last executing test programs:

32.714499529s ago: executing program 0 (id=1746):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$inet(0x2, 0x3, 0x33)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040))
getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)

32.621071965s ago: executing program 0 (id=1749):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00"/11], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x3, 0x33)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]})
getsockopt$inet_mreqsrc(r2, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)

32.568193479s ago: executing program 0 (id=1750):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, &(0x7f00000002c0)=0x8001, 0x4)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x39000, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000b00)={0x0, 0x2, 0x0, 0x1})
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x4f, 0x10}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x15, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000d00)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f00000000c0)=r1, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14}, [], {0x14}}, 0x28}}, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000500)=@o_path={&(0x7f0000000400)='./file0\x00', 0x0, 0x0, r2}, 0x18)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000007500)={@local, @random="e10000000030", @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x0, 0x32, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2}}}}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000001c0)={0x0, <r5=>0x0}, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000033c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = getpid()
sendmsg$unix(r8, &(0x7f0000002f40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002f00)=[@cred={{0x1c, 0x1, 0x2, {r9, 0xee00, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [r7]}}], 0x38}, 0x0)
recvmsg$unix(r7, &(0x7f00000027c0)={0x0, 0x0, 0x0}, 0x0)

32.41571533s ago: executing program 0 (id=1751):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
syz_open_dev$sg(&(0x7f00000008c0), 0x0, 0x82)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@delsa={0x28, 0x11, 0x1, 0x0, 0x0, {@in=@empty, 0x0, 0x0, 0xff}}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)

32.022289399s ago: executing program 0 (id=1754):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x50)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280), &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000340)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000300)={r2, 0x2}, 0x8)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x8000000000002}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r5=>0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f0000000080)={0x8})
fstat(r6, &(0x7f00000007c0))
bind$can_j1939(r4, &(0x7f0000000100)={0x1d, r5, 0x0, {0x0, 0x0, 0x4}, 0x1}, 0x18)
setsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000440)={'syztnl1\x00', &(0x7f0000000700)={'syztnl1\x00', <r7=>r5, 0x4, 0x1, 0x9, 0x0, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8000, 0x8000, 0x8, 0x1}})
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000180)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000000680)=[{&(0x7f00000004c0)}, {&(0x7f0000000580)="a0f21c723ba2fa0ad5c4b9446befcda170feb3f7d068c41b440cfe187e13a944bc85ff1a1c", 0x25}, {&(0x7f0000000380)="e58b72faaa22040f74fc47f6e05551af6fd801807a3ddc0b5b00c22a29f1aff98d3f62671f467502448931612c48155e6d226c450e0bef89bbbea5fa", 0x3c}, {&(0x7f0000000600)="5954815279fd11a0e9abef09adcd2610ddec6ca5a40f588054782c74f652cc5c34a3396a863d6c19a248444f5eb6169ca4cb3826af883589c37a9e3dc16dff0992cda9e0d6bc9fff7f7e81af220cabc416", 0x51}], 0x4, &(0x7f0000000780)=[@ip_ttl={{0x14, 0x0, 0x2, 0x80000000}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @multicast1, @multicast2}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xc6}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x2}}], 0x88}, 0x0)
sendmsg$inet(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)="81b641f1f3843704b66e92", 0xb}], 0x1}, 0x48005)
r8 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x70bd2b, 0x0, {0x0, 0x0, 0x74, r9, {0xfff2, 0x4}, {0x0, 0x4}, {0xfff2, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x840)

30.872274832s ago: executing program 0 (id=1767):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0, 0x1b}, 0x8002, 0x100, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
fcntl$setlease(r3, 0x400, 0x2)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0xffffffff, 0x5, 0x2000, 0x0, &(0x7f0000048000), 0x800000)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000280)='4', 0x1}], 0x1)

15.826894827s ago: executing program 32 (id=1767):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0, 0x1b}, 0x8002, 0x100, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
fcntl$setlease(r3, 0x400, 0x2)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0xffffffff, 0x5, 0x2000, 0x0, &(0x7f0000048000), 0x800000)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000280)='4', 0x1}], 0x1)

3.1531504s ago: executing program 4 (id=2167):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
socket$inet(0x2, 0x3, 0x8)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r2)

