last executing test programs:

26.042981616s ago: executing program 4 (id=140):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x18, 0x34, 0x9, 0x0, 0x2, {0x2}, [@typed={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x10}, 0x20005080) (fail_nth: 6)

25.655007714s ago: executing program 4 (id=143):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x4052, r0, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1, 0x1)
write$UHID_INPUT(r1, &(0x7f0000000d00)={0x8, {"7894e6e62ce0f10fcdce74f21ad5b47c923d4dec90cefd599912070f341d59a8802e33af9869738f25b2f72093dd0ffa688e8e417c6e0e09b99649818d7caca39e142ef69d9101397854c3f51bde013686a626b2120c03d98c0ad981069188fbbddb88bf41a6b29ed43d1244e6025e1e4a2f40577619ccee39385bfc86461023a7906e5c07d16415140f4ab26db004362c885ef2c9ee82d3dd7e2ac42ca05d81ccea87dc0ec4a8f222013d6d4d0b0c828f3d2e3151dce87bfb335c1ad67bb3323564022ab23a6ba54ca117ca592c8d4227922347ea6f7c9d3dbdbc8d235f2d03e688d5ca7718d60e911534f964bf20359a0057847e7d7fd2cc463784aab2b06ba95512cfc427da44aa73634b0797b9baab391aa176d259c047ee9d346e63903860ab3c571d064509a715c5c4c6edffce9e1701e8291c2d937e3ff18691fe9a665b1a3b717a40205f8efa239b37e6b33f5c8ac28e616f788d0294c8d39ff4a63aaca7d4c578a935dd84850432201081bc1b00c5797847eaff8cecf8af8a60f075b5ff1c3dc9e62f9a3cfc4333a7501dd8badfdc691a9d35d3fc2c0e8f1b21a2c619201004a0d82bace1738ba9ca93e6fbf8ebaa78b5423efb19d3337ad050a7a1a634737a0169921911b277ab235f8b186efd60c3eff58e974a856ba460c5fbd91c1b5c999a7f6b4474560e0c5698085e1ff96381999bf7338dddab4499c6ae315245ecc98d3ca2ebc11214a4115e9205e7d1705591be4029a5e92ae06c02ba39ac70cf1ba082ccee070bf2feafa55ac6e863adb6f89a7475c2dc073058b0f8a52151d8c3ced025463656942bfd257ace6c54bd57985a44cef1c20777db47d12bd34371ef6f537e455b7787e3a853713877fa9465937602ceef8b9439507ab802ea4eaf5ee2ecd710b1840d8b8c995b5904434198abd8f0e830857ed1af53f3bcede9d57afb1cd7ad27bf222a6d1c58286c40d22211a3b2b7b7bbf5923a528fa4d781aaec1f67e013392b17197d2f6ff2d0e68bea94ce57cc516daffdf2348333a8dc596894540aa2a79437d95465fc27627b0e26871d5248c39e1a3badb319d449a7d67145418e1a35cb4bf950a5483d6e80763ea676b89d1f1e2cea20c590c76ae9fb228ffd638ccabdb3830cf944e1cccfb7ba8b1d1f0aabc498155ddda8404ebe2e25cfcfa9058af7d66bef79e592a579d556404ea3f28d6ddb3fdead9123247e23827f729eee41540d0f0e94027d65eee4e7c1c913c634f9abf546388cd2e4b351b16bd97faae3b54f5b2750495619ec36d97a1080564fa30a9f8a2700b77340b5bbd9cc377ee35420b5b762935047af7837e973a9da42ef93c11f145704d041054bcc4680363cbbee16a2bc0eaaa49cfa23330a666dff32daa17a6ea425f1ed2354d0c36893c895a0564e100d3e1385467405ca2706cfb62453faf72b1648727faeffb3c934bc4e48e4ce93af11bff3208cb3843da7ed68451b4af747ef72e2fb78a73990c95097c9504aacddffc5caadeb171e95ad113561144907d361fd28695239f6619360b9d0eead653cc83ab13fc7c0c60237e3363b6f319daa38d792426393e2396404a112ed9e70b378f494d4b540bf9b44d76b347a12c8cdaeed350a85698eb71bd126f75b9aa0ff7435926a4a4ce04e4187eae5a80b1ff56aa7f1b005a9a057b6ace4cf08c404f66c0b31974d151e9a2840ebcbfbfd898e6694b89fe78a68b90551c9d33c14914dceff64a699c1cf1570c2d1f53e905abef9f954fbdd100b1b18f10dbd673bd6c7a9693286cf2dc0ab9919466750aa42ccfa27e9ff4190dd784ec6f2e19270521f98561a959152b16a80f0b1e183375d3886936ae03ff4949777d30481c24bbae918d5fdcc8f46ff05e2370095bc85cde086dc1e32423f21c13c42490fb679462f35dd0c4ef06f8c3f24327af47ea2c73a856f112385094fe138022e308c157adb19b94ed0e8d94b805883318b33b22f371d62f0b764b2a44b65018bef417357aa997ea4ef95a2899963e06a3c553943e14d3364b73919f5e6d8395d56d522f1b19ae37d48f1534d92e4248824adb555281aea2fb317bfb30cdc7d4efada900006f45578a061b19e2eeefffdbf1974a1633182501611724079f926122c1c8fd9b1d8e6302d76ed90616abcfcac478e3b8d3be91eee5f9c653f8fed3afc1eb33d9314aaa021e8b53ab7ba3e59b301a6c757efd95c6661d7d3e8a73cdec7833f4608dc238d8e144a5b0196a9aea6fb30efdfdb05f9529c52af93cd78d857e3cc920bf30b2292380c662890f3679c09aea55c77a75dbb4da338c0fb737a5fc31252d9fa798f9dd70947f6cfa0474a7a835c694dfbb5c678216915d1f04c81d5df8f2efde80fdbce8248525d9b639f394847b9a8c2e7f7288b031df91db059eabb750c1bfe732b78001c2cca0f74cd8873cc2a892d26e1dbd48db297853775c21d68ce1daebee4f4d65bf8e448b1c80da35eaff3295ffe0aef68baff15f7585aba741699c3ed9a62f2c18200e40cbb383b844459ca9636d61645470d4f8b04704b84a7986d816c037d368d807ab936faa842a427cc4987ab506f3f08841195c893f39656547ff62730ec43aa78311d57defe4002301f6b9e1f6573f3a46715e2d1f899480e8bc97f5dfe48ad14df280126998d32dc0a63231584b5ee82d5f90d5ccd3eb3923cee0dfe0eb9b1ac54fd97214ad86c6459cf916ba0bfc9d4210a95346d753f4bc7440d78274c4cd1850907a2bf150a1c1b511bf0438494a6aa1a197f787c96b410d866b4cb284f74122ffbb2f5fa7c2c22f935c7e1542ff83f01e3024ee6e3d7fd0fba2754e635c8116a27f15586300d6522979822c1f97038f33c644ef82e9818f4a09388cb9a69514c929e9bc149fd7a26b458d89abb5e3ae1de29ed1f28d613878a24a9296c967339b9c6749f92c720982cb78a120bcf7593c6fbae36f9a06caa384a7e5d3f05442b0a69f72518a76a916968aae56abda54dac318fd726335e95592f80d030ef51aea41d5e348267fcea65e49d8e36e711fedb3fb9ad37d3fdf2185dcc3ff44736d6a0d4b4bd1810f89ec6e0e6b6f58f74d73ddd2a27fcfaf36d1aec6c3769787a1d3b8514487a399e6497bd0bf4c4242868d599aeb2202cae535e8118d478fc43b4c8bfdcf024f36f5d7c9f75c69bc9d4d5414e8bef740bcaf9027dbdb0f47643b984406c9ce1999d7631243c26d6824ae74ab71f536e40e934a5dfea7f5c5d10713c831df6ba168f4080a4b082e94bc23c0807aab7c0bc29f327d185a2a9302cc255aa54764c4eb8ef5b17d640afa30b36572294914d51ac146f87af6f5abd97823724aba25f589e769aa1047e72365e9ee67e7f90e80542cc842aebabc97679dd893075e8a1bd6934ac9e768e20bcf4c2fa29c5f7a103d3ff689c721e08ef1d0ca61ee3e07a815aa943879dd5c406dcff6a946b0a12980620cfb224912e27accbb63b1e2d571c65918c806060dcd08d5cef341e5c5705021ec19605b809a44d2a8f6f27e18f2b8fd268e23706564df5501096fd8f8261e27d5c8b582673f0c76bf78b27f754cddb5b64a33c87841681d8eef2b5abe8a8deabee587189f75b8b518909cd2a6f89910425e8647f25077829f1b400b3abcaeff6f54ccc00f6fb7abeeefe0226e4e2b55fba0925b49be8310fc5a490384e4a5e7216b0fd0c09c00e3327ada8c59eb37443ac9148a9df92b0d4e6851cd93b784d3e0a236d9fe7c483f03d813fc98e632cf6255dc4a70a0458570776509ebfb545f35956c7e32493f6ad886ec858bfc29bffb7f2ae7eed7d83e3075554dd81e72c93f4c2e4dcdb0832e76861b983b17c2a6f887a988e4fd47459fd45134560b5b1bec10c50914f2d7f327a4e68a0c453f067035f243ca01aa22969481d5fb48d1da82f35222c4e8d249625c454159f7b00a85d43414eb5e7c8044922b323f2473af648d1dba5ffff34bd5e023a2fe4860d7568fa4d35ad20c461eb38bced561edcef853dbcdd7b69bb40e9cda525a71a286c956a1268cacad0bc0c79ed7632aedbb8dc78ba1a2adea2b650314072d1ebc08f9753d6d38e53a758ea4700160588e819239711a506f004ec57037cd6efcbb9cee3bba556eaaa008bf8e8390085b85653c7aa006dd836c7ad025bed9dec77a4a00b309776862fca4dd01dff16aa6bd70a876662093b85ffbb07b2f8b4361f5dc635f940571239a71865e8f1a289f449ae9a74266205c8b1fe8a732db502c9ea5e5c379b704d43ef795b40450aa498535803767d2c2cbd2749474d2997e00f37612fcc0ae7322b8c8e2a90cf66ada69bd05b82d5707562b37e40674f0a3f58d9c776a931b8768d5c23f17c5f9135e7a4ce0c6eb356d9fb4a53d112194c19e6f045d2bd44132a70b9ccd7e65d2787899785f7ee9185589136c847347142440e0a405c18ff3f31acb791a805dd281aaf97aee708dcce2f1aa53161b7716fa0978c0d02871637ad7e1af5a158b727a1dfc2ae1aafbb9c516469ee89fa0f1de23a17115ded5e9c560a468c5192943be74aeaba51083ca0379563f1fa78e29eca1eaf849cd00f419ceb59e640248c332c845e68e9a398281b962ae59aa5b18006b6ea6e0c5f1b30665e1fb975da11ed6a47bd44b4241bbf0443f178e8249805cc3f980a4bb2f46baab0a12e9e9b2aaa7e0ca22b2314a9e5ef6412f4efe31381e3d716244af3112444eabbb0c353acafc0f1179ad4c63b81e5f5bfd771591d24e5254fa72e30aa53717c24b49cee71cdd9368e207af5e992a04f06de912cfcfca38732f5c8393d466d209680ebfa5764897f04531138beff3f65691593e334c2ae2825ffa9353e8aeef37b90691ea5c78d7c86124abf6491a068bf03c3467e5e42ca4b58192d17856722207568777141ccbef3f3891708897af9c196be92056527a8da820d28dccaf4dfed4d38fb8fe826b238d31bad751631a0d8b1eabdfa7bffe65241238ff982d21b2222cdd3a536385d0ab2180ccdf4672d0b21156377fe640ee8c8744b9ba1efce91c295e83a4271a34a1f70adbc2ff0aa6ba9e1965061cadcd3d824636bbc1f977c78dde1859d752c86b099705616edf6e94523f108af79ab5073d26f3788c4d56f1b17b764c1bc387e531dab5dd71198c56b02c68552dc1098beec85dc1bbe2dde316e6093a9a33f578d789da9b2a9209ed6e73a0597bc62467afc42f0348c9b885b92f37569a953f6316d5c8b188539474da3836abeae7ec259cf8fd28f02593597e9206e05e8da4f4346aab36f179deb68a9dab9b550d6fe4f0c88563935328a699b9cbb2015be57c28beaf60be499114f04a96a2f7fb3bf3b5b31e422954c96790aa1e49c5bc1946df0df2b4be63c0aac1ddcf187714f6e67a076a823feaeba5db4a99e5f494ec939d1b0ecd23752c08c3b788704612127e7f080ef581b4990accd6dca7ce52844bc7bbc8c8752497c171d8e628c53609a920fb5a1bc740cb05e2035de72f636ef0498ed2f3cccb64d5740afbc30015442ca0511160787b2c763072c70035f7f3bbbd3966bcc80d021ce1482e27681b963a28189c2ee9d64d0622a94eac689d3fc1a4137c4d62a4c73fab4b0175a8ff8fa256118affd94aaeee33b155043f53d9e3d4eb82173df0938c6c3e51c118c1acf187c84f12090ad1dd663013e433455290f87ca88959f9f481e4dd05e6a483abe00f7c974e5ff602a7a6eaa71f8ac06c50afac0c2858b554f59bf88002766a619ae9b0864926d07b273238e1ebd456543f77ea800231dbf4479f0b90fc607", 0x1000}}, 0x1006)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000780), 0x10200, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000007c0)={<r3=>r0})
sendmsg$sock(r3, &(0x7f0000000cc0)={&(0x7f0000000800)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3}, [@default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null]}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000000880)="ccdac00954f9f9aaad0e4541c0cf3ce352993b1788c6542e8172b0d089d0d99c464773f5ae88280d6fdf7595d2c269298f1153cb276ce48d4d6d62f807c4caa98f3a85737f6a456103d097ec0a1615e462783df2b1586cd2158c1ecdd3cdd0a069d366797bf533e84bff26cca2112b8905a4b39b9ddace0c46bac31213932d4cbe00a44496c5b7ade7648c35a8d10ae5789de4153d74e7b92b559bdf9d04066cfa6092345274d9f787072ea3467fcc7448cedab7aca099c3d5f348d2364ce7919ea9363d0f4c6654b9bf16df71ac82bdd7f62ffd5ac88f911468ae929c504fb4151c803fc3464f006248e9f8d8e9c6dfc20cc24995aae69b50", 0xf9}, {&(0x7f0000000980)="4702361328230614188e034a0f1c98f2932fb2b3", 0x14}, {&(0x7f00000009c0)="455a1fbb965b0ff6c93c4359b9bce5b7a134f43136bbf332f262f3a241e6facad1344e63e600d6fd348a8e903e4cf473613bc1998003b4c038f9ed531ebd39c5036edd", 0x43}, {&(0x7f0000000a40)="0cadc24554957441aa3ada9a384c1601ad73ff5d2839d154867885c23189731e29e47e6be47bb20998d267b8f895baf8d7fcdaf8689b2b06bf7c7301d0e68b25a2b7e8a06daa8ea2cb20fe35cf4eee9978b8fb46975578267f15df319929c73bea87ab1f10", 0x65}, {&(0x7f0000000ac0)="432913805b62c06a44c5ce196fffd3e519fa0ce864ef34f1e0dc44d5b15bb9ebdcfc13cf9c25abf3e25a93078299b1e8781c7571342f36baafded4bc2dc0be946d9b3c68d4976d957891962074ea1492b291c097a15d4adb8ce70471ceaa330e96f7cfb42e752e59c9552dd61ab9c0823d66f37fea1696bfc2d35b501391d7624ec166c5d9b640486343c1f42001349a8bbcf4b92354ab815ec67b37c0e71ff87e431afd6888b578ab4d6e918237e80d7cc1c2a1ee66cd89b17efdcf36c48019c87c270eea3ef95393beb640d50d0b", 0xcf}, {&(0x7f0000000bc0)="f9d49c85e2285acf049fc2112a658b33fcde4731ea5cbc8ec1feb5520d07e0bed256a2a1647bb8468cc91738bf4c8cf991d5648175c761b729bd4a99630682dec6ee4f67a87b2d56d96247bbbdd48a5d90d19f12d6997e158515df97d357cff23a87b7", 0x63}], 0x6}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x5, 0x7fe, 0x0, &(0x7f0000000040)=0x1, 0x3000000)
r4 = socket$key(0xf, 0x3, 0x2)
connect(r4, &(0x7f0000000280)=@l2tp6={0xa, 0x0, 0x10001, @ipv4={'\x00', '\xff\xff', @local}, 0x5, 0x4}, 0x80)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
execve(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000480)={[&(0x7f0000000140)='!,^\x00', &(0x7f0000000300)='*$+]\\.(\x86\x00', &(0x7f0000000340)='\x00', &(0x7f0000000380)='\xff\xff', &(0x7f00000003c0)='/dev/vcs#\x00', &(0x7f0000000400)=':@#,\x00', &(0x7f0000000440)='/dev/vcs#\x00']}, &(0x7f0000000700)={[&(0x7f00000004c0)='\x17\a\x01\x00', &(0x7f0000000500)='{\'@R#(%*!/,:\x00', &(0x7f0000000540)='/dev/vcs#\x00', &(0x7f0000001d40)='{%T\x89\xa2\t\x8dn$H\xdd\xadn\xddJ\xc7\xe2Ww\x88\xbe', &(0x7f00000005c0)='GPL\x00', &(0x7f0000000600)='GPL\x00', &(0x7f0000000640)='\\)%*&:+:.@#(()[\x00', &(0x7f0000000680)='{@.\\-[&\x00', &(0x7f00000006c0)='\xff\xff']})
setsockopt$sock_int(r2, 0x1, 0x23, &(0x7f0000000040), 0x4)

24.787670671s ago: executing program 4 (id=153):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
lsetxattr$trusted_overlay_origin(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140), 0x2, 0x0)

24.689186141s ago: executing program 4 (id=158):
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x10, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x204c800, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x81901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, &(0x7f0000000180)={0x0, 0x0, 0x100000}, 0x20)
read$char_usb(r1, &(0x7f0000000380)=""/210, 0xd2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108040, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}}, 0x24}}, 0x44080)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x50, 0x24, 0xd0f, 0x70bd29, 0x25dfdbfe, {0x60, 0x0, 0x0, r4, {0xe, 0xf}, {0xffe0, 0xa}, {0x1, 0x10}}, [@TCA_STAB={0x2c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x59, 0x5, 0x8, 0x3, 0xfffffffa, 0x0, 0xfffffffffffffeae}}, {0xc, 0x2, [0x8000, 0x7, 0x4, 0x9]}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
ftruncate(r0, 0xc17a)
fstat(r0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)

23.728900778s ago: executing program 4 (id=171):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000080)=0x5, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0xc8005, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x4e20, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001880)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000580)={'vcan0\x00'})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x208, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

23.195735746s ago: executing program 4 (id=177):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x4, 0x8b}, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x40000000004)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000180)=0x33)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
r8 = socket(0x18, 0x0, 0x0)
connect$pppoe(r8, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
sendfile(r8, r7, 0x0, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000a00000000000000000000020000000000000000010000840800000006000000010000000300001f"], 0x0, 0x46, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="17000000", @ANYRES16=r10, @ANYBLOB="8b33000000000000000005"], 0x20}, 0x1, 0x0, 0x0, 0x3390c6ec282c7b79}, 0x0)

23.190643136s ago: executing program 32 (id=177):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x4, 0x8b}, 0x0)
socket$isdn_base(0x22, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000000)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x40000000004)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000180)=0x33)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00')
r8 = socket(0x18, 0x0, 0x0)
connect$pppoe(r8, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
sendfile(r8, r7, 0x0, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000a00000000000000000000020000000000000000010000840800000006000000010000000300001f"], 0x0, 0x46, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="17000000", @ANYRES16=r10, @ANYBLOB="8b33000000000000000005"], 0x20}, 0x1, 0x0, 0x0, 0x3390c6ec282c7b79}, 0x0)

4.884301046s ago: executing program 1 (id=461):
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000200)={0x3, 0x40, 0xfa00, {{0xa, 0xeffd, 0x0, @empty, 0x8}, {0xa, 0x0, 0x0, @empty, 0xfffffffc}, r1, 0xfffffffc}}, 0x48)
r2 = dup2(r0, r0)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r2, &(0x7f00000008c0)={0x16, 0x98, 0xfa00, {0x0, 0x0, r1, 0x10, 0x1, @in={0x2, 0x4e22, @loopback}}}, 0xa0)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="2c000cbefd", @ANYRES16=r3, @ANYBLOB="00032abd7000fcdbdf2502000000050037000000000005002f00010000000800320060fd8e65"], 0x2c}, 0x1, 0x0, 0x0, 0x40041}, 0x1)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf38, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
iopl(0x3)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r6, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000002040)=[{0xe, 0xb, 0x8}]}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
getpid()
socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='devices.list\x00', 0x275a, 0x0)
fcntl$lock(r7, 0x25, &(0x7f0000000040)={0x0, 0x2, 0x7f, 0x7})
fcntl$lock(r7, 0x25, &(0x7f00000000c0)={0x1, 0x2, 0x0, 0x200})

