[   82.472501][ T7066] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   82.483402][ T7066] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   82.494972][ T7066] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #32: comm syz.1.1349: iget: special inode unallocated
[   82.508072][ T7066] EXT4-fs (loop1): no journal found
[   82.513369][ T7066] EXT4-fs (loop1): can't get journal size
[   82.526597][ T7066] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #32: comm syz.1.1349: iget: special inode unallocated
[   82.540348][ T7066] EXT4-fs (loop1): failed to initialize system zone (-117)
[   82.547642][ T7066] EXT4-fs (loop1): mount failed
[   82.599614][ T7074] IPVS: length: 93 != 24
[   82.620191][  T558] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.681512][  T558] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.734909][  T558] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.764953][ T7082] Cannot find add_set index 0 as target
[   82.779337][ T7082] loop1: detected capacity change from 0 to 512
[   82.788981][  T558] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.803621][ T7082] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   82.821296][ T7082] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   82.838361][ T7082] EXT4-fs (loop1): 1 truncate cleaned up
[   82.844854][ T7082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.873178][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.876860][ T3308] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.921842][ T7084] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.929083][ T7084] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.982919][ T7084] veth0_to_team: left promiscuous mode
[   82.988511][ T7084] veth0_to_team: left allmulticast mode
[   83.008856][ T7084] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.023215][ T7084] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.058044][ T7084] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.066732][ T7084] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.075325][ T7084] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.083719][ T7084] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   83.096022][ T7088] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   83.149049][  T558] bridge_slave_1: left allmulticast mode
[   83.155585][  T558] bridge_slave_1: left promiscuous mode
[   83.161354][  T558] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.178138][  T558] bridge_slave_0: left allmulticast mode
[   83.183880][  T558] bridge_slave_0: left promiscuous mode
[   83.189705][  T558] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.195758][ T7104] IPVS: length: 93 != 24
[   83.314750][ T7118] syz.1.1370[7118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.314904][ T7118] syz.1.1370[7118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.326553][ T7118] syz.1.1370[7118] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.343297][  T558] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   83.366044][  T558] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   83.375987][  T558] bond0 (unregistering): Released all slaves
[   83.420701][ T7132] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   83.451771][  T558] hsr_slave_1: left promiscuous mode
[   83.476509][  T558] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.484011][  T558] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.494071][ T7141] loop2: detected capacity change from 0 to 128
[   83.500926][  T558] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.507252][ T7143] IPVS: length: 93 != 24
[   83.508356][  T558] batman_adv: batadv0: Removing interface: batadv_slave_1
[   83.531238][ T7141] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   83.545472][  T558] veth1_macvtap: left promiscuous mode
[   83.551086][  T558] veth0_macvtap: left promiscuous mode
[   83.556679][  T558] veth1_vlan: left promiscuous mode
[   83.561937][  T558] veth0_vlan: left promiscuous mode
[   83.567859][ T7141] ext4 filesystem being mounted at /259/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.679663][ T3300] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   83.700926][ T7152] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   83.732052][ T7152] vhci_hcd: invalid port number 23
[   83.747685][ T7093] lo speed is unknown, defaulting to 1000
[   83.765966][ T7159] loop2: detected capacity change from 0 to 1024
[   83.789570][ T7159] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   83.818802][ T7159] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   83.844649][ T7159] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: inode #32: comm syz.2.1382: iget: special inode unallocated
[   83.857543][ T7159] EXT4-fs (loop2): no journal found
[   83.862910][ T7159] EXT4-fs (loop2): can't get journal size
[   83.871757][ T7159] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #32: comm syz.2.1382: iget: special inode unallocated
[   83.885753][ T7093] chnl_net:caif_netlink_parms(): no params data found
[   83.898799][ T7159] EXT4-fs (loop2): failed to initialize system zone (-117)
[   83.913592][ T7159] EXT4-fs (loop2): mount failed
[   84.001858][ T7171] loop2: detected capacity change from 0 to 1024
[   84.010264][ T7093] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.014381][ T7171] EXT4-fs: Ignoring removed i_version option
[   84.017797][ T7093] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.024973][ T7171] EXT4-fs: Ignoring removed bh option
[   84.031118][ T7093] bridge_slave_0: entered allmulticast mode
[   84.042936][ T7093] bridge_slave_0: entered promiscuous mode
[   84.050069][ T7093] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.057148][ T7093] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.064346][ T7093] bridge_slave_1: entered allmulticast mode
[   84.072533][ T7093] bridge_slave_1: entered promiscuous mode
[   84.087096][ T7171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.111845][ T7174] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   84.121560][ T7093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.124088][ T7171] syz.2.1385[7171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.130770][ T7171] syz.2.1385[7171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.133196][ T7093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.148098][ T7171] syz.2.1385[7171] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.166550][ T7171] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1385'.
