last executing test programs:

1m59.773643768s ago: executing program 4 (id=266):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, 0x0, &(0x7f00000002c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)

1m59.708217918s ago: executing program 4 (id=267):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000440)=0x4)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f00000004c0)={0x0, @isdn={0x22, 0x3, 0xfb, 0x7, 0x40}, @xdp={0x2c, 0x4, 0x0, 0x34}, @xdp={0x2c, 0x9, r1, 0x1a}, 0x1, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000480)='virt_wifi0\x00', 0x2, 0x57, 0x6})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000005cdaada804a69028e98ac017d78c57b61c1162f5f7e48bba9bffc415a033718fb6d4fd718b1a1c740c96bb918c08d672bc7760189e10d21f90ec8bfc717a369ff6a7aeba09d1f8a9e929839153db821ae5d97729ebfc0eada5345a601d55a6d9caf4b18e57ae44508f4a6263a53e07da43582e223a95378c045bb1f306aa9c9ca3842871b205c25d940b8503"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r8=>0x0})
r9 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r8, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r7, @ANYRES32=r9], 0x44}}, 0x0)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000540)={<r10=>0x0, 0x6}, &(0x7f0000000680)=0x8)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r9, 0x84, 0x73, &(0x7f0000000780)={r10, 0x1, 0x20, 0xef, 0xffffffffffffffff}, &(0x7f00000007c0)=0x18)
syz_emit_ethernet(0x42, &(0x7f0000000200)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@noop, @timestamp={0x44, 0x8, 0x5, 0x3, 0x0, [0x0]}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000580)=ANY=[@ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="0500"/12, @ANYRES32, @ANYBLOB="6c9eb2a449e32431e1a0dff8f4cbdc76c18f26d77053d721845889e5a68e80f8c48e1bdd653e3c96d7e5e7515de4a42a9cc900575e66b89ece35e3452e7427c14162b76f251414e4432900011a0a625b9cbae8c1773dc792ca2cfe3b96a713ce7e1daf3f7c53ec2e", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r5}, &(0x7f00000006c0), &(0x7f0000000700)=r4}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$inet(r3, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

1m59.664379898s ago: executing program 4 (id=268):
syz_emit_ethernet(0x242, &(0x7f00000005c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@mpls_mc={0x8848, {[{0x6}, {0x1, 0x0, 0x1}, {0xacb, 0x0, 0x1}, {0x5}, {0xe}, {0x1}, {0x8, 0x0, 0x1}, {0x8}, {}, {0x8, 0x0, 0x1}], @ipv4=@tipc={{0x3a, 0x4, 0x0, 0x12, 0x20c, 0x64, 0x0, 0x2, 0x6, 0x0, @broadcast, @broadcast, {[@lsrr={0x83, 0x3, 0x77}, @rr={0x7, 0x13, 0x6e, [@initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @dev={0xac, 0x14, 0x14, 0x2b}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @cipso={0x86, 0x46, 0xffffffffffffffff, [{0x2, 0x12, "678cb27356d8b02007c2902eadb5f65a"}, {0x7, 0x6, "c34b8cfc"}, {0x7, 0x4, "67cd"}, {0x0, 0x8, "283ca2585545"}, {0x1, 0xd, "c021a93694fbf30cb24dc4"}, {0x6, 0xf, "74f5e2fceef6832bf316082529"}]}, @timestamp_addr={0x44, 0x4c, 0xc, 0x1, 0x4, [{@empty, 0x8f7}, {@multicast1, 0x1ff}, {@dev={0xac, 0x14, 0x14, 0x1e}, 0x2e}, {@broadcast, 0x6}, {@broadcast, 0x3}, {@loopback, 0x4}, {@broadcast, 0x1}, {@remote}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3}]}, @lsrr={0x83, 0x2b, 0xcd, [@private=0xa010102, @private=0xa010101, @multicast2, @multicast2, @dev={0xac, 0x14, 0x14, 0x1e}, @remote, @broadcast, @rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x1f}, @multicast2]}]}}, @name_distributor={{0x124, 0x0, 0x0, 0x0, 0x0, 0xa, 0xb, 0x2, 0xc800, 0x0, 0x1, 0xb, 0xff, 0x2, 0x4e20, 0x4e22, 0x1, 0x4}, [{0x3, 0x0, 0x0, 0x4, 0xd9368e7e, 0x7fffffff, 0x6, 0x2}, {0x9, 0x10001, 0x7fffffff, 0x800, 0x6, 0x1, 0x4, 0x10}, {0x1, 0x2, 0xd, 0x800, 0x80000000, 0x4, 0x8, 0x9}, {0x8, 0xff, 0xa631, 0x6, 0x1ff, 0x80000001, 0x5, 0x3}, {0x3, 0x4, 0x7f, 0x6, 0xffffff24, 0x0, 0x9, 0x2}, {0x8, 0x8, 0x5, 0x40f, 0x2, 0x5, 0x0, 0x9}, {0x1ff, 0x9, 0x1, 0x41e, 0x9, 0xfffffc00, 0x5, 0x3}, {0x4, 0x6, 0x8, 0xfffffff8, 0x0, 0xf, 0x7, 0x3}, {0x3, 0x4, 0xf, 0x9, 0x7, 0xffffffff, 0x8, 0x4}]}}}}}}, &(0x7f0000000200)={0x1, 0x4, [0x816, 0xd72, 0x7c5, 0x77d]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff48700000020000005c0000000000000095000000000000002ba728041598d6fbd307ce99e83d24a3aa81d36bb3019c13bd23212fb56fa54f2641d8b02c3815e79c1414eb07eae6f071326bd9174842fa9e09000000000000000a0e168c1884d005d94f204e345c652fbc1626e3a2a2ad35806150ae0209e62f51ee988e6e0dc84e974a42a550d6f97181980400003e05df3ceb9f1feae5737ecaa81d666963c474c2a175e04ad6ee1cbf9b0a4def23d410f6296b32ae343881dcc7b1b85f3c3d44aeaced3641110bec4e90a634196508000000000000f0f4ab3e89cf6c662ed4048d3b3e22278d00031e5388ee5c867ddd58211d4dcecb0c005d2a1bcf9436c101040000f73902ebcf0200822775985b231f000000ccb0ecf31b715f5888b2a858ab3f11afc9bd08c676d2b89432fb465b3dad9d2aa7f1521b3ebb0cc52f49129b204eb99b6150e320c9901de2eb879a15943b6dc8ea15aab9dd6968698e3095c4c5c7a156cec33a7bb727667d81ff2757ca1e6bfdd4c968dacf81e65998b9091957d1d11a5730baa3a509b1041d06f6b0097c430481824a3f4fddd3c643f630ba165d876defd3541772f26e27c44cfd7bb5097379cf1756869cebc7b0b2d85d6d29983e830a9cdd1d0a017c100344c52a6f387a1340a1c8889464f90c284a4db539621fbb70f01a2c02dec4cd1f570dd39877dfb2ff1ae66e1ce917474b2e650ae610afd01409d9a337ac5d58bcb5e5fc231514952c5255f22bd8b325d9b76e57f041b665ab0249886c0a65cc99d5893521372c8d8b7bacac24000020a4a24d8dbd75062e1daef9dead619cc6e7baa72706287793c3d2a2661edcd3545236c204682bf7ecbd53f950ef4709ec01e230d2f53594ef4839c6130c4c13a0cca84b993508000000e480cd9d4850a049ee19b67d17ef0477aeb12b1d255be1ed66d9051f22614d1f62734d6780393e783df8b8a17e3aa9fe9c502f9acee4f1b56e1f231200743792cead3c058a5b700d64d160abe33df726608510136ce8bf239414a1d98ea93e3d35dbb6c23b90cf36e83b8a4309b402d264b09f2779a0bcd7cd6dfc06b02e69d384146056d125cf4aadd80800000000000000e88d10acd06864eac44c42fbe334bdc3e9768fc360b130dc6111fe3293e8e02f819a2aa34dba1c25be27945507a3477b437525b81aef2f0b4c4f63483026b5e34d44705b76ef29f7f6e0a2be625eae975e02069fbff63a06578d6d184f5de7bfb6aa800016996d536256c02294cb1d3a6fb8eae87691fae365a70c3f15871565bba8dd8a8ca049f798abe646f738bebdfc9d8a5edd7a19ca6a42bc3f1db37c17f22a287c6d31a13db5dfef409eb1d3c91c6e6f80d215c9e16e0c4736c81936315418f26770cca4e2f89800d18c89d7f46f679df6c9e7005f209dda94302a30003b952ae1ebfd0ca88368ee6ce139e8b5822422cf4c9dde943d34c432e1001171792c65986146666a549092398af45ba38c41df7e0fffeac41824ca1fd0eb68aa243c9035c788d5480e5aee9c9e5f2e5a3628995b1531bd20360d33d8f9ffffff5f4bf6ea8a1850c4f83306dbca02ee3686da707b6d85db491ba0cc33f6be92c55969a2b52a25419d1476c73132ca7ca26ce8a7e3ffb700f09e157f9bc31f09834b4788be2a442aa81b259e9eb1bf5314844051f3a642aca9ff98c9036471ccff0522903e7bcf62e18f7796bbc280b95e8e0d6fd5644b0ebde3885b06548862de809d3dae3cccf109f7c78e8479a345e805e47dfa82caed44b11a443c5ba92a326dd10921aa79c62800844c7a59f55ee205a11ab50fb402e7da6ada561ec1117cc186b01fd5c2061d22156b1bfeb51f5c65a907f2217d5f80c580dc31b0963ff953ce09148e8dfe3a61bbd2bb173518507a3cd0e37c4da0a71eee31071d5d642498181c69cee3b2e414ddd6a12ff4bdf6e97c247b6025d4376067e25357d3b521a5b927d3392a7503718aea24179528f6a0c6de4e61b49cad1e4d6b000000000000005b2d16877299acefc0655bc1422c3d425d988eedebcf242b780a687c9acae2a5a71c2a16a32ceb377f5d54f9b2fa90b2905925e611be56e9ebe20cab20ab2b5baa1b07b16e81f278e54a479f1a068658e3656cfa196d6c050000000000000000814955c62a7d72b317399e572a7f6a4657b741eb66c9179ffd097d61fcfd0fa1d46cfb110e3e8cff5579e83f2820f95eaa0c609f666950c24311740e36de8f65708cfffce798c99ef8f62fd2398e999b220125da8eb07947512365abbc5b84ef524bdf184727c67910051f204662264607d548dbdffe14b41dd0843cf3d85bb820656a88a9e52a4cd7b3eeadfe00007267f226019ef0a25bc15da71e893856a2182c3167d8ba73f7c6294b159a426ce44cd73f000000a66fc501eae0c3504c1400697ba69fd9b7eaf49aff6a6aea529610db8dfef86c3cc698e9fddf1b13287615b972281a90c3a4cf415df25fbcdd35cf8368f068c4481844bdd0dda553e1cb0966d5686013d382956d50055dce0d1bc225c1d77612b1ec52e743dbc51f25cc07a202b704577316913cf067fa65e476f688de2d6c54ea192a569eed05d0d7536b3205c68d4ee0fe318ed3112c76dcf128a1d5595b773ef4c8a7ba4e10381de8808ff02dd0a7b996ecf1c65e6d9db90c87123d9cb3945330f7a270ee0cca35b1331ca8fec0b2f39f505140751b60f29a83e4bc0ef2ffea443e4aa221cc38a503add16a2c98cb589e1dac1912b4142a3be30f50b2d9479c5bde0beb38030d0c0ce0590000130000000000000000000000554361e1628ee0017ad19ca787f2c078aa260701ce0800000080623902000000000000000000003d118a04fa6a80c4928c01ccab57b5f4eb265ad15004f967543fe6e6ddc2a12165fe3a08bf9475ee0eee3539369b0e566fedbd215a6ddd4fe03dcc7a922e16410d820747b7e806c0f3b6f14c884d150a0ff07f2e0000bfb083c56d3bed0a61fab880f8885c612ebff8523d14cfb12aca274c000000005e5155611969f6e67dd83b20206207cb8b2cd2fab6fa6d7fdaed6a27a2e4db1d5adc80c4014ff11d9dbceba41d8dfce410333a054e82b1d050331c5bc4acb843b94d67f69f49eb4dd3b1b85b018359c32df01db8ebce0dbc36cade09c6b44f6b93d28db8ae4db5624d8a02f7be91bec65e4b3373059587dd6528bbc48e3379d477d482faff738c39c61cac1195043bd5b70cea5fc1083a169a82632ff3a9a48ff805202ae9aec56b9f7795fa27634a7f06359e3058d2dd69c4e5cc11b36d9ed9c4b2867f583de6fc582f789722bd1500e64c495abdb72de2c739d38c72f6f4fb1946081dcc825d5b5b747e9fa1b5226cd31e131263f1fcd7d45a630b46d04af906f0be464d829dd2dfcf7400002b7827f6d957e51bb1f1b44a50200c9dfadfaff2e32baa9c0edaac7144e174dba582a951d2b03c27219cec4fbc7b6e99c3f00188941e3fbf008cbace177ae250fd757a22e21ec05aa45c91e1345ca936184c3fc28153283e13654123cfaf4e661f4b6d430adad1e2116bc385f888405d48f0d386da0cc6747b33395772a68f2ea3fb7e7207000000b24088014c8e64f03d053c4e02ddd08b262e422eff1c9f124b892b0a9462b07d4f88c0693bd9c54ad2ab5227aa59ef2b53ac528c0800000000000000ebfde0c4a37c2d55c176680c4207000000e4aa467f995c9bc99e60441d4dbebead3b436427762618810bac7308c6d3298ea932b66572825e62d18462d3b2342ba48c145ff4674a94fa078cc552d064da2bb69a0d269076f8955076578f44ffb8895f11bd5e06840f8848df72230a28e0304569bfa0350b6dde9e96273de1758505aa1ba89dfb12be7a7c6dae1028d1bc68b6336eb1a5d18f6148354df7e60a489dc543ccdee1fff9d8f8d78844f0c6a77ef1181d5055c2a193a5763ed7749a17296c76818b60426082c86619dacc8a884c4de8572a044faf0c8e4377776c8703ecf2e3f1c3d6410000000000008369f062639e3ddcf725be54f626448fb7bfc74c183b26e31b71a390ccea4be07278dd12fa16848797397b76908fa03613cd961b98b26a0879ccba4a78c82958764bce07a7f70df1cef6d4db1ddbda1db18e4f41c390fd3cb862216ece39a9ec60bd3be5f9329dcaf33bf2c87cc510557460d14421e1d26322ab64388f2cea0d6269ffc8580a01e9acd2ec3ece39f3b4ffdc4dfea3da6ddb002512e2313253801044e751168eabe977c503c30ef7c489e5ea1fff041e54de54cfeb258f2387dad096b72a78d91134927492cfc773c731cca9b13b3f6e7760ab0929c46f51ea5643f3df4f4044f3ad0a6ba739e72d8b8b2835d81534bea8372bc590c111d573e04280659a096eaa495a4154daae7d1800c130d920964845c50c8ba4763b19b6008f6d7a5091895c7a4b7816ab706503be879b18b778b0f61ecfde2f8bbb32cfeb766ec4430ee0ad45a0a263ddc4b2f47680c8d53439f8d388dab87112c83997c83e178be287eb6e8c95bad8f8ed85cd5b03a7352a0fb83398566d1bc133582ce2d95636cd23eba4432180b2d5c3019879cd949a5be1b241b3d0d0d52a3529cc9e704a9d8d54f4f7b776a969a4505e18fe5284985ca7d112c397d776e3baba918b7df456bd970e761e00f3b0efa5ce4246d9f08ba60da3be556c518a1f19504c7cea1491a9eadd27d747ca9cc5f92e30b2ca3cf0b142a8554c87e8026d4e586cf5f7c9d412e6eb4f66a076c8bca6b294305969dabb6c932b57a5dd4234bf1ed3bd095229ee3cbb86883d574c5af4bb78370561de3fbf55bfcd2db3979eb1be120b5795443324023353bdd9fc87c862c247e140379ef098c7b3fa79a6638a245b6a74f14dde9bd4ee48e62cdc70f486ce38641e4e4309aa9f4bd097fa1530db966d9919544ab4890301e51f9525436f5d9591460340f5093161a78a249783945407f2576d6f35a99e3521d7991e3fdfde5ee7f6a8ff8181a68ef15a2ebfe9e22d7c745949ab5cc15b9f5659799b5e00debbf9f623f75bfd4d83c4859ca9b652cea33daeeef47b60c78a21965bcf91919071c7ded19317dc0b7587d9322f8cec9e32675a187465bdfa101bcd9ac680839b375af12c160247dd960e70eb7ee60c52a900440aa9bd9a6b15a4a34dc73c3c4936d8986300fdc264b28537df387e6442c32f5fa2a31d24c1ed888a57fcc50400a084a38a3630ffc465f36a4b770fab0946148161184be39134542e934f3a538bccd48a0325aa9b151855c800000000881d4361e7fbd1fc2331b4e34733480bc497662a8234a7eeab3e65d6b0f5d92edff04416eedcd15b9ddbcb3cf9228afda6b17d44a276b205eabd0069f7e26aea50f537dc77b683ed83d2f9110e00a705f48e9d13378cf09bca22e8f45c4f360d5fff8ba35f21c4513bcc0800000000000000dc5cc7ad7290c60bc609bff9be7cd922f474c3faa78fd42cba7c78d6d912656b6313497625e2f9afaba05b17ca242b7ca8d6556175aee38142a8aac5f677c2f8a6967f2cb5e97aae97a5e5579a706243688ac4d38a4601b4aadb2d319fe7d6bf1272fa3fa701338d7bce390e8bf959081ed39e63a431901d615a26ff95e1620a6c26eda4f92d83499a173e7217001f58ed5406bdb59acbc997e8fd3d53b4c2c2a1b3145bf54a851f3c08931d4c2c32bfe611e5958458af7b3c5319fdb4c40b8d01365fdee93af6fad7c7a8da86460f45c9e99d43264c929e7de4e9620000000000000000000000000000007cf90000008f8a9da7a8a167815c6ffcd1b6863cde9ab45ecd8f06423198bb00cdf76877f407be46b000000000afbb4cb3a8de259a8beb2223f28b855e2bdf4b31b91e5062a42a55bd95e93f77f2499391cf0000000000000000000000000000195007ad27d1d61dc4d5512f117f0ed554c2c88c1713000000000000bb1ff447d6e12da208e9f0422a84f361684861169f498909c4841f4d5a0f5807a3b7d833075fdcd9c1d169b03d7df7f4150fad8b9e92eaf86992adbda360dd91de51c6df335445492608162fb0804dabdeac6fb71042f906eefd37f1d190a1c8a0d9de7f34dcc8cbd7b565fc675f3bf7aac559411808ee703ec3ad461c6ddc571994cb504c46eabbc2ff4b97df394bc75b5e7f45a4450753b5d2b8b8414a7fe6a17661bdb5b1d080cfd974811e1d60763d8d9509c75aa729a334b55ee76b0c2d50270a1deec1a6d7441d0b5b8d7a4d048d156ebcff102e45c15d2a73b40d74807f5182a319d50edbf430f00b1c29a9e4bd92111caacbb1d4541545c2d262646070da42f76e3f3c6d139eed89cc9300000000000000000000000000000000000072d7e605eb8e978d76796d9d3a728c51a3145da8e1ca4973aa8fed855328e9d2509335c5386cac74e862eac50e9ba95b6a2a29e8ef08a9ae29792e77fb9952b1ac5c816db5c23a656db528f81f6a9465d2c94d701ee8646b30650c84b9510a337e82702baf368d29281d3d54b39014756ca5a1be1881000000000000006fbac0b9c9f97c920dfac7e2379ef6bb076118aa9bb24ee12e64aa530f852bf4f970a08a55531934e39fbae483129949a918115571d76740ca6a1cea59df290f2e63675ca30a289775825fe3e5d6f206f3f395346c0738035dc74368bb035fc65a40f8124369b8950ded31af64855c5c95ef5c83b18b23517ca935a0fa1b630d70c4ca4029a90d47701102045fff90675adb3c83983d125ae730b9497c681a912a6bb70300a2d7fba051f82b9d6f710426b5bd0d0bc0b08a0f801276789613da406905011bd6ebbac91ff17a21d1ed0882e73394025772f31dc8a3048789c703f920c55746f6fc955046f9332d72150be23c26cbb08d1b438e84b83fefc6a16958fd46dc7b8cbea1da2d541324e373e9157696d698a0b4bc84d7cc2fdb069db8a5a491a9d2bbc0a61b73f75d81d07d778a1577db3b06d20a21b19ea17e0000815a42318151feaad37f7abf9bfa0bcac3c1934854b3f6dc6de835952ebdda297dd3b29c07c69888cf029271449e035edc8a4459705f222bda537481e66ce3c665129f9829524eca8b5bef27adde96bd3ee95da4a176deff3408da050fe8d512e5a19379b403ee11d010bf86d0af4ac5c2057709b18cff438d0d58810670b222dfeb317bb935f925d2a070e68a701fd4316a677bb513c9476f25969097c165ca1705473341ea03f259dc5bee6a2d2e05176965192941abfae36b3a1e30784e6532c96ab971c5706a88b6f66860e31098b5b788788aad67507ffab2184a950065c1337259b63135fa060fc5ce3e4f6cdfb64f40e1a90351a01fd3d70f9dde03c335a931e58b8570316590ae22c7de567260849049e963ee15db15f592abb24111a219f0d128ceaf19764d92755abc9c313f65e7a220e64bb0d7139ce59da85bc710cea0c6553b336763bd3e39c2374b86885a32cdfae817196a7850257ead09f3e30e676b51062bb9000000000000000000000000000000000000000000000000000000aefb12dd3507c8dd24490bf9de062cd166a4dad6b9f2e53bad342546e546f6dece81d53cf717bd91ad72f4da82018f43259899e53e0b69a92180f1345699045fd23689e66d21d13be1a2d20eb1ce23eda84a63855173ca7f51d436306c"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r1, 0x0, 0xe40, 0xfffffe6d, &(0x7f0000000100)="5c71f91b05c413550230b4c817a628", 0x0, 0x1, 0x0, 0x302, 0x0, &(0x7f0000000180)='\x00', 0x0}, 0x48)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000001c0)='\x00', 0x0, r0)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000040))