4.733458975s ago: executing program 1 (id=466):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x7f, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000380)={&(0x7f0000000000)=""/69, 0x32a000, 0x800}, 0x20)
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
dup(r1)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000600)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r6}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r2, &(0x7f0000000100)={0x2c, 0x6, r7, 0xffffff7f}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r7, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDSKBENT(r9, 0x4b47, &(0x7f0000000400)={0x2, 0x7f, 0xf00})
socket$inet6(0xa, 0x4, 0x80000001)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_inet_SIOCSIFADDR(r10, 0x8916, &(0x7f00000001c0)={'dvmrp1\x00', {0x2, 0x4e24, @private=0xa0100fe}})
r11 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2000002, 0x4052, r11, 0x0)
mlock2(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x0)

4.603789685s ago: executing program 1 (id=469):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1, 0x257, &(0x7f0000000480)="$eJzs3M9LVGsYB/BHneuPuxm5XLhwuXAHLhdaDSq0N6JAkopkCCOkMceQGREcEJyF2ipo1aZlS3dGUIt29T8EbdpEm2iZuxbhCT0yjjnWGDkT+vlsfDjn+Xre8w7znpnFvLf+mS/PLFRnNzffR39/V2RG72wlSVcMRnf0RGotAICT5FOSxMck1emxAADt4fkPAKdPi8//q20cEgBwzH78+//DyRdvi6XRsy20Jn318s3U0ccIAPxcE5M3Lm29/H9gLJ49iJi/t1RYKqR/0/PnZmMuKlGKocjG54ikLq0vjo1fGMptG4gozK/u5leXCj3788ORjcGI65cP5odzqf353+L3xvxIZOPP5tcfaZrvjTP/NeTzkY1Xt2MhKjGz/ZGkIb8ynMudvzL+Vb5vpy/Wezr6+gAAAAAAAAAAAAAAAAAAAAAAcDLlc3WDzfbvyecPO5/mW98faG9/nvs7+Uz8nYm7nb17AAAAAAAAAAAAAAAAAAAA+DVUl2vlYqVSWqwX09fm/th/5HtF11GaFbXy9sQf4yX+jYjjvounG6XX61M3Jzo/mW0sms/qk44PbPobPd0RsVP89Wi0+Hzl3YeDPbHW8F7OpOtCsdJksci1eXECAAAAAAAAAAAAAAAAAIBTZu9nwId1JO0dEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB0QHW5trZb1srFSqW0WF1useitH9kYSP/DIc3pyccdu0cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPgSAAD//+FZqU4=")
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='fd/3\x00')
r1 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$kcm(r1, &(0x7f0000000600)={&(0x7f0000000540)=@l2tp={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x1}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000240)='~', 0x1}], 0x1}, 0x48000)
sendmsg$inet(r1, &(0x7f0000000680)={&(0x7f0000000140)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000200)=[{&(0x7f0000000180)='W', 0x1}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d0002847ea622fb564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d4938037e786a6d0bdd700"/92, 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
statx(r0, 0x0, 0x1000, 0x6000, 0x0)

3.574219492s ago: executing program 1 (id=482):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000580)=ANY=[], 0x53)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1b0000000000000000000000eb40000000000000", @ANYRES32=r3, @ANYBLOB='\b\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="05000000050000000400000000000000000000e6ff03ffffffffff23"], 0x50)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
stat(&(0x7f00000009c0)='./file0\x00', &(0x7f0000000ac0))

3.366484321s ago: executing program 1 (id=489):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$inet6(0xa, 0x5, 0xc)
setsockopt$inet6_int(r3, 0x29, 0x4b, &(0x7f0000000000)=0x2, 0x4)
sendmmsg$inet6(r3, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002'], 0x28}}], 0x1, 0x0)
recvmmsg(r3, &(0x7f0000001e00)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=@newlink={0x5c, 0x10, 0x403, 0x70bd28, 0x0, {}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_SPORT={0x6, 0x11, 0x4e22}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x4}, @IFLA_IPTUN_LINK={0x8, 0x1, r4}, @IFLA_IPTUN_ENCAP_DPORT={0x6, 0x12, 0x4e24}]}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x5c}, 0x1, 0xba01, 0x0, 0x4004}, 0x810)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000540), 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r5, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='smaps\x00')
lseek(r6, 0x2000, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f00000000c0)=0x2, 0x8)
perf_event_open(&(0x7f0000000400)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1e, 0x12, r7, 0x200000000000000)
close_range(r0, 0xffffffffffffffff, 0x0)

2.91092912s ago: executing program 1 (id=494):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket(0x40000000015, 0x5, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r4 = creat(&(0x7f0000000140)='./file0\x00', 0x14)
write$UHID_INPUT(r4, &(0x7f0000000d40)={0x8, {"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", 0x1000}}, 0x1006)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x143042, 0x0)
write$cgroup_pid(r5, &(0x7f0000000000), 0x12)
fallocate(r3, 0x0, 0x0, 0x10fff9)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0xc, r4, 0x0, 0x0, 0x0, 0x7e})

2.255499528s ago: executing program 3 (id=501):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000d6e7000000150006a63ddded73", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), r2)
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000000106aeabe"], 0x0)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2b2, &(0x7f00000006c0)="$eJzs3U9rY1UUAPDz0jR9OosUcaMIPtCFqzJ166ZRRhC7UiKoCw3ODEgSBqYQmArGruYTuPR7+BHcuPEbDLgV3E0XlSfvX/7ga402VXR+v9Xh3nfuPXm3TbLJeZ+/Mh3ffZDE2dMnkaZJdI7iKM6T2I9ONL6JbgAA/x/neR6/5mWY5JUNM7udGy0MALgx1ef/X/rgBwD+4z78+JP3B8fHdz7IsjRe6j+eDZOImD6eDav5wf34MiZxL25HPy4i8oUqfve94zvRzQr78fp0PhsWmdPPfqzXH/wSUeYfRj/22/MPs8pK/nw23I3nI4vB/d2m1H682J7/Zkt+DHvxxmsr9R9EP376Ih7EJO5GkbvM//owy97Jv3361afFNkV+0onhXnldKfcFCQAAAAAAAAAAAAAAAAAAAACA7TrIsqRq31P27ymG6v47Oxfl/EHW2F/vz1PlJ81CVX+gvOmWM8/ju6a/zu0sy/L6wmV+N17uerAAAAAAAAAAAAAAAAAAAAAAFE4ePbk1mkzuPTx5dDq+dtB0A2h+1v931zlaGXk1TsejncsX3Nt8r9VuA0WtV14c3W5s6ba0B2eLkeeKera+xV4sRj6KKmgOZqt7vfB2tejpeJTVU81NHo+SP9srbQ7u+9WpXly3sLz8k7jI1880XZS6ntXb0t3o3Wqd+i3P883Weevn6ozqkaRssbHZ7rt10PoCiyAtziJd/OMXUz9cvuClbxk7137TAQAAAAAAAAAAAAAAAAAAWi1/9NsyeXZlaufGigIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf9jy+f9NkEbE+sgfgnmdfNU1ddCLhyf/8ksEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgGfB7AAAA//8rlFqg")
r4 = io_uring_setup(0x175c, &(0x7f000009df80)={0x0, 0x0, 0x0, 0x200, 0x10})
r5 = socket$phonet(0x23, 0x2, 0x1)
read(r5, &(0x7f00000000c0)=""/174, 0xae)
close_range(r4, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x21885e, &(0x7f0000000440)={[{@grpquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x2f}}, {@dioread_lock}]}, 0x5, 0x504, &(0x7f0000001480)="$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")
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x202402, &(0x7f0000000000)={[{@noblock_validity}, {@dioread_nolock}, {@jqfmt_vfsv0}, {@orlov}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0x0, 0x45d, &(0x7f00000010c0)="$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")
r7 = socket$xdp(0x2c, 0x3, 0x0)
accept(r7, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="580000000206050000000000000000000000000005000400000000000900020073797a31000000000500010003000000050005000a0000000c000780080011400500000011000300686173fecde727ef0ec0b656559b5d82"], 0x58}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000009c0))
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x301, 0x0, 0x25dfdbfd, {0x24}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x80)

1.580511215s ago: executing program 3 (id=513):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000005c0)=[{0x200000000006, 0xde, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_open_dev$loop(&(0x7f0000000180), 0xc, 0x200400)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x10, &(0x7f0000000300)=ANY=[@ANYRES64=0x0], 0x0, 0x238, &(0x7f0000000500)="$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")
sync_file_range(r2, 0x5, 0x80000001, 0x2)
getresgid(&(0x7f0000000200)=<r3=>0x0, &(0x7f00000003c0), &(0x7f0000000400))
lstat(&(0x7f00000004c0)='\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setgroups(0x6, &(0x7f00000008c0)=[0x0, 0xee00, 0x0, 0x0, r3, r4])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0xffffffffffffffff}, 0x13)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = syz_clone(0x8500, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r6, 0x0, 0x0)
wait4(r6, 0x0, 0x20000000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00'}, 0x10)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r7, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d4", 0x20)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b5181100", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)

1.180568584s ago: executing program 3 (id=517):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r3, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01650000000000000000250000000e0001006e657464657673696d0000000f0002016e226574646576738ea694010008008b007602fea30e863a084f45425196f51ac12d9a67cc7bb33e7285feb4aec8ce3f34042b23e8daffdb930cb9dcc34c8757b059", @ANYRES32=r2, @ANYBLOB], 0x3c}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x40}, {0x6}]}, 0x10)
socket$packet(0x11, 0xa, 0x300)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xd, 0x0, &(0x7f0000000000)="219a53f271a76d2608004c6588", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
writev(r5, &(0x7f0000000500)=[{&(0x7f0000000080)='\f', 0x1}], 0x1)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8, 0x0, 0x9}, 0x18)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000004c0)=[@in6={0xa, 0x4e21, 0x3, @private1, 0x8}, @in6={0xa, 0x4e21, 0x8, @remote, 0x2}, @in6={0xa, 0x4e21, 0x1, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x7}], 0x54)

1.082306824s ago: executing program 0 (id=521):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES16=r0, @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r4}}, 0x24}}, 0x0)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r7=>0x0})
r8 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r7, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'tunl0\x00', &(0x7f0000000780)={'erspan0\x00', 0x0, 0x7890, 0x8, 0x34d, 0x1, {{0x39, 0x4, 0x1, 0x4, 0xe4, 0x66, 0x0, 0x2, 0x29, 0x0, @empty, @local, {[@timestamp_prespec={0x44, 0x3c, 0xfe, 0x3, 0x6, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xd}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x6}, {@empty, 0x6}, {@local, 0x3}, {@multicast1, 0x80000001}, {@loopback, 0x6}, {@local, 0x3ff}]}, @cipso={0x86, 0x56, 0x2, [{0x5, 0x12, "2bdad41cd324f10164e9c6545bffacc7"}, {0x5, 0xc, "50d969e01bdb133b223e"}, {0x2, 0xb, "7c1636934e666e26ad"}, {0x1, 0x3, "ed"}, {0x0, 0x12, "2d00f7f40000e93cfeffffff71ffb27c"}, {0x6ca75ed76ff72a34, 0x12, "a43bbd12e18f99f32ed81e35c91199fd"}]}, @rr={0x7, 0x17, 0x8c, [@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, @remote, @private=0xa010102]}, @timestamp={0x44, 0x24, 0x1b, 0x0, 0x5, [0xf, 0x9, 0xf, 0x3, 0x0, 0x200, 0x8c2, 0x7]}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000004c0)={'ip_vti0\x00', &(0x7f0000000600)={'ip_vti0\x00', <r9=>0x0, 0x20, 0x40, 0xc, 0x8, {{0x2c, 0x4, 0x2, 0x0, 0xb0, 0x66, 0x0, 0xfc, 0x4, 0x0, @empty, @broadcast, {[@ra={0x94, 0x4}, @noop, @cipso={0x86, 0x77, 0x3, [{0x2, 0xd, "94da8e49786be8bd040fd6"}, {0x2, 0xc, "3363df9598a2dcf17e88"}, {0x6, 0xd, "7d5f7587483a11334d194f"}, {0x7, 0x3, "a4"}, {0x2, 0x9, "717d56d62e617b"}, {0x1, 0xf, "376a4dd99036360e63ffb1bace"}, {0x2, 0x12, "d8ef312687759f34accf14098fb68b04"}, {0x2, 0xd, "2bc15a514e794113439eda"}, {0x5, 0xa, "266c373527950645"}, {0x2, 0x7, "9eea8d35b3"}]}, @timestamp_prespec={0x44, 0xc, 0x11, 0x3, 0x8, [{@loopback, 0x9}]}, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={&(0x7f0000001ec0)=ANY=[@ANYBLOB="2c160000", @ANYRES16=0x0, @ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r4, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="14000200767863616e310000000000000000000008000300010000000800030002000000080003000000000004000280200001800800030002000000140002007465616d5f736c6176655f3000000000"], 0x162c}, 0x1, 0x0, 0x0, 0x4811}, 0x8000)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {@barrier}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@noquota}, {@nogrpid}, {@noauto_da_alloc}, {@mblk_io_submit}]}, 0x1, 0x56a, &(0x7f00000015c0)="$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")
execve(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f00000003c0)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000080)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000008c0)="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", 0x5, r11}, 0x38)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r12}, 0x10)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
sendmsg$DEVLINK_CMD_RATE_DEL(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="fd830341cd6f613671e5f2af4c9a69514298238d3807d0c00e46266f65202c88955f1283566ad70bdb7d3aa29a502891bb2100de687ee5c925942f11b4731830d2258db7ef34e8a52d013300d5", @ANYRES16=r10, @ANYBLOB="0100000000000000000054000000"], 0x14}}, 0x0)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r14 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r13, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='snd_soc_jack_notify\x00', r14, 0x0, 0x89}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)

1.023056233s ago: executing program 3 (id=523):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x10, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0xd, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x204c800, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x81901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, &(0x7f0000000180)={0x0, 0x0, 0x100000}, 0x20)
read$char_usb(r1, &(0x7f0000000380)=""/210, 0xd2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108040, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}}, 0x24}}, 0x44080)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x50, 0x24, 0xd0f, 0x70bd29, 0x25dfdbfe, {0x60, 0x0, 0x0, r4, {0xe, 0xf}, {0xffe0, 0xa}, {0x1, 0x10}}, [@TCA_STAB={0x2c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x59, 0x5, 0x8, 0x3, 0xfffffffa, 0x0, 0xfffffffffffffeae}}, {0xc, 0x2, [0x8000, 0x7, 0x4, 0x9]}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
ftruncate(r0, 0xc17a)
fstat(r0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)

767.420312ms ago: executing program 0 (id=526):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")

670.193082ms ago: executing program 0 (id=527):
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140)={0x0, r0}, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000180)='GPL\x00', 0xd34, 0x0, 0x0, 0x41000, 0x11, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000001800110125bd70000400df250a001400fc010006"], 0x1c}, 0x1, 0x0, 0x0, 0x20008055}, 0x40010)
r3 = socket(0x11, 0x2, 0x2)
unshare(0x2a020480)
unshare(0x2a020400)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x0, 0x7f}, 0x2c)
r7 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r7, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r7, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000300)="c5", 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="47aef81400000004000000040000000600000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
getsockopt$inet_IP_IPSEC_POLICY(r6, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@initdev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@dev}, 0x0, @in6=@private1}}, &(0x7f0000000240)=0xe8)
quotactl_fd$Q_QUOTAOFF(r4, 0xffffffff80000301, r8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r9=>0x0})
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffa}]})
fdatasync(0xffffffffffffffff)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0xbc, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x6c}}, @qdisc_kind_options=@q_pfifo_fast]}, 0xbc}}, 0x0)

610.738652ms ago: executing program 2 (id=529):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000850000005000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r4 = io_uring_setup(0x79ae, &(0x7f0000000340)={0x0, 0x1, 0x2})
socket$inet6(0xa, 0x40000080806, 0x0)
r5 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
close_range(r4, 0xffffffffffffffff, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r9, 0x10e, 0x1, &(0x7f0000000040)=0x4, 0x4)
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newtfilter={0x64, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x4, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x38, 0x2, [@TCA_U32_SEL={0x34, 0x5, {0x3, 0x0, 0x2, 0x4, 0x8, 0xc, 0x5, 0x8000, [{0xc569, 0x6, 0x2, 0x4}, {0x9, 0x1, 0x2, 0x8}]}}]}}]}, 0x64}}, 0x44800)

585.549932ms ago: executing program 0 (id=530):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8, &(0x7f00000005c0)={[{@errors_remount}, {}]}, 0x4, 0x4f3, &(0x7f00000012c0)="$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")
lsetxattr$system_posix_acl(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000400)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000002000000020"], 0x24, 0x0)
listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x18)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000000214010028bd7000fddbdf250900020073797a3100000000080001000000000008004400", @ANYRES32, @ANYBLOB="050054000100b2ac0800010000000000090002"], 0x48}, 0x1, 0x0, 0x0, 0x4000801}, 0x0)

548.125552ms ago: executing program 5 (id=531):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x40000000, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000740)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r1, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_mount_image$tmpfs(0x0, &(0x7f00000040c0)='./file0\x00', 0x810000, 0x0, 0x6, 0x0, &(0x7f0000000000))
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='nr_inodes=2'])
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, 0x0)

411.004951ms ago: executing program 0 (id=532):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x10, &(0x7f0000000340), &(0x7f0000000000), 0x8, 0xb6, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r5, 0x66, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffcf3, 0xfffffffffffffd48, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000640)={0x38, r6, 0xc4fc9e906872338b, 0x0, 0x0, {{0x15}, {@val={0x8}, @val={0xc, 0x99, {0xfffffffc, 0x2000}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)
r7 = syz_open_dev$hiddev(&(0x7f0000000040), 0x1, 0x20000)
ioctl$HIDIOCINITREPORT(r7, 0x4805, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x10100000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
set_mempolicy(0x3, &(0x7f0000000080)=0xfffffffffffffffd, 0x4)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6(0xa, 0x80000, 0x9)
bind$inet(r8, &(0x7f00000001c0)={0x2, 0x2000, @local}, 0x10)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r8, &(0x7f0000007fc0), 0x800001d, 0x0)

410.391861ms ago: executing program 2 (id=533):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000a00)={&(0x7f0000000380)={0xa, 0x4e24, 0x6, @remote, 0x2}, 0x1c, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000029000000360000003b000000000000360000002c0000000000000000000000000000000900000000000000d4f5cfc5d81a3041dd59c8498305357a1461744d4d93fae1ea5715e7702a38a0820edf0d6413ddb53c90d3736cb4b9e03a875b85f0dae1f2f3b93f4d203362761cd455885764fd5fb0e79bfaa45dea3a4a3ea2bd28ee044a421df9070d3aa3e0c9a8d8cde7a65704b897108172fce4adbef3ee50648632dc2e7eedb097002ff3ee28976cb4e8d5fb648aecc3d0e37da49f56c783f5e29bb8fc15635dfd72c41f47c63cabb8c8c8725e39c06ec36e4e63fec6d4e45b2ce8758e63d74f18"], 0x30}, 0x12) (async)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2, <r3=>0xffffffffffffffff}, 0x4)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) (async)
shmget(0x2, 0x2000, 0x10, &(0x7f0000ffd000/0x2000)=nil)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1)
socket$inet_udp(0x2, 0x2, 0x0) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x1100, 0x5dd8, 0x3, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r6, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = socket(0x2b, 0x1, 0x0)
r8 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240), &(0x7f0000000280))
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r8, 0x18, &(0x7f0000000000)={0x0, r7, 0x23, {0x4, 0x6d4}, 0xf0}, 0x1)
sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001880)=ANY=[@ANYBLOB="14010000", @ANYRES16=r5, @ANYBLOB="cd3e0000000000000000010000000800020005000000ce000100"], 0x114}}, 0x0)

359.700181ms ago: executing program 3 (id=534):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
process_madvise(r4, &(0x7f0000000080)=[{&(0x7f0000000500)="becf", 0x2}], 0x1, 0x3, 0x0)
splice(r1, 0x0, r2, 0x0, 0x1, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = fcntl$getown(0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newtaction={0x64, 0x30, 0x9, 0x0, 0x0, {}, [{0x50, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x2800, 0x7, 0x4, 0xd9, 0x3}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x0)
fcntl$setown(r7, 0x8, r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x800, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000200)={0x0, r8}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r9, &(0x7f0000000240)={0x0, 0x300, &(0x7f00000001c0)={&(0x7f0000000280)={0x3c, r10, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}, @ETHTOOL_A_LINKMODES_SPEED={0x8}]}, 0x3c}}, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r2, 0x541b, 0x0)
write(r0, 0x0, 0x0)

339.484311ms ago: executing program 2 (id=535):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0xa00}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0xfffc}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x20}]}], {0x14, 0x10}}, 0x84}}, 0x4)