[   84.189792][ T7093] team0: Port device team_slave_0 added
[   84.196508][ T7093] team0: Port device team_slave_1 added
[   84.205395][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.236705][ T7093] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.243728][ T7093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.269821][ T7093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.281478][ T7093] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.288445][ T7093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.314614][ T7093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.368487][ T7093] hsr_slave_0: entered promiscuous mode
[   84.390500][ T7093] hsr_slave_1: entered promiscuous mode
[   84.406642][ T7093] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   84.422955][ T7093] Cannot create hsr debugfs directory
[   84.586582][ T7093] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   84.610339][ T7093] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   84.622070][ T7093] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   84.660980][ T7093] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   84.699018][ T7093] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.706203][ T7093] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.713598][ T7093] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.720689][ T7093] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.730693][ T6976] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.745131][ T6976] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.815944][ T7093] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.839017][ T7093] 8021q: adding VLAN 0 to HW filter on device team0
[   84.848846][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.856012][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.870913][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.878042][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.912807][ T7093] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   84.923204][ T7093] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   84.990381][ T7093] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.124696][ T7093] veth0_vlan: entered promiscuous mode
[   85.141531][ T7093] veth1_vlan: entered promiscuous mode
[   85.172104][ T7093] veth0_macvtap: entered promiscuous mode
[   85.180546][ T7093] veth1_macvtap: entered promiscuous mode
[   85.191671][ T7093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.202190][ T7093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.214811][ T7093] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.225785][ T7093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.236332][ T7093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.254462][ T7093] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.264477][ T7093] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.273362][ T7093] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.282186][ T7093] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.291053][ T7093] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.426916][ T7241] lo speed is unknown, defaulting to 1000
[   85.561301][ T7251] loop2: detected capacity change from 0 to 8192
[   85.707754][ T7273] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7273 comm=syz.5.1420
[   85.800218][ T7285] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1425'.
[   85.823892][ T7288] lo speed is unknown, defaulting to 1000
[   85.830668][ T7283] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   85.838049][ T7283] vhci_hcd: invalid port number 23
[   86.051310][ T7320] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   86.059678][ T7320] vhci_hcd: invalid port number 23
[   86.065844][ T7313] loop2: detected capacity change from 0 to 512
[   86.091488][ T7313] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.107097][ T7313] ext4 filesystem being mounted at /277/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.150408][ T7313] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.168948][ T7313] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.348620][ T7347] netlink: 596 bytes leftover after parsing attributes in process `syz.0.1449'.
[   86.439071][ T7355] lo speed is unknown, defaulting to 1000
[   86.590243][ T7361] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   86.597705][ T7361] vhci_hcd: invalid port number 23
[   86.660929][ T7373] lo speed is unknown, defaulting to 1000
[   86.767275][ T7385] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1465'.
[   86.796051][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.813829][ T7387] loop5: detected capacity change from 0 to 128
[   86.867484][ T7387] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   86.868288][ T7396] loop2: detected capacity change from 0 to 1024
[   86.886987][ T7396] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   86.896875][ T7396] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   86.910380][ T7396] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: inode #32: comm syz.2.1467: iget: special inode unallocated
[   86.919851][ T7387] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.927119][ T7396] EXT4-fs (loop2): no journal found
[   86.938727][ T7396] EXT4-fs (loop2): can't get journal size
[   86.946745][ T7396] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #32: comm syz.2.1467: iget: special inode unallocated
[   86.960593][ T7396] EXT4-fs (loop2): failed to initialize system zone (-117)
[   86.967891][ T7396] EXT4-fs (loop2): mount failed