1m59.619966938s ago: executing program 4 (id=269):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000fb"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="02030003030000002bbd7000000000000100090000000000fad3f9f90000000000000000a91326c358aefb0111427d07000000000000008c621973f44d9b5ef3eb0200000039d20777acd71259e20aee6648972898a34b262c867ba5dbbc72a8420054c9"], 0x18}, 0x1, 0x7}, 0x0)

1m59.617980178s ago: executing program 4 (id=270):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000060f6226a1210038d802445000002000000"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={0x0, r6}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="186800000006", @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x89f1, &(0x7f0000000900)={'ip6gre0\x00', @random="0600002000"})

1m59.589613067s ago: executing program 4 (id=273):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_begin_ordered_truncate\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18) (async)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000500)) (async)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x90000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x6}, 0x8224, 0x0, 0x0, 0x0, 0x47, 0xa, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, 0x0) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, 0x0, 0x0)
alarm(0xffff) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)

1m44.367777478s ago: executing program 32 (id=273):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_begin_ordered_truncate\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18) (async)
getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, 0x0, &(0x7f0000000500)) (async)
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x90000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x6}, 0x8224, 0x0, 0x0, 0x0, 0x47, 0xa, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, 0x0) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, 0x0, 0x0)
alarm(0xffff) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)

1m25.978473906s ago: executing program 2 (id=784):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x5, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb5e4fd27cae43ac5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e0, 0x130, 0x12, 0x60a, 0x600, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [], [], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0xe0, 0x108, 0x0, {}, [@common=@unspec=@statistic={{0x38}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0xffffffffffffffff, 0xf9}}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x340)

1m25.916286886s ago: executing program 2 (id=787):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d)
syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1m24.33034011s ago: executing program 2 (id=798):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x5, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb5e4fd27cae43ac5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2d0, 0x130, 0x12, 0x60a, 0x600, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [], [], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@inet=@socket2={{0x28}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0xffffffffffffffff, 0xf9}}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x330)

1m24.28467921s ago: executing program 2 (id=799):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0xfd28, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000380)={0xffffffffffffffff, &(0x7f00000002c0)="2eae24abb531829f3430bf88773e88c076cb1b950729fc3f7ec78211539a937e4964feee60ba6e4149352dc8cfbd90bab129495cfc790bdddd08f8d887b58445916e5a0d72a69e32095b18d987d7865aac84185fdc18a11292baede1a097748fdb769375ffe108f170845febe2b00796f91a39587b14117afce336aa2ac56bc6defd3c8bac336fe8a07d379a4ee4c2e91ba29ecf3369ec2e1ed216a2484b67657e2a058d3225a7169491e938c120f0e74a5f86518c07e7", &(0x7f0000000480)=""/195, 0x4}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x100000, 0x0, 0x0, 0x2, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$eJzs3d9rZFcdAPDvnWSyyW62SdUHLbRWW8kW3ZmksW3woVYQfSqI9X2NySSETDIhM2k3oWj2LxBEVPBJX3wR/AMEWfDFRxEK+qxQUUS3CvqgvTIzd5I4uZPM1tlMdvL5wN17zrk/vufM5ty5Pw53Ariyno2I1yLi/TRNX4iImay8kE1x2J6a67334O2V5pREmr7x1ySSrKyzrySb38g2m4yIr3454hvJ6bj1/YPN5Wq1spvly42tnXJ9/+D2xtbyemW9sr24uPDy0itLLy3ND6SdNyPi1S/+8Xvf/smXXv3FZ976w50/3/pms1rT2fKT7XhI42ctbDe9eG2ya4PdDxjsMmq2p9jJTPW3zb1HWB8AAHprnuN/KCI+GREvxEyMnX06CwAAADyG0s9Px7+TiDTfRI9yAAAA4DFSaI2BTQqlbCzAdBQKpVJ7DO9H4nqhWqs3Pr1W29tebY+VnY1iYW2jWpnPxgrPRjFp5hda6eP8i135xYh4MiK+OzPVypdWatXVYd/8AAAAgCviRtf1/z9m2tf/AAAAwIiZHXYFAAAAgEfO9T8AAACMPtf/AAAAMNK+8vrrzSnt/P716pv7e5u1N2+vVuqbpa29ldJKbXentF6rrbfe2bd13v6qtdrOZ2N77265Uak3yvX9gztbtb3txp2NmLyQBgEAAACnPPnx+79LIuLwc1OtqWli2JUCLsT4USrJ5jm9//dPtOfvXlClgAsx1sc6717LL3eeAI+38e6CHn0dGD3FYVcAGLrknOU9B+/8Opt/YrD1AQAABm/uY/nP/wvnbnl4/irApaYTw9XV9fw/nRlWRYAL13r+3+9AHicLMFKKfY0ABEbZ//38/1xp+lAVAgAABm66NSWFUnZ7bzoKhVIp4mbrZwGKydpGtTIfEU9ExG9nitea+YXWlsm51wwAAAAAAAAAAAAAAAAAAAAAAAAAQFuaJpECAAAAIy2i8Kfkl+13+c/NPD/dfX9gIvlX6yeBJyLirR++8f27y43G7kKz/G9H5Y0fZOUvDuMOBgAAANCtc53emv9z2LUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNS89+Dtlc7Ux+pTg4r7ly9ExGxe/PGYbM0noxgR1/+exPiJ7ZKIGBtA/MN7EfHRvPhJs1pHIfPiD+JDOCd+zGafQl78GwOID1fZ/ebx57W8/leIZ1vz/P43HvE/+Q+q9/Evjo5/Yz36/80+Yzz1zs/KPePfi3hqPP/404mf9Ij/XJ/xv/61g4Ney9IfRcx1vn9aR7yTEY5T5cbWTrm+f3B7Y2t5vbJe2V5cXHh56ZWll5bmy2sb1Ur2b26M7zz98/fPav/13O+/JKtN7/Y/n7O/vO+k/7xz98GHO5nD0/FvPZcT/1c/ztY4Hb+QxflUlm4un+ukD9vpk5756W+eOav9q8ftLz7M//+tXjvtdqqjPN3vnw4A8AjU9w82l6vVyu7IJppX6ZegGhKXMPGtge4wTdO02adyFt2PiH72k8SAW1rIr89xoucRYNhHJgAAYNCOT/qHXRMAAAAAAAAAAAAAAAAAAAC4ui7iLWvdMY9fgZwM4hXaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8d8AAAD//42Q0/o=")
syz_io_uring_setup(0x10d, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000010000000f8ff0000000000000000000ba9000000040000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000800000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
r4 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80000000003, 0x101301)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010000d0429bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="10000000000000001c0012800b00010062726964676500000c00028006002700", @ANYRES32], 0x3c}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r4, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYRES16=r5])
syz_clone(0x200000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_REAPURBNDELAY(r4, 0x4008550d, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x74}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000240)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000000}}, {@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000000}}, {@i_version}]}, 0xfd, 0x48f, &(0x7f0000000940)="$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")

1m23.969943758s ago: executing program 2 (id=806):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'vcan0\x00'}}, 0x1e)
connect$pppoe(r1, &(0x7f0000000280)={0x18, 0x0, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}, 'veth1_vlan\x00'}}, 0x1e)

1m22.353704272s ago: executing program 2 (id=823):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d)
syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1m22.270996402s ago: executing program 33 (id=823):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d)
syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

4.421409317s ago: executing program 6 (id=2032):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x3000056, &(0x7f0000000380)={[{@usrjquota}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsold}, {@sysvgroups}, {@init_itable}, {@data_err_ignore}, {@i_version}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x54f, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x1da)
fallocate(r0, 0x20, 0x0, 0x8000)
r1 = gettid()
kcmp$KCMP_EPOLL_TFD(r1, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000300)={r0, 0xffffffffffffffff, 0x7})
r2 = open(&(0x7f0000000240)='./file1\x00', 0x347142, 0x28)
sendfile(r2, r2, 0x0, 0x800000009)

4.320103837s ago: executing program 6 (id=2033):
r0 = memfd_secret(0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x1b, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r1, r0, 0x2f, 0x4608, @void}, 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000000)=@newtaction={0xac, 0x30, 0x216822a75a8bdd29, 0x0, 0x0, {}, [{0x98, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x0, 0x0, 0x0, 0x7ee}}]}, {0x4}, {0xc}, {0xc}}}, @m_connmark={0x50, 0x2, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffb, 0x3, 0xffffffffffffffff, 0x80800000, 0x8001}, 0x81}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x4008090}, 0x0)
timer_create(0x3, 0x0, &(0x7f0000044000)=<r4=>0x0)
timer_settime(0x0, 0x1, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = open(&(0x7f00000002c0)='./file0\x00', 0x48141, 0x0)
timerfd_gettime(r0, &(0x7f0000000300))
fcntl$setlease(r5, 0x400, 0x1)
sendmsg$nl_route(r5, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=@ipv4_getnexthop={0x2c, 0x6a, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@NHA_GROUPS={0x4}, @NHA_MASTER={0x8, 0xa, 0x1}, @NHA_OIF={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x8014)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_gettime(r4, &(0x7f0000000140))
close_range(r2, 0xffffffffffffffff, 0x0)

3.836228466s ago: executing program 6 (id=2051):
unshare(0x22020600)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000000000000850000007b00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000300)={r2}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b000000850000000f00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x12, 0x8, 0x4, 0x2, 0x10, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000080)={r3, &(0x7f0000000240), 0x20000000}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r3, &(0x7f0000000100)}, 0x20)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="9803000012002101000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000a0001"], 0x398}}, 0x0)
readv(r0, &(0x7f0000001300)=[{&(0x7f00000000c0)=""/4096, 0x1000}], 0x1)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x100000f, 0x10, 0xffffffffffffffff, 0x10000000)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r5 = socket$inet_icmp(0x2, 0x2, 0x1)
syz_io_uring_submit(0x0, r4, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x69, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x1})
r6 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
ppoll(&(0x7f00000001c0)=[{r6, 0x2d2c}, {r6, 0x4038}], 0x2, 0x0, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
r7 = gettid()
timer_create(0x3, &(0x7f0000000180)={0x0, 0x17, 0x4, @tid=r7}, &(0x7f0000000080))
timer_settime(0x0, 0x236bd4336e4642df, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
r8 = syz_open_dev$usbfs(&(0x7f0000000180), 0x400000000205, 0xa581)
r9 = fcntl$dupfd(r8, 0x0, r8)
ioctl$USBDEVFS_SUBMITURB(r9, 0x8038550a, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'pim6reg0\x00', @remote})

3.500223054s ago: executing program 5 (id=2064):
r0 = getpid()
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = syz_pidfd_open(r0, 0x0)
setns(r3, 0x24020000)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)

3.360582854s ago: executing program 5 (id=2066):
unshare(0x62040200) (async)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa6c"], 0xfdef) (async)
getsockopt$XDP_MMAP_OFFSETS(r2, 0x11b, 0x1, &(0x7f0000000000), &(0x7f0000000080)=0x80) (async)
bind$inet6(r0, &(0x7f0000002000)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0xa3}, 0x1c)

3.198046413s ago: executing program 5 (id=2069):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25, 0x0, 0xfeff}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r4=>0x0})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r6 = memfd_secret(0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r8}, 0x18)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r6, 0x0)
ftruncate(r6, 0x51a9497)
r9 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, r6}, &(0x7f0000000100), &(0x7f0000000280))
io_uring_register$IORING_REGISTER_PBUF_RING(r9, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r5, <r10=>0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000009c0)={{r10, <r11=>0xffffffffffffffff}, &(0x7f00000008c0), &(0x7f0000000980)='%pB    \x00'}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000a40)={r11, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r12, &(0x7f0000000540), 0x84)

2.997802752s ago: executing program 6 (id=2071):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0xfeff, 0x25dfdbfb, {0x25, 0x0, 0xfeff}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r4=>0x0})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x2261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000009c0)={{r6, <r7=>0xffffffffffffffff}, &(0x7f00000008c0), &(0x7f0000000980)='%pB    \x00'}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000a40)={r7, 0x0, 0x0}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000540), 0x84)
mmap$IORING_OFF_SQ_RING(&(0x7f0000004000/0x2000)=nil, 0x2000, 0x100000d, 0x12, r8, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x2)

2.943303292s ago: executing program 0 (id=2072):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)

2.886069451s ago: executing program 1 (id=2073):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x2, 'lc\x00'}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x11, @multicast1, 0x4e20, 0x1000001, 'lblc\x00', 0x0, 0x0, 0x2a}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x150000)

2.885847121s ago: executing program 1 (id=2074):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f00000000c0)={'syztnl0\x00', <r1=>0x0, 0x2f, 0x8, 0x0, 0x0, 0x10, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast1, 0x8, 0x40, 0x100000, 0xb}})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x1d, r1, 0x1, {0x0, 0xf1, 0x2}, 0x1}, 0x18, &(0x7f0000000040)={&(0x7f0000000140)="5aca31c5d8703559211ca0aae54da26e8a0caf44145ed2775385708e7788fbd0a7bb87c911dfa37817c5153fc7418970ba782d3ae9ef9de53ce781c6314e7b00920b514f488e3610e1dcd2cb9e3bac2596cae8", 0x53}, 0x1, 0x0, 0x0, 0x4040004}, 0x8000)

2.810681271s ago: executing program 0 (id=2076):
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @rand_addr=0x64010101}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x40, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, &(0x7f0000000c00)=""/186, 0x0, 0xba, 0x0, 0x3, 0x0, @void, @value}, 0x28)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="20000000010401030000000000000000000000000a0002"], 0x20}}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r1 = open(&(0x7f0000000000)='./file1\x00', 0x1c927e, 0xb4)
fallocate(r1, 0x1, 0x0, 0x1001f0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107802, 0x42)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x8, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xcc0984f9ead32b32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r3, r3, 0x0, 0x80000000)

2.711538631s ago: executing program 1 (id=2077):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @perf_config_ext={0x8, 0x81}, 0x140, 0x1, 0x3, 0x5, 0x0, 0x8, 0x5d, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r2, {r2}}, './file0\x00'}) (async)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) (async)
setsockopt$inet_buf(r0, 0x0, 0x2c, &(0x7f00000003c0)="9b3bc27defed95ebf5cdd075860de4f9a8dc4eac1b7961aace3ff27912c74553795effcb16dcfacbcaed66a1e2463da5bc336546dc5c5cb52be38094558524d66b5f567f2f849cf9ddb87c90436739648efbb4f27357b0ab8902a725e008959b4b56a2df4648dfdefc56e6fdcf4d2739eebf2d649f9bf16f525fad7507eca40a69", 0x81) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
setsockopt$pppl2tp_PPPOL2TP_SO_LNSMODE(r3, 0x111, 0x4, 0x1, 0x4)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) (async)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000380))
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{}, [@tail_call]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000079e02200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000300)='kmem_cache_free\x00', r7}, 0x18)
fspick(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

2.710128301s ago: executing program 3 (id=2078):
r0 = getpid()
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setreuid(0xee00, 0x0)
r3 = syz_pidfd_open(r0, 0x0)
setns(r3, 0x24020000)
syz_clone3(0x0, 0x0)

2.709760431s ago: executing program 3 (id=2079):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000001b00000004000000000000"], 0x0, 0x26, 0x0, 0x1, 0xfffffffd, 0x0, @void, @value}, 0x28)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r3, 0x0, 0x400000000000000}, 0x18)
kexec_load(0x8, 0x0, 0x0, 0x1)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r2, 0x20, &(0x7f0000000880)={0x0, 0x0, <r4=>0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x13}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r4, r1, 0x0, 0x0, 0x0, 0x10, 0x5c, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6tnl0\x00', <r5=>0x0})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000100000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
r7 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r7, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r5, @ANYBLOB="40002700060010"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2.48294402s ago: executing program 0 (id=2080):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000f20000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
getitimer(0x1, &(0x7f0000000800))

2.44111704s ago: executing program 3 (id=2081):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r2}, 0x18)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)

2.385988389s ago: executing program 1 (id=2082):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x81}, [@jmp={0x4, 0x1, 0x2}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.38567919s ago: executing program 1 (id=2083):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d)
syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

2.37093012s ago: executing program 0 (id=2084):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
capget(0x0, 0x0)
munlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
getdents64(r0, &(0x7f0000000000)=""/181, 0xb5)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$igmp(0x2, 0x3, 0x2)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000780)={0x0, 0x1, 0x6})
gettid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f0000001900), 0x0)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

2.365145599s ago: executing program 3 (id=2085):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x2d)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