239.008961ms ago: executing program 2 (id=536):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
ioctl(r1, 0x5, &(0x7f0000000dc0)="db285bc90a99d1ae59e61e2d081104ccf2b48078d1934401a4d0b8efaacb3b86baca8ce04ad82d1c21c9ddf9f7d1a257b8de9888e06ddc1cf3caf81b7687bf657847b3d7c291056909b2c8135f1800f71856201e431822de1c6f7c21335932b872bdfe854502031424b1131e67c15a3c26047c283dbeadbe897588862621d75355ae2927ae75ea79b84d64fc6a513c49fb8b06a425f5abbf0dbe035ddcd6")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r3 = open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = gettid()
process_vm_readv(r6, &(0x7f0000000300)=[{&(0x7f0000000580)=""/165, 0xa5}, {&(0x7f00000006c0)=""/227, 0xe3}], 0x2, &(0x7f00000009c0)=[{&(0x7f00000008c0)=""/194, 0xc2}, {&(0x7f0000001700)=""/4096, 0x1000}, {&(0x7f0000000b00)=""/253, 0xfd}, {&(0x7f0000000c00)=""/251, 0xfb}, {&(0x7f0000000d00)=""/179, 0xb3}, {&(0x7f00000003c0)=""/90, 0x5a}], 0x6, 0x0)
write$P9_RVERSION(r5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r7 = dup(r5)
write$P9_RLERRORu(r5, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r7, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r3, 0x89f8, &(0x7f0000000380)={'gretap0\x00', &(0x7f00000004c0)={'gre0\x00', 0x0, 0x20, 0x8, 0x2, 0xfffffff7, {{0x5, 0x4, 0x1, 0x9, 0x14, 0x68, 0x0, 0x4, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2}}}})
socket$netlink(0x10, 0x3, 0xb)
write$binfmt_elf64(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[], [], 0x6b}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x8000000000000000}, 0x18)
socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x0, 0x84)
close(r2)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f00000002c0)={'team0\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000440)={0x48, r9, 0x1, 0x0, 0x0, {0x22}, [@HEADER={0x4}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)

238.192211ms ago: executing program 5 (id=537):
timerfd_create(0x0, 0x0)
r0 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100, 0x2, 0x2de}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0xa0}})
io_uring_enter(r0, 0x2def, 0x0, 0xe, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)
r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000001c0), r3)
sendmsg$SEG6_CMD_SETHMAC(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, r4, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@SEG6_ATTR_SECRET={0x10, 0x4, [0x5, 0x0, 0x2]}, @SEG6_ATTR_SECRET={0x14, 0x4, [0xc157, 0x5, 0x364e, 0x6]}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000080)={0x0, 0xfffffff8}, 0x8)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x20, r6, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x48050}, 0x0)

237.959531ms ago: executing program 0 (id=538):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x100, 0x6ee}, 0x1805, 0x0, 0x1, 0x0, 0x7, 0x0, 0x2004, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x101082)
r2 = fcntl$dupfd(r1, 0x0, r1)
read$snapshot(r2, 0x0, 0xffffffbf)

59.63106ms ago: executing program 5 (id=539):
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect={0x0, 0x5517, 0x600000000000000})

58.46151ms ago: executing program 2 (id=540):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x7, &(0x7f0000000f80)=ANY=[@ANYBLOB="180000000000bf49000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000002200850000008600000095"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r1}, 0x10)
r2 = getpid()
setreuid(0xee00, 0x0) (async)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2], 0x1}, 0x58)
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000480)='./file2\x00', 0xc46d78c4, &(0x7f00000001c0), 0x0, 0x485, &(0x7f00000004c0)="$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")
r4 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) (async)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000000)=0xffff112c, 0x4) (async)
syz_open_dev$mouse(&(0x7f0000000040), 0x0, 0x109000)

57.80503ms ago: executing program 3 (id=541):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0004001000"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c00028008001e"], 0x3c}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000a00)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000980)={<r2=>0xffffffffffffffff}, 0x111, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_ACCEPT(r0, &(0x7f0000000a40)={0x8, 0x120, 0xfa00, {0x1, {0xd, 0x5, "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", 0x7, 0x6, 0xa9, 0x80, 0xe5, 0x81, 0xc, 0x1}, r2}}, 0x128)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000001600008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
connect$netlink(r5, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r5, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x30, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0xf5ffffff}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), r6)
sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400040}, 0xc, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB="a9f9f369b5af45972740ffeb04", @ANYRES16=r7, @ANYBLOB="000425bd7000fedbdf2501000000240003800600ba0002000000050008000d0000000500080000000000a88f888d1f5f0954da79027bd9050008006d0000000800050005000000"], 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x200020d1)
close(r6)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="b89ecd8e060603000000000000000000070000040900020073797a31000000000900030073797a3000"/52], 0x34}, 0x1, 0x0, 0x0, 0x40044}, 0x4000)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0x3}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r6, 0x0, 0x4ffe2, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioctl$TUNSETOWNER(r1, 0x400454cc, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r9, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000300)={<r10=>0x0, @initdev, @broadcast}, &(0x7f00000003c0)=0xc)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000007c0)={r0, 0x20, &(0x7f0000000780)={&(0x7f0000000600)=""/144, 0x90, <r11=>0x0, &(0x7f00000006c0)=""/161, 0xa1}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x23, &(0x7f0000000b80)=ANY=[@ANYBLOB="dd0000000080000000e5aba921e32eb2931829bef1849f1f0927574ac9972717c4ba", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70800007c7f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000820000009500000000000000186b00000a00000000000000ce000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180000000000000000000000050000003d2330000800000018560000040000000000000000000000186800000e00000000000000070000009500000000000000"], &(0x7f00000002c0)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x10, '\x00', r10, @fallback=0x55e0261b655dec2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r11, r1, 0x3, 0x0, &(0x7f0000000800)=[{0x2, 0x1, 0xe, 0x5}, {0x2, 0x5, 0xd, 0x9}, {0x0, 0x2, 0xb, 0x3}], 0x10, 0x3, @void, @value}, 0x94)

57.16953ms ago: executing program 5 (id=542):
ioctl$EXT4_IOC_GETFSUUID(0xffffffffffffffff, 0x8008662c, &(0x7f0000000180))
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x50, 0x0, &(0x7f00000002c0)=0x600)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40, 0xe0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5070000000000000300000000000c00095000000000000002ba728041598d6fbd30cb599e83d24bd8137a3aa81e0ed139a85d36bb3019d13bd2321af3c2bd67ce68f15c0ec71d0e6adfefcf1d8f7faf75e0f226bd917060000007142fa9ea4318123751c0a0e168c1886d0d4d35379bd223ec839bc16ee988e6e0dc8cedf3ceb9fbfbf9b0a49ef23d430f6296b32a83438810720a159cda90363db3d221e152dfca64057ff3c4744aeaccd3641110bec4e9027a0c8055bbfc3a96d2e8910c2c39e4babe802f5ab3e89cf6c662ed4048d3b3e22278d00031e5388ee5c867ddd58211d6ece1ccb0cd2b6d3cffd962867a3a2f624f992daa94a0c556f3218ce740068725c37074e468ee207d2f73902ebcfcf49822775985bf31b715f5888b24efa190000000000000000000000000000ddffffff730d00000000000000ddffffff0000b27cf3d1848a54d7132be1bfb0adf9deab3323aa9fdfb52faf9cb09c3bfd09000000b91ab219ef00bb7b3de8f67ffcad3f6c3c2b1f03550000000000001cf41ab11f12fb1e0a494034007de7c6592df1a6c64d8f20a67745409eaa988dbc2fee9d313d34889f40159e800ea2474b540500a30b23bcee46762e2093bcc9eae5ee3e980026c96f80ee1a00000000740750fa4d9aaa705989b8e673e3296e52d337c56abf112874ec51d6fe048ba6866adebab53168770a71ad901ace383e41d277b103923a9d961f7a2591dbe4a912ffaf6f658f3f9cd16286744f83a83f138f8f92efd92239eafcc5c1b3f97a297c9e49a0c3300ef7b7fb5f09e0c8a868a353409e34d3e82279637599f35ad3f7ffffff3cac394c7bbdcd0e0eb52162e0c410ade7a36b26a4e70f03cc4146a77af02c1d4cefd4a2b94c0aed8477dfa8ceefb467f05c6977c78cdbf37704ec73754910fe050038ec9e47de89298b7bf4d769ccc18eede0068ca1457870eb30d211e23ccc8e06dddeb61799257ab5000013c86ba9affb12ec757c7234c270246c878d01160e6c07bf6cf8809c3a0d062357ba2515567230a6f0b2ad1eb9769d74e4f1feff374211663f6b63b1dd044dd0a2768e825972fc4300001467c89fa0f82e8440105051e5510a33dcda5e4e202bd622549c4cffffff501d3a5dd7143fbf221fff161c12ca389cbe0000000000000fff75067d2a214f8c9d9b2ecf631c6c5fd9c26a54d43fa050b88d1d43a8645bd9109b7e07869bba7131421c0f397073943330baafd243c0c6ffe673bab4113be7664e08bdd7115c61afcb718cf3c4680b2f6c7a8400e378a9b15bc20f49e298727340e87cdefb40e56e9cfad9931b8c552b2c7c503f3d0e7ab0e958adb862822e40009995ae166deb9856291a43a6f7eb2e32cefbf463789eaf79b8d4c22be89f44b032dad13007b82e6044f643fc8cd07ae636a5dbe9864a117d27326850a7c3b570863f532c218b10af13d7be94987005088a83880ccab9c9920c2d2af8c5e13d52c83ac3fa7c3ae6c08384865b66d2204c2e4f3ae20bf279b512b4dcb5dd9cba16b62040bf8702ae12c77e6e34991af603e3856a346cf708feeb708ab22b560cf8a4a6f31ba6d9b8cb0908000000000000001a342c010000000000e667a7592b33406f1f71c739b55db91d2309dc7ae401005f52053a39e7307c09ff3ac3e820b01c57dd74d4aafc4c383a17bc1de5347bb71ca16dcbbbaa2935ae662082b56cf666e63a759e0ef3ea7af6881513be94b362e15ffca8ec453b3a2a67be70c17b0f9c2eac765816c30c2e7133dca1c7669522f7dff8bc570a93fbdb688c3aef810000007a6ea6b11163392a19d87995b51cb6febd5f24a34998d2010fd5facf68c4f84e2f66e27c81a149d7b331983d3b74444953fc1216dfec10b724190000006f12538376e177ffef6fd2020000000000000008e4919a463d5332a2546032a3c06b94f168e8fc4bda0c294723fe306f26c477af4b926644672985fab7cc67bc5b5f5d38cdd8df95147ebe1cd88b0a4c6cde9951be42827dfddfefb238fac2303cc8982f1e55b005afcfea5eb037248fefad6bb02c162ce92ab17744c8ec3d2e80cf3205d36699fd381bc81231fb5e12e45f3059f361d08d6a6d019ebf105eaf43083c29512bcedd79ca9bf24e063d0c273ed70a2b70be521ea27dc8cf3c9bdf83b93405db07e82e2ddf4c4d26f1cdd8c3c9736cf5e5082de3b484f8673e0e97dd7e8a872148613c3a04f3d67f4375ba5c7f1b0033f8dfe0ed9bb2a70801f763524e1d79d812ced782646b5f79c8fc08bb5c11020108d702edd2ea9c96cfcb9066668627820d2d48aa5fc0a7bf1b51afd85350ad00b78c598fa8701b000884de790b54e5ab2e8ff0c7ae23e0b6eeac95c4c2eef2e5eb1d019d52099fbd404e8ece970f67736ba7e960bd8b1e4105ce7e31f7c9c3e3fa61aaa967b90087e91d703e98535b107b8f4653be4c46a3a1adb07d226952b8573b417018316fa96e942e35c4baa16d4122c863709b08d4639a19a46ac90ac48a13ee9bcaa875fc700000000000003b40dc5c745fe2491e8425e600000000000000000000000000000000000000000000000000000000000000250318a44ad31baac0520a913301e630ae540f3289aebde8633f6f450c0738e16df6c7f1e0832a2a16fe6e39959735758248032cdf7320c6dc87b01e3f9a7811b200000000ae189de4b9b25f7c7a9c070000002af1c06315270de4a6605e4b4b58bef76fac54f11b84bd7bcd6b6a485edfb7684c770a39b38b08e18a51a4d4e66ca21c06a4b4198e1bc2ef990c9ba911efed626e5ee341a17bf8132b5b1dfa9fd31df213c88b4047979379dc15c9056fd3baa8b2d6cb134437cba0193ba4360bdcc98aad2560aa48291c4eb9d4e08ad7a9c5f04be1ab597124d84dfc7bd8cca8f68154a0ed356e773a797ca6d66748857b4abbf8830abeea2a46342e6a7378173cb29d5cdcd698a0203f78116b710008000000000000007c2d86b94472807c10eb9a8e2fb8bd79fe3a8316deff3ee641c9a080a2173642e673a672279bae4e7e28055da9497d7edb53be6e80482bd4d9a74b8dd4221f05e6ca8c705d7257ff7f76c78ba0b44ec0bdfa0d32d7042059b13a079639f14f9032b856d892ad6af5124c9c3130485e9682ff1f3c54e475d5bb496aef4bb537d7e191dfdeba109fdcf7864763f87a6d711cf52e520a6ce30e134c55e0caac037209d2f12fcddd00000000000000000000000000000000e609893bdce015e8ccfb36399844db61f6171b0b0e845e48728450c6ba4f7098f8e000676b59ab9f851f3ab778c50a3337a78675f38a568612aa25d61ce4e2c235ab5f2cd6d035d5f5f6a693c381adbbf7b37e37292783b2c7efe7d3a067906552f76d419e0300000000000000000000008435f39381c2a77c001caae53db7316fa6d48d032ab6831ebb813c85855c7a9ad8140a4b29422fc20d4e75c848984a2e217ec9c2833b8fa9106ee1be2c05103a36fc1126f1aa5284ba7179843b08ecadc199b9038cf6b9ee4e1f321a6a32e03bd987ddfada1f69756651b73a7ed0f7e467081193b28448692686ac80d81a89f9c29e276800"/2574], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r2, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
r3 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f00000008c0)={r2, r1})
ioctl$sock_kcm_SIOCKCMATTACH(r3, 0x89e0, &(0x7f0000000040)={r2, r1})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="8f63eb2e", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fedbdf250e0000009c000280970004007927620886c5f5484881f17f9ed163a602433d57bcdbfabe4c5ccf7fee785f5f605ebcd1c5c53f20190a224337467df52b653bbca3c8d8258e568c748655a64c243b80e3d6bf4b0f70e584697d1d97830b1a22b6c87d07f82f79350c83dff9e14386457951246527f7552717ecfec58422c1fd2aebb22ecb14b6597b32ca6dd078db5fab02ad4ad8aba1f73fccb0bc1874d62200"], 0xb0}, 0x1, 0x0, 0x0, 0x10}, 0x801)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {}]}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xe}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {}, {}, {0x0, 0x1, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x30, 0x400}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0xfffffffc}, {}, {}, {}, {0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {}, {0xfffffffe}, {}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x7}, {}, {}, {}, {}, {}, {0x0, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x800, 0x6}, {}, {}, {}, {}, {}, {0x0, 0x5, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {}, {}, {0xffffffff}, {}, {}, {}, {}, {0x0, 0x0, 0x3d3, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x1000}, {}, {}, {}, {}, {0xfffffffe}, {0x4, 0x4, 0x0, 0x0, 0x1}, {}, {0x0, 0x9}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x7ff}, {}, {0x0, 0x1}, {0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {0x1, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)

53.66601ms ago: executing program 2 (id=543):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8080c61)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r1, r1, 0x0, 0xfffe80) (async)
sendfile(r1, r1, 0x0, 0xfffe80)
fallocate(r0, 0x3, 0x5000000, 0x8000c62)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff)
sendmsg$SEG6_CMD_SET_TUNSRC(r2, 0x0, 0x24048004) (async)
sendmsg$SEG6_CMD_SET_TUNSRC(r2, 0x0, 0x24048004)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, 0x0, 0x24004890)
syz_io_uring_setup(0x1730, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100), &(0x7f00000007c0)) (async)
r3 = syz_io_uring_setup(0x1730, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r4=>0x0, &(0x7f00000007c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd_index=0x3, 0x9, 0x0}) (async)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd_index=0x3, 0x9, 0x0})
io_uring_enter(r3, 0x4d10, 0x2, 0x2, 0x0, 0x0) (async)
io_uring_enter(r3, 0x4d10, 0x2, 0x2, 0x0, 0x0)
io_uring_setup(0x71aa, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101381) (async)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101381)
ioctl$USBDEVFS_CONNECTINFO(r6, 0x8004550f, &(0x7f0000002a40))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)

53.34938ms ago: executing program 5 (id=544):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000005c0)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000500000018"], 0x2c}}, 0x0)

0s ago: executing program 5 (id=545):
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}]}, 0x3, 0x4de, &(0x7f0000000c40)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x204c800, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x81901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, &(0x7f0000000180)={0x0, 0x0, 0x100000}, 0x20)
read$char_usb(r1, &(0x7f0000000380)=""/210, 0xd2)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x108040, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}}, 0x24}}, 0x44080)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000480)=@newqdisc={0x50, 0x24, 0xd0f, 0x70bd29, 0x25dfdbfe, {0x60, 0x0, 0x0, r4, {0xe, 0xf}, {0xffe0, 0xa}, {0x1, 0x10}}, [@TCA_STAB={0x2c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x1, 0x59, 0x5, 0x8, 0x3, 0xfffffffa, 0x0, 0xfffffffffffffeae}}, {0xc, 0x2, [0x8000, 0x7, 0x4, 0x9]}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
ftruncate(r0, 0xc17a)
fstat(r0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)

kernel console output (not intermixed with test programs):