2.123514215s ago: executing program 4 (id=2190):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./bus\x00', 0x0, &(0x7f0000000200), 0x1, 0x562, &(0x7f0000003540)="$eJzs3c9rHFUcAPDvbJL+Sm0iCv44BRRaqN00TdUKgvVusaCe67LZhpJNpmQ3pQmF2oNnPVRBPHkWT54F8X/woODJi9QWKUL1ZGSys+12f7TbdJOt7ucDk743b7NvvjvzfX2zb5cEMLJmsh+FiBci4tMkYqqlbTzyxpnG4+7cvlL+6/aVchKbm+/9kUSS72s+Psn/ncwrz0fEDx9HHC109ltb31gqVauV1bw+W1++OFtb3zh2Ybm0WFmsrMyfmn/15NzciZOnBhZr8Wpp383P3r15ffXXYx98cudwEqfjYN7WGsegzMRM/ppMxOm2trlBdzZkybAPgG0Zy/N8IrIxYCrG8qwH/v+uRsQmMKIS+Q8jqjkPyO5/m9twZyS769bbjRugzvjHG++NxNRmdm904M/kvjuj7H53egD9Z32cPnr292yLHXofAqCbj65FxPHx8c7xL8nHv+729fHcx7Mf7W98tmnvw/gHu+f7bP7zSrf5TyHPzUamt89/Jrvk7nY8PP8LNwbQTU/Z/O/NrvPfu4tW02N57amtOd9Ecv5CtZKNbYci4khM7M3qD1rP+Wn/G1O92lrnf9mW9d+cC+bHcWN87/2/s1Cqlx4n5la3rkW82HX+m9w9/0mX85+9Hmf77OPQM6/93Kvt4fHvrM2vIg53Pf/3VrSSxvrkP8VGtX19cnbrephtXhWd5sc2nuvV/7Djz87/gQfHP520rtfWHr2Pl7+Z/LFX23av/z3J+1vlPfm+y6V6fXUuYk/yTuf+E/d+t1lvPj6L/8hLDx7/ul3/+yPiwz7j/27+61+2H//OyuJfeKTz/+iFL9Nv3+rVf3/n/+RW6Ui+p5/xr98DfJzXDgAAAAAAAJ40hYg4GEmheLdcKBSLjc93PBsHCtW0Vj96Pl1bWYit78pOx0ShudI91fJ5iLn887DN+om2+nxEPB0R18f2b9WL5bS6MOzgAQAAAAAAAAAAAAAAAAAA4Akx2eP7/5nfxoZ9dMCO8ye/YXTJfxhd8h9Gl/yH0SX/YXRtI/8/34njAHaf//9hdMl/GF3yH0aX/AcAAAAAAAAAAAAAAAAAAAAAAAAAAICBOnvmTLZt/n37SjmrL1xaX1tKLx1bqNSWistr5WI5Xb1YXEzTxWqlWE6XH/Z81TS9+HqsrF2erVdq9dna+sa55XRtpX7uwnJpsXKuMrErUQEAAAAAAAAAAAAAAAAAAMB/S219Y6lUrVZWFVoLUx17vogn4sAUFHanMOyRCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADu+TcAAP//Jv4XIQ==")
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x7a6e1049, 0x0, 0x0, 0x4, "01010000000000001950869b6d00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TCSETAF(r5, 0x5408, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x2, 0x0, "1f00000800"})
r6 = dup3(r5, r4, 0x0)
read$rfkill(r6, &(0x7f00000002c0), 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000800850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
get_mempolicy(0x0, 0x0, 0x10001, &(0x7f0000ffb000/0x3000)=nil, 0x2)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000001040)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=""/43, 0x2b}, 0x3}], 0x1, 0x2040, 0x0)

1.987590525s ago: executing program 3 (id=2191):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001900)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="6c010000170001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000900000000000000000000000000000000000000000000cded000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b86b"], 0x16c}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
getuid()
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x12, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x101}, [@printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffa}}, @generic={0x4, 0xf, 0x5, 0x4, 0x6}, @ldst={0x3, 0x2, 0x3, 0x2, 0x0, 0x80}, @tail_call]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2686dd4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.555635497s ago: executing program 2 (id=2197):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x3, 0x33)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]})
getsockopt$inet_mreqsrc(r2, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)

1.522237589s ago: executing program 3 (id=2198):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x1e8, 0xb8, 0x5002004a, 0xb, 0xb8, 0xea02, 0x150, 0x3c8, 0x3c8, 0x150, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr=0x600, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x1, 'pptp\x00', {0x1000000010000}}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248)

1.50086482s ago: executing program 2 (id=2199):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x3fffff)
io_setup(0x2007, &(0x7f0000000200)=<r1=>0x0)
r2 = eventfd2(0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}])
dup2(r0, r2)
shutdown(r0, 0x0)

1.465903703s ago: executing program 3 (id=2200):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
socket$inet(0x2, 0x3, 0x8)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r2)