2.197829689s ago: executing program 0 (id=2086):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r8}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x2d)
syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1.203021705s ago: executing program 5 (id=2087):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r0, &(0x7f0000000040)={0xf97cff8c, 0x8, 'SE Linux', "b9fa5210017569179e9d3c971b12678fe7a16e8cb7b61c6c62a51a93c282ea8f120e1d2b214c493162fb193efc701cdbe71371a7753bcbec4870bc781a1be807513fdfa1bd05d1ab2904f4b5c645aca2b2f569bed9ed44d61f72f3f37d0ef4ca2d2f2b9777b9b709aaf3"}, 0x7a)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, 0x1412, 0x2, 0x70bd2c, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20008800}, 0x40850)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_ADD(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x58, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'SE Linux'}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast2}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, 0x58}}, 0x4000)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x10, 0x1407, 0x1, 0x70bd2d, 0x25dfdbfd}, 0x10}, 0x1, 0x0, 0x0, 0x4011}, 0x14)
r3 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_GET(r3, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100f50c0}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x10, 0x3e8, 0x10, 0x70bd25, 0x25dfdbfc, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x8894}, 0x2400c041)
r4 = socket(0x11, 0x4, 0x0)
ioctl$LOOP_SET_DIRECT_IO(0xffffffffffffffff, 0x4c08, 0x55)
r5 = signalfd4(r3, &(0x7f0000000500)={[0x2]}, 0x8, 0x80000)
sendmsg$inet(r1, &(0x7f0000000a40)={&(0x7f0000000540)={0x2, 0x4e24, @rand_addr=0xd22}, 0x10, &(0x7f00000009c0)=[{&(0x7f0000000580)="1bd5cfb6b61567a43a01e0cc13877722cdd388fa1e283144480dbec9f1740d5a27f4e1703b7afaa6b48f34cfcf9f2794689f1b441e29e346f1ca2c0d08cef44cfb647269161e952d59dd2c104911bff512b4d0c0e00acccd7e3c1e8d6fb38a328c140476428ede2012c3642cea13b3508a04df13138127a2390fd27285a8a7905260484f633b2fd7136de055799205e24f4357797c3d06fc804e77", 0x9b}, {&(0x7f0000000640)="a009c364c7563924c438a84b40a92d2beba9a55175821d7bbd36b9080dafb9abdb09ac1dbc335d236fc7576441d8afe0ebbae7a7eb221578c10e50a91fa03c4ac971f584665c7525b47ea5fd37524a1a2fe4df8739c1ab9a079df7c528b113f04fe71645349963f23b8e8c24fd5bdcfe94de5ef5d9003b31b034455112243c66330d87fa54c20fa5ab5850a14830f1507e8c843a47ed931c5e3727e282d80c265ad88b17046b966942cf3412e55374a19916f4e4dfbb9027eede13d4dfb11301c7f4e1d03bdcdebcc4f1ead9a2dbe3ad6f1c6de2bdbbeefeb35b45c567e207354af070b5e30c873d9709bbd5", 0xec}, {&(0x7f0000000740)="07b6c392fffe4bcaa88dbac44416340e9df98fae1a6d9bff9e199125a3ff5195c9a2959b46b3d827646d5a", 0x2b}, {&(0x7f0000000780)="dca3c7ac4595dca0ae9bdc7991e59e4f53124cbd4914baeb1375d45edcf6a18502db9a90e226cead9802c7b280e07673c708f570ef0bc942ec324069e6b35882932f5f9bf0a8079fc0fd1f2368a53fe9dde8d4e127306fec4bc1669b1ee026bd9e3ecbcaa3061dda3d03641bbed3a923a756418337a09f82abbd575d9a5ab2e64d5b407f55462a59e6fe017d2c17c18d33694ee6bf402f5c184780738e8a", 0x9e}, {&(0x7f0000000840)="4d8f3db4ecc39a95d0f7cc28e0f3a1f2398b2395c86acb59040f010dfea9a3944ff00897104f53f835e9a468eb7a9536812ecab38f8bfa01356b8488d3e7e278f91f53b2270568156a5fd6e797f0556045ce930b447edb4da6cb6c98ce43316f0520fc2faa9fbdf56605857f1dd2d488f05617364975f0b330c27eb2a0b710d5fbbadd0fa95c0a4e4fa4ac714ad6", 0x8e}, {&(0x7f0000000900)="e07de0257e472ad509c433ce586f4fb3a9fe3453d2207b11f6791132f301b0be1a0941421e89bc3cba56dc71b2efa289c4dd8e45eda24a6f312ef28221fe6d7f2985b24af13fefb6c4736b68f24a5ff220b378bc06fcf8d171d60398910530688a255fdd7feb0581069f75f13f72a123b835fc0475c9c00b820fffb388b3d88ce16e9baac6c3d6c7802b1279f217de586c98ab901c", 0x95}], 0x6}, 0x4040811)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000a80))
iopl(0x3)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000ac0), r5)
sendmsg$IPVS_CMD_GET_INFO(r4, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x54, 0x0, 0x800, 0x70bd28, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_WEIGHT={0x8}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffff2e60}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
sendmsg$IPSET_CMD_TYPE(r5, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x64, 0xd, 0x6, 0x301, 0x0, 0x0, {0x5}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x840}, 0x1)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000d80), r2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000dc0), r5)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e80)={{r5, <r7=>0xffffffffffffffff}, &(0x7f0000000e00), &(0x7f0000000e40)=r5}, 0x20)
write$P9_RREADDIR(r5, &(0x7f0000000ec0)={0x103, 0x29, 0x1, {0x0, [{{0x40, 0x3, 0x3}, 0x40, 0x80, 0x7, './file0'}, {{0x0, 0x0, 0x7}, 0x3, 0x2, 0x7, './file0'}, {{0x4, 0x0, 0x8}, 0x2, 0x40, 0x7, './file0'}, {{0x1}, 0xfffffffffffffff8, 0x0, 0x7, './file0'}, {{0x80, 0x0, 0x1}, 0x9, 0x10, 0x7, './file0'}, {{0x1, 0x4, 0x1}, 0x7, 0x7, 0x7, './file0'}, {{0x0, 0x4, 0x1}, 0x8, 0x3, 0x7, './file0'}, {{0x0, 0x0, 0x8}, 0x2, 0xc4, 0x7, './file0'}]}}, 0x103)
sendmsg$NLBL_MGMT_C_LISTDEF(r2, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x1200800}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x3c, r6, 0x2, 0x70bd27, 0x25dfdbfd, {}, [@NLBL_MGMT_A_DOMAIN={0xb, 0x1, '-\\)&-!\x00'}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x800)
r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0)
r9 = syz_genetlink_get_family_id$gtp(&(0x7f0000001180), r0)
sendmsg$GTP_CMD_GETPDP(r8, &(0x7f0000001280)={&(0x7f0000001140), 0xc, &(0x7f0000001240)={&(0x7f00000011c0)={0x64, r9, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@GTPA_FAMILY={0x5, 0xd, 0x25}, @GTPA_NET_NS_FD={0x8, 0x7, r5}, @GTPA_LINK={0x8}, @GTPA_PEER_ADDR6={0x14, 0xb, @dev={0xfe, 0x80, '\x00', 0x3c}}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_PEER_ADDR6={0x14, 0xb, @mcast2}, @GTPA_VERSION={0x8}]}, 0x64}, 0x1, 0x0, 0x0, 0x2000}, 0x44084)
quotactl_fd$Q_QUOTAOFF(r7, 0xffffffff80000303, 0xee00, 0x0)
socket$unix(0x1, 0x2, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r8, 0x0, &(0x7f0000001400)=[{&(0x7f00000012c0)=""/68, 0x44}, {&(0x7f0000001340)=""/156, 0x9c}], 0x2)

1.001562914s ago: executing program 3 (id=2088):
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$lock(r0, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r0, 0x26, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
setitimer(0x0, 0x0, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000080))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001480)=ANY=[@ANYBLOB="1200000017000000040000000600000000000000", @ANYRES32, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM(0x4, &(0x7f0000000380)={r3, &(0x7f0000000040), 0x0}, 0x20)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', <r6=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='sched_switch\x00', r8}, 0x10)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c000000150a01"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@ipv6_newaddr={0x40, 0x14, 0x1, 0x0, 0x1, {0xa, 0x0, 0x0, 0x0, r6}, [@IFA_ADDRESS={0x14, 0x1, @mcast1}, @IFA_CACHEINFO={0x14, 0x6, {0x4, 0x4, 0x0, 0x6}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000180))
fcntl$lock(r0, 0x6, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r10 = socket$pppoe(0x18, 0x1, 0x0)
close(r10)
socket$inet_udplite(0x2, 0x2, 0x88)

270.005651ms ago: executing program 5 (id=2089):
r0 = getpid()
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
setreuid(0xee00, 0x0)
r3 = syz_pidfd_open(r0, 0x0)
setns(r3, 0x24020000)
syz_clone3(0x0, 0x0)

201.863361ms ago: executing program 5 (id=2090):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2010480, &(0x7f00000001c0), 0x45, 0x775, &(0x7f0000001cc0)="$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")
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x74, 0x101301)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f00000001c0), 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0x8008551c, &(0x7f0000000040)=@usbdevfs_connect) (fail_nth: 1)

150.347791ms ago: executing program 3 (id=2091):
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @rand_addr=0x64010101}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x40, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, &(0x7f0000000c00)=""/186, 0x0, 0xba, 0x0, 0x3, 0x0, @void, @value}, 0x28)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="20000000010401030000000000000000000000000a0002"], 0x20}}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
r1 = open(&(0x7f0000000000)='./file1\x00', 0x1c927e, 0xb4)
fallocate(r1, 0x1, 0x0, 0x1001f0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107802, 0x42)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x8, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xcc0984f9ead32b32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendfile(r3, r3, 0x0, 0x80000000)

117.965241ms ago: executing program 0 (id=2092):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2010480, &(0x7f00000001c0), 0x45, 0x775, &(0x7f0000001cc0)="$eJzs3d9rW2UfAPDvSdt17fa+7Qsv6LwqCFoYS+2sm4IXEy9EcDDQa7eQZmU2bUaTjrUU3BDBG0HFC0Fvdu2PeeetP271v1CQjandcOKFVE6atOmadGltEqGfD5z2+5xzkud8c87znCc5hySAA2ss/ZOJOBYR7yURI7X5SUQMVKP+iDPr691fXcmnUxJra6/+mlTXube6ko+Gx6SO1AqPRsS3b0ccz2yvt7y0PJsrFgsLtfJEZe7yRHlp+cSludxMYaYwf2pyaurk6WdOn9q/XH//Yfno7fdfevKLM3++9cjNd79L4kwcrS1rzGO/jMVY7TUZSF/CLV7c78p6LOn1BrAnadPsW2/lcSxGoq8atTDUzS0DADrlzYhYAwAOmMT5HwAOmPrnAPdWV/L1qbefSHTXnRci4vB6/vXrm+tL+mvX7A5Xr4MO30u2XBlJImJ0H+ofi4hPvnr9s3SKDl2HBGjm2vWIuDA6tr3/T7bds7BbT7WxztgDZf0fdM/X6fjn2Wbjv8zG+CeajH8Gm7TdvXh4+8/c2odqWkrHf8833Nt2vyH/mtG+Wuk/1THfQHLxUrGQ9m3/jYjxGBhMy5M71DF+96+7W2YMbIaN47/fPnjj07T+9P/mGplb/YNbn286V8n907zr7lyPeKy/Wf7Jxv5PWox/z7VZx8vPvfNxq2Vp/mm+9Wl7/p21diPiiab7f/OOtmTH+xMnqofDRP2gaOLLHz8ablV/4/5Pp7T++nuBbkj3//DO+Y8mjfdrlndfx/c3Rr5ptezh+Tc//g8lr1XjQ7V5V3OVysJkxKHkle3zT24+tl6ur5/mP/548/a/0/GfNuELbebff/uXz/eef2el+U/vav+3F/xUe3A65+b92b5W9be3/6eq0XhtTjv9X7tbutfXDQAAAAAAAAAAAAAAAAAAAAAAAAB2IxMRRyPJZDfiTCabXf8N7//HcKZYKleOXywtzk9H9beyR2MgU/+qy5GG70OdrH0ffr188oHy0xHxv4j4cHCoWs7mS8XpXicPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADVHWvz+f+rnwV5vHQDQMYd7vQEAQNc5/wPAwbO78/9Qx7YDAOge7/8B4OBx/geAg8f5HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgA47d/ZsOq39sbqST8vTV5YWZ0tXTkwXyrPZucV8Nl9auJydKZVmioVsvjTX8omurf8rlkqXp2J+8epEpVCuTJSXls/PlRbnK+cvzeVmCucLA13LDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADaV15ans0Vi4UFgUAg2Agae4mh3nVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9yfwcAAP//8p8oTQ==")
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x74, 0x101301)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f00000001c0), 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0x8008551c, &(0x7f0000000040)=@usbdevfs_connect)

102.278651ms ago: executing program 1 (id=2093):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x2242)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2010480, &(0x7f00000001c0), 0x45, 0x775, &(0x7f0000001cc0)="$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")
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0}, 0x18)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x41, 0x0)
ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000080)={0x4e00, 0x0, 0x0, 0xbdff, 0x0, "fdffffffffffffff"})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001", 0x3, 0xfffffffffffffffd)
write$binfmt_aout(r3, &(0x7f00000003c0)=ANY=[@ANYRES8=r3, @ANYBLOB="4b0ec2221df2a4c1e8d2304e114a8bb2b8"], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x90, 0x1b, "00bf46f8bbde7047bcd4a280000400"})
r6 = syz_open_pts(r3, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast2}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000400)=ANY=[@ANYBLOB="0b000000000000000a00000000000003ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000a004e200000f0b0fe88000000000000000000000000000105000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a004e22000000b200000000000000000000000000000001090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f100"/400], 0x190)
syz_emit_ethernet(0x42, &(0x7f00000005c0)=ANY=[@ANYBLOB="0180c2000000ffffffffffff86dd60010700000c1100fc010000000000000000000000958eedcb6231000000ff02000000000000000000000000000100000e22000c2b9f27e021f1c569907801000000d9f42cccd3a48bd9fde4a31eeb190e1d65c87360565ae79d6d6daf4912ec9c79505da92c028bb50da74c5f22269d679bcbafc0bc8a8bd95a3a1c137e3fdc982bada9e2f05d55ef228a2024b69bb6cf165682d634fb833f93a87729dbfaf01090be6b5fe6aa415bf0596743ca68c68f"], 0x0)
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f0000000100)=[0xee00])
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
setgroups(0x0, 0x0)
fchmodat(0xffffffffffffff9c, 0x0, 0x1ff)
r7 = dup3(r6, r3, 0x0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000000)=0x17)

347.92µs ago: executing program 6 (id=2094):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000f20000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
getitimer(0x1, &(0x7f0000000800))

0s ago: executing program 6 (id=2095):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0x8, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r2}, 0x18)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)

kernel console output (not intermixed with test programs):