76b65be2-f6da-4727-8c75-0525a5b65a09.
[   40.898381][ T3714] loop3: detected capacity change from 0 to 512
[   40.907113][ T3712] loop4: detected capacity change from 0 to 256
[   40.938684][ T3714] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.82: casefold flag without casefold feature
[   40.953614][ T3714] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.82: couldn't read orphan inode 15 (err -117)
[   40.966813][ T3714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.983043][    C0] hrtimer: interrupt took 36898 ns
[   41.024876][ T3725] syz.0.88[3725] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.025084][ T3725] syz.0.88[3725] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.026244][ T3723] pimreg: entered allmulticast mode
[   41.049131][ T3725] syz.0.88[3725] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.060942][ T3723] pimreg: left allmulticast mode
[   41.090411][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.157041][ T3738] loop3: detected capacity change from 0 to 1024
[   41.172568][ T3738] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   41.183681][ T3738] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   41.196472][ T3740] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   41.196625][ T3738] JBD2: no valid journal superblock found
[   41.212824][ T3738] EXT4-fs (loop3): Could not load journal inode
[   41.256097][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   41.305197][ T3751] x_tables: duplicate underflow at hook 3
[   41.339470][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   41.360961][ T3755] netlink: 8 bytes leftover after parsing attributes in process `syz.2.99'.
[   41.377413][ T3758] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=3758 comm=syz.3.101
[   41.454883][ T3767] loop3: detected capacity change from 0 to 2048
[   41.483235][ T3767] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.502082][ T3771] loop2: detected capacity change from 0 to 128
[   41.522778][ T3771] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   41.547649][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.569343][ T3771] ext4 filesystem being mounted at /23/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   41.646248][ T3774] pimreg: entered allmulticast mode
[   41.670024][ T3774] FAULT_INJECTION: forcing a failure.
[   41.670024][ T3774] name failslab, interval 1, probability 0, space 0, times 0
[   41.682711][ T3774] CPU: 0 UID: 0 PID: 3774 Comm: syz.4.107 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   41.693330][ T3774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   41.703650][ T3774] Call Trace:
[   41.707019][ T3774]  <TASK>
[   41.710019][ T3774]  dump_stack_lvl+0xf2/0x150
[   41.714634][ T3774]  dump_stack+0x15/0x1a
[   41.718814][ T3774]  should_fail_ex+0x223/0x230
[   41.723664][ T3774]  should_failslab+0x8f/0xb0
[   41.728270][ T3774]  kmem_cache_alloc_node_noprof+0x59/0x320
[   41.734206][ T3774]  ? __alloc_skb+0x10b/0x310
[   41.738930][ T3774]  __alloc_skb+0x10b/0x310
[   41.743357][ T3774]  mroute_netlink_event+0x77/0x110
[   41.748468][ T3774]  ipmr_mfc_add+0x1327/0x1510
[   41.753194][ T3774]  ip_mroute_setsockopt+0x72b/0x950
[   41.758709][ T3774]  do_ip_setsockopt+0xd4b/0x2340
[   41.763743][ T3774]  ip_setsockopt+0x63/0x100
[   41.768424][ T3774]  raw_setsockopt+0x101/0x150
[   41.773123][ T3774]  sock_common_setsockopt+0x64/0x80
[   41.778848][ T3774]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   41.784861][ T3774]  __sys_setsockopt+0x187/0x200
[   41.789770][ T3774]  __x64_sys_setsockopt+0x66/0x80
[   41.794824][ T3774]  x64_sys_call+0x282e/0x2dc0
[   41.799644][ T3774]  do_syscall_64+0xc9/0x1c0
[   41.804174][ T3774]  ? clear_bhb_loop+0x55/0xb0
[   41.809005][ T3774]  ? clear_bhb_loop+0x55/0xb0
[   41.813698][ T3774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.819626][ T3774] RIP: 0033:0x7ff23b5d5d29
[   41.824048][ T3774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.843808][ T3774] RSP: 002b:00007ff239c41038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   41.852362][ T3774] RAX: ffffffffffffffda RBX: 00007ff23b7c5fa0 RCX: 00007ff23b5d5d29
[   41.860374][ T3774] RDX: 00000000000000d2 RSI: 0000000000000000 RDI: 0000000000000007
[   41.868530][ T3774] RBP: 00007ff239c41090 R08: 000000000000003c R09: 0000000000000000
[   41.876635][ T3774] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000001
[   41.884700][ T3774] R13: 0000000000000000 R14: 00007ff23b7c5fa0 R15: 00007ffd76985278
[   41.892745][ T3774]  </TASK>
[   41.919924][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.927395][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.934956][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.942454][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.950063][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.957580][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[   41.965053][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[   41.972607][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[   41.980126][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.987634][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.995706][ T3369] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   42.003220][ T3369] hid-generic 0000:0000:0000.0002: item fetching failed at offset 16/17
[   42.012054][ T3369] hid-generic 0000:0000:0000.0002: probe with driver hid-generic failed with error -22
[   42.029969][ T3782] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   42.089471][ T3786] ALSA: seq fatal error: cannot create timer (-22)
[   42.263287][ T3804] syz.0.118[3804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   42.263343][ T3804] syz.0.118[3804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   42.282675][ T3799] syz.4.116 (3799) used greatest stack depth: 10088 bytes left
[   42.305554][ T3804] syz.0.118[3804] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   42.710618][ T3835] loop4: detected capacity change from 0 to 1024
[   42.738855][ T3835] EXT4-fs: Ignoring removed mblk_io_submit option
[   42.787671][ T3835] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.796091][ T3843] loop3: detected capacity change from 0 to 1024
[   42.808209][ T3835] SELinux: syz.4.128 (3835) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   42.827733][ T3843] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   42.838749][ T3843] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   42.857510][ T3843] JBD2: no valid journal superblock found
[   42.863382][ T3843] EXT4-fs (loop3): Could not load journal inode
[   42.870889][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.037809][ T3860] FAULT_INJECTION: forcing a failure.
[   43.037809][ T3860] name failslab, interval 1, probability 0, space 0, times 0
[   43.050544][ T3860] CPU: 0 UID: 0 PID: 3860 Comm: +}[@ Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   43.060840][ T3860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.070908][ T3860] Call Trace:
[   43.074184][ T3860]  <TASK>
[   43.077110][ T3860]  dump_stack_lvl+0xf2/0x150
[   43.081742][ T3860]  dump_stack+0x15/0x1a
[   43.085912][ T3860]  should_fail_ex+0x223/0x230
[   43.090615][ T3860]  should_failslab+0x8f/0xb0
[   43.095273][ T3860]  kmem_cache_alloc_node_noprof+0x59/0x320
[   43.101203][ T3860]  ? __alloc_skb+0x10b/0x310
[   43.105850][ T3860]  __alloc_skb+0x10b/0x310
[   43.110356][ T3860]  netlink_alloc_large_skb+0xad/0xe0
[   43.115661][ T3860]  netlink_sendmsg+0x3b4/0x6e0
[   43.120451][ T3860]  ? __pfx_netlink_sendmsg+0x10/0x10
[   43.125777][ T3860]  __sock_sendmsg+0x140/0x180
[   43.130476][ T3860]  ____sys_sendmsg+0x312/0x410
[   43.135289][ T3860]  __sys_sendmsg+0x19d/0x230
[   43.139900][ T3860]  __x64_sys_sendmsg+0x46/0x50
[   43.144701][ T3860]  x64_sys_call+0x2734/0x2dc0
[   43.149381][ T3860]  do_syscall_64+0xc9/0x1c0
[   43.153996][ T3860]  ? clear_bhb_loop+0x55/0xb0
[   43.158761][ T3860]  ? clear_bhb_loop+0x55/0xb0
[   43.163498][ T3860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.169459][ T3860] RIP: 0033:0x7fc185a35d29
[   43.173887][ T3860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.193618][ T3860] RSP: 002b:00007fc1840a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   43.202097][ T3860] RAX: ffffffffffffffda RBX: 00007fc185c25fa0 RCX: 00007fc185a35d29
[   43.210065][ T3860] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000007
[   43.218100][ T3860] RBP: 00007fc1840a7090 R08: 0000000000000000 R09: 0000000000000000
[   43.226193][ T3860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.234166][ T3860] R13: 0000000000000000 R14: 00007fc185c25fa0 R15: 00007ffd95ce59d8
[   43.242188][ T3860]  </TASK>
[   43.246451][ T3865] netlink: 'syz.4.138': attribute type 10 has an invalid length.
[   43.271704][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   43.287742][ T3867] FAULT_INJECTION: forcing a failure.
[   43.287742][ T3867] name failslab, interval 1, probability 0, space 0, times 0
[   43.300407][ T3867] CPU: 0 UID: 0 PID: 3867 Comm: syz.4.140 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   43.311160][ T3867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.321206][ T3867] Call Trace:
[   43.324478][ T3867]  <TASK>
[   43.327400][ T3867]  dump_stack_lvl+0xf2/0x150
[   43.332121][ T3867]  dump_stack+0x15/0x1a
[   43.336364][ T3867]  should_fail_ex+0x223/0x230
[   43.341081][ T3867]  should_failslab+0x8f/0xb0
[   43.345680][ T3867]  __kmalloc_noprof+0xab/0x3f0
[   43.350440][ T3867]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   43.356724][ T3867]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   43.362943][ T3867]  ? ns_capable+0x7d/0xb0
[   43.367270][ T3867]  genl_rcv_msg+0x470/0x6c0
[   43.371796][ T3867]  ? __pfx_ovs_dp_cmd_del+0x10/0x10
[   43.377110][ T3867]  ? __dev_queue_xmit+0xb6e/0x2090
[   43.382244][ T3867]  ? ref_tracker_free+0x3a5/0x410
[   43.387269][ T3867]  ? __dev_queue_xmit+0x186/0x2090
[   43.392388][ T3867]  netlink_rcv_skb+0x12c/0x230
[   43.397142][ T3867]  ? __pfx_genl_rcv_msg+0x10/0x10
[   43.402169][ T3867]  genl_rcv+0x28/0x40
[   43.406186][ T3867]  netlink_unicast+0x599/0x670
[   43.410960][ T3867]  netlink_sendmsg+0x5cc/0x6e0
[   43.415789][ T3867]  ? __pfx_netlink_sendmsg+0x10/0x10
[   43.421067][ T3867]  __sock_sendmsg+0x140/0x180
[   43.425751][ T3867]  ____sys_sendmsg+0x312/0x410
[   43.430514][ T3867]  __sys_sendmsg+0x19d/0x230
[   43.435103][ T3867]  __x64_sys_sendmsg+0x46/0x50
[   43.439913][ T3867]  x64_sys_call+0x2734/0x2dc0
[   43.444704][ T3867]  do_syscall_64+0xc9/0x1c0
[   43.449203][ T3867]  ? clear_bhb_loop+0x55/0xb0
[   43.453874][ T3867]  ? clear_bhb_loop+0x55/0xb0
[   43.458546][ T3867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.464523][ T3867] RIP: 0033:0x7ff23b5d5d29
[   43.468924][ T3867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.488651][ T3867] RSP: 002b:00007ff239c41038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   43.497207][ T3867] RAX: ffffffffffffffda RBX: 00007ff23b7c5fa0 RCX: 00007ff23b5d5d29
[   43.505308][ T3867] RDX: 0000000020005080 RSI: 0000000020000100 RDI: 0000000000000003
[   43.513266][ T3867] RBP: 00007ff239c41090 R08: 0000000000000000 R09: 0000000000000000
[   43.521226][ T3867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.529269][ T3867] R13: 0000000000000000 R14: 00007ff23b7c5fa0 R15: 00007ffd76985278
[   43.537234][ T3867]  </TASK>
[   43.653803][ T3875] veth0_to_team: entered promiscuous mode
[   43.659570][ T3875] veth0_to_team: entered allmulticast mode
[   43.807076][ T3885] Zero length message leads to an empty skb
[   43.814904][ T3895] FAULT_INJECTION: forcing a failure.
[   43.814904][ T3895] name failslab, interval 1, probability 0, space 0, times 0
[   43.827629][ T3895] CPU: 0 UID: 0 PID: 3895 Comm: syz.3.147 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   43.838262][ T3895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.848340][ T3895] Call Trace:
[   43.851631][ T3895]  <TASK>
[   43.854655][ T3895]  dump_stack_lvl+0xf2/0x150
[   43.859298][ T3895]  dump_stack+0x15/0x1a
[   43.863492][ T3895]  should_fail_ex+0x223/0x230
[   43.868192][ T3895]  should_failslab+0x8f/0xb0
[   43.872843][ T3895]  __kmalloc_noprof+0xab/0x3f0
[   43.877652][ T3895]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   43.883954][ T3895]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   43.890040][ T3895]  ? ns_capable+0x7d/0xb0
[   43.894428][ T3895]  genl_rcv_msg+0x470/0x6c0
[   43.898999][ T3895]  ? __pfx_ovs_dp_cmd_del+0x10/0x10
[   43.904391][ T3895]  ? __dev_queue_xmit+0xb6e/0x2090
[   43.909561][ T3895]  ? ref_tracker_free+0x3a5/0x410
[   43.914661][ T3895]  ? __dev_queue_xmit+0x186/0x2090
[   43.919780][ T3895]  netlink_rcv_skb+0x12c/0x230
[   43.924569][ T3895]  ? __pfx_genl_rcv_msg+0x10/0x10
[   43.929953][ T3895]  genl_rcv+0x28/0x40
[   43.934026][ T3895]  netlink_unicast+0x599/0x670
[   43.938872][ T3895]  netlink_sendmsg+0x5cc/0x6e0
[   43.943717][ T3895]  ? __pfx_netlink_sendmsg+0x10/0x10
[   43.949296][ T3895]  __sock_sendmsg+0x140/0x180
[   43.954069][ T3895]  ____sys_sendmsg+0x312/0x410
[   43.958999][ T3895]  __sys_sendmsg+0x19d/0x230
[   43.963729][ T3895]  __x64_sys_sendmsg+0x46/0x50
[   43.968521][ T3895]  x64_sys_call+0x2734/0x2dc0
[   43.973246][ T3895]  do_syscall_64+0xc9/0x1c0
[   43.977762][ T3895]  ? clear_bhb_loop+0x55/0xb0
[   43.982472][ T3895]  ? clear_bhb_loop+0x55/0xb0
[   43.987169][ T3895]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.993087][ T3895] RIP: 0033:0x7fc185a35d29
[   43.997543][ T3895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.017219][ T3895] RSP: 002b:00007fc1840a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   44.025703][ T3895] RAX: ffffffffffffffda RBX: 00007fc185c25fa0 RCX: 00007fc185a35d29
[   44.033728][ T3895] RDX: 0000000020005080 RSI: 0000000020000100 RDI: 0000000000000003
[   44.041715][ T3895] RBP: 00007fc1840a7090 R08: 0000000000000000 R09: 0000000000000000
[   44.049758][ T3895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.057748][ T3895] R13: 0000000000000000 R14: 00007fc185c25fa0 R15: 00007ffd95ce59d8
[   44.065928][ T3895]  </TASK>
[   44.231839][ T3918] loop1: detected capacity change from 0 to 256
[   44.239610][ T3918] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   44.297948][ T3925] loop2: detected capacity change from 0 to 512
[   44.317102][ T3920] serio: Serial port ttyS3
[   44.348238][ T3925] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.361012][ T3925] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.639985][ T3943] loop4: detected capacity change from 0 to 512
[   44.665997][ T3943] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.158: invalid indirect mapped block 4294967295 (level 1)
[   44.695055][ T3943] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.158: invalid indirect mapped block 4294967295 (level 1)
[   44.717975][ T3943] EXT4-fs (loop4): 2 truncates cleaned up
[   44.736751][ T3943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.761930][ T3943] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   44.787227][ T3943] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   44.868134][   T29] kauditd_printk_skb: 347 callbacks suppressed
[   44.868217][   T29] audit: type=1400 audit(1736353551.176:772): avc:  denied  { connect } for  pid=3946 comm="syz.0.155" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   44.911537][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.974080][   T29] audit: type=1400 audit(1736353551.286:773): avc:  denied  { listen } for  pid=3954 comm="syz.0.161" lport=47820 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   45.006713][   T29] audit: type=1400 audit(1736353551.326:774): avc:  denied  { accept } for  pid=3954 comm="syz.0.161" lport=47820 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   45.033166][ T3955] netlink: 'syz.0.161': attribute type 3 has an invalid length.
[   45.042416][   T29] audit: type=1400 audit(1736353551.346:775): avc:  denied  { getopt } for  pid=3954 comm="syz.0.161" lport=47820 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[   45.097785][   T29] audit: type=1326 audit(1736353551.416:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3960 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc185a35d29 code=0x7ffc0000
[   45.121130][   T29] audit: type=1326 audit(1736353551.416:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3960 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc185a35d29 code=0x7ffc0000
[   45.144882][ T3961] loop3: detected capacity change from 0 to 512
[   45.150817][ T3964] __nla_validate_parse: 7 callbacks suppressed
[   45.150833][ T3964] netlink: 12 bytes leftover after parsing attributes in process `syz.2.164'.
[   45.178536][ T3961] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.162: corrupted in-inode xattr: invalid ea_ino
[   45.187261][   T29] audit: type=1326 audit(1736353551.456:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3960 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fc185a35d29 code=0x7ffc0000
[   45.204971][ T3961] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.162: couldn't read orphan inode 15 (err -117)
[   45.215031][   T29] audit: type=1326 audit(1736353551.456:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3960 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc185a35d29 code=0x7ffc0000
[   45.250401][   T29] audit: type=1326 audit(1736353551.456:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3960 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc185a35d29 code=0x7ffc0000
[   45.261357][ T3961] EXT4-fs (loop3): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.273793][   T29] audit: type=1326 audit(1736353551.456:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3960 comm="syz.3.162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc185a35d29 code=0x7ffc0000
[   45.313409][ T3970] FAULT_INJECTION: forcing a failure.
[   45.313409][ T3970] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.326825][ T3970] CPU: 1 UID: 0 PID: 3970 Comm: syz.2.166 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   45.337474][ T3970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   45.347570][ T3970] Call Trace:
[   45.350849][ T3970]  <TASK>
[   45.353779][ T3970]  dump_stack_lvl+0xf2/0x150
[   45.358384][ T3970]  dump_stack+0x15/0x1a
[   45.362539][ T3970]  should_fail_ex+0x223/0x230
[   45.367274][ T3970]  should_fail+0xb/0x10
[   45.371496][ T3970]  should_fail_usercopy+0x1a/0x20
[   45.376587][ T3970]  _copy_from_iter+0xd5/0xd00
[   45.381310][ T3970]  ? selinux_file_open+0x34a/0x3b0
[   45.386439][ T3970]  ? should_fail_ex+0xd7/0x230
[   45.391255][ T3970]  ? __virt_addr_valid+0x1ed/0x250
[   45.396393][ T3970]  ? __check_object_size+0x364/0x520
[   45.401690][ T3970]  skb_copy_datagram_from_iter+0xb3/0x460
[   45.407455][ T3970]  tun_get_user+0x1132/0x25c0
[   45.412151][ T3970]  ? _parse_integer+0x27/0x30
[   45.416829][ T3970]  ? ref_tracker_alloc+0x1f5/0x2f0
[   45.422034][ T3970]  tun_chr_write_iter+0x188/0x240
[   45.427117][ T3970]  vfs_write+0x77f/0x920
[   45.431354][ T3970]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   45.436968][ T3970]  ksys_write+0xe8/0x1b0
[   45.441206][ T3970]  __x64_sys_write+0x42/0x50
[   45.445868][ T3970]  x64_sys_call+0x287e/0x2dc0
[   45.450535][ T3970]  do_syscall_64+0xc9/0x1c0
[   45.455031][ T3970]  ? clear_bhb_loop+0x55/0xb0
[   45.459726][ T3970]  ? clear_bhb_loop+0x55/0xb0
[   45.464462][ T3970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.470358][ T3970] RIP: 0033:0x7f264cf05d29
[   45.474762][ T3970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.494456][ T3970] RSP: 002b:00007f264b577038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   45.502878][ T3970] RAX: ffffffffffffffda RBX: 00007f264d0f5fa0 RCX: 00007f264cf05d29
[   45.510885][ T3970] RDX: 00000000000000a2 RSI: 0000000020000680 RDI: 0000000000000003
[   45.518847][ T3970] RBP: 00007f264b577090 R08: 0000000000000000 R09: 0000000000000000
[   45.526848][ T3970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.534806][ T3970] R13: 0000000000000000 R14: 00007f264d0f5fa0 R15: 00007ffdd5e7bd78
[   45.542772][ T3970]  </TASK>
[   45.562548][ T3979] netlink: 'syz.3.162': attribute type 10 has an invalid length.
[   45.571124][ T3298] EXT4-fs error (device loop4): ext4_lookup:1813: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[   45.583577][ T3961] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[   45.591830][ T3961] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[   45.600995][ T3298] EXT4-fs error (device loop4): ext4_lookup:1813: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[   45.618706][ T3979] team0: Device hsr_slave_0 failed to register rx_handler
[   45.675392][ T3987] loop1: detected capacity change from 0 to 2048
[   45.682386][ T3301] EXT4-fs (loop3): unmounting filesystem 00000007-0000-0000-0000-000000000000.
[   45.701378][ T3986] FAULT_INJECTION: forcing a failure.
[   45.701378][ T3986] name failslab, interval 1, probability 0, space 0, times 0
[   45.714066][ T3986] CPU: 1 UID: 0 PID: 3986 Comm: syz.2.172 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   45.724716][ T3986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   45.728466][ T3982] batadv_slave_0: entered promiscuous mode
[   45.734765][ T3986] Call Trace:
[   45.734775][ T3986]  <TASK>
[   45.747055][ T3986]  dump_stack_lvl+0xf2/0x150
[   45.751374][ T3982] batadv_slave_0: left promiscuous mode
[   45.751736][ T3986]  dump_stack+0x15/0x1a
[   45.761544][ T3986]  should_fail_ex+0x223/0x230
[   45.766300][ T3986]  should_failslab+0x8f/0xb0
[   45.770988][ T3986]  kmem_cache_alloc_node_noprof+0x59/0x320
[   45.776918][ T3986]  ? __alloc_skb+0x10b/0x310
[   45.781587][ T3986]  __alloc_skb+0x10b/0x310
[   45.786051][ T3986]  netlink_alloc_large_skb+0xad/0xe0
[   45.791412][ T3986]  netlink_sendmsg+0x3b4/0x6e0
[   45.796248][ T3986]  ? __pfx_netlink_sendmsg+0x10/0x10
[   45.801547][ T3986]  __sock_sendmsg+0x140/0x180
[   45.806300][ T3986]  ____sys_sendmsg+0x312/0x410
[   45.811156][ T3986]  __sys_sendmsg+0x19d/0x230
[   45.815754][ T3986]  __x64_sys_sendmsg+0x46/0x50
[   45.820640][ T3986]  x64_sys_call+0x2734/0x2dc0
[   45.825376][ T3986]  do_syscall_64+0xc9/0x1c0
[   45.829948][ T3986]  ? clear_bhb_loop+0x55/0xb0