[   86.991354][ T4727] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   87.076910][   T29] kauditd_printk_skb: 2428 callbacks suppressed
[   87.076929][   T29] audit: type=1326 audit(1736232685.657:17553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7411 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f263bb05d29 code=0x7ffc0000
[   87.115380][   T29] audit: type=1326 audit(1736232685.697:17554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7411 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f263bb05d29 code=0x7ffc0000
[   87.138946][   T29] audit: type=1326 audit(1736232685.697:17555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7411 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f263bb05d29 code=0x7ffc0000
[   87.162674][   T29] audit: type=1326 audit(1736232685.697:17556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7411 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f263bb05d29 code=0x7ffc0000
[   87.189773][   T29] audit: type=1400 audit(1736232685.767:17557): avc:  denied  { create } for  pid=7406 comm="syz.5.1477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   87.209988][   T29] audit: type=1326 audit(1736232685.787:17558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.1.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   87.233525][   T29] audit: type=1326 audit(1736232685.787:17559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.1.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   87.257135][   T29] audit: type=1326 audit(1736232685.787:17560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.1.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   87.270197][ T7415] loop1: detected capacity change from 0 to 512
[   87.280682][   T29] audit: type=1326 audit(1736232685.787:17561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.1.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   87.280721][   T29] audit: type=1326 audit(1736232685.787:17562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7414 comm="syz.1.1480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd70d695d29 code=0x7ffc0000
[   87.368351][ T7427] loop2: detected capacity change from 0 to 128
[   87.377167][ T7424] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   87.382071][ T7415] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.384732][ T7424] vhci_hcd: invalid port number 23
[   87.415243][ T7415] ext4 filesystem being mounted at /319/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.427693][ T7427] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   87.428130][ T7415] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.460360][ T7427] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.461690][ T7415] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.493513][ T7436] loop5: detected capacity change from 0 to 256
[   87.517880][ T3300] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   87.598530][ T4727] ==================================================================
[   87.606833][ T4727] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[   87.614167][ T4727] 
[   87.616506][ T4727] read-write to 0xffff888237d2ba28 of 8 bytes by task 7448 on cpu 1:
[   87.624593][ T4727]  __find_get_block+0x434/0x8a0
[   87.629487][ T4727]  bdev_getblk+0x30/0x3b0
[   87.633858][ T4727]  __ext4_get_inode_loc+0x2f7/0x910
[   87.639095][ T4727]  ext4_get_inode_loc+0x65/0xe0
[   87.643990][ T4727]  ext4_xattr_ibody_get+0x99/0x430
[   87.649167][ T4727]  ext4_xattr_get+0xd4/0x580
[   87.653789][ T4727]  ext4_xattr_security_get+0x32/0x40
[   87.658111][ T7450] loop2: detected capacity change from 0 to 512
[   87.659112][ T4727]  __vfs_getxattr+0x29f/0x2b0
[   87.670217][ T4727]  get_vfs_caps_from_disk+0x9f/0x310
[   87.675540][ T4727]  cap_bprm_creds_from_file+0x19e/0xc80
[   87.681128][ T4727]  security_bprm_creds_from_file+0x3d/0x80
[   87.686995][ T4727]  begin_new_exec+0x207/0x10b0
[   87.691788][ T4727]  load_elf_binary+0x63b/0x1a10
[   87.696668][ T4727]  bprm_execve+0x4e6/0xc60
[   87.701195][ T4727]  kernel_execve+0x697/0x6d0
[   87.705892][ T4727]  call_usermodehelper_exec_async+0x19d/0x250
[   87.711991][ T4727]  ret_from_fork+0x4b/0x60
[   87.716419][ T4727]  ret_from_fork_asm+0x1a/0x30
[   87.721192][ T4727] 
[   87.723518][ T4727] read to 0xffff888237d2ba28 of 8 bytes by task 4727 on cpu 0:
[   87.731070][ T4727]  has_bh_in_lru+0x35/0x1f0
[   87.735594][ T4727]  smp_call_function_many_cond+0x2d5/0xc20
[   87.741426][ T4727]  on_each_cpu_cond_mask+0x3c/0x90
[   87.746565][ T4727]  invalidate_bh_lrus+0x2a/0x30
[   87.751434][ T4727]  blkdev_flush_mapping+0x9b/0x1a0
[   87.756561][ T4727]  bdev_release+0x2f9/0x420
[   87.761078][ T4727]  blkdev_release+0x15/0x20
[   87.765599][ T4727]  __fput+0x17a/0x6d0
[   87.769592][ T4727]  ____fput+0x1c/0x30
[   87.773584][ T4727]  task_work_run+0x13a/0x1a0
[   87.778185][ T4727]  syscall_exit_to_user_mode+0xa8/0x120
[   87.783753][ T4727]  do_syscall_64+0xd6/0x1c0
[   87.788267][ T4727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.794183][ T4727] 
SYZFAIL: failed to send rpc
fd=3 want=296 sent=0 n=-1 (errno 32: Broken pipe)
[   87.796507][ T4727] value changed: 0xffff88810650e5b0 -> 0xffff8881006cebc8
[   87.803616][ T4727] 
[   87.805944][ T4727] Reported by Kernel Concurrency Sanitizer on:
[   87.812105][ T4727] CPU: 0 UID: 0 PID: 4727 Comm: syz-executor Not tainted 6.13.0-rc6-syzkaller-00036-gfbfd64d25c7a #0
[   87.823046][ T4727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   87.833104][ T4727] ==================================================================
[   87.970845][ T7450] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   87.970879][ T7450] EXT4-fs: failed to create workqueue