eccomp_filter+0x6fa/0x1180
[  108.174307][ T7121]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  108.179977][ T7121]  ? vfs_write+0x596/0x920
[  108.184429][ T7121]  ? putname+0xcf/0xf0
[  108.188676][ T7121]  __secure_computing+0x9f/0x1c0
[  108.193680][ T7121]  syscall_trace_enter+0xd1/0x1f0
[  108.198861][ T7121]  ? fpregs_assert_state_consistent+0x83/0xa0
[  108.205041][ T7121]  do_syscall_64+0xaa/0x1c0
[  108.209587][ T7121]  ? clear_bhb_loop+0x55/0xb0
[  108.214379][ T7121]  ? clear_bhb_loop+0x55/0xb0
[  108.219121][ T7121]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.225132][ T7121] RIP: 0033:0x7f3b5cf85d29
[  108.229649][ T7121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.249283][ T7121] RSP: 002b:00007f3b5b5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  108.257797][ T7121] RAX: ffffffffffffffda RBX: 00007f3b5d175fa0 RCX: 00007f3b5cf85d29
[  108.265883][ T7121] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffffff
[  108.273970][ T7121] RBP: 00007f3b5b5f7090 R08: 0000000000000f3a R09: 0000000000000000
[  108.282516][ T7121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.290630][ T7121] R13: 0000000000000000 R14: 00007f3b5d175fa0 R15: 00007fffb7819fb8
[  108.298811][ T7121]  </TASK>
[  108.321966][ T7127] loop5: detected capacity change from 0 to 512
[  108.349365][ T7127] EXT4-fs: Ignoring removed i_version option
[  108.355499][ T7127] EXT4-fs: Ignoring removed mblk_io_submit option
[  108.397102][ T7127] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  108.469017][ T7127] EXT4-fs (loop5): 1 truncate cleaned up
[  108.552514][ T7138] FAULT_INJECTION: forcing a failure.
[  108.552514][ T7138] name failslab, interval 1, probability 0, space 0, times 0
[  108.562475][ T7127] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.565310][ T7138] CPU: 1 UID: 0 PID: 7138 Comm: syz.1.1275 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  108.587980][ T7138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  108.597016][ T7126] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  108.598044][ T7138] Call Trace:
[  108.607751][   T29] kauditd_printk_skb: 171 callbacks suppressed
[  108.607766][   T29] audit: type=1400 audit(1736683826.181:4287): avc:  denied  { relabelto } for  pid=7125 comm="syz.5.1271" name="/" dev="loop5" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  108.610671][ T7138]  <TASK>
[  108.623551][   T29] audit: type=1400 audit(1736683826.181:4288): avc:  denied  { write } for  pid=7125 comm="syz.5.1271" name="/" dev="loop5" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  108.642824][ T7138]  dump_stack_lvl+0xf2/0x150
[  108.642873][ T7138]  dump_stack+0x15/0x1a
[  108.671516][   T29] audit: type=1400 audit(1736683826.261:4289): avc:  denied  { remove_name } for  pid=7125 comm="syz.5.1271" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  108.675904][ T7138]  should_fail_ex+0x223/0x230
[  108.680115][   T29] audit: type=1400 audit(1736683826.261:4290): avc:  denied  { rename } for  pid=7125 comm="syz.5.1271" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  108.706424][ T7138]  should_failslab+0x8f/0xb0
[  108.706467][ T7138]  kmem_cache_alloc_noprof+0x52/0x320
[  108.706498][ T7138]  ? skb_clone+0x154/0x1f0
[  108.706527][ T7138]  skb_clone+0x154/0x1f0
[  108.706557][ T7138]  __netlink_deliver_tap+0x2bd/0x4f0
[  108.706593][ T7138]  netlink_unicast+0x64a/0x670
[  108.711271][   T29] audit: type=1400 audit(1736683826.261:4291): avc:  denied  { add_name } for  pid=7125 comm="syz.5.1271" name="file5" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  108.733476][ T7138]  netlink_sendmsg+0x5cc/0x6e0
[  108.733515][ T7138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.796905][ T7138]  __sock_sendmsg+0x140/0x180
[  108.801704][ T7138]  ____sys_sendmsg+0x312/0x410
[  108.806529][ T7138]  __sys_sendmsg+0x19d/0x230
[  108.811281][ T7138]  __x64_sys_sendmsg+0x46/0x50
[  108.816153][ T7138]  x64_sys_call+0x2734/0x2dc0
[  108.820933][ T7138]  do_syscall_64+0xc9/0x1c0
[  108.825533][ T7138]  ? clear_bhb_loop+0x55/0xb0
[  108.830297][ T7138]  ? clear_bhb_loop+0x55/0xb0
[  108.835074][ T7138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.841185][ T7138] RIP: 0033:0x7fdff1395d29
[  108.845723][ T7138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.865479][ T7138] RSP: 002b:00007fdfefa01038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.873972][ T7138] RAX: ffffffffffffffda RBX: 00007fdff1585fa0 RCX: 00007fdff1395d29
[  108.882167][ T7138] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000003
[  108.890192][ T7138] RBP: 00007fdfefa01090 R08: 0000000000000000 R09: 0000000000000000
[  108.898227][ T7138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.906239][ T7138] R13: 0000000000000000 R14: 00007fdff1585fa0 R15: 00007ffc865550b8
[  108.914247][ T7138]  </TASK>
[  109.004117][ T7145] netlink: 'syz.6.1278': attribute type 10 has an invalid length.
[  109.025291][ T7138] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  109.035281][ T7138] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.048604][ T7145] FAULT_INJECTION: forcing a failure.
[  109.048604][ T7145] name failslab, interval 1, probability 0, space 0, times 0
[  109.061314][ T7145] CPU: 1 UID: 0 PID: 7145 Comm: syz.6.1278 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  109.072113][ T7145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  109.082187][ T7145] Call Trace:
[  109.085497][ T7145]  <TASK>
[  109.088461][ T7145]  dump_stack_lvl+0xf2/0x150
[  109.093110][ T7145]  dump_stack+0x15/0x1a
[  109.097311][ T7145]  should_fail_ex+0x223/0x230
[  109.102056][ T7145]  should_failslab+0x8f/0xb0
[  109.106676][ T7145]  kmem_cache_alloc_node_noprof+0x59/0x320
[  109.112514][ T7145]  ? __alloc_skb+0x10b/0x310
[  109.117188][ T7145]  __alloc_skb+0x10b/0x310
[  109.121623][ T7145]  ? rt6_nlmsg_size+0x17a/0x1b0
[  109.126527][ T7145]  inet6_rt_notify+0x7b/0x170
[  109.131376][ T7145]  fib6_del+0x775/0x8a0
[  109.135573][ T7145]  ? fib6_ifdown+0x206/0x330
[  109.140240][ T7145]  fib6_clean_node+0x14c/0x250
[  109.145098][ T7145]  fib6_walk_continue+0x39e/0x440
[  109.150248][ T7145]  fib6_walk+0xc2/0x180
[  109.154437][ T7145]  ? __pfx_fib6_ifdown+0x10/0x10
[  109.159525][ T7145]  fib6_clean_all+0xbf/0x140
[  109.164218][ T7145]  ? __pfx_fib6_clean_node+0x10/0x10
[  109.169556][ T7145]  ? __pfx_fib6_ifdown+0x10/0x10
[  109.174614][ T7145]  rt6_disable_ip+0xaa/0x5f0
[  109.179245][ T7145]  ? kick_pool+0x268/0x2c0
[  109.183779][ T7145]  ? __rcu_read_unlock+0x4e/0x70
[  109.188834][ T7145]  addrconf_ifdown+0xa2/0xf20
[  109.193616][ T7145]  ? queue_work_on+0xfb/0x180
[  109.198329][ T7145]  addrconf_notify+0x2ff/0x950
[  109.203126][ T7145]  ? ip6mr_device_event+0x128/0x150
[  109.208353][ T7145]  ? __pfx_addrconf_notify+0x10/0x10
[  109.213854][ T7145]  raw_notifier_call_chain+0x6f/0x1d0
[  109.216491][ T7146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1277'.
[  109.219317][ T7145]  call_netdevice_notifiers_info+0xae/0x100
[  109.219358][ T7145]  __dev_notify_flags+0xff/0x1a0
[  109.239070][ T7145]  dev_change_flags+0xab/0xd0
[  109.243845][ T7145]  do_setlink+0x6ca/0x22c0
[  109.248312][ T7145]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  109.253747][ T7145]  rtnl_newlink+0xde9/0x1250
[  109.258441][ T7145]  ? cmp_ex_search+0x56/0x70
[  109.263175][ T7145]  ? strncpy_from_kernel_nofault+0x87/0x140
[  109.269112][ T7145]  ? fixup_exception+0x7c0/0xca0
[  109.274154][ T7145]  ? __memcg_slab_free_hook+0xc9/0x1e0
[  109.279651][ T7145]  ? __rcu_read_unlock+0x4e/0x70
[  109.284618][ T7145]  ? avc_has_perm_noaudit+0x1cc/0x210
[  109.290026][ T7145]  ? selinux_capable+0x1f2/0x260
[  109.295039][ T7145]  ? security_capable+0x81/0x90
[  109.299967][ T7145]  ? ns_capable+0x7d/0xb0
[  109.304374][ T7145]  ? __pfx_rtnl_newlink+0x10/0x10
[  109.309466][ T7145]  rtnetlink_rcv_msg+0x651/0x710
[  109.314433][ T7145]  ? ref_tracker_free+0x3a5/0x410
[  109.319510][ T7145]  ? __dev_queue_xmit+0x186/0x2090
[  109.324794][ T7145]  netlink_rcv_skb+0x12c/0x230
[  109.329628][ T7145]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  109.335120][ T7145]  rtnetlink_rcv+0x1c/0x30
[  109.339597][ T7145]  netlink_unicast+0x599/0x670
[  109.344488][ T7145]  netlink_sendmsg+0x5cc/0x6e0
[  109.349338][ T7145]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.354640][ T7145]  __sock_sendmsg+0x140/0x180
[  109.359443][ T7145]  ____sys_sendmsg+0x312/0x410
[  109.364359][ T7145]  __sys_sendmsg+0x19d/0x230
[  109.368987][ T7145]  __x64_sys_sendmsg+0x46/0x50
[  109.373764][ T7145]  x64_sys_call+0x2734/0x2dc0
[  109.378561][ T7145]  do_syscall_64+0xc9/0x1c0
[  109.383150][ T7145]  ? clear_bhb_loop+0x55/0xb0
[  109.387834][ T7145]  ? clear_bhb_loop+0x55/0xb0
[  109.392614][ T7145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.398597][ T7145] RIP: 0033:0x7f2941e55d29
[  109.403012][ T7145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.422677][ T7145] RSP: 002b:00007f29404c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.431178][ T7145] RAX: ffffffffffffffda RBX: 00007f2942045fa0 RCX: 00007f2941e55d29
[  109.439408][ T7145] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000003
[  109.447405][ T7145] RBP: 00007f29404c1090 R08: 0000000000000000 R09: 0000000000000000
[  109.455412][ T7145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.463396][ T7145] R13: 0000000000000000 R14: 00007f2942045fa0 R15: 00007ffe76234748
[  109.471469][ T7145]  </TASK>
[  109.481356][ T7145] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  109.518104][ T7138] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  109.527963][ T7138] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.617250][ T7159] netlink: 72 bytes leftover after parsing attributes in process `+}[@'.
[  109.627265][ T7159] loop6: detected capacity change from 0 to 128
[  110.350764][ T7159] FAT-fs (loop6): bogus number of reserved sectors
[  110.357336][ T7159] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  110.366655][ T7159] FAT-fs (loop6): Can't find a valid FAT filesystem
[  110.434305][ T7161] loop6: detected capacity change from 0 to 512
[  110.440943][ T7161] EXT4-fs: Ignoring removed mblk_io_submit option
[  110.466273][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.530144][ T7138] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  110.539964][ T7138] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.552710][ T7161] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.565550][ T7161] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.663437][ T5840] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.684031][ T7138] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  110.694072][ T7138] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.747336][ T7188] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1286'.
[  110.800862][ T7195] loop5: detected capacity change from 0 to 512
[  110.808663][ T7195] EXT4-fs: inline encryption not supported
[  110.857019][ T7138] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  110.865269][ T7138] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.889323][ T7138] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  110.897845][ T7138] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.912706][   T29] audit: type=1326 audit(1736683828.521:4292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7199 comm="syz.0.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  110.913736][ T7138] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  110.936491][   T29] audit: type=1326 audit(1736683828.521:4293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7199 comm="syz.0.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  110.944618][ T7138] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.967981][   T29] audit: type=1326 audit(1736683828.521:4294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7199 comm="syz.0.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  110.970779][   T29] audit: type=1326 audit(1736683828.591:4295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7199 comm="syz.0.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  111.014970][ T7195] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.023106][   T29] audit: type=1326 audit(1736683828.591:4296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7199 comm="syz.0.1295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  111.027505][ T7138] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  111.062656][ T7203] loop3: detected capacity change from 0 to 128
[  111.067296][ T7138] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.100739][ T7195] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.114535][ T7195] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.1293: corrupted inode contents
[  111.127455][ T7195] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm syz.5.1293: mark_inode_dirty error
[  111.139936][ T7195] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.1293: corrupted inode contents
[  111.173863][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.228916][ T7212] __nla_validate_parse: 1 callbacks suppressed
[  111.228937][ T7212] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1299'.
[  111.247332][ T7205] syz.1.1296[7205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.247497][ T7205] syz.1.1296[7205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.261394][ T7205] syz.1.1296[7205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.276856][ T7205] syz.1.1296[7205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.288977][ T7205] syz.1.1296[7205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.300969][ T7205] syz.1.1296[7205] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.365879][ T7210] syz.1.1296[7210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.386956][ T7210] syz.1.1296[7210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  111.449082][ T7225] Cannot find add_set index 0 as target
[  111.501670][ T7232] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1302'.
[  111.528973][ T7233] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1304'.
[  111.557091][ T7229] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20001
[  111.909648][ T7265] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1317'.
[  112.012475][ T7267] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1318'.
[  112.071786][ T7256] loop0: detected capacity change from 0 to 512
[  112.091400][ T7256] EXT4-fs (loop0): failed to initialize system zone (-117)
[  112.106686][ T7256] EXT4-fs (loop0): mount failed
[  112.326790][ T7298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1327'.
[  112.455381][ T7304] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1330'.
[  112.634217][ T7317] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1333'.
[  112.644749][ T7319] loop0: detected capacity change from 0 to 128
[  112.658159][ T7319] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  112.699180][ T5908] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  112.752980][ T7328] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  112.764947][ T7330] FAULT_INJECTION: forcing a failure.
[  112.764947][ T7330] name failslab, interval 1, probability 0, space 0, times 0
[  112.777728][ T7330] CPU: 1 UID: 0 PID: 7330 Comm: syz.0.1337 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  112.788590][ T7330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  112.798675][ T7330] Call Trace:
[  112.801958][ T7330]  <TASK>
[  112.804894][ T7330]  dump_stack_lvl+0xf2/0x150
[  112.809601][ T7330]  dump_stack+0x15/0x1a
[  112.813778][ T7330]  should_fail_ex+0x223/0x230
[  112.818510][ T7330]  ? sctp_add_bind_addr+0x6f/0x1e0
[  112.823669][ T7330]  should_failslab+0x8f/0xb0
[  112.828282][ T7330]  __kmalloc_cache_noprof+0x4e/0x320
[  112.833587][ T7330]  sctp_add_bind_addr+0x6f/0x1e0
[  112.838542][ T7330]  sctp_copy_local_addr_list+0x19b/0x220
[  112.844194][ T7330]  sctp_copy_one_addr+0x83/0x410
[  112.849146][ T7330]  sctp_bind_addr_copy+0x81/0x2b0
[  112.854189][ T7330]  sctp_assoc_set_bind_addr_from_ep+0xc0/0xd0
[  112.860300][ T7330]  sctp_connect_new_asoc+0x1d0/0x3b0
[  112.865662][ T7330]  sctp_sendmsg+0xf05/0x1920
[  112.870282][ T7330]  ? __pfx_sctp_sendmsg+0x10/0x10
[  112.875321][ T7330]  inet_sendmsg+0xc5/0xd0
[  112.879702][ T7330]  __sock_sendmsg+0x102/0x180
[  112.884470][ T7330]  __sys_sendto+0x1a8/0x230
[  112.888998][ T7330]  __x64_sys_sendto+0x78/0x90
[  112.893684][ T7330]  x64_sys_call+0x29fa/0x2dc0
[  112.898377][ T7330]  do_syscall_64+0xc9/0x1c0
[  112.902889][ T7330]  ? clear_bhb_loop+0x55/0xb0
[  112.907587][ T7330]  ? clear_bhb_loop+0x55/0xb0
[  112.912273][ T7330]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.918253][ T7330] RIP: 0033:0x7f190c015d29
[  112.922688][ T7330] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.942389][ T7330] RSP: 002b:00007f190a687038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  112.950806][ T7330] RAX: ffffffffffffffda RBX: 00007f190c205fa0 RCX: 00007f190c015d29
[  112.958781][ T7330] RDX: 0000000000000001 RSI: 0000000020000040 RDI: 0000000000000006
[  112.966822][ T7330] RBP: 00007f190a687090 R08: 0000000020000100 R09: 000000000000001c
[  112.974804][ T7330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  112.982776][ T7330] R13: 0000000000000000 R14: 00007f190c205fa0 R15: 00007ffe16eb0428
[  112.990760][ T7330]  </TASK>
[  113.111139][ T7346] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1340'.
[  113.208307][ T7348] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1345'.
[  113.581102][ T7367] SELinux:  policydb version 0 does not match my version range 15-33
[  113.611065][ T7371] loop5: detected capacity change from 0 to 1024
[  113.618399][ T7371] EXT4-fs: inline encryption not supported
[  113.624708][ T7371] EXT4-fs: inline encryption not supported
[  113.641201][ T7367] SELinux: failed to load policy
[  113.666174][ T7371] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.708399][ T7361] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.5.1349: corrupted in-inode xattr: bad magic number in in-inode xattr
[  113.909439][ T7386] vlan2: entered promiscuous mode
[  113.914549][ T7386] caif0: entered promiscuous mode
[  113.945550][ T7386] caif0: left promiscuous mode
[  114.081472][ T7394] ref_ctr_offset mismatch. inode: 0x1f4 offset: 0x7 ref_ctr_offset(old): 0x2 ref_ctr_offset(new): 0x0
[  114.167716][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.844718][   T29] kauditd_printk_skb: 122 callbacks suppressed
[  114.844733][   T29] audit: type=1400 audit(1736683832.451:4419): avc:  denied  { listen } for  pid=7420 comm="syz.0.1368" lport=38853 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  115.027186][   T29] audit: type=1400 audit(1736683832.491:4420): avc:  denied  { accept } for  pid=7420 comm="syz.0.1368" lport=38853 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  115.050249][   T29] audit: type=1400 audit(1736683832.511:4421): avc:  denied  { write } for  pid=7420 comm="syz.0.1368" lport=38853 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  115.073927][   T29] audit: type=1400 audit(1736683832.511:4422): avc:  denied  { setopt } for  pid=7420 comm="syz.0.1368" lport=38853 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  115.097579][   T29] audit: type=1326 audit(1736683832.531:4423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7420 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  115.121138][   T29] audit: type=1326 audit(1736683832.531:4424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7420 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  115.144889][   T29] audit: type=1326 audit(1736683832.541:4425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7420 comm="syz.0.1368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  115.168328][   T29] audit: type=1326 audit(1736683832.541:4426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7420 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  115.191243][   T29] audit: type=1326 audit(1736683832.551:4427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7420 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  115.214147][   T29] audit: type=1326 audit(1736683832.561:4428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7426 comm="syz.3.1371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  115.810125][ T7454] loop0: detected capacity change from 0 to 512
[  115.864486][ T7454] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  115.872734][ T7454] EXT4-fs (loop0): bad geometry: first data block is 0 with a 1k block and cluster size
[  116.109390][ T7472] loop3: detected capacity change from 0 to 128
[  116.118365][ T7472] /dev/loop3: Can't open blockdev
[  116.403813][ T7494] __nla_validate_parse: 6 callbacks suppressed
[  116.403831][ T7494] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1391'.
[  116.495916][ T7504] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1395'.
[  116.524106][ T7506] loop5: detected capacity change from 0 to 128
[  116.531097][ T7506] /dev/loop5: Can't open blockdev
[  117.373667][ T7520] capability: warning: `syz.3.1398' uses 32-bit capabilities (legacy support in use)
[  117.397188][ T7522] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1400'.
[  117.613730][ T7533] loop1: detected capacity change from 0 to 1024
[  117.669969][ T7538] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1408'.
[  117.692306][ T7543] loop0: detected capacity change from 0 to 128
[  117.700708][ T7533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.727216][ T7543] /dev/loop0: Can't open blockdev
[  117.772247][ T7533] EXT4-fs (loop1): shut down requested (0)
[  117.792269][ T7552] loop5: detected capacity change from 0 to 128
[  117.799844][ T7552] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  117.857017][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.964729][ T7570] loop1: detected capacity change from 0 to 512
[  118.058059][ T7570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.071325][ T7570] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.130531][ T7585] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1422'.
[  118.171115][ T7590] xt_hashlimit: max too large, truncated to 1048576
[  118.231505][ T7587] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1420: bg 0: block 18: invalid block bitmap
[  118.246411][ T7590] loop3: detected capacity change from 0 to 8192
[  118.253571][ T7570] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  118.333548][ T7606] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1431'.
[  118.339380][ T7608] loop5: detected capacity change from 0 to 164
[  118.363166][ T7608] Unable to read rock-ridge attributes
[  118.377493][ T7608] Unable to read rock-ridge attributes