[   45.834615][ T3986]  ? clear_bhb_loop+0x55/0xb0
[   45.839315][ T3986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.845310][ T3986] RIP: 0033:0x7f264cf05d29
[   45.849718][ T3986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.869316][ T3986] RSP: 002b:00007f264b577038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   45.877745][ T3986] RAX: ffffffffffffffda RBX: 00007f264d0f5fa0 RCX: 00007f264cf05d29
[   45.885728][ T3986] RDX: 0000000000000000 RSI: 0000000020001540 RDI: 000000000000000b
[   45.893749][ T3986] RBP: 00007f264b577090 R08: 0000000000000000 R09: 0000000000000000
[   45.901756][ T3986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.909730][ T3986] R13: 0000000000000000 R14: 00007f264d0f5fa0 R15: 00007ffdd5e7bd78
[   45.917713][ T3986]  </TASK>
[   45.984049][ T3989] syzkaller0: entered allmulticast mode
[   45.993623][ T3990] syzkaller0 (unregistering): left allmulticast mode
[   46.008419][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.047968][ T3997] loop2: detected capacity change from 0 to 8192
[   46.099637][   T39] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.178643][ T4009] loop3: detected capacity change from 0 to 512
[   46.209128][   T39] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.223404][ T4009] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.245823][ T3984] @: renamed from vlan0 (while UP)
[   46.251375][ T4009] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.287337][   T39] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.347462][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.365964][   T39] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.487867][ T4021] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[   46.590158][   T39] bridge_slave_1: left allmulticast mode
[   46.595962][   T39] bridge_slave_1: left promiscuous mode
[   46.601682][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.617972][ T4031] program syz.3.184 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   46.628954][   T39] bridge_slave_0: left allmulticast mode
[   46.634669][   T39] bridge_slave_0: left promiscuous mode
[   46.640400][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.660990][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.668520][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.672545][ T4032] IPVS: set_ctl: invalid protocol: 0 172.20.20.29:20004
[   46.675913][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.675962][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.697886][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.705281][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.712776][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.720440][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.727862][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.735371][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.742892][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x4
[   46.750339][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.757746][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.765129][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x2
[   46.772607][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.780034][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.787439][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.794993][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.802468][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.809954][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.817393][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.824867][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.832285][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.839821][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.847342][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.854752][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.862203][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.869715][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.877140][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.884619][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.884741][ T4033] loop3: detected capacity change from 0 to 2048
[   46.892025][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.905910][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.913377][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.920850][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.928271][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.935669][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.943123][ T1093] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0
[   46.952063][ T1093] hid-generic 0000:0003:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   46.989583][ T4033]  loop3: p1 < > p4
[   46.996854][ T4033] loop3: p4 size 8388608 extends beyond EOD, truncated
[   47.128835][   T39] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   47.148044][   T39] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   47.159190][   T39] bond0 (unregistering): Released all slaves
[   47.177939][ T4035] bridge0: entered promiscuous mode
[   47.183292][ T4035] macvlan2: entered promiscuous mode
[   47.194349][ T4035] bridge0: port 3(macvlan2) entered blocking state
[   47.200983][ T4035] bridge0: port 3(macvlan2) entered disabled state
[   47.228196][ T4035] macvlan2: entered allmulticast mode
[   47.233726][ T4035] bridge0: entered allmulticast mode
[   47.249280][ T4035] macvlan2: left allmulticast mode
[   47.254442][ T4035] bridge0: left allmulticast mode
[   47.268694][ T4035] bridge0: left promiscuous mode
[   47.299593][   T39] hsr_slave_0: left promiscuous mode
[   47.305278][   T39] hsr_slave_1: left promiscuous mode
[   47.312022][   T39] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   47.319598][   T39] batman_adv: batadv0: Removing interface: batadv_slave_0
[   47.337208][   T39] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   47.344679][   T39] batman_adv: batadv0: Removing interface: batadv_slave_1
[   47.354328][   T39] veth1_macvtap: left promiscuous mode
[   47.359934][   T39] veth0_macvtap: left promiscuous mode
[   47.365591][   T39] veth1_vlan: left promiscuous mode
[   47.370843][   T39] veth0_vlan: left promiscuous mode
[   47.497257][   T39] pimreg (unregistering): left allmulticast mode
[   47.597842][ T4007] syz.1.180 (4007) used greatest stack depth: 7272 bytes left
[   47.718342][   T39] team0 (unregistering): Port device team_slave_1 removed
[   47.752767][   T39] team0 (unregistering): Port device team_slave_0 removed
[   48.000719][ T4013] chnl_net:caif_netlink_parms(): no params data found
[   48.278494][ T4013] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.285590][ T4013] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.325914][ T4077] xt_connbytes: Forcing CT accounting to be enabled
[   48.349241][ T4077] xt_cluster: node mask cannot exceed total number of nodes
[   48.363193][ T4013] bridge_slave_0: entered allmulticast mode
[   48.407671][ T4013] bridge_slave_0: entered promiscuous mode
[   48.417851][ T4013] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.424963][ T4013] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.466986][ T4013] bridge_slave_1: entered allmulticast mode
[   48.473567][ T4013] bridge_slave_1: entered promiscuous mode
[   48.508146][ T4013] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.520357][ T4013] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.530548][ T4080] 9pnet_fd: Insufficient options for proto=fd
[   48.555339][ T4013] team0: Port device team_slave_0 added
[   48.562092][ T4013] team0: Port device team_slave_1 added
[   48.631117][ T4013] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.638159][ T4013] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.664080][ T4013] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.707247][    T9] kernel write not supported for file /104/attr/exec (pid: 9 comm: kworker/0:1)
[   48.722091][ T4013] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.729148][ T4013] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.755089][ T4013] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.819332][ T4013] hsr_slave_0: entered promiscuous mode
[   48.825436][ T4013] hsr_slave_1: entered promiscuous mode
[   48.833678][ T4132] loop1: detected capacity change from 0 to 256
[   48.840351][ T4123] netlink: 4 bytes leftover after parsing attributes in process `syz.3.204'.
[   48.850569][ T4135] loop2: detected capacity change from 0 to 1024
[   48.858807][ T4013] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   48.865578][ T4135] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   48.866810][ T4013] Cannot create hsr debugfs directory
[   48.877299][ T4135] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   48.936519][ T4135] JBD2: no valid journal superblock found
[   48.942337][ T4135] EXT4-fs (loop2): Could not load journal inode
[   48.967908][ T4140] Process accounting resumed
[   48.989173][ T4140] netlink: 'syz.0.209': attribute type 1 has an invalid length.
[   49.119503][ T4013] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   49.144259][ T4013] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   49.165088][ T4013] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   49.176401][ T4163] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.197189][ T4013] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   49.204703][ T4163] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.242519][ T4163] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   49.299111][ T4013] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.335290][ T4013] 8021q: adding VLAN 0 to HW filter on device team0
[   49.348107][ T4185] syz.0.218[4185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.348233][ T4185] syz.0.218[4185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.367875][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.386204][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.395722][ T4185] syz.0.218[4185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.408482][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.426872][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.559213][ T4013] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.592653][ T4205] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   49.790162][ T4182] FAULT_INJECTION: forcing a failure.
[   49.790162][ T4182] name failslab, interval 1, probability 0, space 0, times 0
[   49.790588][ T4230] Cannot find add_set index 0 as target
[   49.803023][ T4182] CPU: 1 UID: 0 PID: 4182 Comm: +}[@ Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   49.818708][ T4182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   49.828792][ T4182] Call Trace:
[   49.832080][ T4182]  <TASK>
[   49.835037][ T4182]  dump_stack_lvl+0xf2/0x150
[   49.839711][ T4182]  dump_stack+0x15/0x1a
[   49.843964][ T4182]  should_fail_ex+0x223/0x230
[   49.848691][ T4182]  should_failslab+0x8f/0xb0
[   49.853283][ T4182]  kmem_cache_alloc_node_noprof+0x59/0x320
[   49.859089][ T4182]  ? __alloc_skb+0x10b/0x310
[   49.863684][ T4182]  __alloc_skb+0x10b/0x310
[   49.868145][ T4182]  alloc_skb_with_frags+0x80/0x450
[   49.873258][ T4182]  ? avc_has_perm+0xd4/0x160
[   49.877854][ T4182]  sock_alloc_send_pskb+0x435/0x4f0
[   49.883106][ T4182]  unix_dgram_sendmsg+0x472/0xff0
[   49.888194][ T4182]  ? selinux_socket_sendmsg+0x185/0x1c0
[   49.893734][ T4182]  ? __pfx_unix_dgram_sendmsg+0x10/0x10
[   49.899332][ T4182]  __sock_sendmsg+0x140/0x180
[   49.904005][ T4182]  ____sys_sendmsg+0x312/0x410
[   49.908835][ T4182]  __sys_sendmmsg+0x227/0x4b0
[   49.913576][ T4182]  __x64_sys_sendmmsg+0x57/0x70
[   49.918420][ T4182]  x64_sys_call+0x29aa/0x2dc0
[   49.923095][ T4182]  do_syscall_64+0xc9/0x1c0
[   49.927590][ T4182]  ? clear_bhb_loop+0x55/0xb0
[   49.932265][ T4182]  ? clear_bhb_loop+0x55/0xb0
[   49.936978][ T4182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.942899][ T4182] RIP: 0033:0x7fc185a35d29
[   49.947306][ T4182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.966913][ T4182] RSP: 002b:00007fc1840a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   49.975468][ T4182] RAX: ffffffffffffffda RBX: 00007fc185c25fa0 RCX: 00007fc185a35d29
[   49.983427][ T4182] RDX: 0000000000000651 RSI: 0000000020000000 RDI: 0000000000000006
[   49.991462][ T4182] RBP: 00007fc1840a7090 R08: 0000000000000000 R09: 0000000000000000
[   49.999423][ T4182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.007388][ T4182] R13: 0000000000000000 R14: 00007fc185c25fa0 R15: 00007ffd95ce59d8
[   50.015396][ T4182]  </TASK>
[   50.028425][ T4013] veth0_vlan: entered promiscuous mode
[   50.039792][ T4230] rdma_op ffff888111c00980 conn xmit_rdma 0000000000000000
[   50.046359][   T29] kauditd_printk_skb: 378 callbacks suppressed
[   50.046373][   T29] audit: type=1400 audit(1736353556.336:1160): avc:  denied  { read } for  pid=2981 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   50.075327][   T29] audit: type=1400 audit(1736353556.336:1161): avc:  denied  { search } for  pid=2981 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   50.075352][   T29] audit: type=1400 audit(1736353556.336:1162): avc:  denied  { append } for  pid=2981 comm="syslogd" name="messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   50.075373][   T29] audit: type=1400 audit(1736353556.336:1163): avc:  denied  { open } for  pid=2981 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   50.075471][   T29] audit: type=1400 audit(1736353556.336:1164): avc:  denied  { getattr } for  pid=2981 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   50.075491][   T29] audit: type=1400 audit(1736353556.356:1165): avc:  denied  { create } for  pid=4227 comm="syz.1.220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   50.075509][   T29] audit: type=1400 audit(1736353556.356:1166): avc:  denied  { bind } for  pid=4227 comm="syz.1.220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   50.075525][   T29] audit: type=1400 audit(1736353556.356:1167): avc:  denied  { write } for  pid=4227 comm="syz.1.220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   50.077773][ T4229] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.077858][ T4229] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.086830][   T29] audit: type=1400 audit(1736353556.396:1168): avc:  denied  { mounton } for  pid=4226 comm="syz.0.221" path="/60/file0" dev="tmpfs" ino=338 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   50.102450][ T4013] veth1_vlan: entered promiscuous mode
[   50.122881][   T29] audit: type=1400 audit(1736353556.396:1169): avc:  denied  { ioctl } for  pid=4226 comm="syz.0.221" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   50.178807][ T4013] veth0_macvtap: entered promiscuous mode
[   50.305156][ T4013] veth1_macvtap: entered promiscuous mode
[   50.305539][ T4238] syz.2.222[4238] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   50.316398][ T4238] syz.2.222[4238] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   50.340528][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.340565][ T4238] syz.2.222[4238] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   50.351983][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.383533][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.394017][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.403837][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.414321][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.424234][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.434782][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.447331][ T4013] batman_adv: batadv0: Interface activated: batadv_slave_0
[   50.482210][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.492707][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.502810][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.513277][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.523097][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.533597][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.543432][ T4013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.553909][ T4013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.596674][ T4253] netlink: 24 bytes leftover after parsing attributes in process `syz.1.225'.
[   50.606821][ T4013] batman_adv: batadv0: Interface activated: batadv_slave_1
[   50.629163][ T4013] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.638169][ T4013] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.646899][ T4013] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.655678][ T4013] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.743540][ T4265] netlink: 24 bytes leftover after parsing attributes in process `syz.1.226'.
[   50.809093][ T4273] netlink: 8 bytes leftover after parsing attributes in process `syz.2.227'.
[   50.821456][ T4276] loop1: detected capacity change from 0 to 512
[   50.874053][ T4281] IPv6: Can't replace route, no match found
[   50.881564][ T4281] netlink: 28 bytes leftover after parsing attributes in process `syz.0.229'.
[   50.890557][ T4281] netlink: 28 bytes leftover after parsing attributes in process `syz.0.229'.
[   50.936529][ T4276] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.949228][ T4276] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.002240][ T4292] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[   51.002240][ T4292] n'º|$@OOݱµ’-®+·el'
[   51.054238][ T4276] netlink: 20 bytes leftover after parsing attributes in process `syz.1.228'.
[   51.123063][ T4305] loop5: detected capacity change from 0 to 512
[   51.164769][ T4305] EXT4-fs: Ignoring removed i_version option
[   51.171446][ T4312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.236'.
[   51.197960][ T4305] EXT4-fs: Mount option(s) incompatible with ext2
[   51.225868][ T4312] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   51.239322][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.320107][ T4332] loop5: detected capacity change from 0 to 256
[   51.430856][ T4342] loop1: detected capacity change from 0 to 512
[   51.466023][ T4342] /dev/loop1: Can't open blockdev
[   51.474643][ T4349] loop2: detected capacity change from 0 to 512
[   51.496462][ T4349] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   51.509805][ T4350] loop3: detected capacity change from 0 to 256
[   51.529178][ T4342] netlink: 8 bytes leftover after parsing attributes in process `syz.1.242'.
[   51.538132][ T4342] netlink: 8 bytes leftover after parsing attributes in process `syz.1.242'.
[   51.546988][ T4342] netlink: 2 bytes leftover after parsing attributes in process `syz.1.242'.
[   51.586533][ T4349] EXT4-fs error (device loop2): __ext4_iget:4984: inode #15: block 1803188595: comm syz.2.246: invalid block
[   51.586856][ T4349] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.246: couldn't read orphan inode 15 (err -117)
[   51.599127][ T4349] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.625231][ T4349] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.843548][ T4384] loop2: detected capacity change from 0 to 1024
[   51.855763][ T4384] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   51.871603][ T4384] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.254: Invalid block bitmap block 0 in block_group 0
[   51.885347][ T4384] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.254: Failed to acquire dquot type 0
[   51.897022][ T4384] EXT4-fs error (device loop2): ext4_free_blocks:6589: comm syz.2.254: Freeing blocks not in datazone - block = 0, count = 4096
[   51.918453][ T4384] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.254: Invalid inode bitmap blk 0 in block_group 0
[   51.934780][ T4384] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   51.945591][   T58] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:4: Failed to release dquot type 0
[   51.959733][ T4395] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   51.970444][ T4384] EXT4-fs (loop2): 1 orphan inode deleted
[   51.980558][ T4384] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.012675][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.039754][ T4395] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.051660][ T4406] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ184467440737095516150xffffffffffffffff01777777777777777777777ÿÿÿÿ01777777777777777777777ÿ'
[   52.072373][ T4405] loop2: detected capacity change from 0 to 512
[   52.119822][ T4395] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.161892][ T4421] loop2: detected capacity change from 0 to 512
[   52.171235][ T4395] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.175850][ T4421] ext4: Unknown parameter 'journal_async_commit"grpquota'
[   52.202157][ T4421] C: renamed from team_slave_0 (while UP)
[   52.227773][ T4395] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.252555][ T4427] syz.2.268 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   52.265140][ T4395] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.275645][ T4425] SELinux:  policydb version 0 does not match my version range 15-33
[   52.278130][ T4395] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.299989][ T4425] SELinux: failed to load policy
[   52.325413][ T4429] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[   52.341580][ T4429] syzkaller0: entered promiscuous mode
[   52.347500][ T4429] syzkaller0: entered allmulticast mode
[   52.351080][ T4433] FAULT_INJECTION: forcing a failure.
[   52.351080][ T4433] name failslab, interval 1, probability 0, space 0, times 0
[   52.357720][ T4395] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.365680][ T4433] CPU: 1 UID: 0 PID: 4433 Comm: syz.2.271 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   52.384442][ T4433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   52.394498][ T4433] Call Trace:
[   52.397839][ T4433]  <TASK>
[   52.400764][ T4433]  dump_stack_lvl+0xf2/0x150
[   52.405441][ T4433]  dump_stack+0x15/0x1a
[   52.409712][ T4433]  should_fail_ex+0x223/0x230
[   52.414383][ T4433]  should_failslab+0x8f/0xb0
[   52.418970][ T4433]  kmem_cache_alloc_noprof+0x52/0x320
[   52.424486][ T4433]  ? skb_clone+0x154/0x1f0
[   52.428922][ T4433]  ? mod_objcg_state+0x2ea/0x4f0