1.387793759s ago: executing program 2 (id=2204):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000680)=0x2)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000280)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r3 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={@mcast1, @loopback, @loopback, 0x6, 0x4, 0x4, 0x0, 0x2, 0x82680027})
sendmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d800000019008111e0020f060d8107040a60090003bed7f95c0255a12a00090008000699e3ffffff14000500fe8081780c000567b8b7b94002000009080016060000000000000000d67f6f9400f7d1d9bbe94fa27100a007a2f7457f01896034277ce06bbace8017cb39b62ee5a7cef4090000001fb791643a5e83d42365f003724a237ee4b11602b2a10000000014d6d930dfe1d9c322fe040000005025acca262f3d40fad95667e006dcdf634c1f215ce3bb9ad809d50b694138c9f1ac76efb42a9ecbee5de6ccd44242f4d643f6fd0f26187b51980dd6", 0xd8}], 0x1}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000ec0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37f200102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa2b0000059459569711"], 0x0)
r5 = getpgid(0x0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x1a35f542e29b8556, 0xffffffffffffffff, 0x146b1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f0000000180)=@abs={0x1, 0x0, 0x1ffffd}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

1.192074203s ago: executing program 4 (id=2206):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000080)={@multicast1, @remote, <r2=>0x0}, &(0x7f00000001c0)=0xc)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4}, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000440), r5)
sendmsg$NFC_CMD_DEP_LINK_UP(r5, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000004c0)={0x24, r6, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_COMM_MODE={0x5, 0xa, 0x1}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x2800)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@ifindex=r2, r1, 0x29, 0x0, 0x0, @void, @value=r1}, 0x20)
futimesat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x0)

1.124307788s ago: executing program 2 (id=2208):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x4, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0xc00}}}]}, 0x38}}, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x7}, {}, {0x1, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0x18, 0x2, [@TCA_U32_SEL={0x14, 0x5, {0x7, 0x6, 0x6, 0x9, 0x401, 0x1000, 0x8a0, 0xd7}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x800)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r7, &(0x7f0000000600)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5000000018000304e20010000007cc877f1b0000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b00010069703667726500001800028014000700fe8000000000000000000000000000aa08000a00", @ANYRES32=r8, @ANYBLOB], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1b000000000000000000000000732fca20aad065f680000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r12 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r12, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000480)=[{0x20, 0xfc, 0xff, 0xfffff00c}, {0xb1, 0xf0, 0xee, 0x7ffff020}, {0x6, 0xfc, 0x2, 0x4}]}, 0x10)
r13 = socket$packet(0x11, 0x2, 0x300)
r14 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r15=>0x0})
sendto$packet(r13, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x8100, r15, 0x1, 0x1, 0x6, @multicast}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)

1.109617659s ago: executing program 4 (id=2209):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001900)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="6c010000170001", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000900000000000000000000000000000000000000000000cded000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b86b"], 0x16c}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
getuid()
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x12, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x101}, [@printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffa}}, @generic={0x4, 0xf, 0x5, 0x4, 0x6}, @ldst={0x3, 0x2, 0x3, 0x2, 0x0, 0x80}, @tail_call]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0xa, 0x300)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2686dd4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.068029082s ago: executing program 1 (id=2210):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet(0x2, 0x3, 0x33)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x7, 0x0, 0x0, 0xfffffffb}]})
getsockopt$inet_mreqsrc(r2, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28)

786.014802ms ago: executing program 5 (id=2211):
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r1, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000002040)=[{0x4, 0x8, 0x5, 0x6}]}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
close_range(r2, 0xffffffffffffffff, 0x2)
syz_open_procfs$pagemap(0x0, &(0x7f000000d400))
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/image_size', 0xa3002, 0x90)
write$P9_RLERROR(r3, &(0x7f0000000200)=ANY=[], 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000004000000080000000b000000000000003b9a7cb0c14d78cd1ba43ad80ae6b2e93eefb3449d072fdf3c5471ca893a4f9cedf987f3a0a5330c6843211e10b88bef7e8fbf59", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000000400000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
write$cgroup_int(r4, &(0x7f00000000c0), 0xfffffff4)
socket(0x10, 0x803, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)

785.759993ms ago: executing program 1 (id=2212):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x3fffff)
io_setup(0x2007, &(0x7f0000000200)=<r1=>0x0)
r2 = eventfd2(0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}])
dup2(r0, r2)
shutdown(r0, 0x0)