[  118.383962][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.393930][ T7610] tmpfs: Unknown parameter 'defùªãñª'
[  118.432997][ T7616] loop3: detected capacity change from 0 to 128
[  118.439762][ T7616] /dev/loop3: Can't open blockdev
[  118.485583][ T7620] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1439'.
[  118.568317][ T7634] macvtap0: entered promiscuous mode
[  118.575294][ T7634] macvtap0: left promiscuous mode
[  118.700402][ T7652] syz.3.1454[7652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  118.700555][ T7652] syz.3.1454[7652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  118.724034][ T7652] syz.3.1454[7652] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  118.740783][ T7659] ebt_among: src integrity fail: 100
[  118.789676][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1456'.
[  118.830149][ T7669] loop3: detected capacity change from 0 to 512
[  118.861531][ T7669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  118.892831][ T7669] ext4 filesystem being mounted at /356/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.064910][ T7693] loop6: detected capacity change from 0 to 1156
[  119.116777][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  119.270389][ T7703] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1474'.
[  119.858067][ T7732] FAULT_INJECTION: forcing a failure.
[  119.858067][ T7732] name failslab, interval 1, probability 0, space 0, times 0
[  119.870862][ T7732] CPU: 1 UID: 0 PID: 7732 Comm: syz.3.1483 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  119.881560][ T7732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  119.891689][ T7732] Call Trace:
[  119.894982][ T7732]  <TASK>
[  119.897923][ T7732]  dump_stack_lvl+0xf2/0x150
[  119.902550][ T7732]  dump_stack+0x15/0x1a
[  119.906733][ T7732]  should_fail_ex+0x223/0x230
[  119.911470][ T7732]  should_failslab+0x8f/0xb0
[  119.916084][ T7732]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  119.921962][ T7732]  ? alloc_inode+0x6a/0x160
[  119.926480][ T7732]  ? __rcu_read_unlock+0x4e/0x70
[  119.931443][ T7732]  alloc_inode+0x6a/0x160
[  119.935798][ T7732]  iget_locked+0xf2/0x5d0
[  119.940148][ T7732]  ? __list_add_valid_or_report+0x36/0xc0
[  119.945889][ T7732]  ? down_read+0x171/0x4b0
[  119.950373][ T7732]  ? shrinker_register+0x106/0x130
[  119.955528][ T7732]  kernfs_get_inode+0x2e/0x350
[  119.960368][ T7732]  kernfs_get_tree+0x2de/0x470
[  119.965155][ T7732]  sysfs_get_tree+0x25/0xa0
[  119.969752][ T7732]  vfs_get_tree+0x56/0x1e0
[  119.974202][ T7732]  do_new_mount+0x227/0x690
[  119.978795][ T7732]  path_mount+0x49b/0xb30
[  119.983154][ T7732]  __se_sys_mount+0x27c/0x2d0
[  119.987879][ T7732]  ? fput+0x1c4/0x200
[  119.991879][ T7732]  __x64_sys_mount+0x67/0x80
[  119.996605][ T7732]  x64_sys_call+0x2c84/0x2dc0
[  120.001375][ T7732]  do_syscall_64+0xc9/0x1c0
[  120.005956][ T7732]  ? clear_bhb_loop+0x55/0xb0
[  120.010666][ T7732]  ? clear_bhb_loop+0x55/0xb0
[  120.015406][ T7732]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.021694][ T7732] RIP: 0033:0x7f3b5cf85d29
[  120.026135][ T7732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.045910][ T7732] RSP: 002b:00007f3b5b5d6038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  120.054344][ T7732] RAX: ffffffffffffffda RBX: 00007f3b5d176080 RCX: 00007f3b5cf85d29
[  120.062354][ T7732] RDX: 0000000020000100 RSI: 0000000020000140 RDI: 0000000000000000
[  120.070334][ T7732] RBP: 00007f3b5b5d6090 R08: 0000000000000000 R09: 0000000000000000
[  120.078325][ T7732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  120.086333][ T7732] R13: 0000000000000001 R14: 00007f3b5d176080 R15: 00007fffb7819fb8
[  120.094324][ T7732]  </TASK>
[  120.851472][ T7747] loop5: detected capacity change from 0 to 1024
[  120.897776][ T7747] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  120.908768][ T7747] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  120.976501][ T7747] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  121.016364][ T7747] EXT4-fs (loop5): invalid journal inode
[  121.022182][ T7747] EXT4-fs (loop5): can't get journal size
[  121.032503][ T7747] EXT4-fs error (device loop5): ext4_protect_reserved_inode:182: inode #3: comm syz.5.1490: blocks 2-2 from inode overlap system zone
[  121.079626][ T7747] EXT4-fs (loop5): failed to initialize system zone (-117)
[  121.150701][ T7747] EXT4-fs (loop5): mount failed
[  121.163623][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  121.163642][   T29] audit: type=1400 audit(1736683838.771:4613): avc:  denied  { relabelfrom } for  pid=7760 comm="syz.3.1495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  121.194069][ T7761] loop3: detected capacity change from 0 to 512
[  121.204925][   T29] audit: type=1400 audit(1736683838.771:4614): avc:  denied  { relabelto } for  pid=7760 comm="syz.3.1495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  121.243323][ T7761] EXT4-fs: Ignoring removed mblk_io_submit option
[  121.255386][   T29] audit: type=1400 audit(1736683838.871:4615): avc:  denied  { shutdown } for  pid=7746 comm="syz.5.1490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  121.278760][ T7761] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  121.327576][ T7761] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  121.363332][ T7761] EXT4-fs (loop3): orphan cleanup on readonly fs
[  121.382210][ T7761] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1495: Invalid block bitmap block 0 in block_group 0
[  121.456840][ T7761] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1495: Invalid block bitmap block 0 in block_group 0
[  121.496673][ T7761] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1495: Invalid block bitmap block 0 in block_group 0
[  121.540203][ T7761] Quota error (device loop3): write_blk: dquota write failed
[  121.547753][ T7761] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  121.557682][ T7761] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1495: Failed to acquire dquot type 1
[  121.608144][ T7761] EXT4-fs (loop3): 1 orphan inode deleted
[  121.614013][ T5919] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-5
[  121.623158][ T5919] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:10: Failed to release dquot type 1
[  121.660906][ T7761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  121.739278][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.417702][ T7808] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1512'.
[  124.015750][ T7828] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1517'.
[  124.167751][ T7832] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1521'.
[  124.775817][ T7866] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1535'.
[  124.831230][ T7868] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1533'.
[  124.926503][ T7879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1536'.
[  125.023513][   T29] audit: type=1326 audit(1736683842.631:4616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7883 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  125.047022][   T29] audit: type=1326 audit(1736683842.631:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7883 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  125.070529][   T29] audit: type=1326 audit(1736683842.631:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7883 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  125.094247][   T29] audit: type=1326 audit(1736683842.631:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7883 comm="syz.0.1540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f190c015d29 code=0x7ffc0000
[  125.251161][ T7903] loop3: detected capacity change from 0 to 128
[  125.261202][ T7903] ext4: Unknown parameter 'fsuuid'
[  125.387009][ T7908] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1550'.
[  125.396542][ T7909] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1551'.
[  125.872835][ T7932] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1558'.
[  126.746509][ T7955] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1566'.
[  128.474269][ T8022] __nla_validate_parse: 4 callbacks suppressed
[  128.474299][ T8022] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1590'.
[  128.501623][ T8028] loop0: detected capacity change from 0 to 128
[  129.043938][ T8026] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1592'.
[  129.349224][ T8048] IPVS: stopping master sync thread 8054 ...
[  129.355289][ T8054] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  129.376057][ T5908] kworker/u8:9: attempt to access beyond end of device
[  129.376057][ T5908] loop0: rw=1, sector=145, nr_sectors = 33 limit=128
[  129.534135][ T8059] loop3: detected capacity change from 0 to 764
[  129.571913][ T8063] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1605'.
[  129.727746][   T29] kauditd_printk_skb: 38 callbacks suppressed
[  129.727763][   T29] audit: type=1400 audit(1736683847.341:4658): avc:  denied  { getopt } for  pid=8076 comm="syz.6.1612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  129.791309][   T29] audit: type=1326 audit(1736683847.401:4659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.815164][ T8085] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1615'.
[  129.834367][   T29] audit: type=1326 audit(1736683847.401:4660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.865797][   T29] audit: type=1326 audit(1736683847.401:4661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.889265][   T29] audit: type=1326 audit(1736683847.401:4662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.912802][   T29] audit: type=1326 audit(1736683847.401:4663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.936297][   T29] audit: type=1326 audit(1736683847.401:4664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.959761][   T29] audit: type=1326 audit(1736683847.401:4665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  129.983180][   T29] audit: type=1326 audit(1736683847.401:4666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  130.006651][   T29] audit: type=1326 audit(1736683847.401:4667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8081 comm="syz.3.1614" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  130.087840][ T8093] Process accounting resumed
[  130.251618][ T8119] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1627'.
[  130.727874][ T8155] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1643'.
[  130.792801][ T8159] FAULT_INJECTION: forcing a failure.
[  130.792801][ T8159] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  130.806144][ T8159] CPU: 1 UID: 0 PID: 8159 Comm: syz.3.1644 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  130.816845][ T8159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  130.826970][ T8159] Call Trace:
[  130.830266][ T8159]  <TASK>
[  130.833216][ T8159]  dump_stack_lvl+0xf2/0x150
[  130.837907][ T8159]  dump_stack+0x15/0x1a
[  130.842109][ T8159]  should_fail_ex+0x223/0x230
[  130.846819][ T8159]  should_fail_alloc_page+0xfd/0x110
[  130.852245][ T8159]  __alloc_pages_noprof+0x109/0x340
[  130.857476][ T8159]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  130.862927][ T8159]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  130.868329][ T8159]  handle_mm_fault+0xdd7/0x2ac0
[  130.873269][ T8159]  ? __rcu_read_lock+0x36/0x50
[  130.878250][ T8159]  __get_user_pages+0xf2c/0x2670
[  130.883253][ T8159]  __gup_longterm_locked+0x2ea/0xf90
[  130.888658][ T8159]  ? ___pte_offset_map+0xc4/0x140
[  130.893765][ T8159]  gup_fast_fallback+0x1568/0x2010
[  130.898972][ T8159]  pin_user_pages_fast+0x5f/0x90
[  130.904012][ T8159]  io_pin_pages+0xb4/0x170
[  130.908450][ T8159]  io_sqe_buffer_register+0x109/0x1460
[  130.914061][ T8159]  ? __kmalloc_node_noprof+0x28f/0x410
[  130.919613][ T8159]  ? __kvmalloc_node_noprof+0x72/0x170
[  130.925128][ T8159]  io_sqe_buffers_register+0x2d8/0x4e0
[  130.930639][ T8159]  __se_sys_io_uring_register+0xa6b/0x2200
[  130.936515][ T8159]  ? get_pid_task+0x8e/0xc0
[  130.941106][ T8159]  ? proc_fail_nth_write+0x12a/0x150
[  130.946481][ T8159]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  130.952179][ T8159]  ? vfs_write+0x596/0x920
[  130.956651][ T8159]  ? __fget_files+0x17c/0x1c0
[  130.961417][ T8159]  ? fput+0x1c4/0x200
[  130.965430][ T8159]  ? ksys_write+0x176/0x1b0
[  130.969974][ T8159]  __x64_sys_io_uring_register+0x55/0x70
[  130.975662][ T8159]  x64_sys_call+0x2c52/0x2dc0
[  130.980368][ T8159]  do_syscall_64+0xc9/0x1c0
[  130.984967][ T8159]  ? clear_bhb_loop+0x55/0xb0
[  130.989684][ T8159]  ? clear_bhb_loop+0x55/0xb0
[  130.994437][ T8159]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.000385][ T8159] RIP: 0033:0x7f3b5cf85d29
[  131.004862][ T8159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.024656][ T8159] RSP: 002b:00007f3b5b5f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  131.033095][ T8159] RAX: ffffffffffffffda RBX: 00007f3b5d175fa0 RCX: 00007f3b5cf85d29
[  131.041088][ T8159] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000004
[  131.049132][ T8159] RBP: 00007f3b5b5f7090 R08: 0000000000000000 R09: 0000000000000000
[  131.057207][ T8159] R10: 100000000000011a R11: 0000000000000246 R12: 0000000000000001
[  131.065205][ T8159] R13: 0000000000000000 R14: 00007f3b5d175fa0 R15: 00007fffb7819fb8
[  131.073233][ T8159]  </TASK>
[  131.428032][ T8184] loop6: detected capacity change from 0 to 2048
[  131.457049][ T8184] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.589735][ T8183] loop3: detected capacity change from 0 to 8192
[  131.656033][ T8184] EXT4-fs (loop6): can't mount with journal_checksum, fs mounted w/o journal
[  131.745579][ T8178] loop6: detected capacity change from 0 to 256
[  131.797252][ T8183] syz.3.1651: attempt to access beyond end of device
[  131.797252][ T8183] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  131.810865][ T8183] Buffer I/O error on dev loop3, logical block 57847, async page read
[  131.826447][ T8183] syz.3.1651: attempt to access beyond end of device
[  131.826447][ T8183] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  131.839948][ T8183] Buffer I/O error on dev loop3, logical block 57847, async page read
[  131.926587][ T8183] syz.3.1651: attempt to access beyond end of device
[  131.926587][ T8183] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  131.940132][ T8183] Buffer I/O error on dev loop3, logical block 57847, async page read
[  131.971993][ T8183] syz.3.1651: attempt to access beyond end of device
[  131.971993][ T8183] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  131.985478][ T8183] Buffer I/O error on dev loop3, logical block 57847, async page read
[  132.368234][ T8228] FAULT_INJECTION: forcing a failure.
[  132.368234][ T8228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.369293][ T8230] netlink: 292 bytes leftover after parsing attributes in process `syz.3.1670'.
[  132.381426][ T8228] CPU: 0 UID: 0 PID: 8228 Comm: syz.5.1668 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  132.401189][ T8228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  132.411412][ T8228] Call Trace:
[  132.414718][ T8228]  <TASK>
[  132.417672][ T8228]  dump_stack_lvl+0xf2/0x150
[  132.422295][ T8228]  dump_stack+0x15/0x1a
[  132.426572][ T8228]  should_fail_ex+0x223/0x230
[  132.431278][ T8228]  should_fail+0xb/0x10
[  132.435460][ T8228]  should_fail_usercopy+0x1a/0x20
[  132.440606][ T8228]  _copy_from_user+0x1e/0xb0
[  132.445245][ T8228]  sel_write_load+0x18f/0x360
[  132.450004][ T8228]  ? __pfx_sel_write_load+0x10/0x10
[  132.455282][ T8228]  vfs_write+0x281/0x920
[  132.459595][ T8228]  ? __fget_files+0x17c/0x1c0
[  132.464382][ T8228]  ksys_write+0xe8/0x1b0
[  132.468693][ T8228]  __x64_sys_write+0x42/0x50
[  132.473347][ T8228]  x64_sys_call+0x287e/0x2dc0
[  132.478067][ T8228]  do_syscall_64+0xc9/0x1c0
[  132.482764][ T8228]  ? clear_bhb_loop+0x55/0xb0
[  132.487546][ T8228]  ? clear_bhb_loop+0x55/0xb0
[  132.492258][ T8228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.498264][ T8228] RIP: 0033:0x7f5648c45d29
[  132.502698][ T8228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.522420][ T8228] RSP: 002b:00007f56472b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  132.530906][ T8228] RAX: ffffffffffffffda RBX: 00007f5648e35fa0 RCX: 00007f5648c45d29
[  132.538903][ T8228] RDX: 0000000000002000 RSI: 0000000020000340 RDI: 0000000000000006
[  132.546949][ T8228] RBP: 00007f56472b7090 R08: 0000000000000000 R09: 0000000000000000
[  132.554939][ T8228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.563018][ T8228] R13: 0000000000000000 R14: 00007f5648e35fa0 R15: 00007ffeef4972a8
[  132.571108][ T8228]  </TASK>
[  132.632063][ T8230] loop3: detected capacity change from 0 to 512
[  132.671075][ T8230] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.1670: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 2819, max 4(4), depth 0(0)
[  132.707781][ T8233] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1671'.
[  132.756560][ T8240] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1672'.
[  132.833506][ T8230] EXT4-fs error (device loop3): ext4_quota_enable:7115: comm syz.3.1670: Bad quota inode: 3, type: 0
[  132.889308][ T8242] ip6gretap0: entered promiscuous mode
[  132.894882][ T8242] ip6gretap0: entered allmulticast mode
[  132.907854][ T8230] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  132.982391][ T8230] EXT4-fs (loop3): mount failed
[  132.999578][ T8245] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  133.070270][ T8240] IPVS: stopping master sync thread 8245 ...
[  133.172095][ T8248] loop3: detected capacity change from 0 to 128
[  133.179799][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1675'.
[  133.242784][ T8250] loop6: detected capacity change from 0 to 2048
[  133.260191][ T8252] hub 9-0:1.0: USB hub found
[  133.267912][ T8250] EXT4-fs: Ignoring removed mblk_io_submit option
[  133.284663][ T8252] hub 9-0:1.0: 8 ports detected
[  133.312890][ T8250] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.456863][ T5908] kworker/u8:9: attempt to access beyond end of device
[  133.456863][ T5908] loop3: rw=1, sector=145, nr_sectors = 33 limit=128
[  133.490931][ T5840] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.624023][ T8271] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1684'.
[  133.666816][ T8281] syz.5.1686[8281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.666908][ T8281] syz.5.1686[8281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.696501][ T8281] syz.5.1686[8281] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.711111][ T8283] syz.5.1686[8283] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.753729][ T8283] syz.5.1686[8283] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.774056][ T8286] loop3: detected capacity change from 0 to 512
[  133.806935][ T8283] syz.5.1686[8283] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.811225][ T8281] netlink: 96 bytes leftover after parsing attributes in process `syz.5.1686'.
[  133.864376][ T8292] loop6: detected capacity change from 0 to 1764
[  133.866949][ T8286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.885486][    C1] vxcan0: j1939_tp_txtimer: 0xffff8881188a1000: tx aborted with unknown reason: -2
[  133.894954][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888117ef5a00: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)
[  133.912706][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff8881188a1000: 0x00000: (250) Any other reason (if a Connection Abort reason is identified that is not listed in the table use code 250)
[  133.930338][ T8286] ext4 filesystem being mounted at /417/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  133.978063][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.022419][ T8292] loop6: detected capacity change from 0 to 764
[  134.064168][ T8300] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1692'.
[  134.083817][ T8292] Symlink component flag not implemented
[  134.089702][ T8292] Symlink component flag not implemented (101)
[  134.409620][ T8325] loop5: detected capacity change from 0 to 512
[  134.421254][ T8328] ip6gretap0: entered promiscuous mode
[  134.426782][ T8328] ip6gretap0: entered allmulticast mode
[  134.479119][ T8325] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.569658][ T8325] ext4 filesystem being mounted at /212/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  134.663608][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.759659][ T8343] loop3: detected capacity change from 0 to 164
[  134.785699][ T8343] Unable to read rock-ridge attributes
[  134.792315][ T8343] Unable to read rock-ridge attributes
[  134.827609][ T8350] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=20 sclass=netlink_audit_socket pid=8350 comm=syz.6.1712
[  134.868566][ T8355] loop5: detected capacity change from 0 to 1024
[  134.896873][ T8355] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  134.918301][ T8355] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  134.937251][   T29] kauditd_printk_skb: 473 callbacks suppressed
[  134.937271][   T29] audit: type=1326 audit(1736683852.541:5141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  134.943894][ T8355] EXT4-fs (loop5): orphan cleanup on readonly fs
[  135.016684][   T29] audit: type=1326 audit(1736683852.551:5142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.040222][   T29] audit: type=1326 audit(1736683852.551:5143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.063946][   T29] audit: type=1326 audit(1736683852.551:5144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.087413][   T29] audit: type=1326 audit(1736683852.551:5145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.110892][ T8355] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  135.111043][ T8355] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #3: comm syz.5.1714: mark_inode_dirty error
[  135.132058][   T29] audit: type=1326 audit(1736683852.551:5146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.155673][   T29] audit: type=1326 audit(1736683852.551:5147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.179446][   T29] audit: type=1326 audit(1736683852.551:5148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.188394][ T8355] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1714: Invalid block bitmap block 3 in block_group 0
[  135.203014][   T29] audit: type=1326 audit(1736683852.551:5149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.239950][   T29] audit: type=1326 audit(1736683852.551:5150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8358 comm="syz.3.1715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3b5cf85d29 code=0x7ffc0000
[  135.245094][ T8355] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1714: Invalid block bitmap block 3 in block_group 0