[   52.433862][ T4433]  skb_clone+0x154/0x1f0
[   52.438174][ T4433]  dev_queue_xmit_nit+0x14b/0x680
[   52.443302][ T4433]  ? __rcu_read_unlock+0x4e/0x70
[   52.448239][ T4433]  dev_hard_start_xmit+0xcc/0x3f0
[   52.453297][ T4433]  ? validate_xmit_skb+0x645/0x830
[   52.458408][ T4433]  __dev_queue_xmit+0x100a/0x2090
[   52.463471][ T4433]  ? __dev_queue_xmit+0x186/0x2090
[   52.468587][ T4433]  ? __skb_clone+0x2d0/0x2f0
[   52.473244][ T4433]  __netlink_deliver_tap+0x3be/0x4f0
[   52.478529][ T4433]  netlink_unicast+0x64a/0x670
[   52.483308][ T4433]  netlink_sendmsg+0x5cc/0x6e0
[   52.488152][ T4433]  ? __pfx_netlink_sendmsg+0x10/0x10
[   52.493542][ T4433]  __sock_sendmsg+0x140/0x180
[   52.498284][ T4433]  ____sys_sendmsg+0x312/0x410
[   52.503098][ T4433]  __sys_sendmsg+0x19d/0x230
[   52.507690][ T4433]  __x64_sys_sendmsg+0x46/0x50
[   52.512463][ T4433]  x64_sys_call+0x2734/0x2dc0
[   52.517168][ T4433]  do_syscall_64+0xc9/0x1c0
[   52.521674][ T4433]  ? clear_bhb_loop+0x55/0xb0
[   52.526343][ T4433]  ? clear_bhb_loop+0x55/0xb0
[   52.531012][ T4433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.537038][ T4433] RIP: 0033:0x7f264cf05d29
[   52.541446][ T4433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.561231][ T4433] RSP: 002b:00007f264b577038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   52.569676][ T4433] RAX: ffffffffffffffda RBX: 00007f264d0f5fa0 RCX: 00007f264cf05d29
[   52.577638][ T4433] RDX: 0000000000008808 RSI: 0000000020000100 RDI: 0000000000000003
[   52.585653][ T4433] RBP: 00007f264b577090 R08: 0000000000000000 R09: 0000000000000000
[   52.593626][ T4433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.601604][ T4433] R13: 0000000000000000 R14: 00007f264d0f5fa0 R15: 00007ffdd5e7bd78
[   52.609577][ T4433]  </TASK>
[   52.633353][ T4437] unsupported nla_type 65024
[   52.641371][ T4435] loop5: detected capacity change from 0 to 256
[   52.682921][ T4439] loop2: detected capacity change from 0 to 4096
[   52.690758][ T4443] FAULT_INJECTION: forcing a failure.
[   52.690758][ T4443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.704035][ T4443] CPU: 1 UID: 0 PID: 4443 Comm: syz.1.275 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   52.714721][ T4443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   52.724784][ T4443] Call Trace:
[   52.728072][ T4443]  <TASK>
[   52.731004][ T4443]  dump_stack_lvl+0xf2/0x150
[   52.735730][ T4443]  dump_stack+0x15/0x1a
[   52.739905][ T4443]  should_fail_ex+0x223/0x230
[   52.744597][ T4443]  should_fail+0xb/0x10
[   52.748757][ T4443]  should_fail_usercopy+0x1a/0x20
[   52.753779][ T4443]  _copy_to_user+0x20/0xa0
[   52.758308][ T4443]  simple_read_from_buffer+0xa0/0x110
[   52.763714][ T4443]  proc_fail_nth_read+0xf9/0x140
[   52.768726][ T4443]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   52.774308][ T4443]  vfs_read+0x1a2/0x700
[   52.778570][ T4443]  ? __rcu_read_unlock+0x4e/0x70
[   52.783562][ T4443]  ? __fget_files+0x17c/0x1c0
[   52.788312][ T4443]  ksys_read+0xe8/0x1b0
[   52.792465][ T4443]  __x64_sys_read+0x42/0x50
[   52.796994][ T4443]  x64_sys_call+0x2874/0x2dc0
[   52.801670][ T4443]  do_syscall_64+0xc9/0x1c0
[   52.806242][ T4443]  ? clear_bhb_loop+0x55/0xb0
[   52.810913][ T4443]  ? clear_bhb_loop+0x55/0xb0
[   52.815687][ T4443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.821649][ T4443] RIP: 0033:0x7ff31b43473c
[   52.826068][ T4443] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   52.845669][ T4443] RSP: 002b:00007ff319aa7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   52.854094][ T4443] RAX: ffffffffffffffda RBX: 00007ff31b625fa0 RCX: 00007ff31b43473c
[   52.862096][ T4443] RDX: 000000000000000f RSI: 00007ff319aa70a0 RDI: 0000000000000007
[   52.870068][ T4443] RBP: 00007ff319aa7090 R08: 0000000000000000 R09: 0000000000000000
[   52.878046][ T4443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.886038][ T4443] R13: 0000000000000000 R14: 00007ff31b625fa0 R15: 00007ffc4a142d08
[   52.894007][ T4443]  </TASK>
[   53.037152][ T4466] loop1: detected capacity change from 0 to 128
[   53.162597][ T4482] syz.1.286[4482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.162672][ T4482] syz.1.286[4482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.174453][ T4482] syz.1.286[4482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.362842][ T4488] loop3: detected capacity change from 0 to 512
[   53.466592][ T4488] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.287: bg 0: block 5: invalid block bitmap
[   53.480845][ T4488] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   53.546094][ T4488] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.287: invalid indirect mapped block 3 (level 2)
[   53.563837][ T4488] EXT4-fs (loop3): 1 orphan inode deleted
[   53.569892][ T4488] EXT4-fs (loop3): 1 truncate cleaned up
[   53.576605][ T4488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.740194][ T4498] loop5: detected capacity change from 0 to 1024
[   53.742302][ T4499] lo speed is unknown, defaulting to 1000
[   53.752617][ T4499] lo speed is unknown, defaulting to 1000
[   53.754198][ T4498] EXT4-fs (loop5): unsupported inode size: 0
[   53.758995][ T4499] lo speed is unknown, defaulting to 1000
[   53.764702][ T4498] EXT4-fs (loop5): blocksize: 1024
[   53.771044][ T4499] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   53.783233][ T4499] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   53.797438][ T4499] lo speed is unknown, defaulting to 1000
[   53.803481][ T4499] lo speed is unknown, defaulting to 1000
[   53.818630][ T4499] lo speed is unknown, defaulting to 1000
[   53.824729][ T4499] lo speed is unknown, defaulting to 1000
[   53.835302][ T4499] lo speed is unknown, defaulting to 1000
[   53.882878][ T4509] loop5: detected capacity change from 0 to 2048
[   53.893208][ T4512] syz.1.297[4512] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   53.893977][ T4512] FAULT_INJECTION: forcing a failure.
[   53.893977][ T4512] name failslab, interval 1, probability 0, space 0, times 0
[   53.904680][ T4506] loop2: detected capacity change from 0 to 1024
[   53.905367][ T4512] CPU: 0 UID: 0 PID: 4512 Comm: syz.1.297 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   53.934700][ T4512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   53.944848][ T4512] Call Trace:
[   53.948122][ T4512]  <TASK>
[   53.951121][ T4512]  dump_stack_lvl+0xf2/0x150
[   53.955794][ T4512]  dump_stack+0x15/0x1a
[   53.960016][ T4512]  should_fail_ex+0x223/0x230
[   53.964699][ T4512]  should_failslab+0x8f/0xb0
[   53.969291][ T4512]  kmem_cache_alloc_node_noprof+0x59/0x320
[   53.975093][ T4512]  ? __alloc_skb+0x10b/0x310
[   53.979676][ T4512]  __alloc_skb+0x10b/0x310
[   53.984207][ T4512]  ethnl_reply_init+0x48/0x160
[   53.989042][ T4512]  ethnl_default_doit+0x3d4/0x7d0
[   53.994145][ T4512]  genl_rcv_msg+0x61b/0x6c0
[   53.998672][ T4512]  ? __pfx_ethnl_default_doit+0x10/0x10
[   54.004216][ T4512]  ? __dev_queue_xmit+0xb6e/0x2090
[   54.009371][ T4512]  netlink_rcv_skb+0x12c/0x230
[   54.014148][ T4512]  ? __pfx_genl_rcv_msg+0x10/0x10
[   54.019196][ T4512]  genl_rcv+0x28/0x40
[   54.023207][ T4512]  netlink_unicast+0x599/0x670
[   54.027978][ T4512]  netlink_sendmsg+0x5cc/0x6e0
[   54.032783][ T4512]  ? __pfx_netlink_sendmsg+0x10/0x10
[   54.038065][ T4512]  __sock_sendmsg+0x140/0x180
[   54.042854][ T4512]  ____sys_sendmsg+0x312/0x410
[   54.047718][ T4512]  __sys_sendmsg+0x19d/0x230
[   54.052312][ T4512]  __x64_sys_sendmsg+0x46/0x50
[   54.057068][ T4512]  x64_sys_call+0x2734/0x2dc0
[   54.061844][ T4512]  do_syscall_64+0xc9/0x1c0
[   54.066338][ T4512]  ? clear_bhb_loop+0x55/0xb0
[   54.071009][ T4512]  ? clear_bhb_loop+0x55/0xb0
[   54.075756][ T4512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.081649][ T4512] RIP: 0033:0x7ff31b435d29
[   54.086059][ T4512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.105731][ T4512] RSP: 002b:00007ff319aa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.114162][ T4512] RAX: ffffffffffffffda RBX: 00007ff31b625fa0 RCX: 00007ff31b435d29
[   54.122194][ T4512] RDX: 0000000000000000 RSI: 0000000020000a00 RDI: 0000000000000003
[   54.130196][ T4512] RBP: 00007ff319aa7090 R08: 0000000000000000 R09: 0000000000000000
[   54.138155][ T4512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.146123][ T4512] R13: 0000000000000000 R14: 00007ff31b625fa0 R15: 00007ffc4a142d08
[   54.154221][ T4512]  </TASK>
[   54.176213][ T4506] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   54.187129][ T4506] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   54.208170][ T4513] vxcan1: tx drop: invalid da for name 0xfffffffffffffffd
[   54.217035][ T4506] JBD2: no valid journal superblock found
[   54.222981][ T4506] EXT4-fs (loop2): Could not load journal inode
[   54.255289][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.260396][ T4509] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.264701][ T4516] usb usb4: usbfs: process 4516 (syz.1.299) did not claim interface 0 before use
[   54.297475][ T4516] FAULT_INJECTION: forcing a failure.
[   54.297475][ T4516] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.310550][ T4516] CPU: 0 UID: 0 PID: 4516 Comm: syz.1.299 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   54.321186][ T4516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   54.331254][ T4516] Call Trace:
[   54.334542][ T4516]  <TASK>
[   54.337477][ T4516]  dump_stack_lvl+0xf2/0x150
[   54.342143][ T4516]  dump_stack+0x15/0x1a
[   54.346315][ T4516]  should_fail_ex+0x223/0x230
[   54.351033][ T4516]  should_fail+0xb/0x10
[   54.355231][ T4516]  should_fail_usercopy+0x1a/0x20
[   54.360249][ T4516]  _copy_from_user+0x1e/0xb0
[   54.364840][ T4516]  kstrtouint_from_user+0x76/0xe0
[   54.369861][ T4516]  ? 0xffffffff81000000
[   54.374099][ T4516]  ? selinux_file_permission+0x22a/0x360
[   54.379765][ T4516]  proc_fail_nth_write+0x4f/0x150
[   54.384784][ T4516]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   54.390452][ T4516]  vfs_write+0x281/0x920
[   54.394794][ T4516]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   54.400338][ T4516]  ? __fget_files+0x17c/0x1c0
[   54.405117][ T4516]  ksys_write+0xe8/0x1b0
[   54.409353][ T4516]  __x64_sys_write+0x42/0x50
[   54.413969][ T4516]  x64_sys_call+0x287e/0x2dc0
[   54.418745][ T4516]  do_syscall_64+0xc9/0x1c0
[   54.423274][ T4516]  ? clear_bhb_loop+0x55/0xb0
[   54.427940][ T4516]  ? clear_bhb_loop+0x55/0xb0
[   54.432621][ T4516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.438616][ T4516] RIP: 0033:0x7ff31b4347df
[   54.443063][ T4516] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   54.462667][ T4516] RSP: 002b:00007ff319aa7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   54.471072][ T4516] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff31b4347df
[   54.479032][ T4516] RDX: 0000000000000001 RSI: 00007ff319aa70a0 RDI: 0000000000000005
[   54.486992][ T4516] RBP: 00007ff319aa7090 R08: 0000000000000000 R09: 0000000000000000
[   54.494999][ T4516] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   54.503062][ T4516] R13: 0000000000000000 R14: 00007ff31b625fa0 R15: 00007ffc4a142d08
[   54.511029][ T4516]  </TASK>
[   54.533976][ T4526] loop2: detected capacity change from 0 to 512
[   54.548597][ T4526] EXT4-fs: Ignoring removed oldalloc option
[   54.614507][ T4534] loop1: detected capacity change from 0 to 512
[   54.629414][ T4526] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   54.629448][ T4526] EXT4-fs: failed to create workqueue
[   54.644389][ T4526] EXT4-fs (loop2): mount failed
[   54.671627][ T4534] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.720163][ T4534] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.781327][ T4013] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.846887][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.858531][ T4553] loop2: detected capacity change from 0 to 1024
[   54.865423][ T4553] EXT4-fs: Ignoring removed bh option
[   54.893248][ T4553] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.909831][ T4553] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.012237][ T4586] lo speed is unknown, defaulting to 1000
[   55.014207][ T4588] loop1: detected capacity change from 0 to 512
[   55.036263][ T4588] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   55.057348][ T4588] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   55.070836][   T29] kauditd_printk_skb: 546 callbacks suppressed
[   55.070850][   T29] audit: type=1326 audit(1736353561.396:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f264cefcce7 code=0x7ffc0000
[   55.100430][   T29] audit: type=1326 audit(1736353561.396:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f264cea1f29 code=0x7ffc0000
[   55.123672][   T29] audit: type=1326 audit(1736353561.396:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   55.148768][ T4588] EXT4-fs (loop1): 1 truncate cleaned up
[   55.160317][   T29] audit: type=1326 audit(1736353561.466:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f264cefcce7 code=0x7ffc0000
[   55.166746][ T4588] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.183686][   T29] audit: type=1326 audit(1736353561.476:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f264cea1f29 code=0x7ffc0000
[   55.219408][   T29] audit: type=1326 audit(1736353561.476:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   55.242810][   T29] audit: type=1400 audit(1736353561.476:1719): avc:  denied  { create } for  pid=4589 comm="syz.3.323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   55.262384][   T29] audit: type=1326 audit(1736353561.476:1720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f264cefcce7 code=0x7ffc0000
[   55.285716][   T29] audit: type=1326 audit(1736353561.476:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f264cea1f29 code=0x7ffc0000
[   55.309019][   T29] audit: type=1326 audit(1736353561.476:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4552 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   55.355414][ T4599] FAULT_INJECTION: forcing a failure.
[   55.355414][ T4599] name failslab, interval 1, probability 0, space 0, times 0
[   55.367644][ T4590] loop3: detected capacity change from 0 to 256
[   55.368225][ T4599] CPU: 0 UID: 0 PID: 4599 Comm: syz.5.325 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   55.378994][ T4590] vfat: Unknown parameter 'shortnam ž¿xed'
[   55.384844][ T4599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.384857][ T4599] Call Trace:
[   55.384864][ T4599]  <TASK>
[   55.384871][ T4599]  dump_stack_lvl+0xf2/0x150
[   55.411643][ T4599]  dump_stack+0x15/0x1a
[   55.415799][ T4599]  should_fail_ex+0x223/0x230
[   55.420482][ T4599]  should_failslab+0x8f/0xb0
[   55.425061][ T4599]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   55.430832][ T4599]  ? __d_alloc+0x3d/0x340
[   55.435160][ T4599]  __d_alloc+0x3d/0x340
[   55.439335][ T4599]  d_alloc_pseudo+0x1e/0x80
[   55.443836][ T4599]  alloc_file_pseudo+0x70/0x140
[   55.448713][ T4599]  __shmem_file_setup+0x1bb/0x1f0
[   55.453721][ T4599]  shmem_file_setup+0x3b/0x50
[   55.458452][ T4599]  __se_sys_memfd_create+0x31d/0x5c0
[   55.463724][ T4599]  __x64_sys_memfd_create+0x31/0x40
[   55.468987][ T4599]  x64_sys_call+0x2d4c/0x2dc0
[   55.473738][ T4599]  do_syscall_64+0xc9/0x1c0
[   55.478246][ T4599]  ? clear_bhb_loop+0x55/0xb0
[   55.482944][ T4599]  ? clear_bhb_loop+0x55/0xb0
[   55.487872][ T4599]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.493818][ T4599] RIP: 0033:0x7f156cf95d29
[   55.498256][ T4599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.517872][ T4599] RSP: 002b:00007f156b600e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   55.526359][ T4599] RAX: ffffffffffffffda RBX: 00000000000005eb RCX: 00007f156cf95d29
[   55.534330][ T4599] RDX: 00007f156b600ef0 RSI: 0000000000000000 RDI: 00007f156d012469
[   55.542295][ T4599] RBP: 0000000020000dc0 R08: 00007f156b600bb7 R09: 00007f156b600e40
[   55.550264][ T4599] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000100
[   55.558226][ T4599] R13: 00007f156b600ef0 R14: 00007f156b600eb0 R15: 00000000200008c0
[   55.566197][ T4599]  </TASK>
[   55.674270][ T4607] FAULT_INJECTION: forcing a failure.
[   55.674270][ T4607] name failslab, interval 1, probability 0, space 0, times 0
[   55.686939][ T4607] CPU: 1 UID: 0 PID: 4607 Comm: syz.1.322 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   55.697580][ T4607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.707663][ T4607] Call Trace:
[   55.710941][ T4607]  <TASK>
[   55.713865][ T4607]  dump_stack_lvl+0xf2/0x150
[   55.718469][ T4607]  dump_stack+0x15/0x1a
[   55.722715][ T4607]  should_fail_ex+0x223/0x230
[   55.727407][ T4607]  ? bpf_prog_alloc_no_stats+0xc3/0x380
[   55.733052][ T4607]  should_failslab+0x8f/0xb0
[   55.737678][ T4607]  __kmalloc_cache_noprof+0x4e/0x320
[   55.742989][ T4607]  ? bpf_prog_alloc_no_stats+0x49/0x380
[   55.748776][ T4607]  bpf_prog_alloc_no_stats+0xc3/0x380
[   55.754201][ T4607]  bpf_prog_alloc+0x3a/0x150
[   55.758802][ T4607]  bpf_prog_load+0x4d1/0x1070
[   55.763485][ T4607]  ? __rcu_read_unlock+0x4e/0x70
[   55.768436][ T4607]  __sys_bpf+0x463/0x7a0
[   55.772704][ T4607]  __x64_sys_bpf+0x43/0x50
[   55.777184][ T4607]  x64_sys_call+0x2914/0x2dc0
[   55.781906][ T4607]  do_syscall_64+0xc9/0x1c0
[   55.786419][ T4607]  ? clear_bhb_loop+0x55/0xb0
[   55.791135][ T4607]  ? clear_bhb_loop+0x55/0xb0
[   55.795805][ T4607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.801789][ T4607] RIP: 0033:0x7ff31b435d29
[   55.806205][ T4607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.825893][ T4607] RSP: 002b:00007ff319a65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   55.834307][ T4607] RAX: ffffffffffffffda RBX: 00007ff31b626160 RCX: 00007ff31b435d29
[   55.842273][ T4607] RDX: 0000000000000090 RSI: 0000000020000480 RDI: 0000000000000005
[   55.850242][ T4607] RBP: 00007ff319a65090 R08: 0000000000000000 R09: 0000000000000000
[   55.858250][ T4607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.866216][ T4607] R13: 0000000000000000 R14: 00007ff31b626160 R15: 00007ffc4a142d08
[   55.874203][ T4607]  </TASK>
[   55.898108][ T4606] loop5: detected capacity change from 0 to 512
[   55.916682][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.927314][ T4606] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.939998][ T4603] loop3: detected capacity change from 0 to 128
[   55.975992][ T4606] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   56.035318][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.055768][ T4617] loop0: detected capacity change from 0 to 512
[   56.068443][ T4617] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   56.101838][ T4617] EXT4-fs (loop0): 1 truncate cleaned up
[   56.135257][ T4013] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.146022][ T4603] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   56.186485][ T4617] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.199238][ T4603] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   56.201943][ T4632] $Hÿ: renamed from bond0 (while UP)
[   56.291049][ T4637] __nla_validate_parse: 9 callbacks suppressed
[   56.291064][ T4637] netlink: 4 bytes leftover after parsing attributes in process `syz.1.337'.
[   56.341181][ T4632] $Hÿ: entered promiscuous mode
[   56.346348][ T4632] bond_slave_0: entered promiscuous mode
[   56.352139][ T4632] bond_slave_1: entered promiscuous mode
[   56.425874][ T4644] netlink: 12 bytes leftover after parsing attributes in process `syz.5.339'.
[   56.669805][ T4647] netlink: 4 bytes leftover after parsing attributes in process `syz.5.340'.
[   56.780919][ T4654] syz.5.342: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[   56.795640][ T4654] CPU: 0 UID: 0 PID: 4654 Comm: syz.5.342 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   56.806285][ T4654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.816483][ T4654] Call Trace:
[   56.819812][ T4654]  <TASK>
[   56.822873][ T4654]  dump_stack_lvl+0xf2/0x150
[   56.827455][ T4654]  dump_stack+0x15/0x1a
[   56.831646][ T4654]  warn_alloc+0x145/0x1b0
[   56.836028][ T4654]  ? __vmalloc_node_range_noprof+0x88/0xe80
[   56.841920][ T4654]  ? tracing_record_taskinfo_sched_switch+0x6f/0x270
[   56.848622][ T4654]  __vmalloc_node_range_noprof+0xaa/0xe80
[   56.854352][ T4654]  ? probe_sched_wakeup+0x81/0xa0
[   56.859413][ T4654]  ? ttwu_do_activate+0x206/0x240
[   56.864471][ T4654]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   56.870377][ T4654]  ? try_to_wake_up+0x35e/0x570
[   56.875303][ T4654]  ? __rcu_read_unlock+0x4e/0x70
[   56.880255][ T4654]  ? avc_has_perm_noaudit+0x1cc/0x210
[   56.885640][ T4654]  ? should_fail_ex+0x31/0x230
[   56.890439][ T4654]  ? xskq_create+0x36/0xd0
[   56.894853][ T4654]  ? should_failslab+0x8f/0xb0
[   56.899663][ T4654]  vmalloc_user_noprof+0x59/0x70
[   56.904607][ T4654]  ? xskq_create+0x79/0xd0
[   56.909018][ T4654]  xskq_create+0x79/0xd0
[   56.913283][ T4654]  xsk_init_queue+0x82/0xd0
[   56.917776][ T4654]  xsk_setsockopt+0x388/0x520
[   56.922482][ T4654]  ? __pfx_xsk_setsockopt+0x10/0x10
[   56.927672][ T4654]  __sys_setsockopt+0x187/0x200
[   56.932582][ T4654]  __x64_sys_setsockopt+0x66/0x80
[   56.937689][ T4654]  x64_sys_call+0x282e/0x2dc0
[   56.942363][ T4654]  do_syscall_64+0xc9/0x1c0
[   56.946855][ T4654]  ? clear_bhb_loop+0x55/0xb0
[   56.951762][ T4654]  ? clear_bhb_loop+0x55/0xb0
[   56.956431][ T4654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.962328][ T4654] RIP: 0033:0x7f156cf95d29
[   56.966741][ T4654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.986340][ T4654] RSP: 002b:00007f156b5e0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   56.994746][ T4654] RAX: ffffffffffffffda RBX: 00007f156d186080 RCX: 00007f156cf95d29
[   57.002746][ T4654] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[   57.010827][ T4654] RBP: 00007f156d011b08 R08: 0000000000000004 R09: 0000000000000000
[   57.018791][ T4654] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[   57.026829][ T4654] R13: 0000000000000000 R14: 00007f156d186080 R15: 00007ffd8da95d08
[   57.034857][ T4654]  </TASK>
[   57.038041][ T4654] Mem-Info:
[   57.041148][ T4654] active_anon:7646 inactive_anon:0 isolated_anon:0