[   87.985856][ T7450] EXT4-fs (loop2): mount failed
[   88.022167][ T7415] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.414968][   T52] bridge_slave_1: left allmulticast mode
[   88.420696][   T52] bridge_slave_1: left promiscuous mode
[   88.426346][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.434148][   T52] bridge_slave_0: left allmulticast mode
[   88.440466][   T52] bridge_slave_0: left promiscuous mode
[   88.446120][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.532031][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   88.541522][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   88.550467][   T52] bond0 (unregistering): Released all slaves
[   88.590879][   T52] tipc: Disabling bearer <udp:syz1>
[   88.596115][   T52] tipc: Left network mode
[   88.603502][   T52] hsr_slave_0: left promiscuous mode
[   88.609064][   T52] hsr_slave_1: left promiscuous mode
[   88.615159][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.623164][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[   88.653242][   T52] team0 (unregistering): Port device team_slave_1 removed
[   88.663158][   T52] team0 (unregistering): Port device team_slave_0 removed
[   88.991800][   T52] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.031427][   T52] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.080952][   T52] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.120994][   T52] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.186050][   T52] bridge_slave_1: left allmulticast mode
[   89.192365][   T52] bridge_slave_1: left promiscuous mode
[   89.198044][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.205900][   T52] bridge_slave_0: left allmulticast mode
[   89.211630][   T52] bridge_slave_0: left promiscuous mode
[   89.217292][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.302261][   T52] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[   89.311095][   T52] bond_slave_0: left promiscuous mode
[   89.317697][   T52] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[   89.326934][   T52] bond_slave_1: left promiscuous mode
[   89.333066][   T52] $Hÿ (unregistering): Released all slaves
[   89.393127][   T52] hsr_slave_0: left promiscuous mode
[   89.398912][   T52] hsr_slave_1: left promiscuous mode
[   89.406308][   T52] veth1_vlan: left promiscuous mode
[   89.411651][   T52] veth0_vlan: left promiscuous mode
[   89.459890][   T52] team0 (unregistering): Port device team_slave_1 removed
[   89.469498][   T52] team0 (unregistering): Port device team_slave_0 removed
[   89.713241][   T52] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.752599][   T52] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.802594][   T52] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.862211][   T52] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.917096][   T52] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.960964][   T52] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.011401][   T52] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.071269][   T52] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.126367][   T52] bridge_slave_1: left allmulticast mode
[   90.132095][   T52] bridge_slave_1: left promiscuous mode
[   90.137814][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.145710][   T52] bridge_slave_0: left allmulticast mode
[   90.151929][   T52] bridge_slave_0: left promiscuous mode
[   90.157620][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.242650][   T52] bond0 (unregistering): (slave geneve1): Releasing backup interface
[   90.341899][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   90.351709][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   90.361690][   T52] bond0 (unregistering): Released all slaves
[   90.370468][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   90.380552][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   90.389925][   T52] bond0 (unregistering): Released all slaves
[   90.425454][   T52] hsr_slave_0: left promiscuous mode
[   90.431300][   T52] hsr_slave_1: left promiscuous mode
[   90.437076][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   90.444609][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[   90.452754][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   90.460227][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[   90.469107][   T52] hsr_slave_0: left promiscuous mode
[   90.474886][   T52] hsr_slave_1: left promiscuous mode
[   90.480980][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   90.488398][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[   90.495954][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   90.503450][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[   90.513432][   T52] veth1_macvtap: left promiscuous mode
[   90.519036][   T52] veth0_macvtap: left promiscuous mode
[   90.524618][   T52] veth1_vlan: left promiscuous mode
[   90.529912][   T52] veth0_vlan: left promiscuous mode
[   90.535521][   T52] veth1_macvtap: left promiscuous mode
[   90.541110][   T52] veth0_macvtap: left promiscuous mode
[   90.546683][   T52] veth1_vlan: left promiscuous mode
[   90.552040][   T52] veth0_vlan: left promiscuous mode
[   90.638841][   T52] team0 (unregistering): Port device team_slave_1 removed
[   90.649191][   T52] team0 (unregistering): Port device team_slave_0 removed
[   90.724588][   T35] lo speed is unknown, defaulting to 1000
[   90.730482][   T35] infiniband syz0: ib_query_port failed (-19)
[   91.157160][   T52] IPVS: stop unused estimator thread 0...