[  135.330088][ T8355] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1714: Invalid block bitmap block 3 in block_group 0
[  135.369858][ T8355] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  135.393983][ T8355] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #3: comm syz.5.1714: mark_inode_dirty error
[  135.425892][ T8355] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 1: comm syz.5.1714: lblock 6 mapped to illegal pblock 1 (length 1)
[  135.500320][ T8355] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 48: comm syz.5.1714: lblock 0 mapped to illegal pblock 48 (length 1)
[  135.534753][ T8355] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1714: Failed to acquire dquot type 0
[  135.577679][ T8355] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 49: comm syz.5.1714: lblock 1 mapped to illegal pblock 49 (length 1)
[  135.629111][ T8355] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1714: Failed to acquire dquot type 0
[  135.636576][ T8373] ip6gretap0: entered promiscuous mode
[  135.645874][ T8373] ip6gretap0: entered allmulticast mode
[  135.665341][ T8355] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  135.693661][ T8355] EXT4-fs error (device loop5): ext4_evict_inode:256: inode #15: comm syz.5.1714: mark_inode_dirty error
[  135.729302][ T8355] EXT4-fs warning (device loop5): ext4_evict_inode:259: couldn't mark inode dirty (err -117)
[  135.753371][ T8355] EXT4-fs (loop5): 1 orphan inode deleted
[  135.772848][ T8355] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  135.936835][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.659511][ T8429] loop0: detected capacity change from 0 to 512
[  136.696633][ T8429] EXT4-fs: Ignoring removed mblk_io_submit option
[  136.701823][ T8420] loop6: detected capacity change from 0 to 8192
[  136.751907][ T8429] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.948619][ T8420] syz.6.1735: attempt to access beyond end of device
[  136.948619][ T8420] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  136.962154][ T8420] Buffer I/O error on dev loop6, logical block 57847, async page read
[  137.007543][ T8442] FAULT_INJECTION: forcing a failure.
[  137.007543][ T8442] name failslab, interval 1, probability 0, space 0, times 0
[  137.020211][ T8442] CPU: 0 UID: 0 PID: 8442 Comm: syz.1.1743 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  137.030919][ T8442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  137.041050][ T8442] Call Trace:
[  137.044620][ T8442]  <TASK>
[  137.047574][ T8442]  dump_stack_lvl+0xf2/0x150
[  137.052217][ T8442]  dump_stack+0x15/0x1a
[  137.056470][ T8442]  should_fail_ex+0x223/0x230
[  137.061206][ T8442]  should_failslab+0x8f/0xb0
[  137.065887][ T8442]  kmem_cache_alloc_node_noprof+0x59/0x320
[  137.071730][ T8442]  ? __alloc_skb+0x10b/0x310
[  137.076361][ T8442]  __alloc_skb+0x10b/0x310
[  137.080923][ T8442]  netlink_dump+0x157/0x7e0
[  137.085581][ T8442]  ? nlmon_xmit+0x51/0x60
[  137.089980][ T8442]  __netlink_dump_start+0x433/0x520
[  137.095236][ T8442]  ? __pfx_rtnl_dump_all+0x10/0x10
[  137.100400][ T8442]  rtnetlink_rcv_msg+0x5a2/0x710
[  137.105356][ T8442]  ? __pfx_rtnl_dump_all+0x10/0x10
[  137.110577][ T8442]  ? __pfx_rtnl_dumpit+0x10/0x10
[  137.115569][ T8442]  ? __pfx_rtnl_dump_all+0x10/0x10
[  137.120716][ T8442]  netlink_rcv_skb+0x12c/0x230
[  137.125506][ T8442]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  137.131159][ T8442]  rtnetlink_rcv+0x1c/0x30
[  137.135625][ T8442]  netlink_unicast+0x599/0x670
[  137.140483][ T8442]  netlink_sendmsg+0x5cc/0x6e0
[  137.145281][ T8442]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.150665][ T8442]  __sock_sendmsg+0x140/0x180
[  137.155429][ T8442]  sock_write_iter+0x15e/0x1a0
[  137.160314][ T8442]  vfs_write+0x77f/0x920
[  137.164645][ T8442]  ? __pfx_sock_write_iter+0x10/0x10
[  137.170020][ T8442]  ksys_write+0xe8/0x1b0
[  137.174377][ T8442]  __x64_sys_write+0x42/0x50
[  137.179030][ T8442]  x64_sys_call+0x287e/0x2dc0
[  137.183727][ T8442]  do_syscall_64+0xc9/0x1c0
[  137.188270][ T8442]  ? clear_bhb_loop+0x55/0xb0
[  137.192990][ T8442]  ? clear_bhb_loop+0x55/0xb0
[  137.197695][ T8442]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.203684][ T8442] RIP: 0033:0x7fdff1395d29
[  137.206547][ T8420] syz.6.1735: attempt to access beyond end of device
[  137.206547][ T8420] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  137.208234][ T8442] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.208259][ T8442] RSP: 002b:00007fdfefa01038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  137.208279][ T8442] RAX: ffffffffffffffda RBX: 00007fdff1585fa0 RCX: 00007fdff1395d29
[  137.221737][ T8420] Buffer I/O error on dev loop6, logical block 57847, async page read
[  137.241245][ T8442] RDX: 0000000000000024 RSI: 0000000020000000 RDI: 0000000000000003
[  137.241311][ T8442] RBP: 00007fdfefa01090 R08: 0000000000000000 R09: 0000000000000000
[  137.281903][ T8442] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.289918][ T8442] R13: 0000000000000000 R14: 00007fdff1585fa0 R15: 00007ffc865550b8
[  137.297934][ T8442]  </TASK>
[  137.587910][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.596331][ T8420] syz.6.1735: attempt to access beyond end of device
[  137.596331][ T8420] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  137.610336][ T8420] Buffer I/O error on dev loop6, logical block 57847, async page read
[  139.034146][ T8477] netlink: 'syz.1.1758': attribute type 13 has an invalid length.
[  139.042042][ T8477] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1758'.
[  139.099042][ T8483] No such timeout policy "syz0"
[  139.483341][ T8495] FAULT_INJECTION: forcing a failure.
[  139.483341][ T8495] name failslab, interval 1, probability 0, space 0, times 0
[  139.496101][ T8495] CPU: 0 UID: 0 PID: 8495 Comm: syz.3.1764 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  139.506818][ T8495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  139.516938][ T8495] Call Trace:
[  139.520243][ T8495]  <TASK>
[  139.523193][ T8495]  dump_stack_lvl+0xf2/0x150
[  139.527837][ T8495]  dump_stack+0x15/0x1a
[  139.532151][ T8495]  should_fail_ex+0x223/0x230
[  139.536863][ T8495]  should_failslab+0x8f/0xb0
[  139.541499][ T8495]  kmem_cache_alloc_noprof+0x52/0x320
[  139.546894][ T8495]  ? skb_clone+0x154/0x1f0
[  139.551405][ T8495]  skb_clone+0x154/0x1f0
[  139.555770][ T8495]  packet_rcv_spkt+0xc8/0x330
[  139.560494][ T8495]  ? __pfx_packet_rcv_spkt+0x10/0x10
[  139.565829][ T8495]  __netif_receive_skb_core+0x9e1/0x2400
[  139.571494][ T8495]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  139.576917][ T8495]  ? __list_del_entry_valid_or_report+0x5f/0xf0
[  139.583245][ T8495]  ? __rmqueue_pcplist+0xf7e/0x1110
[  139.588486][ T8495]  ? __rcu_read_unlock+0x4e/0x70
[  139.593477][ T8495]  __netif_receive_skb_list_core+0x115/0x520
[  139.599490][ T8495]  netif_receive_skb_list_internal+0x4e4/0x660
[  139.605668][ T8495]  netif_receive_skb_list+0x31/0x230
[  139.610985][ T8495]  bpf_test_run_xdp_live+0xe0d/0x1040
[  139.616376][ T8495]  ? __pfx_autoremove_wake_function+0x10/0x10
[  139.622469][ T8495]  ? bpf_dispatcher_change_prog+0x747/0x840
[  139.628382][ T8495]  ? bpf_test_run_xdp_live+0x2b1/0x1040
[  139.633961][ T8495]  bpf_prog_test_run_xdp+0x51d/0x8b0
[  139.639412][ T8495]  ? __rcu_read_unlock+0x4e/0x70
[  139.644393][ T8495]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  139.650216][ T8495]  bpf_prog_test_run+0x20f/0x3a0
[  139.655170][ T8495]  __sys_bpf+0x400/0x7a0
[  139.659460][ T8495]  __x64_sys_bpf+0x43/0x50
[  139.663958][ T8495]  x64_sys_call+0x2914/0x2dc0
[  139.668643][ T8495]  do_syscall_64+0xc9/0x1c0
[  139.673153][ T8495]  ? clear_bhb_loop+0x55/0xb0
[  139.677842][ T8495]  ? clear_bhb_loop+0x55/0xb0
[  139.682548][ T8495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.688562][ T8495] RIP: 0033:0x7f3b5cf85d29
[  139.692986][ T8495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.712671][ T8495] RSP: 002b:00007f3b5b5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  139.721119][ T8495] RAX: ffffffffffffffda RBX: 00007f3b5d175fa0 RCX: 00007f3b5cf85d29
[  139.729197][ T8495] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[  139.737171][ T8495] RBP: 00007f3b5b5f7090 R08: 0000000000000000 R09: 0000000000000000
[  139.745153][ T8495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  139.753147][ T8495] R13: 0000000000000000 R14: 00007f3b5d175fa0 R15: 00007fffb7819fb8
[  139.761132][ T8495]  </TASK>
[  139.989841][ T8499] loop6: detected capacity change from 0 to 512
[  140.115026][ T8499] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.136438][ T8499] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  140.257040][ T5840] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.359305][   T29] kauditd_printk_skb: 211 callbacks suppressed
[  140.359393][   T29] audit: type=1400 audit(1736683857.971:5356): avc:  denied  { audit_write } for  pid=8523 comm="syz.0.1775" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  140.375135][ T8527] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1773'.
[  140.386906][   T29] audit: type=1107 audit(1736683857.971:5357): pid=8523 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  140.717384][ T8542] FAULT_INJECTION: forcing a failure.
[  140.717384][ T8542] name failslab, interval 1, probability 0, space 0, times 0
[  140.730302][ T8542] CPU: 1 UID: 0 PID: 8542 Comm: syz.6.1780 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  140.741011][ T8542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  140.751084][ T8542] Call Trace:
[  140.754395][ T8542]  <TASK>
[  140.757405][ T8542]  dump_stack_lvl+0xf2/0x150
[  140.762108][ T8542]  dump_stack+0x15/0x1a
[  140.766297][ T8542]  should_fail_ex+0x223/0x230
[  140.771013][ T8542]  should_failslab+0x8f/0xb0
[  140.775716][ T8542]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  140.782119][ T8542]  ? rdma_create_trans+0xab/0x9e0
[  140.787187][ T8542]  kstrdup+0x38/0x80
[  140.791194][ T8542]  rdma_create_trans+0xab/0x9e0
[  140.796088][ T8542]  ? __rcu_read_unlock+0x4e/0x70
[  140.801066][ T8542]  p9_client_create+0x59a/0xaf0
[  140.805988][ T8542]  v9fs_session_init+0xf9/0xda0
[  140.810995][ T8542]  ? __rcu_read_unlock+0x4e/0x70
[  140.815983][ T8542]  ? should_fail_ex+0xd7/0x230
[  140.820831][ T8542]  ? v9fs_mount+0x53/0x570
[  140.825274][ T8542]  ? should_failslab+0x8f/0xb0
[  140.830075][ T8542]  ? __kmalloc_cache_noprof+0x186/0x320
[  140.835664][ T8542]  v9fs_mount+0x69/0x570
[  140.840042][ T8542]  ? __pfx_v9fs_mount+0x10/0x10
[  140.844966][ T8542]  legacy_get_tree+0x77/0xd0
[  140.849761][ T8542]  vfs_get_tree+0x56/0x1e0
[  140.854273][ T8542]  do_new_mount+0x227/0x690
[  140.858830][ T8542]  path_mount+0x49b/0xb30
[  140.863214][ T8542]  __se_sys_mount+0x27c/0x2d0
[  140.868031][ T8542]  __x64_sys_mount+0x67/0x80
[  140.872665][ T8542]  x64_sys_call+0x2c84/0x2dc0
[  140.877372][ T8542]  do_syscall_64+0xc9/0x1c0
[  140.881894][ T8542]  ? clear_bhb_loop+0x55/0xb0
[  140.886598][ T8542]  ? clear_bhb_loop+0x55/0xb0
[  140.891306][ T8542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.897283][ T8542] RIP: 0033:0x7f2941e55d29
[  140.901715][ T8542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.921354][ T8542] RSP: 002b:00007f29404c1038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  140.929879][ T8542] RAX: ffffffffffffffda RBX: 00007f2942045fa0 RCX: 00007f2941e55d29
[  140.937990][ T8542] RDX: 00000000200002c0 RSI: 0000000020000280 RDI: 0000000020000100
[  140.946025][ T8542] RBP: 00007f29404c1090 R08: 0000000020000300 R09: 0000000000000000
[  140.954026][ T8542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  140.962080][ T8542] R13: 0000000000000000 R14: 00007f2942045fa0 R15: 00007ffe76234748
[  140.970087][ T8542]  </TASK>
[  141.114179][ T8552] loop0: detected capacity change from 0 to 512
[  141.127977][ T8555] loop3: detected capacity change from 0 to 128
[  141.148645][ T8556] loop6: detected capacity change from 0 to 764
[  141.155561][ T8556] iso9660: Unknown parameter './file1'
[  141.180072][ T8552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.206393][ T8552] ext4 filesystem being mounted at /407/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  141.238719][ T8555] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1784'.
[  141.344331][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.863730][ T8577] loop0: detected capacity change from 0 to 512
[  141.929095][ T8577] ext4: Unknown parameter 'audit'
[  142.481525][   T29] audit: type=1400 audit(1736683860.081:5358): avc:  denied  { append } for  pid=8580 comm="syz.1.1792" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  142.582965][ T8581] loop1: detected capacity change from 0 to 2048
[  142.671810][ T8581] msdos: Unknown parameter 'ÿ18446744073709551615ÿÿÿÿ'
[  142.745116][ T8581] loop1: detected capacity change from 0 to 128
[  142.797775][ T8590] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1795'.
[  142.798552][ T8581] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  142.798779][ T8581] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.826579][ T8595] loop0: detected capacity change from 0 to 512
[  142.841410][   T29] audit: type=1326 audit(1736683860.451:5359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.841684][   T29] audit: type=1326 audit(1736683860.451:5360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.841901][   T29] audit: type=1326 audit(1736683860.451:5361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.842090][   T29] audit: type=1326 audit(1736683860.451:5362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.842344][   T29] audit: type=1326 audit(1736683860.451:5363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.843955][   T29] audit: type=1326 audit(1736683860.451:5364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.846758][   T29] audit: type=1326 audit(1736683860.461:5365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8596 comm="syz.6.1798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  142.862288][ T8595] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.066442][ T8595] ext4 filesystem being mounted at /411/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  143.113373][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.148621][ T3301] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  143.326221][ T8617] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1805'.
[  143.467599][ T8629] loop1: detected capacity change from 0 to 512
[  143.504840][ T8629] ext4: Unknown parameter 'audit'
[  143.563610][ T8634] loop0: detected capacity change from 0 to 512
[  143.592172][ T8634] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  143.629401][ T8634] EXT4-fs (loop0): 1 truncate cleaned up
[  143.635443][ T8634] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.725720][ T8634] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1810: corrupted in-inode xattr: overlapping e_value 
[  143.806481][ T8634] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1772: inode #15: comm syz.0.1810: unable to update i_inline_off
[  143.826351][ T8634] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1810: corrupted in-inode xattr: overlapping e_value 
[  143.841870][ T8643] loop3: detected capacity change from 0 to 2048
[  143.848572][ T8644] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1810: corrupted in-inode xattr: overlapping e_value 
[  143.867689][ T8643] msdos: Unknown parameter 'ÿ18446744073709551615ÿÿÿÿ'
[  143.917044][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.975338][ T8643] loop3: detected capacity change from 0 to 128
[  144.046369][ T8643] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  144.115907][ T8643] ext4 filesystem being mounted at /440/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  144.509412][ T8668] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1819'.
[  144.874365][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  144.900396][ T8672] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1820'.
[  145.143198][ T8675] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1821'.
[  145.367006][   T29] kauditd_printk_skb: 123 callbacks suppressed
[  145.367024][   T29] audit: type=1326 audit(1736683862.981:5489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.446067][   T29] audit: type=1326 audit(1736683863.011:5490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.469581][   T29] audit: type=1326 audit(1736683863.011:5491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.493091][   T29] audit: type=1326 audit(1736683863.021:5492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5648c47c47 code=0x7ffc0000
[  145.516558][   T29] audit: type=1326 audit(1736683863.021:5493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.539975][   T29] audit: type=1326 audit(1736683863.021:5494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.664015][   T29] audit: type=1400 audit(1736683863.101:5495): avc:  denied  { write } for  pid=8683 comm="syz.5.1824" name="event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  145.687500][   T29] audit: type=1326 audit(1736683863.181:5496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.710989][   T29] audit: type=1326 audit(1736683863.181:5497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8683 comm="syz.5.1824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  145.756994][ T8684] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  145.765541][ T8684] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  145.827012][   T29] audit: type=1326 audit(1736683863.281:5498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8702 comm="syz.6.1831" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2941e55d29 code=0x0
[  147.032602][ T8731] vcan0: tx drop: invalid sa for name 0x0000000000000040
[  147.331171][ T8748] SELinux: syz.5.1849 (8748) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  147.402233][ T8748] FAULT_INJECTION: forcing a failure.
[  147.402233][ T8748] name failslab, interval 1, probability 0, space 0, times 0
[  147.415003][ T8748] CPU: 0 UID: 0 PID: 8748 Comm: syz.5.1849 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  147.425786][ T8748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.435962][ T8748] Call Trace:
[  147.439257][ T8748]  <TASK>
[  147.442223][ T8748]  dump_stack_lvl+0xf2/0x150
[  147.446853][ T8748]  dump_stack+0x15/0x1a
[  147.451097][ T8748]  should_fail_ex+0x223/0x230
[  147.455821][ T8748]  ? security_get_user_sids+0xd5/0x8d0
[  147.461380][ T8748]  should_failslab+0x8f/0xb0
[  147.466075][ T8748]  __kmalloc_cache_noprof+0x4e/0x320
[  147.471384][ T8748]  security_get_user_sids+0xd5/0x8d0
[  147.476739][ T8748]  ? kfree+0x247/0x2f0
[  147.480830][ T8748]  ? string_to_context_struct+0x2e0/0x2f0
[  147.486666][ T8748]  ? security_context_to_sid_core+0x376/0x3b0
[  147.492854][ T8748]  sel_write_user+0x29a/0x430
[  147.497577][ T8748]  selinux_transaction_write+0xba/0x100
[  147.503210][ T8748]  ? __pfx_selinux_transaction_write+0x10/0x10
[  147.509484][ T8748]  vfs_write+0x281/0x920
[  147.513767][ T8748]  ? __fget_files+0x17c/0x1c0
[  147.518539][ T8748]  ksys_write+0xe8/0x1b0
[  147.522821][ T8748]  __x64_sys_write+0x42/0x50
[  147.527537][ T8748]  x64_sys_call+0x287e/0x2dc0
[  147.532245][ T8748]  do_syscall_64+0xc9/0x1c0
[  147.536787][ T8748]  ? clear_bhb_loop+0x55/0xb0
[  147.541551][ T8748]  ? clear_bhb_loop+0x55/0xb0
[  147.546287][ T8748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.552243][ T8748] RIP: 0033:0x7f5648c45d29
[  147.556698][ T8748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.576327][ T8748] RSP: 002b:00007f56472b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  147.584813][ T8748] RAX: ffffffffffffffda RBX: 00007f5648e35fa0 RCX: 00007f5648c45d29
[  147.592934][ T8748] RDX: 0000000000000027 RSI: 0000000020000040 RDI: 0000000000000005
[  147.601024][ T8748] RBP: 00007f56472b7090 R08: 0000000000000000 R09: 0000000000000000
[  147.609019][ T8748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.617004][ T8748] R13: 0000000000000000 R14: 00007f5648e35fa0 R15: 00007ffeef4972a8
[  147.625003][ T8748]  </TASK>
[  147.766564][ T8762] loop0: detected capacity change from 0 to 512
[  147.818570][ T8762] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.876639][ T8762] ext4 filesystem being mounted at /429/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.050712][ T8770] loop5: detected capacity change from 0 to 512
[  148.074126][ T8770] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.228181][ T8779] loop1: detected capacity change from 0 to 512
[  148.234668][ T8770] ext4 filesystem being mounted at /239/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  148.276095][ T8783] loop6: detected capacity change from 0 to 164
[  148.295557][ T8779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.327323][ T8779] ext4 filesystem being mounted at /285/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  148.394039][ T8787] loop3: detected capacity change from 0 to 128
[  148.410398][ T8787] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.444089][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.444388][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.462398][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.466519][ T8787] ext4 filesystem being mounted at /448/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.510645][ T8793] loop5: detected capacity change from 0 to 128
[  148.558746][ T8793] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.586718][ T3307] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  148.630434][ T8797] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1869'.
[  148.669581][ T8793] ext4 filesystem being mounted at /240/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.707698][ T8805] loop0: detected capacity change from 0 to 512
[  148.722539][ T8805] ext4: Unknown parameter 'audit'
[  148.868544][ T5030] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  148.893186][ T8815] loop0: detected capacity change from 0 to 512
[  148.923377][ T8815] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  148.941071][ T8818] loop1: detected capacity change from 0 to 512
[  148.977200][ T8821] loop5: detected capacity change from 0 to 512
[  148.986624][ T8815] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  149.059840][ T8815] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.1874: bad orphan inode 13
[  149.123253][ T8815] EXT4-fs (loop0): Remounting filesystem read-only
[  149.129896][ T8815] ext4_test_bit(bit=12, block=4) = 1
[  149.135221][ T8815] is_bad_inode(inode)=0
[  149.139429][ T8815] NEXT_ORPHAN(inode)=17694720
[  149.144108][ T8815] max_ino=32
[  149.147340][ T8815] i_nlink=0