[   57.041148][ T4654]  active_file:17109 inactive_file:2039 isolated_file:0
[   57.041148][ T4654]  unevictable:0 dirty:20 writeback:18
[   57.041148][ T4654]  slab_reclaimable:2850 slab_unreclaimable:13683
[   57.041148][ T4654]  mapped:31529 shmem:3279 pagetables:856
[   57.041148][ T4654]  sec_pagetables:0 bounce:0
[   57.041148][ T4654]  kernel_misc_reclaimable:0
[   57.041148][ T4654]  free:1892075 free_pcp:4513 free_cma:0
[   57.086008][ T4654] Node 0 active_anon:30584kB inactive_anon:0kB active_file:68436kB inactive_file:8156kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:126116kB dirty:80kB writeback:72kB shmem:13116kB writeback_tmp:0kB kernel_stack:2992kB pagetables:3424kB sec_pagetables:0kB all_unreclaimable? no
[   57.113969][ T4654] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   57.140896][ T4654] lowmem_reserve[]: 0 2866 7844 0
[   57.146111][ T4654] Node 0 DMA32 free:2950380kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953912kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[   57.175154][ T4654] lowmem_reserve[]: 0 0 4978 0
[   57.180030][ T4654] Node 0 Normal free:4600820kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:30584kB inactive_anon:0kB active_file:68436kB inactive_file:8156kB unevictable:0kB writepending:36kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:14632kB local_pcp:9032kB free_cma:0kB
[   57.210042][ T4654] lowmem_reserve[]: 0 0 0 0
[   57.214621][ T4654] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   57.227300][ T4654] Node 0 DMA32: 3*4kB (M) 4*8kB (M) 4*16kB (M) 6*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950380kB
[   57.243373][ T4654] Node 0 Normal: 597*4kB (UME) 203*8kB (ME) 491*16kB (UM) 408*32kB (UME) 274*64kB (UM) 92*128kB (UM) 36*256kB (UME) 40*512kB (UME) 31*1024kB (UME) 20*2048kB (UM) 1085*4096kB (UM) = 4600796kB
[   57.262534][ T4654] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[   57.271879][ T4654] 22454 total pagecache pages
[   57.276588][ T4654] 0 pages in swap cache
[   57.280807][ T4654] Free swap  = 124680kB
[   57.284945][ T4654] Total swap = 124996kB
[   57.289190][ T4654] 2097051 pages RAM
[   57.292994][ T4654] 0 pages HighMem/MovableOnly
[   57.297700][ T4654] 80181 pages reserved
[   57.366307][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.417761][ T4659] netlink: 72 bytes leftover after parsing attributes in process `syz.0.344'.
[   57.503121][ T4670] netlink: 24 bytes leftover after parsing attributes in process `syz.5.349'.
[   57.631962][ T4685] bpf_get_probe_write_proto: 2 callbacks suppressed
[   57.632013][ T4685] syz.0.355[4685] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.653636][ T4685] syz.0.355[4685] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.670394][ T4685] syz.0.355[4685] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.687834][ T4688] syz.2.356[4688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.710643][ T4688] syz.2.356[4688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.724278][ T4688] syz.2.356[4688] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   57.736236][ T4695] FAULT_INJECTION: forcing a failure.
[   57.736236][ T4695] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.752493][ T4694] netlink: 'syz.0.358': attribute type 13 has an invalid length.
[   57.760643][ T4695] CPU: 1 UID: 0 PID: 4695 Comm: syz.5.359 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   57.760672][ T4695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.760683][ T4695] Call Trace:
[   57.760690][ T4695]  <TASK>
[   57.768403][ T4694] netlink: 152 bytes leftover after parsing attributes in process `syz.0.358'.
[   57.787514][ T4694] syz_tun: refused to change device tx_queue_len
[   57.789536][ T4695]  dump_stack_lvl+0xf2/0x150
[   57.792819][ T4694] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   57.795740][ T4695]  dump_stack+0x15/0x1a
[   57.835368][ T4695]  should_fail_ex+0x223/0x230
[   57.840062][ T4695]  should_fail+0xb/0x10
[   57.844304][ T4695]  should_fail_usercopy+0x1a/0x20
[   57.849497][ T4695]  _copy_from_iter+0xd5/0xd00
[   57.854262][ T4695]  ? kmalloc_reserve+0x16e/0x190
[   57.859326][ T4695]  ? __build_skb_around+0x196/0x1f0
[   57.864538][ T4695]  ? __alloc_skb+0x21f/0x310
[   57.867685][ T4688] FAULT_INJECTION: forcing a failure.
[   57.867685][ T4688] name failslab, interval 1, probability 0, space 0, times 0
[   57.869123][ T4695]  ? __virt_addr_valid+0x1ed/0x250
[   57.886842][ T4695]  ? __check_object_size+0x364/0x520
[   57.892205][ T4695]  netlink_sendmsg+0x460/0x6e0
[   57.896968][ T4695]  ? __pfx_netlink_sendmsg+0x10/0x10
[   57.902248][ T4695]  __sock_sendmsg+0x140/0x180
[   57.906932][ T4695]  ____sys_sendmsg+0x312/0x410
[   57.911737][ T4695]  __sys_sendmmsg+0x227/0x4b0
[   57.916508][ T4695]  __x64_sys_sendmmsg+0x57/0x70
[   57.921417][ T4695]  x64_sys_call+0x29aa/0x2dc0
[   57.926098][ T4695]  do_syscall_64+0xc9/0x1c0
[   57.930699][ T4695]  ? clear_bhb_loop+0x55/0xb0
[   57.935448][ T4695]  ? clear_bhb_loop+0x55/0xb0
[   57.940169][ T4695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.946127][ T4695] RIP: 0033:0x7f156cf95d29
[   57.950546][ T4695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.970146][ T4695] RSP: 002b:00007f156b601038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   57.978621][ T4695] RAX: ffffffffffffffda RBX: 00007f156d185fa0 RCX: 00007f156cf95d29
[   57.986703][ T4695] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000006
[   57.994666][ T4695] RBP: 00007f156b601090 R08: 0000000000000000 R09: 0000000000000000
[   58.002644][ T4695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   58.010612][ T4695] R13: 0000000000000000 R14: 00007f156d185fa0 R15: 00007ffd8da95d08
[   58.018578][ T4695]  </TASK>
[   58.021586][ T4688] CPU: 0 UID: 0 PID: 4688 Comm: syz.2.356 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   58.032189][ T4688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.042291][ T4688] Call Trace:
[   58.045577][ T4688]  <TASK>
[   58.048506][ T4688]  dump_stack_lvl+0xf2/0x150
[   58.053117][ T4688]  dump_stack+0x15/0x1a
[   58.057289][ T4688]  should_fail_ex+0x223/0x230
[   58.062010][ T4688]  should_failslab+0x8f/0xb0
[   58.066627][ T4688]  __kmalloc_cache_node_noprof+0x56/0x320
[   58.072629][ T4688]  ? __get_vm_area_node+0xfb/0x1c0
[   58.077757][ T4688]  __get_vm_area_node+0xfb/0x1c0
[   58.082783][ T4688]  __vmalloc_node_range_noprof+0x280/0xe80
[   58.088594][ T4688]  ? bpf_prog_alloc_no_stats+0x49/0x380
[   58.094260][ T4688]  ? mntput_no_expire+0x70/0x3c0
[   58.099222][ T4688]  ? avc_has_perm_noaudit+0x1cc/0x210
[   58.104642][ T4688]  ? selinux_capable+0x1f2/0x260
[   58.109572][ T4688]  ? bpf_prog_alloc_no_stats+0x49/0x380
[   58.115186][ T4688]  __vmalloc_noprof+0x5e/0x70
[   58.119927][ T4688]  ? bpf_prog_alloc_no_stats+0x49/0x380
[   58.125488][ T4688]  bpf_prog_alloc_no_stats+0x49/0x380
[   58.130849][ T4688]  ? bpf_prog_alloc+0x28/0x150
[   58.135654][ T4688]  bpf_prog_alloc+0x3a/0x150
[   58.140367][ T4688]  bpf_prog_load+0x4d1/0x1070
[   58.145091][ T4688]  ? __rcu_read_unlock+0x4e/0x70
[   58.150029][ T4688]  __sys_bpf+0x463/0x7a0
[   58.154275][ T4688]  __x64_sys_bpf+0x43/0x50
[   58.158694][ T4688]  x64_sys_call+0x2914/0x2dc0
[   58.163364][ T4688]  do_syscall_64+0xc9/0x1c0
[   58.167895][ T4688]  ? clear_bhb_loop+0x55/0xb0
[   58.172577][ T4688]  ? clear_bhb_loop+0x55/0xb0
[   58.177247][ T4688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.183188][ T4688] RIP: 0033:0x7f264cf05d29
[   58.187618][ T4688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.207346][ T4688] RSP: 002b:00007f264b577038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   58.215814][ T4688] RAX: ffffffffffffffda RBX: 00007f264d0f5fa0 RCX: 00007f264cf05d29
[   58.223778][ T4688] RDX: 0000000000000094 RSI: 0000000020000500 RDI: 0000000000000005
[   58.231740][ T4688] RBP: 00007f264b577090 R08: 0000000000000000 R09: 0000000000000000
[   58.239755][ T4688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.247717][ T4688] R13: 0000000000000000 R14: 00007f264d0f5fa0 R15: 00007ffdd5e7bd78
[   58.255682][ T4688]  </TASK>
[   58.401136][ T4712] netlink: 24 bytes leftover after parsing attributes in process `syz.5.364'.
[   58.477619][ T4722] lo speed is unknown, defaulting to 1000
[   58.510709][ T4722] loop5: detected capacity change from 0 to 1024
[   58.518989][ T4722] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   58.534362][ T4722] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   58.550164][ T3301] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   58.557767][ T4726] loop2: detected capacity change from 0 to 128
[   58.569981][ T4722] EXT4-fs (loop5): revision level too high, forcing read-only mode
[   58.578555][ T4722] EXT4-fs (loop5): orphan cleanup on readonly fs
[   58.596454][ T4729] loop3: detected capacity change from 0 to 512
[   58.602970][ T4729] EXT4-fs: Ignoring removed oldalloc option
[   58.611071][ T4729] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   58.611090][ T4722] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   58.630823][ T4722] EXT4-fs (loop5): Remounting filesystem read-only
[   58.637496][ T4722] EXT4-fs (loop5): 1 orphan inode deleted
[   58.643703][ T4722] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   58.655889][ T4722] SELinux: (dev loop5, type ext4) getxattr errno 5
[   58.662865][ T4722] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.667669][ T4729] EXT4-fs (loop3): 1 truncate cleaned up
[   58.678256][ T4729] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.736292][ T4729] loop3: detected capacity change from 512 to 64
[   58.743097][ T4726] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 550, start 00050006)
[   58.778185][ T3301] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -12)
[   58.811888][ T4740] SELinux: syz.5.373 (4740) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   58.818261][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.827146][ T4740] tipc: Can't bind to reserved service type 0
[   58.914510][ T4750] loop5: detected capacity change from 0 to 512
[   58.923092][ T4750] EXT4-fs: Ignoring removed oldalloc option
[   58.929781][ T4748] netlink: 24 bytes leftover after parsing attributes in process `syz.3.376'.
[   58.947978][ T4750] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   58.968211][ T4750] EXT4-fs (loop5): 1 truncate cleaned up
[   58.977007][ T4750] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.019656][ T4753] lo speed is unknown, defaulting to 1000
[   59.029068][ T4013] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[   59.059768][ T4013] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.142039][ T4766] loop5: detected capacity change from 0 to 128
[   59.152020][ T4761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.381'.
[   59.172084][ T4766] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   59.178818][ T4761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.381'.
[   59.194492][ T4766] ext4 filesystem being mounted at /39/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   59.283852][ T4761] loop3: detected capacity change from 0 to 164
[   59.298307][ T4761] ISOFS: Bad logical zone size 4096
[   59.405698][ T4784] loop0: detected capacity change from 0 to 1024
[   59.455526][ T4784] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   59.466483][ T4784] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   59.484780][ T4784] JBD2: no valid journal superblock found
[   59.490568][ T4784] EXT4-fs (loop0): Could not load journal inode
[   59.553546][ T4778] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   59.560096][ T4778] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   59.567780][ T4778] vhci_hcd vhci_hcd.0: Device attached
[   59.572388][ T4799] lo speed is unknown, defaulting to 1000
[   59.580257][ T4797] sd 0:0:1:0: device reset
[   59.623930][ T4778] capability: warning: `syz.1.387' uses deprecated v2 capabilities in a way that may be insecure
[   59.704592][ T4800] vhci_hcd: connection closed
[   59.704795][ T3404] vhci_hcd: stop threads
[   59.713899][ T3404] vhci_hcd: release socket
[   59.718367][ T3404] vhci_hcd: disconnect device
[   59.766511][   T35] vhci_hcd: vhci_device speed not set
[   59.846316][ T4829] FAULT_INJECTION: forcing a failure.
[   59.846316][ T4829] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.859593][ T4829] CPU: 1 UID: 0 PID: 4829 Comm: syz.3.403 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   59.870200][ T4829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.880288][ T4829] Call Trace:
[   59.883557][ T4829]  <TASK>
[   59.886479][ T4829]  dump_stack_lvl+0xf2/0x150
[   59.891075][ T4829]  dump_stack+0x15/0x1a
[   59.895235][ T4829]  should_fail_ex+0x223/0x230
[   59.899924][ T4829]  should_fail+0xb/0x10
[   59.904121][ T4829]  should_fail_usercopy+0x1a/0x20
[   59.909289][ T4829]  _copy_from_user+0x1e/0xb0
[   59.913911][ T4829]  move_addr_to_kernel+0x82/0x120
[   59.919010][ T4829]  copy_msghdr_from_user+0x271/0x2a0
[   59.924295][ T4829]  __sys_sendmsg+0x13e/0x230
[   59.928885][ T4829]  __x64_sys_sendmsg+0x46/0x50
[   59.933644][ T4829]  x64_sys_call+0x2734/0x2dc0
[   59.938372][ T4829]  do_syscall_64+0xc9/0x1c0
[   59.942865][ T4829]  ? clear_bhb_loop+0x55/0xb0
[   59.947583][ T4829]  ? clear_bhb_loop+0x55/0xb0
[   59.952253][ T4829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.958152][ T4829] RIP: 0033:0x7fc185a35d29
[   59.962583][ T4829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.982184][ T4829] RSP: 002b:00007fc1840a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   59.990589][ T4829] RAX: ffffffffffffffda RBX: 00007fc185c25fa0 RCX: 00007fc185a35d29
[   59.998550][ T4829] RDX: 0000000000000060 RSI: 0000000020000080 RDI: 0000000000000004
[   60.006510][ T4829] RBP: 00007fc1840a7090 R08: 0000000000000000 R09: 0000000000000000
[   60.014471][ T4829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.022535][ T4829] R13: 0000000000000000 R14: 00007fc185c25fa0 R15: 00007ffd95ce59d8
[   60.030510][ T4829]  </TASK>
[   60.200403][ T4827] netlink: 'syz.0.401': attribute type 10 has an invalid length.
[   60.208774][   T29] kauditd_printk_skb: 247 callbacks suppressed
[   60.208788][   T29] audit: type=1400 audit(1736353566.516:1966): avc:  denied  { bind } for  pid=4826 comm="syz.0.401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   60.235191][   T29] audit: type=1400 audit(1736353566.516:1967): avc:  denied  { setopt } for  pid=4826 comm="syz.0.401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   60.313523][ T4836] loop0: detected capacity change from 0 to 2048
[   60.320961][ T4827] team0: Failed to send port change of device geneve1 via netlink (err -105)
[   60.335600][ T4827] team0: Failed to send options change via netlink (err -105)
[   60.343136][ T4827] team0: Port device geneve1 added
[   60.420975][   T29] audit: type=1400 audit(1736353566.736:1968): avc:  denied  { write } for  pid=4845 comm="syz.1.408" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   60.465579][ T4848] loop0: detected capacity change from 0 to 164
[   60.472349][ T4848] iso9660: Unknown parameter '·'
[   60.478030][ T4850] syz.3.411[4850] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.478137][ T4850] syz.3.411[4850] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.489593][ T4850] syz.3.411[4850] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.507789][ T4848] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   60.527919][ T4848] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.530565][ T4850] loop3: detected capacity change from 0 to 2048
[   60.560459][ T4850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   60.577196][   T29] audit: type=1400 audit(1736353566.896:1969): avc:  denied  { mounton } for  pid=4849 comm="syz.3.411" path="/83/file1/file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   60.605452][   T29] audit: type=1400 audit(1736353566.926:1970): avc:  denied  { mount } for  pid=4849 comm="syz.3.411" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   60.668259][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.699971][   T29] audit: type=1326 audit(1736353567.016:1971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4858 comm="syz.1.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff31b435d29 code=0x7ffc0000
[   60.723350][   T29] audit: type=1326 audit(1736353567.016:1972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4858 comm="syz.1.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff31b435d29 code=0x7ffc0000
[   60.746692][   T29] audit: type=1326 audit(1736353567.016:1973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4858 comm="syz.1.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff31b435d29 code=0x7ffc0000
[   60.770039][   T29] audit: type=1326 audit(1736353567.016:1974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4858 comm="syz.1.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff31b435d29 code=0x7ffc0000
[   60.793487][   T29] audit: type=1326 audit(1736353567.016:1975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4858 comm="syz.1.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff31b435d29 code=0x7ffc0000
[   60.885733][ T4867] infiniband syz!: set active
[   60.890534][ T4867] infiniband syz!: added team_slave_0
[   60.934420][ T4867] RDS/IB: syz!: added
[   60.938814][ T4867] smc: adding ib device syz! with port count 1
[   60.945381][ T4867] smc:    ib device syz! port 1 has pnetid 
[   60.978335][ T4882] FAULT_INJECTION: forcing a failure.
[   60.978335][ T4882] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.991516][ T4882] CPU: 1 UID: 0 PID: 4882 Comm: syz.2.417 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   60.995759][ T4013] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   61.002097][ T4882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.002109][ T4882] Call Trace:
[   61.002116][ T4882]  <TASK>
[   61.002124][ T4882]  dump_stack_lvl+0xf2/0x150
[   61.002163][ T4882]  dump_stack+0x15/0x1a
[   61.036084][ T4882]  should_fail_ex+0x223/0x230
[   61.040764][ T4882]  should_fail+0xb/0x10
[   61.044956][ T4882]  should_fail_usercopy+0x1a/0x20
[   61.049976][ T4882]  _copy_from_user+0x1e/0xb0
[   61.054666][ T4882]  __sys_bpf+0x14e/0x7a0
[   61.058961][ T4882]  __x64_sys_bpf+0x43/0x50
[   61.063783][ T4882]  x64_sys_call+0x2914/0x2dc0
[   61.068540][ T4882]  do_syscall_64+0xc9/0x1c0
[   61.073057][ T4882]  ? clear_bhb_loop+0x55/0xb0
[   61.077726][ T4882]  ? clear_bhb_loop+0x55/0xb0
[   61.082409][ T4882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.088428][ T4882] RIP: 0033:0x7f264cf05d29
[   61.092830][ T4882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.112509][ T4882] RSP: 002b:00007f264b577038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   61.120997][ T4882] RAX: ffffffffffffffda RBX: 00007f264d0f5fa0 RCX: 00007f264cf05d29
[   61.129024][ T4882] RDX: 0000000000000090 RSI: 00000000200005c0 RDI: 0000000000000005
[   61.136984][ T4882] RBP: 00007f264b577090 R08: 0000000000000000 R09: 0000000000000000
[   61.144951][ T4882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.152917][ T4882] R13: 0000000000000000 R14: 00007f264d0f5fa0 R15: 00007ffdd5e7bd78
[   61.161043][ T4882]  </TASK>
[   61.262366][ T4891] program syz.2.422 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   61.291885][ T4893] FAULT_INJECTION: forcing a failure.
[   61.291885][ T4893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.305215][ T4893] CPU: 0 UID: 0 PID: 4893 Comm: syz.5.416 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   61.315852][ T4893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.325938][ T4893] Call Trace:
[   61.329215][ T4893]  <TASK>
[   61.332143][ T4893]  dump_stack_lvl+0xf2/0x150
[   61.337075][ T4893]  dump_stack+0x15/0x1a
[   61.341314][ T4893]  should_fail_ex+0x223/0x230
[   61.346079][ T4893]  should_fail+0xb/0x10
[   61.350268][ T4893]  should_fail_usercopy+0x1a/0x20
[   61.355354][ T4893]  _copy_to_user+0x20/0xa0
[   61.359792][ T4893]  simple_read_from_buffer+0xa0/0x110
[   61.365186][ T4893]  proc_fail_nth_read+0xf9/0x140
[   61.370144][ T4893]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   61.375803][ T4893]  vfs_read+0x1a2/0x700
[   61.380056][ T4893]  ? __rcu_read_unlock+0x4e/0x70
[   61.385014][ T4893]  ? __fget_files+0x17c/0x1c0
[   61.389737][ T4893]  ksys_read+0xe8/0x1b0
[   61.393912][ T4893]  __x64_sys_read+0x42/0x50
[   61.398446][ T4893]  x64_sys_call+0x2874/0x2dc0
[   61.403174][ T4893]  do_syscall_64+0xc9/0x1c0
[   61.407826][ T4893]  ? clear_bhb_loop+0x55/0xb0
[   61.412608][ T4893]  ? clear_bhb_loop+0x55/0xb0
[   61.417354][ T4893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.423290][ T4893] RIP: 0033:0x7f156cf9473c
[   61.427729][ T4893] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   61.447421][ T4893] RSP: 002b:00007f156b5e0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   61.455889][ T4893] RAX: ffffffffffffffda RBX: 00007f156d186080 RCX: 00007f156cf9473c
[   61.463853][ T4893] RDX: 000000000000000f RSI: 00007f156b5e00a0 RDI: 0000000000000004
[   61.471864][ T4893] RBP: 00007f156b5e0090 R08: 0000000000000000 R09: 0000000000000000
[   61.479829][ T4893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.487851][ T4893] R13: 0000000000000001 R14: 00007f156d186080 R15: 00007ffd8da95d08
[   61.495907][ T4893]  </TASK>
[   61.505229][ T4892] loop0: detected capacity change from 0 to 128
[   61.574960][ T4902] __nla_validate_parse: 3 callbacks suppressed
[   61.574977][ T4902] netlink: 4 bytes leftover after parsing attributes in process `syz.5.426'.
[   61.647192][ T4911] loop2: detected capacity change from 0 to 512
[   61.670089][ T4908] loop0: detected capacity change from 0 to 256
[   61.768045][ T4908] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   61.787580][ T4911] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.428: casefold flag without casefold feature
[   61.817809][ T4908] netlink: 'syz.0.427': attribute type 10 has an invalid length.
[   61.828313][ T4911] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.428: couldn't read orphan inode 15 (err -117)
[   61.876109][ T4908] geneve1: entered promiscuous mode
[   61.888410][ T4911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   61.957981][ T4908] team0: Port device geneve1 removed