[  149.153362][ T8821] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.168517][ T8818] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.176557][ T8821] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.185589][ T8818] ext4 filesystem being mounted at /287/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  149.210219][ T8815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.252353][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.274454][ T8815] SELinux: (dev loop0, type ext4) getxattr errno 5
[  149.294898][ T8815] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.345590][ T8815] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1874'.
[  149.440588][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.520942][ T8842] loop1: detected capacity change from 0 to 512
[  149.531516][ T8842] ext4: Unknown parameter 'audit'
[  149.608229][ T8846] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1885'.
[  149.634160][ T8846] hsr_slave_1 (unregistering): left promiscuous mode
[  149.672571][ T8854] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1887'.
[  149.690628][ T8858] loop0: detected capacity change from 0 to 512
[  149.700072][ T8854] hsr_slave_1 (unregistering): left promiscuous mode
[  149.725075][ T8859] FAULT_INJECTION: forcing a failure.
[  149.725075][ T8859] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  149.738394][ T8859] CPU: 1 UID: 0 PID: 8859 Comm: syz.5.1887 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  149.749101][ T8859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  149.759177][ T8859] Call Trace:
[  149.762479][ T8859]  <TASK>
[  149.765427][ T8859]  dump_stack_lvl+0xf2/0x150
[  149.770099][ T8859]  dump_stack+0x15/0x1a
[  149.774308][ T8859]  should_fail_ex+0x223/0x230
[  149.778999][ T8859]  should_fail_alloc_page+0xfd/0x110
[  149.784400][ T8859]  __alloc_pages_noprof+0x109/0x340
[  149.789639][ T8859]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  149.795102][ T8859]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  149.800602][ T8859]  handle_mm_fault+0xdd7/0x2ac0
[  149.805499][ T8859]  exc_page_fault+0x3b9/0x650
[  149.810221][ T8859]  asm_exc_page_fault+0x26/0x30
[  149.815107][ T8859] RIP: 0033:0x7f5648bf335b
[  149.819539][ T8859] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  149.839176][ T8859] RSP: 002b:00007f5647293e10 EFLAGS: 00010246
[  149.845267][ T8859] RAX: 00007f5647295f30 RBX: 00007f5648e0b620 RCX: 0000000000000000
[  149.853314][ T8859] RDX: 00007f5647295f78 RSI: 00007f5648ca5bd8 RDI: 00007f5647293e30
[  149.861336][ T8859] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  149.869507][ T8859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.877500][ T8859] R13: 0000000000000000 R14: 00007f5648e36080 R15: 00007ffeef4972a8
[  149.885503][ T8859]  </TASK>
[  149.889028][ T8859] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  149.955326][ T8868] SELinux: syz.1.1890 (8868) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  149.991742][ T8858] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.011692][ T8858] ext4 filesystem being mounted at /436/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  150.118192][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.310083][ T8885] loop5: detected capacity change from 0 to 164
[  150.343224][ T8889] loop0: detected capacity change from 0 to 2048
[  150.403402][ T8889] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  150.476861][ T8889] EXT4-fs (loop0): shut down requested (1)
[  150.487548][ T8889] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=12
[  150.539152][ T8901] loop3: detected capacity change from 0 to 512
[  150.575020][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.586870][   T29] kauditd_printk_skb: 330 callbacks suppressed
[  150.586925][   T29] audit: type=1326 audit(1736683868.201:5829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.627572][   T29] audit: type=1326 audit(1736683868.231:5830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.651133][   T29] audit: type=1326 audit(1736683868.231:5831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.674612][   T29] audit: type=1326 audit(1736683868.231:5832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.698200][   T29] audit: type=1326 audit(1736683868.231:5833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.721658][   T29] audit: type=1326 audit(1736683868.231:5834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.745103][   T29] audit: type=1326 audit(1736683868.231:5835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.768597][   T29] audit: type=1326 audit(1736683868.231:5836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.792056][   T29] audit: type=1326 audit(1736683868.231:5837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.795735][ T8907] loop0: detected capacity change from 0 to 512
[  150.815512][   T29] audit: type=1326 audit(1736683868.231:5838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8900 comm="syz.5.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5648c45d29 code=0x7ffc0000
[  150.877133][ T8901] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.891223][ T8907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.904676][ T8901] ext4 filesystem being mounted at /457/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.916540][ T8907] ext4 filesystem being mounted at /439/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  150.927413][ T8901] FAULT_INJECTION: forcing a failure.
[  150.927413][ T8901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.940559][ T8901] CPU: 1 UID: 0 PID: 8901 Comm: syz.3.1905 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  150.951262][ T8901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  150.961339][ T8901] Call Trace:
[  150.964635][ T8901]  <TASK>
[  150.967584][ T8901]  dump_stack_lvl+0xf2/0x150
[  150.972356][ T8901]  dump_stack+0x15/0x1a
[  150.976597][ T8901]  should_fail_ex+0x223/0x230
[  150.981307][ T8901]  should_fail+0xb/0x10
[  150.985485][ T8901]  should_fail_usercopy+0x1a/0x20
[  150.990528][ T8901]  _copy_from_user+0x1e/0xb0
[  150.995181][ T8901]  get_timespec64+0x49/0x140
[  150.999795][ T8901]  __x64_sys_utimensat+0x96/0x170
[  151.004886][ T8901]  ? fpregs_assert_state_consistent+0x83/0xa0
[  151.010988][ T8901]  x64_sys_call+0x272a/0x2dc0
[  151.015697][ T8901]  do_syscall_64+0xc9/0x1c0
[  151.020346][ T8901]  ? clear_bhb_loop+0x55/0xb0
[  151.025039][ T8901]  ? clear_bhb_loop+0x55/0xb0
[  151.029771][ T8901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.035755][ T8901] RIP: 0033:0x7f3b5cf85d29
[  151.040220][ T8901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.059848][ T8901] RSP: 002b:00007f3b5b5f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000118
[  151.068340][ T8901] RAX: ffffffffffffffda RBX: 00007f3b5d175fa0 RCX: 00007f3b5cf85d29
[  151.076409][ T8901] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000003
[  151.084405][ T8901] RBP: 00007f3b5b5f7090 R08: 0000000000000000 R09: 0000000000000000
[  151.092404][ T8901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.100389][ T8901] R13: 0000000000000000 R14: 00007f3b5d175fa0 R15: 00007fffb7819fb8
[  151.108383][ T8901]  </TASK>
[  151.150883][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.248563][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.583974][ T8928] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1910'.
[  151.813687][ T8939] loop0: detected capacity change from 0 to 2048
[  151.980378][ T8947] loop3: detected capacity change from 0 to 512
[  152.068233][ T8939] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.117145][ T8935] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  152.129590][ T8935] EXT4-fs (loop0): This should not happen!! Data will be lost
[  152.129590][ T8935] 
[  152.139287][ T8935] EXT4-fs (loop0): Total free blocks count 0
[  152.145336][ T8935] EXT4-fs (loop0): Free/Dirty block details
[  152.151267][ T8935] EXT4-fs (loop0): free_blocks=0
[  152.156351][ T8935] EXT4-fs (loop0): dirty_blocks=0
[  152.161388][ T8935] EXT4-fs (loop0): Block reservation details
[  152.167392][ T8935] EXT4-fs (loop0): i_reserved_data_blocks=0
[  152.194714][ T8953] loop1: detected capacity change from 0 to 512
[  152.216197][ T8935] random: crng reseeded on system resumption
[  152.357337][ T8947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.370733][ T8947] ext4 filesystem being mounted at /460/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  152.382247][ T8953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.395509][ T8953] ext4 filesystem being mounted at /294/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  152.463715][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.503821][ T8965] loop5: detected capacity change from 0 to 8192
[  152.511121][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.559053][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.586934][ T8965]  loop5: p1 p3
[  152.591375][ T8965] loop5: p1 start 51379968 is beyond EOD, truncated
[  152.598072][ T8965] loop5: p3 size 100663552 extends beyond EOD, truncated
[  152.791506][ T8988] loop1: detected capacity change from 0 to 512
[  152.805087][ T8988] ext4: Unknown parameter 'audit'
[  152.897882][ T8992] loop5: detected capacity change from 0 to 2048
[  152.976151][ T8992]  loop5: p1 < > p4
[  152.981912][ T8992] loop5: p4 size 8388608 extends beyond EOD, truncated
[  153.081601][ T9001] loop1: detected capacity change from 0 to 1024
[  153.094704][ T9001] EXT4-fs: Ignoring removed i_version option
[  153.101057][ T9001] EXT4-fs: Ignoring removed bh option
[  153.125169][ T9001] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.320051][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.330051][ T9020] FAULT_INJECTION: forcing a failure.
[  153.330051][ T9020] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.343181][ T9020] CPU: 0 UID: 0 PID: 9020 Comm: syz.0.1946 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  153.353965][ T9020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  153.364120][ T9020] Call Trace:
[  153.367420][ T9020]  <TASK>
[  153.370428][ T9020]  dump_stack_lvl+0xf2/0x150
[  153.375090][ T9020]  dump_stack+0x15/0x1a
[  153.379327][ T9020]  should_fail_ex+0x223/0x230
[  153.384110][ T9020]  should_fail+0xb/0x10
[  153.388380][ T9020]  should_fail_usercopy+0x1a/0x20
[  153.393451][ T9020]  _copy_from_iter+0xd5/0xd00
[  153.398250][ T9020]  ? __alloc_skb+0x1b5/0x310
[  153.402938][ T9020]  ? kmalloc_reserve+0x16e/0x190
[  153.407905][ T9020]  ? __virt_addr_valid+0x1ed/0x250
[  153.413050][ T9020]  ? __check_object_size+0x364/0x520
[  153.418457][ T9020]  pfkey_sendmsg+0x16c/0x970
[  153.423079][ T9020]  ? selinux_socket_sendmsg+0x185/0x1c0
[  153.428704][ T9020]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  153.433837][ T9020]  __sock_sendmsg+0x140/0x180
[  153.438574][ T9020]  ____sys_sendmsg+0x312/0x410
[  153.443375][ T9020]  __sys_sendmsg+0x19d/0x230
[  153.448144][ T9020]  __x64_sys_sendmsg+0x46/0x50
[  153.452950][ T9020]  x64_sys_call+0x2734/0x2dc0
[  153.457681][ T9020]  do_syscall_64+0xc9/0x1c0
[  153.457992][ T9022] FAULT_INJECTION: forcing a failure.
[  153.457992][ T9022] name failslab, interval 1, probability 0, space 0, times 0
[  153.462197][ T9020]  ? clear_bhb_loop+0x55/0xb0
[  153.462227][ T9020]  ? clear_bhb_loop+0x55/0xb0
[  153.462249][ T9020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.490169][ T9020] RIP: 0033:0x7f190c015d29
[  153.494648][ T9020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.514338][ T9020] RSP: 002b:00007f190a687038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.522774][ T9020] RAX: ffffffffffffffda RBX: 00007f190c205fa0 RCX: 00007f190c015d29
[  153.530759][ T9020] RDX: 0000000020000050 RSI: 0000000020000100 RDI: 0000000000000007
[  153.538782][ T9020] RBP: 00007f190a687090 R08: 0000000000000000 R09: 0000000000000000
[  153.546818][ T9020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.554802][ T9020] R13: 0000000000000000 R14: 00007f190c205fa0 R15: 00007ffe16eb0428
[  153.562801][ T9020]  </TASK>
[  153.565925][ T9022] CPU: 1 UID: 0 PID: 9022 Comm: syz.5.1948 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  153.576696][ T9022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  153.586775][ T9022] Call Trace:
[  153.590074][ T9022]  <TASK>
[  153.593021][ T9022]  dump_stack_lvl+0xf2/0x150
[  153.597657][ T9022]  dump_stack+0x15/0x1a
[  153.601851][ T9022]  should_fail_ex+0x223/0x230
[  153.606570][ T9022]  should_failslab+0x8f/0xb0
[  153.611256][ T9022]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  153.617616][ T9022]  ? should_fail_ex+0xd7/0x230
[  153.622484][ T9022]  ? security_netlbl_sid_to_secattr+0xc1/0x160
[  153.628683][ T9022]  kstrdup+0x38/0x80
[  153.632606][ T9022]  security_netlbl_sid_to_secattr+0xc1/0x160
[  153.638628][ T9022]  selinux_netlbl_sock_genattr+0xa3/0x260
[  153.644380][ T9022]  selinux_netlbl_socket_post_create+0x69/0x100
[  153.650758][ T9022]  selinux_socket_post_create+0x20c/0x2a0
[  153.656522][ T9022]  security_socket_post_create+0x5b/0xa0
[  153.662256][ T9022]  __sock_create+0x35b/0x5a0
[  153.666948][ T9022]  sock_create_kern+0x38/0x50
[  153.671721][ T9022]  udp_sock_create4+0x67/0x2a0
[  153.676518][ T9022]  rxrpc_lookup_local+0x835/0xca0
[  153.681587][ T9022]  rxrpc_sendmsg+0x344/0x520
[  153.686236][ T9022]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  153.691378][ T9022]  __sock_sendmsg+0x140/0x180
[  153.696138][ T9022]  ____sys_sendmsg+0x312/0x410
[  153.700938][ T9022]  __sys_sendmmsg+0x227/0x4b0
[  153.705676][ T9022]  __x64_sys_sendmmsg+0x57/0x70
[  153.710601][ T9022]  x64_sys_call+0x29aa/0x2dc0
[  153.715306][ T9022]  do_syscall_64+0xc9/0x1c0
[  153.719911][ T9022]  ? clear_bhb_loop+0x55/0xb0
[  153.724617][ T9022]  ? clear_bhb_loop+0x55/0xb0
[  153.729402][ T9022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.735421][ T9022] RIP: 0033:0x7f5648c45d29
[  153.739935][ T9022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.759588][ T9022] RSP: 002b:00007f56472b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  153.768088][ T9022] RAX: ffffffffffffffda RBX: 00007f5648e35fa0 RCX: 00007f5648c45d29
[  153.776090][ T9022] RDX: 0000000000000001 RSI: 0000000020000580 RDI: 0000000000000003
[  153.784087][ T9022] RBP: 00007f56472b7090 R08: 0000000000000000 R09: 0000000000000000
[  153.792144][ T9022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.800143][ T9022] R13: 0000000000000000 R14: 00007f5648e35fa0 R15: 00007ffeef4972a8
[  153.808170][ T9022]  </TASK>
[  153.892445][ T9028] loop0: detected capacity change from 0 to 512
[  153.917285][ T9026] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[  153.928764][ T9028] ext4: Unknown parameter 'audit'
[  153.966928][ T9026] SELinux:  Context c is not valid (left unmapped).
[  154.419688][ T9047] loop0: detected capacity change from 0 to 8192
[  154.794609][ T9062] FAULT_INJECTION: forcing a failure.
[  154.794609][ T9062] name failslab, interval 1, probability 0, space 0, times 0
[  154.807409][ T9062] CPU: 0 UID: 0 PID: 9062 Comm: syz.3.1963 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  154.818113][ T9062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  154.828218][ T9062] Call Trace:
[  154.831584][ T9062]  <TASK>
[  154.834552][ T9062]  dump_stack_lvl+0xf2/0x150
[  154.839280][ T9062]  dump_stack+0x15/0x1a
[  154.843483][ T9062]  should_fail_ex+0x223/0x230
[  154.848196][ T9062]  ? hash_mac_create+0x1f2/0x6c0
[  154.853215][ T9062]  should_failslab+0x8f/0xb0
[  154.857849][ T9062]  __kmalloc_cache_noprof+0x4e/0x320
[  154.860976][ T9064] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1963'.
[  154.863152][ T9062]  hash_mac_create+0x1f2/0x6c0
[  154.876910][ T9062]  ? __nla_parse+0x40/0x60
[  154.881360][ T9062]  ? __pfx_hash_mac_create+0x10/0x10
[  154.886673][ T9062]  ip_set_create+0x359/0x8a0
[  154.891396][ T9062]  ? __perf_event_task_sched_out+0x138/0x1010
[  154.897515][ T9062]  nfnetlink_rcv_msg+0x4a9/0x570
[  154.902608][ T9062]  netlink_rcv_skb+0x12c/0x230
[  154.907410][ T9062]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  154.913008][ T9062]  nfnetlink_rcv+0x16c/0x15d0
[  154.917722][ T9062]  ? kmem_cache_free+0xdc/0x2d0
[  154.922768][ T9062]  ? nlmon_xmit+0x51/0x60
[  154.927123][ T9062]  ? __kfree_skb+0x102/0x150
[  154.931745][ T9062]  ? consume_skb+0x49/0x160
[  154.936353][ T9062]  ? nlmon_xmit+0x51/0x60
[  154.940719][ T9062]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  154.946036][ T9062]  ? __dev_queue_xmit+0xb6e/0x2090
[  154.951298][ T9062]  ? ref_tracker_free+0x3a5/0x410
[  154.956403][ T9062]  ? __dev_queue_xmit+0x186/0x2090
[  154.961547][ T9062]  ? __netlink_deliver_tap+0x4c6/0x4f0
[  154.967110][ T9062]  netlink_unicast+0x599/0x670
[  154.971980][ T9062]  netlink_sendmsg+0x5cc/0x6e0
[  154.976852][ T9062]  ? __pfx_netlink_sendmsg+0x10/0x10
[  154.982189][ T9062]  __sock_sendmsg+0x140/0x180
[  154.986944][ T9062]  ____sys_sendmsg+0x312/0x410
[  154.991802][ T9062]  __sys_sendmsg+0x19d/0x230
[  154.996510][ T9062]  __x64_sys_sendmsg+0x46/0x50
[  155.001318][ T9062]  x64_sys_call+0x2734/0x2dc0
[  155.006025][ T9062]  do_syscall_64+0xc9/0x1c0
[  155.010546][ T9062]  ? clear_bhb_loop+0x55/0xb0
[  155.015291][ T9062]  ? clear_bhb_loop+0x55/0xb0
[  155.020079][ T9062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.026021][ T9062] RIP: 0033:0x7f3b5cf85d29
[  155.030455][ T9062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.050146][ T9062] RSP: 002b:00007f3b5b5f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.058572][ T9062] RAX: ffffffffffffffda RBX: 00007f3b5d175fa0 RCX: 00007f3b5cf85d29
[  155.066648][ T9062] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  155.074646][ T9062] RBP: 00007f3b5b5f7090 R08: 0000000000000000 R09: 0000000000000000
[  155.082640][ T9062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.090681][ T9062] R13: 0000000000000000 R14: 00007f3b5d175fa0 R15: 00007fffb7819fb8
[  155.098739][ T9062]  </TASK>
[  155.346759][ T9073] loop6: detected capacity change from 0 to 512
[  155.353363][ T9073] ext4: Unknown parameter 'audit'
[  155.355739][ T9075] loop0: detected capacity change from 0 to 512
[  155.366961][ T9075] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  155.379749][ T9075] EXT4-fs (loop0): 1 truncate cleaned up
[  155.385972][ T9075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.406713][ T9077] wireguard0: entered promiscuous mode
[  155.412419][ T9077] wireguard0: entered allmulticast mode
[  155.727950][ T9089] loop5: detected capacity change from 0 to 512
[  155.774747][ T9089] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  155.815353][ T9089] EXT4-fs (loop5): 1 truncate cleaned up
[  155.886857][ T9089] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.931168][ T9104] loop3: detected capacity change from 0 to 512
[  156.017086][ T9089] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1973'.
[  156.049056][   T29] kauditd_printk_skb: 134 callbacks suppressed
[  156.049075][   T29] audit: type=1400 audit(1736683873.661:5973): avc:  denied  { ioctl } for  pid=9108 comm="syz.6.1980" path="socket:[26136]" dev="sockfs" ino=26136 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  156.049276][ T9109] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1980'.
[  156.102031][ T9089] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1973'.
[  156.230752][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.369857][ T9122] loop5: detected capacity change from 0 to 1024
[  156.408733][ T9122] EXT4-fs: Ignoring removed i_version option
[  156.435122][ T9122] EXT4-fs: Ignoring removed bh option
[  156.470104][ T9122] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.666421][ T9075] syz.0.1968 (9075) used greatest stack depth: 6080 bytes left
[  156.693472][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.750152][   T29] audit: type=1400 audit(1736683874.361:5974): avc:  denied  { getopt } for  pid=9132 comm="syz.6.1986" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  156.795680][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.844505][ T9139] loop6: detected capacity change from 0 to 2048
[  156.886019][ T9139] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.908024][   T29] audit: type=1326 audit(1736683874.521:5975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9146 comm="syz.3.1991" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3b5cf85d29 code=0x0
[  156.936760][   T29] audit: type=1400 audit(1736683874.541:5976): avc:  denied  { ioctl } for  pid=9143 comm="syz.5.1988" path="socket:[26205]" dev="sockfs" ino=26205 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  156.955282][ T9139] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  156.974000][ T9139] EXT4-fs (loop6): This should not happen!! Data will be lost
[  156.974000][ T9139] 
[  156.983720][ T9139] EXT4-fs (loop6): Total free blocks count 0
[  156.989777][ T9139] EXT4-fs (loop6): Free/Dirty block details
[  156.995745][ T9139] EXT4-fs (loop6): free_blocks=0
[  157.000724][ T9139] EXT4-fs (loop6): dirty_blocks=0
[  157.005774][ T9139] EXT4-fs (loop6): Block reservation details
[  157.011861][ T9139] EXT4-fs (loop6): i_reserved_data_blocks=0
[  157.104304][ T9155] loop5: detected capacity change from 0 to 512
[  157.113313][ T9155] EXT4-fs: Ignoring removed oldalloc option
[  157.159114][ T5840] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.176150][ T9159] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  157.176724][ T9155] EXT4-fs error (device loop5): ext4_xattr_inode_iget:436: comm syz.5.1994: Parent and EA inode have the same ino 15
[  157.245858][ T9155] EXT4-fs (loop5): Remounting filesystem read-only
[  157.252609][ T9155] EXT4-fs warning (device loop5): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[  157.288115][ T9155] EXT4-fs (loop5): 1 orphan inode deleted
[  157.309097][ T9167] loop1: detected capacity change from 0 to 2048
[  157.316115][ T9155] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.331913][ T9167] EXT4-fs: Ignoring removed bh option
[  157.344647][ T9155] SELinux: (dev loop5, type ext4) getxattr errno 5
[  157.360029][ T9155] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.374560][ T9167] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  157.394013][ T9173] loop6: detected capacity change from 0 to 1024
[  157.414454][ T9173] EXT4-fs: Ignoring removed i_version option
[  157.422299][ T9173] EXT4-fs: Ignoring removed bh option
[  157.425520][ T9155] loop5: detected capacity change from 0 to 512
[  157.468464][ T9155] EXT4-fs: Ignoring removed mblk_io_submit option
[  157.478429][ T9155] EXT4-fs: Ignoring removed oldalloc option
[  157.506951][ T9155] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  157.531066][ T9183] loop1: detected capacity change from 0 to 512