[   61.985595][ T4908] bond0: (slave geneve1): Enslaving as an active interface with an up link
[   62.137198][ T4925] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   62.187439][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.219580][ T4925] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   62.535013][ T4955] loop3: detected capacity change from 0 to 512
[   62.546421][ T4955] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.442: invalid block
[   62.565407][ T4955] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.442: invalid indirect mapped block 4294967295 (level 1)
[   62.580456][ T4955] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.442: invalid indirect mapped block 4294967295 (level 1)
[   62.595037][ T4955] EXT4-fs (loop3): 2 truncates cleaned up
[   62.621951][ T4955] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.256066][ T4970] sch_tbf: burst 25 is lower than device lo mtu (65550) !
[   63.381378][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.555356][ T4985] netlink: 8 bytes leftover after parsing attributes in process `syz.5.448'.
[   63.564200][ T4985] netlink: 84 bytes leftover after parsing attributes in process `syz.5.448'.
[   63.617358][ T4989] loop0: detected capacity change from 0 to 128
[   63.731722][ T4995] loop0: detected capacity change from 0 to 128
[   63.754168][ T4996] loop5: detected capacity change from 0 to 1024
[   63.780925][ T4995] syz.0.451[4995] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.780989][ T4995] syz.0.451[4995] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.807805][ T4996] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   63.830261][ T4996] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   63.858700][ T4995] syz.0.451[4995] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.937269][ T4996] JBD2: no valid journal superblock found
[   63.954285][ T4996] EXT4-fs (loop5): Could not load journal inode
[   63.980813][ T5007] loop0: detected capacity change from 0 to 128
[   64.162923][ T5007] ext4 filesystem being mounted at /102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   64.257654][ T5027] netlink: 8 bytes leftover after parsing attributes in process `syz.1.456'.
[   64.347239][ T5038] netlink: 12 bytes leftover after parsing attributes in process `syz.1.458'.
[   64.427784][ T5043] loop2: detected capacity change from 0 to 512
[   64.441998][ T5043] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[   64.456777][ T5043] EXT4-fs (loop2): mount failed
[   64.595355][ T5069] loop2: detected capacity change from 0 to 1024
[   64.611454][ T5069] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   64.622451][ T5069] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   64.640520][ T5069] JBD2: no valid journal superblock found
[   64.646517][ T5069] EXT4-fs (loop2): Could not load journal inode
[   64.724313][ T5083] loop1: detected capacity change from 0 to 256
[   64.766169][ T5083] FAT-fs (loop1): Directory bread(block 64) failed
[   64.782327][ T5083] FAT-fs (loop1): Directory bread(block 65) failed
[   64.790322][ T5083] FAT-fs (loop1): Directory bread(block 66) failed
[   64.798299][ T5083] FAT-fs (loop1): Directory bread(block 67) failed
[   64.805213][ T5083] FAT-fs (loop1): Directory bread(block 68) failed
[   64.812045][ T5083] FAT-fs (loop1): Directory bread(block 69) failed
[   64.818833][ T5083] FAT-fs (loop1): Directory bread(block 70) failed
[   64.826367][ T5083] FAT-fs (loop1): Directory bread(block 71) failed
[   64.833160][ T5083] FAT-fs (loop1): Directory bread(block 72) failed
[   64.834078][ T5088] netlink: 28 bytes leftover after parsing attributes in process `syz.2.470'.
[   64.839827][ T5083] FAT-fs (loop1): Directory bread(block 73) failed
[   64.848656][ T5088] tipc: Started in network mode
[   64.860123][ T5088] tipc: Node identity 7, cluster identity 1
[   64.866080][ T5088] tipc: Node number set to 7
[   64.932449][ T5096] loop2: detected capacity change from 0 to 512
[   64.939391][ T5096] EXT4-fs: Ignoring removed bh option
[   64.951097][ T5096] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[   65.187148][ T5123] FAULT_INJECTION: forcing a failure.
[   65.187148][ T5123] name failslab, interval 1, probability 0, space 0, times 0
[   65.199998][ T5123] CPU: 1 UID: 0 PID: 5123 Comm: syz.3.474 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   65.210619][ T5123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.220694][ T5123] Call Trace:
[   65.223963][ T5123]  <TASK>
[   65.226882][ T5123]  dump_stack_lvl+0xf2/0x150
[   65.231478][ T5123]  dump_stack+0x15/0x1a
[   65.235631][ T5123]  should_fail_ex+0x223/0x230
[   65.240325][ T5123]  ? legacy_init_fs_context+0x31/0x70
[   65.245737][ T5123]  should_failslab+0x8f/0xb0
[   65.250396][ T5123]  __kmalloc_cache_noprof+0x4e/0x320
[   65.255676][ T5123]  legacy_init_fs_context+0x31/0x70
[   65.260872][ T5123]  alloc_fs_context+0x3fb/0x4e0
[   65.265812][ T5123]  fs_context_for_mount+0x21/0x30
[   65.270892][ T5123]  do_new_mount+0xf3/0x690
[   65.275390][ T5123]  path_mount+0x49b/0xb30
[   65.279728][ T5123]  __se_sys_mount+0x27c/0x2d0
[   65.284410][ T5123]  __x64_sys_mount+0x67/0x80
[   65.289009][ T5123]  x64_sys_call+0x2c84/0x2dc0
[   65.295949][ T5123]  do_syscall_64+0xc9/0x1c0
[   65.300464][ T5123]  ? clear_bhb_loop+0x55/0xb0
[   65.305163][ T5123]  ? clear_bhb_loop+0x55/0xb0
[   65.309919][ T5123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.315813][ T5123] RIP: 0033:0x7fc185a35d29
[   65.320217][ T5123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.341926][ T5123] RSP: 002b:00007fc1840a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   65.350335][ T5123] RAX: ffffffffffffffda RBX: 00007fc185c25fa0 RCX: 00007fc185a35d29
[   65.358307][ T5123] RDX: 0000000020000200 RSI: 0000000020000000 RDI: 0000000000000000
[   65.366311][ T5123] RBP: 00007fc1840a7090 R08: 0000000020000600 R09: 0000000000000000
[   65.374292][ T5123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.382270][ T5123] R13: 0000000000000000 R14: 00007fc185c25fa0 R15: 00007ffd95ce59d8
[   65.390249][ T5123]  </TASK>
[   65.464943][ T5133] FAULT_INJECTION: forcing a failure.
[   65.464943][ T5133] name failslab, interval 1, probability 0, space 0, times 0
[   65.466523][ T5135] loop3: detected capacity change from 0 to 1024
[   65.477659][ T5133] CPU: 1 UID: 0 PID: 5133 Comm: syz.0.476 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   65.494607][ T5133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.504666][ T5133] Call Trace:
[   65.508005][ T5133]  <TASK>
[   65.510926][ T5133]  dump_stack_lvl+0xf2/0x150
[   65.515566][ T5133]  dump_stack+0x15/0x1a
[   65.519720][ T5133]  should_fail_ex+0x223/0x230
[   65.524389][ T5133]  should_failslab+0x8f/0xb0
[   65.528987][ T5133]  __kmalloc_noprof+0xab/0x3f0
[   65.533745][ T5133]  ? p9pdu_readf+0xf53/0x1600
[   65.538517][ T5133]  p9pdu_readf+0xf53/0x1600
[   65.543014][ T5133]  ? update_load_avg+0x1f7/0x7c0
[   65.548029][ T5133]  ? __dequeue_entity+0x22/0x310
[   65.553034][ T5133]  ? __list_add_valid_or_report+0x36/0xc0
[   65.558752][ T5133]  p9pdu_readf+0xc62/0x1600
[   65.563295][ T5133]  ? avc_has_perm_noaudit+0x1cc/0x210
[   65.568717][ T5133]  p9_client_stat+0xde/0x220
[   65.573392][ T5133]  v9fs_vfs_getattr+0x14e/0x270
[   65.578398][ T5133]  ? __pfx_v9fs_vfs_getattr+0x10/0x10
[   65.583815][ T5133]  vfs_statx_path+0x171/0x2d0
[   65.588565][ T5133]  __se_sys_newstat+0xb1/0x320
[   65.593463][ T5133]  ? fput+0x1c4/0x200
[   65.597440][ T5133]  ? ksys_write+0x176/0x1b0
[   65.601986][ T5133]  __x64_sys_newstat+0x31/0x40
[   65.606761][ T5133]  x64_sys_call+0x6eb/0x2dc0
[   65.611344][ T5133]  do_syscall_64+0xc9/0x1c0
[   65.615850][ T5133]  ? clear_bhb_loop+0x55/0xb0
[   65.620574][ T5133]  ? clear_bhb_loop+0x55/0xb0
[   65.625269][ T5133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.631181][ T5133] RIP: 0033:0x7f075c715d29
[   65.635620][ T5133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.655252][ T5133] RSP: 002b:00007f075ad81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   65.663666][ T5133] RAX: ffffffffffffffda RBX: 00007f075c905fa0 RCX: 00007f075c715d29
[   65.671658][ T5133] RDX: 0000000000000000 RSI: 0000000020000ac0 RDI: 00000000200009c0
[   65.679617][ T5133] RBP: 00007f075ad81090 R08: 0000000000000000 R09: 0000000000000000
[   65.687585][ T5133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.695545][ T5133] R13: 0000000000000000 R14: 00007f075c905fa0 R15: 00007ffdcba10778
[   65.703636][ T5133]  </TASK>
[   65.733743][ T5135] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   65.744687][ T5135] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   65.787037][ T5135] JBD2: no valid journal superblock found
[   65.792871][ T5135] EXT4-fs (loop3): Could not load journal inode
[   65.832231][ T5155] loop5: detected capacity change from 0 to 512
[   65.861616][ T5155] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.875072][   T29] kauditd_printk_skb: 426 callbacks suppressed
[   65.875085][   T29] audit: type=1400 audit(1736353572.230:2402): avc:  denied  { create } for  pid=5161 comm="syz.2.488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[   65.912043][ T5162] netlink: 'syz.2.488': attribute type 1 has an invalid length.
[   65.919849][ T5162] netlink: 24 bytes leftover after parsing attributes in process `syz.2.488'.
[   65.928955][ T5162] netlink: 'syz.2.488': attribute type 1 has an invalid length.
[   65.943401][   T29] audit: type=1400 audit(1736353572.281:2403): avc:  denied  { watch } for  pid=5154 comm="syz.5.484" path="/56/file0" dev="loop5" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   65.975801][ T5173] loop3: detected capacity change from 0 to 128
[   65.999145][   T29] audit: type=1326 audit(1736353572.363:2404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.2.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   66.018750][ T5177] loop5: detected capacity change from 0 to 2048
[   66.022536][   T29] audit: type=1326 audit(1736353572.363:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.2.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   66.031147][ T5171] loop0: detected capacity change from 0 to 128
[   66.052125][   T29] audit: type=1326 audit(1736353572.363:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.2.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   66.082099][   T29] audit: type=1326 audit(1736353572.363:2407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.2.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   66.105442][   T29] audit: type=1326 audit(1736353572.363:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.2.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   66.127623][ T5173] EXT4-fs mount: 4 callbacks suppressed
[   66.127639][ T5173] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.128722][   T29] audit: type=1326 audit(1736353572.363:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.2.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f264cf05d29 code=0x7ffc0000
[   66.135237][ T5173] ext4 filesystem being mounted at /97/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   66.153975][ T5171] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   66.220525][ T5183] netlink: 24 bytes leftover after parsing attributes in process `syz.2.492'.
[   66.230964][ T5182] uprobe: syz.1.489:5182 failed to unregister, leaking uprobe
[   66.239729][   T29] audit: type=1400 audit(1736353572.600:2410): avc:  denied  { cpu } for  pid=5170 comm="syz.1.489" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   66.258919][   T29] audit: type=1400 audit(1736353572.600:2411): avc:  denied  { execute } for  pid=5170 comm="syz.1.489" path="/78/memory.events" dev="tmpfs" ino=439 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   66.269249][ T5171] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   66.310506][ T5177] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.390933][ T5191] loop2: detected capacity change from 0 to 128
[   66.436564][ T5194] loop1: detected capacity change from 0 to 128
[   66.476691][ T5191] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.531082][ T5191] ext4 filesystem being mounted at /119/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   66.600174][ T5194] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.615104][ T5177] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   66.652716][ T5194] ext4 filesystem being mounted at /79/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   66.666580][ T5177] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   66.697160][ T5177] EXT4-fs (loop5): This should not happen!! Data will be lost
[   66.697160][ T5177] 
[   66.706831][ T5177] EXT4-fs (loop5): Total free blocks count 0
[   66.712919][ T5177] EXT4-fs (loop5): Free/Dirty block details
[   66.718921][ T5177] EXT4-fs (loop5): free_blocks=2415919104
[   66.724671][ T5177] EXT4-fs (loop5): dirty_blocks=8192
[   66.730020][ T5177] EXT4-fs (loop5): Block reservation details
[   66.736022][ T5177] EXT4-fs (loop5): i_reserved_data_blocks=512
[   66.802674][ T5193] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   66.821139][   T28] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   66.946920][ T3301] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   67.066764][ T5209] loop3: detected capacity change from 0 to 256
[   67.225838][ T5205] syz.0.499[5205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.226388][ T5219] netlink: 64 bytes leftover after parsing attributes in process `syz.5.497'.
[   67.287014][ T5210] syz.0.499[5210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.344980][ T5226] IPv4: Oversized IP packet from 127.202.26.0
[   67.677722][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   67.691339][ T5256] wireguard0: entered promiscuous mode
[   67.696875][ T5256] wireguard0: entered allmulticast mode
[   67.745873][ T5254] loop5: detected capacity change from 0 to 2048
[   67.760059][ T5261] loop3: detected capacity change from 0 to 256
[   67.782648][ T5261] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   67.799370][ T5254] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.833941][ T5254] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.510: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   67.882808][ T5254] netlink: 'syz.5.510': attribute type 1 has an invalid length.
[   67.890682][ T5254] netlink: 220 bytes leftover after parsing attributes in process `syz.5.510'.
[   67.908527][ T5267] loop0: detected capacity change from 0 to 1024
[   67.926949][ T5267] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   67.937758][ T5267] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   67.948962][ T5267] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   67.961899][ T5267] EXT4-fs (loop0): orphan cleanup on readonly fs
[   67.968965][ T5267] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   67.980293][ T5267] EXT4-fs (loop0): Remounting filesystem read-only
[   67.993126][ T5267] EXT4-fs (loop0): 1 orphan inode deleted
[   68.004184][ T5267] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   68.016797][ T4013] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.033469][ T5267] SELinux: (dev loop0, type ext4) getxattr errno 5
[   68.059086][ T5267] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.106679][ T5276] netlink: 8 bytes leftover after parsing attributes in process `syz.3.517'.
[   68.192443][ T5285] netlink: 4 bytes leftover after parsing attributes in process `syz.0.521'.
[   68.202374][ T5285] bridge_slave_1: left allmulticast mode
[   68.208132][ T5285] bridge_slave_1: left promiscuous mode
[   68.213946][ T5285] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.226885][ T5285] bridge_slave_0: left allmulticast mode
[   68.232711][ T5285] bridge_slave_0: left promiscuous mode
[   68.238413][ T5285] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.296014][ T5290] loop3: detected capacity change from 0 to 512
[   68.309090][ T5290] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.523: invalid indirect mapped block 4294967295 (level 1)
[   68.324889][ T5291] loop0: detected capacity change from 0 to 1024
[   68.337340][ T5291] EXT4-fs: Ignoring removed mblk_io_submit option
[   68.358576][ T5290] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.523: invalid indirect mapped block 4294967295 (level 1)
[   68.374761][ T5291] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.389455][ T5290] EXT4-fs (loop3): 2 truncates cleaned up
[   68.396678][ T5290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.411661][ T5285] process 'syz.0.521' launched './file0/file0' with NULL argv: empty string added
[   68.538900][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.569874][ T5302] loop0: detected capacity change from 0 to 1024
[   68.582123][ T5302] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   68.593112][ T5302] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   68.603381][ T5302] JBD2: no valid journal superblock found
[   68.609189][ T5302] EXT4-fs (loop0): Could not load journal inode
[   68.652121][ T5304] IPv6: NLM_F_CREATE should be specified when creating new route
[   68.673818][ T5304] IPv6: Can't replace route, no match found
[   68.696511][   T35] IPVS: starting estimator thread 0...
[   68.727973][ T5313] loop0: detected capacity change from 0 to 512
[   68.758745][ T5313] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.787890][ T5313] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.812626][ T5307] IPVS: using max 3120 ests per chain, 156000 per kthread
[   68.853212][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.922632][ T5323] netlink: 40 bytes leftover after parsing attributes in process `syz.2.533'.
[   68.947185][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.974398][ T5330] syz.2.535[5330] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.979541][ T5330] syz.2.535[5330] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.997701][ T5330] syz.2.535[5330] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   69.132223][ T5346] hub 9-0:1.0: USB hub found
[   69.160928][ T5346] hub 9-0:1.0: 8 ports detected
[   69.240603][ T5358] loop2: detected capacity change from 0 to 2048
[   69.247672][ T5358] EXT4-fs: Ignoring removed bh option
[   69.271300][ T5360] netlink: 24 bytes leftover after parsing attributes in process `syz.5.544'.
[   69.284269][ T5358] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.316497][ T5363] ==================================================================
[   69.322333][ T5365] loop5: detected capacity change from 0 to 512
[   69.324597][ T5363] BUG: KCSAN: data-race in page_cache_sync_ra / read_pages
[   69.333904][ T5365] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.545: invalid block
[   69.337991][ T5363] 
[   69.337999][ T5363] write to 0xffff88811c4393a4 of 4 bytes by task 5358 on cpu 1:
[   69.338013][ T5363]  page_cache_sync_ra+0x540/0x670
[   69.338036][ T5363]  filemap_get_pages+0x2c1/0x10e0
[   69.357195][ T5365] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.545: invalid indirect mapped block 4294967295 (level 1)
[   69.359741][ T5363]  filemap_read+0x221/0x6a0
[   69.359766][ T5363]  generic_file_read_iter+0x78/0x330
[   69.365620][ T5365] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.545: invalid indirect mapped block 4294967295 (level 1)
[   69.369782][ T5363]  ext4_file_read_iter+0x1cc/0x290
[   69.369814][ T5363]  copy_splice_read+0x3a0/0x5d0
[   69.369834][ T5363]  splice_direct_to_actor+0x28b/0x670
[   69.369856][ T5363]  do_splice_direct+0xd7/0x150
[   69.369877][ T5363]  do_sendfile+0x398/0x660
[   69.369893][ T5363]  __x64_sys_sendfile64+0x110/0x150
[   69.369908][ T5363]  x64_sys_call+0xfbd/0x2dc0
[   69.369924][ T5363]  do_syscall_64+0xc9/0x1c0
[   69.369940][ T5363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.387223][ T5365] EXT4-fs (loop5): 2 truncates cleaned up
[   69.388203][ T5363] 
[   69.388210][ T5363] read to 0xffff88811c4393a4 of 4 bytes by task 5363 on cpu 0:
[   69.388226][ T5363]  read_pages+0x25c/0x540
[   69.393836][ T5365] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.407254][ T5363]  page_cache_ra_unbounded+0x2b8/0x310
[   69.407280][ T5363]  page_cache_sync_ra+0x652/0x670
[   69.407296][ T5363]  filemap_get_pages+0x2c1/0x10e0
[   69.407316][ T5363]  filemap_read+0x221/0x6a0
[   69.504180][ T5363]  generic_file_read_iter+0x78/0x330
[   69.509472][ T5363]  ext4_file_read_iter+0x1cc/0x290
[   69.514609][ T5363]  copy_splice_read+0x3a0/0x5d0
[   69.519461][ T5363]  splice_direct_to_actor+0x28b/0x670
[   69.524837][ T5363]  do_splice_direct+0xd7/0x150
[   69.529596][ T5363]  do_sendfile+0x398/0x660
[   69.534004][ T5363]  __x64_sys_sendfile64+0x110/0x150
[   69.539227][ T5363]  x64_sys_call+0xfbd/0x2dc0
[   69.543809][ T5363]  do_syscall_64+0xc9/0x1c0
[   69.548311][ T5363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.554213][ T5363] 
[   69.556557][ T5363] value changed: 0x00000002 -> 0x00000010
[   69.562279][ T5363] 
[   69.564602][ T5363] Reported by Kernel Concurrency Sanitizer on:
[   69.570777][ T5363] CPU: 0 UID: 0 PID: 5363 Comm: syz.2.543 Not tainted 6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[   69.581375][ T5363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.591437][ T5363] ==================================================================
[   69.601001][ T5293] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   69.624943][   T28] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[   69.637401][   T28] EXT4-fs (loop2): This should not happen!! Data will be lost
[   69.637401][   T28] 
[   69.647060][   T28] EXT4-fs (loop2): Total free blocks count 0
[   69.653068][   T28] EXT4-fs (loop2): Free/Dirty block details
[   69.659016][   T28] EXT4-fs (loop2): free_blocks=2415919104
[   69.664789][   T28] EXT4-fs (loop2): dirty_blocks=48
[   69.669919][   T28] EXT4-fs (loop2): Block reservation details
[   69.675893][   T28] EXT4-fs (loop2): i_reserved_data_blocks=3
[   69.682203][   T50] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65793 with max blocks 1 with error 28
[   69.903337][ T3306] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.940862][ T4013] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.