[  157.540504][ T9181] loop6: detected capacity change from 0 to 2048
[  157.548176][ T9155] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  157.556779][ T9181] EXT4-fs: Ignoring removed mblk_io_submit option
[  157.558733][ T9183] ext4: Unknown parameter 'audit'
[  157.575605][ T9155] EXT4-fs (loop5): orphan cleanup on readonly fs
[  157.590135][   T29] audit: type=1400 audit(1736683875.201:5977): avc:  denied  { rename } for  pid=9180 comm="syz.6.2001" name="file0" dev="loop6" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  157.590541][ T9181] SELinux:  Context system_u:object_r:sysfs_t:s0 is not valid (left unmapped).
[  157.612518][   T29] audit: type=1400 audit(1736683875.201:5978): avc:  denied  { rename } for  pid=9180 comm="syz.6.2001" name="bus" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  157.626377][ T9155] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.1994: Invalid block bitmap block 0 in block_group 0
[  157.656825][   T29] audit: type=1400 audit(1736683875.241:5979): avc:  denied  { relabelto } for  pid=9180 comm="syz.6.2001" name="file0" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:sysfs_t:s0"
[  157.682885][ T9155] EXT4-fs (loop5): Remounting filesystem read-only
[  157.689586][ T9155] Quota error (device loop5): write_blk: dquota write failed
[  157.697022][ T9155] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  157.706965][ T9155] EXT4-fs (loop5): 1 orphan inode deleted
[  157.716832][ T9155] SELinux: (dev loop5, type ext4) getxattr errno 5
[  157.845427][   T29] audit: type=1326 audit(1736683875.451:5980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9191 comm="syz.6.2003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2941e55d29 code=0x7ffc0000
[  157.875141][ T9195] loop5: detected capacity change from 0 to 512
[  157.957858][ T9199] loop5: detected capacity change from 0 to 2048
[  158.003094][ T9199] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  158.015548][ T9199] EXT4-fs (loop5): This should not happen!! Data will be lost
[  158.015548][ T9199] 
[  158.025386][ T9199] EXT4-fs (loop5): Total free blocks count 0
[  158.031587][ T9199] EXT4-fs (loop5): Free/Dirty block details
[  158.037723][ T9199] EXT4-fs (loop5): free_blocks=0
[  158.042946][ T9199] EXT4-fs (loop5): dirty_blocks=0
[  158.048007][ T9199] EXT4-fs (loop5): Block reservation details
[  158.054010][ T9199] EXT4-fs (loop5): i_reserved_data_blocks=0
[  158.112828][ T9209] loop1: detected capacity change from 0 to 1024
[  158.127597][ T9209] EXT4-fs: Ignoring removed i_version option
[  158.133763][ T9209] EXT4-fs: Ignoring removed bh option
[  158.165972][ T9207] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2009'.
[  158.241056][ T9225] loop0: detected capacity change from 0 to 512
[  158.302062][ T9225] ext4 filesystem being mounted at /457/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.324262][ T9225] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2014: corrupted inode contents
[  158.337322][ T9231] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2017'.
[  158.367431][ T9225] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2014: mark_inode_dirty error
[  158.480691][ T9225] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2014: corrupted inode contents
[  158.502520][ T9240] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2014: corrupted inode contents
[  158.515948][ T9240] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2014: mark_inode_dirty error
[  158.528396][ T9240] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2014: corrupted inode contents
[  159.718117][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x1
[  159.725603][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.733040][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.740584][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.748052][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.751919][ T9264] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2029'.
[  159.755442][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.755466][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x4
[  159.755487][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.755507][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x2
[  159.794244][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.801752][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.806143][ T9257] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2026'.
[  159.809202][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.809232][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.833069][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x4
[  159.840624][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.848223][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.855762][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.863243][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.870752][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.878547][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.886199][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.891942][ T9274] loop6: detected capacity change from 0 to 1024
[  159.893660][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.907457][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.911305][ T9274] EXT4-fs: Ignoring removed i_version option
[  159.914902][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.920985][ T9274] EXT4-fs: Ignoring removed bh option
[  159.928239][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.928267][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.948563][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.955983][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.963638][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.969227][ T9277] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2031'.
[  159.971080][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.987759][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  159.995180][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  160.002592][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  160.010089][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  160.017500][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  160.024966][   T35] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  160.032397][   T35] hid-generic 0000:0003:0000.0004: item fetching failed at offset 41/43
[  160.041068][   T35] hid-generic 0000:0003:0000.0004: probe with driver hid-generic failed with error -22
[  160.316076][ T9307] syz.5.2044[9307] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.316182][ T9307] syz.5.2044[9307] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.316392][ T9308] loop3: detected capacity change from 0 to 1024
[  160.346079][ T9308] EXT4-fs: Ignoring removed i_version option
[  160.353368][ T9308] EXT4-fs: Ignoring removed bh option
[  160.356343][ T9307] syz.5.2044[9307] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.391865][ T9314] loop5: detected capacity change from 0 to 512
[  160.418147][ T9318] netlink: 28 bytes leftover after parsing attributes in process `+}[@'.
[  160.439654][ T9320] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2048'.
[  160.444120][ T9322] netlink: 876 bytes leftover after parsing attributes in process `syz.6.2051'.
[  160.460656][ T9314] ext4 filesystem being mounted at /277/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  160.486512][ T9322] netlink: 876 bytes leftover after parsing attributes in process `syz.6.2051'.
[  160.604987][ T9339] FAULT_INJECTION: forcing a failure.
[  160.604987][ T9339] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  160.618364][ T9339] CPU: 1 UID: 0 PID: 9339 Comm: syz.0.2059 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  160.622377][ T9342] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2057'.
[  160.629219][ T9339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  160.629238][ T9339] Call Trace:
[  160.629246][ T9339]  <TASK>
[  160.654522][ T9339]  dump_stack_lvl+0xf2/0x150
[  160.659179][ T9339]  dump_stack+0x15/0x1a
[  160.663381][ T9339]  should_fail_ex+0x223/0x230
[  160.668107][ T9339]  should_fail_alloc_page+0xfd/0x110
[  160.673557][ T9339]  __alloc_pages_noprof+0x109/0x340
[  160.678816][ T9339]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  160.684222][ T9339]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  160.689637][ T9339]  handle_mm_fault+0xdd7/0x2ac0
[  160.694540][ T9339]  exc_page_fault+0x3b9/0x650
[  160.699332][ T9339]  asm_exc_page_fault+0x26/0x30
[  160.704244][ T9339] RIP: 0033:0x7f190bed8ba3
[  160.708681][ T9339] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  160.728354][ T9339] RSP: 002b:00007f190a6864a0 EFLAGS: 00010206
[  160.734427][ T9339] RAX: 0000000000009000 RBX: 00007f190a686540 RCX: 00007f1902267000
[  160.742424][ T9339] RDX: 00007f190a6866e0 RSI: 0000000000000017 RDI: 00007f190a6865e0
[  160.750399][ T9339] RBP: 000000000000004a R08: 000000000000000a R09: 00000000000003dc
[  160.758450][ T9339] R10: 00000000000003e0 R11: 00007f190a686540 R12: 0000000000000001
[  160.766426][ T9339] R13: 00007f190c0a9040 R14: 0000000000000011 R15: 00007f190a6865e0
[  160.774463][ T9339]  </TASK>
[  160.777656][ T9339] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  160.788695][ T9339] loop0: detected capacity change from 0 to 512
[  160.802237][ T9352] loop1: detected capacity change from 0 to 128
[  160.808966][ T9352] vfat: Unknown parameter 'ÿÿ18446744073709551615'
[  160.827870][ T9339] ext4 filesystem being mounted at /464/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.895218][ T9339] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  161.074204][ T9374] netlink: 'syz.0.2065': attribute type 9 has an invalid length.
[  161.096308][ T9374] bond_slave_0: entered promiscuous mode
[  161.101996][ T9374] bond_slave_1: entered promiscuous mode
[  161.111591][ T9374] macvlan2: entered promiscuous mode
[  161.117012][ T9374] bond0: entered promiscuous mode
[  161.122989][ T9374] macvlan2: entered allmulticast mode
[  161.128463][ T9374] bond0: entered allmulticast mode
[  161.133694][ T9374] bond_slave_0: entered allmulticast mode
[  161.139566][ T9374] bond_slave_1: entered allmulticast mode
[  161.145397][ T9374] syz_tun: entered allmulticast mode
[  161.152471][ T9374] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  161.188742][ T9378] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  161.199090][ T9378] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.218792][ T9383] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  161.230002][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  161.230016][   T29] audit: type=1400 audit(1736683878.831:6090): avc:  denied  { read write } for  pid=9382 comm="syz.1.2070" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  161.260971][   T29] audit: type=1400 audit(1736683878.831:6091): avc:  denied  { open } for  pid=9382 comm="syz.1.2070" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  161.311547][ T9383] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  161.330657][ T9378] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  161.341313][ T9378] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.392321][ T9387] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.435139][ T9378] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  161.445620][ T9378] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.508432][ T9387] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.553665][ T9398] loop0: detected capacity change from 0 to 2048
[  161.567491][ T9378] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  161.577962][ T9378] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.594580][ T9398] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  161.607289][ T9398] EXT4-fs (loop0): This should not happen!! Data will be lost
[  161.607289][ T9398] 
[  161.617176][ T9398] EXT4-fs (loop0): Total free blocks count 0
[  161.623510][ T9398] EXT4-fs (loop0): Free/Dirty block details
[  161.629512][ T9398] EXT4-fs (loop0): free_blocks=0
[  161.634563][ T9398] EXT4-fs (loop0): dirty_blocks=0
[  161.639650][ T9398] EXT4-fs (loop0): Block reservation details
[  161.645657][ T9398] EXT4-fs (loop0): i_reserved_data_blocks=0
[  161.654232][ T9387] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.671553][   T29] audit: type=1400 audit(1736683879.271:6092): avc:  denied  { read write } for  pid=9397 comm="syz.0.2076" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  161.694387][   T29] audit: type=1400 audit(1736683879.271:6093): avc:  denied  { open } for  pid=9397 comm="syz.0.2076" path="/467/file1/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  161.717520][   T29] audit: type=1400 audit(1736683879.281:6094): avc:  denied  { map_create } for  pid=9397 comm="syz.0.2076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  161.736853][   T29] audit: type=1400 audit(1736683879.281:6095): avc:  denied  { bpf } for  pid=9397 comm="syz.0.2076" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  161.757645][   T29] audit: type=1400 audit(1736683879.281:6096): avc:  denied  { map_read map_write } for  pid=9397 comm="syz.0.2076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  161.777558][   T29] audit: type=1400 audit(1736683879.281:6097): avc:  denied  { prog_load } for  pid=9397 comm="syz.0.2076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  161.816662][   T29] audit: type=1400 audit(1736683879.421:6098): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  161.842414][   T29] audit: type=1400 audit(1736683879.451:6099): avc:  denied  { read write } for  pid=3296 comm="syz-executor" name="loop0" dev="devtmpfs" ino=568 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  161.881534][ T9387] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.018372][ T9420] netlink: 'syz.0.2084': attribute type 4 has an invalid length.
[  162.031302][ T9378] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  162.039605][ T9378] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  162.065647][ T9378] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  162.074074][ T9378] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  162.274065][ T9378] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  162.282661][ T9378] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.027528][ T9378] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  163.035821][ T9378] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.288406][ T9434] SELinux:  policydb version 273873593 does not match my version range 15-33
[  163.303897][ T9434] SELinux: failed to load policy
[  163.628069][ T9437] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2088'.
[  164.062040][ T9387] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.156175][ T9387] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.167552][ T9387] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.200117][ T9444] loop5: detected capacity change from 0 to 2048
[  164.200888][ T9448] loop0: detected capacity change from 0 to 2048
[  164.223407][ T9446] loop3: detected capacity change from 0 to 2048
[  164.230576][ T9446] ==================================================================
[  164.231010][ T9387] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.238673][ T9446] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[  164.238720][ T9446] 
[  164.238727][ T9446] read-write to 0xffff888237c2ba28 of 8 bytes by task 9444 on cpu 0:
[  164.264627][ T9446]  __find_get_block+0x434/0x8a0
[  164.269521][ T9446]  bdev_getblk+0x139/0x3b0
[  164.273984][ T9446]  __ext4_get_inode_loc+0x2f7/0x910
[  164.279223][ T9446]  __ext4_iget+0x30a/0x1d70
[  164.283765][ T9446]  ext4_fill_super+0x3001/0x3a10
[  164.288749][ T9446]  get_tree_bdev_flags+0x29f/0x310
[  164.293898][ T9446]  get_tree_bdev+0x1f/0x30
[  164.298354][ T9446]  ext4_get_tree+0x1c/0x30
[  164.302802][ T9446]  vfs_get_tree+0x56/0x1e0
[  164.307252][ T9446]  do_new_mount+0x227/0x690
[  164.309141][ T9461] 9pnet_fd: Insufficient options for proto=fd
[  164.311770][ T9446]  path_mount+0x49b/0xb30
[  164.322173][ T9446]  __se_sys_mount+0x27c/0x2d0
[  164.326874][ T9446]  __x64_sys_mount+0x67/0x80
[  164.331512][ T9446]  x64_sys_call+0x2c84/0x2dc0
[  164.336282][ T9450] loop1: detected capacity change from 0 to 2048
[  164.342619][ T9446]  do_syscall_64+0xc9/0x1c0
[  164.347134][ T9446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.353056][ T9446] 
[  164.355385][ T9446] read to 0xffff888237c2ba28 of 8 bytes by task 9446 on cpu 1:
[  164.362945][ T9446]  has_bh_in_lru+0x35/0x1f0
[  164.367470][ T9446]  smp_call_function_many_cond+0x2d5/0xc20
[  164.373299][ T9446]  on_each_cpu_cond_mask+0x3c/0x90
[  164.378463][ T9446]  invalidate_bh_lrus+0x2a/0x30
[  164.383336][ T9446]  set_blocksize+0x24f/0x270
[  164.387931][ T9446]  sb_set_blocksize+0x2c/0xb0
[  164.392613][ T9446]  ext4_fill_super+0xdca/0x3a10
[  164.397483][ T9446]  get_tree_bdev_flags+0x29f/0x310
[  164.402622][ T9446]  get_tree_bdev+0x1f/0x30
[  164.407064][ T9446]  ext4_get_tree+0x1c/0x30
[  164.411500][ T9446]  vfs_get_tree+0x56/0x1e0
[  164.415941][ T9446]  do_new_mount+0x227/0x690
[  164.420489][ T9446]  path_mount+0x49b/0xb30
[  164.424847][ T9446]  __se_sys_mount+0x27c/0x2d0
[  164.429640][ T9446]  __x64_sys_mount+0x67/0x80
[  164.434277][ T9446]  x64_sys_call+0x2c84/0x2dc0
[  164.438992][ T9446]  do_syscall_64+0xc9/0x1c0
[  164.443533][ T9446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.449449][ T9446] 
[  164.451778][ T9446] value changed: 0xffff888106639888 -> 0xffff8881066397b8
[  164.458887][ T9446] 
[  164.461207][ T9446] Reported by Kernel Concurrency Sanitizer on:
[  164.467359][ T9446] CPU: 1 UID: 0 PID: 9446 Comm: syz.3.2091 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  164.478041][ T9446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  164.488098][ T9446] ==================================================================
[  164.496807][ T9448] EXT4-fs mount: 24 callbacks suppressed
[  164.496826][ T9448] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.525639][ T9465] loop6: detected capacity change from 0 to 1024
[  164.533191][ T9465] EXT4-fs: Ignoring removed i_version option
[  164.539463][ T9465] EXT4-fs: Ignoring removed bh option
[  164.540858][ T9444] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.548366][ T9446] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.571087][ T9450] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.580796][ T9446] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 18 with error 28
[  164.589176][ T9444] FAULT_INJECTION: forcing a failure.
[  164.589176][ T9444] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.595472][ T9446] EXT4-fs (loop3): This should not happen!! Data will be lost
[  164.595472][ T9446] 
[  164.608510][ T9444] CPU: 1 UID: 0 PID: 9444 Comm: syz.5.2090 Not tainted 6.13.0-rc6-syzkaller-00262-gb62cef9a5c67 #0
[  164.618121][ T9446] EXT4-fs (loop3): Total free blocks count 0
[  164.628754][ T9444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  164.628772][ T9444] Call Trace:
[  164.628781][ T9444]  <TASK>
[  164.628791][ T9444]  dump_stack_lvl+0xf2/0x150
[  164.634842][ T9446] EXT4-fs (loop3): Free/Dirty block details
[  164.634856][ T9446] EXT4-fs (loop3): free_blocks=0
[  164.634868][ T9446] EXT4-fs (loop3): dirty_blocks=0
[  164.634879][ T9446] EXT4-fs (loop3): Block reservation details
[  164.634889][ T9446] EXT4-fs (loop3): i_reserved_data_blocks=0
[  164.644963][ T9444]  dump_stack+0x15/0x1a
[  164.673204][ T9465] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.677753][ T9444]  should_fail_ex+0x223/0x230
[  164.677806][ T9444]  should_fail+0xb/0x10
[  164.677835][ T9444]  should_fail_usercopy+0x1a/0x20
[  164.714016][ T9444]  _copy_to_user+0x20/0xa0
[  164.718588][ T9444]  simple_read_from_buffer+0xa0/0x110
[  164.724001][ T9444]  proc_fail_nth_read+0xf9/0x140
[  164.729058][ T9444]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  164.734693][ T9444]  vfs_read+0x1a2/0x700
[  164.738891][ T9444]  ? __rcu_read_unlock+0x4e/0x70
[  164.743917][ T9444]  ? __fget_files+0x17c/0x1c0
[  164.748623][ T9444]  ksys_read+0xe8/0x1b0
[  164.752809][ T9444]  __x64_sys_read+0x42/0x50
[  164.757332][ T9444]  x64_sys_call+0x2874/0x2dc0
[  164.762048][ T9444]  do_syscall_64+0xc9/0x1c0
[  164.766654][ T9444]  ? clear_bhb_loop+0x55/0xb0
[  164.771345][ T9444]  ? clear_bhb_loop+0x55/0xb0
[  164.776034][ T9444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.781990][ T9444] RIP: 0033:0x7f5648c4473c
[  164.786446][ T9444] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  164.806183][ T9444] RSP: 002b:00007f56472b7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  164.814702][ T9444] RAX: ffffffffffffffda RBX: 00007f5648e35fa0 RCX: 00007f5648c4473c
[  164.822696][ T9444] RDX: 000000000000000f RSI: 00007f56472b70a0 RDI: 0000000000000006
[  164.830688][ T9444] RBP: 00007f56472b7090 R08: 0000000000000000 R09: 0000000000000000
[  164.838771][ T9444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.846777][ T9444] R13: 0000000000000000 R14: 00007f5648e35fa0 R15: 00007ffeef4972a8
[  164.854770][ T9444]  </TASK>
[  164.858785][   T50] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  164.874388][   T50] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  164.886657][   T50] EXT4-fs (loop0): This should not happen!! Data will be lost
[  164.886657][   T50] 
[  164.896346][   T50] EXT4-fs (loop0): Total free blocks count 0
[  164.902362][   T50] EXT4-fs (loop0): Free/Dirty block details
[  164.908311][   T50] EXT4-fs (loop0): free_blocks=2415919104
[  164.914045][   T50] EXT4-fs (loop0): dirty_blocks=16
[  164.919275][   T50] EXT4-fs (loop0): Block reservation details
[  164.925277][   T50] EXT4-fs (loop0): i_reserved_data_blocks=1
[  164.932649][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.943068][   T50] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  164.959097][   T50] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  164.971400][   T50] EXT4-fs (loop5): This should not happen!! Data will be lost
[  164.971400][   T50] 
[  164.972610][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.981085][   T50] EXT4-fs (loop5): Total free blocks count 0
[  164.996162][   T50] EXT4-fs (loop5): Free/Dirty block details
[  165.002158][   T50] EXT4-fs (loop5): free_blocks=2415919104
[  165.007959][   T50] EXT4-fs (loop5): dirty_blocks=16
[  165.013080][   T50] EXT4-fs (loop5): Block reservation details
[  165.019211][   T50] EXT4-fs (loop5): i_reserved_data_blocks=1
[  165.026055][ T5030] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.067146][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.079002][ T5840] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.