754.554935ms ago: executing program 4 (id=2213):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
syslog(0x3, &(0x7f0000000040)=""/80, 0x50)
socket$inet_udplite(0x2, 0x2, 0x88)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x573, &(0x7f0000000ec0)="$eJzs3T1sG+UbAPDnzvG/X/mTIoEEqEMFSEWq6iT9gMLUrohKlTogsUDkuFEVJ47iBJooQ7pXiA4IUJeywcAIYmBALIysLCBmpIpGIDUdwMhfaZo4wSl1XHK/n3T2vfee/bzvnZ/XvtOdHEBmHa0/pBHPRsTFJGJoXd1AtCqPNtdbXVkq3ltZKiZRq136LYkkIu6uLBXb6yet50MRsRwRz0TEd/mI4+nmuNWFxcmxcrk02yoPz03NDFcXFk9cmRqbKE2Upk+98uqZs6fPjJ4cXf+ye7X1pfzO+nr95xvvX//h9Vs3Pv/iyHLxw7EkzsVgq259Px6l5jbJx7kNy0/3IlgfJf1uAA8l18rzeio9HUORa2V9J7WhXW0a0GO1fRE1IKMS+Q8Z1f4dUD/+bU+7+fvj9vnmAUg97mpratYMNM9NxP7GscnB35MHjkzqx5uHd7Oh7EnL1yJiZGBg8+c/aX3+Ht7Io2ggPfXt+eaO2rz/07XxJzqMP4Ptc6f/Unv8W900/t2Pn9ti/LvYZYw/3/rlky3jX4t4rmP8ZC1+0iF+GhHvdBn/5ptfn92qrvZpxLHoHL8t2f788PDlK+XSSPOxY4xvjh15bbv+H9wifvOc7f7G10yn7T/TZf+/+v7L55e3if/SC9vv/07b/0BEfNBl/CfvfvbGVnW3ryV36r8Cdrr/68tudRn/5XNHf+pyVQAAAAAAAAAAYAfSxrVsSVpYm0/TQqF5D+9TcTAtV6pzxy9X5qfHm9e8HY582r7SaqhZTurl0db1uO3yyQ3lU7lWwNyBRrlQrJTH+9x3AAAAAAAAAAAAAAAAAAAAeFwc2nD//x+5xv3/G/+uGtirtv7Lb2Cvk/+QXQ/mf9K3dgC7z/c/ZFZN/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv8AAAAAAAAAAAAAAAAAAAAAAAAAANATFy9cqE+1eytLxXp5fGBhfrLy7onxUnWyMDVfLBQrszOFiUplolwqFCtT//R+SaUyMxLT81eH50rVueHqwuLbU5X56fZ/ipbyPe8RAAAAAAAAAAAAAAAAAAAA/PcMNqYkLURE2phP00Ih4v8RcTjyyeUr5dJIRDwRET/m8vvq5dF+NxoAAAAAAAAAAAAAAAAAAAD2mOrC4uRYuVyazcjMwE5WjojlR9uM+jvu+FX51r56XLahmSzM9HlgAgAAAAAAAAAAAAAAAACADLp/02+3r/irtw0CAAAAAAAAAAAAAAAAAACATEp/TSKiPh0benFwY+3/ktVc4zki3rt56aOrY3Nzs6P15XfWls993Fp+sh/tB7rVztN2HgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3VRcWJ8fK5dJsD2f63UcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh/F3AAAA///pCdd8")
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31})
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="000000ff0300000000000000000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x200000000200}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r5 = mq_open(&(0x7f0000000a00)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xeeux\x00\xbf@\xf4\x1c\xbce\xca\x97\xd5pkv\x88L\xe8$\xef\xfeI\xdaW1\xfcg\xa1\xdb$,0y$\xcd{zl.\xae\x805\xa8\xd6\x85\x15\xd2\x0e~\xcc\x90\x97\xe8h\v\x1a9X\a\xca{\x11#\x95m{U\xe5-\xabRw\xcafy\xe6\aNhX4Ll[\x14\x15<z\xb2\x03d\xad\x925\xbfP\x1b\xea\vt\xe9C\xe9\xb4R\x85*\xdc\xc4@\xee\xd2\xae\x06\x1a\xe1\xd2s\x01\xb8\xf3\xf2\rr\x01mq\xd2\xaf\xe2{\xe4\x1a\xd3Z\x01C\xfbW', 0x6e93ebbbcc0884f2, 0x1c4, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x3})
mq_timedreceive(r5, &(0x7f0000000180)=""/196, 0xc4, 0x800000000000, 0x0)
mq_timedsend(r5, 0x0, 0x0, 0x3ed7, 0x0)

682.23277ms ago: executing program 2 (id=2214):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000c00)=@gettaction={0x1e0, 0x32, 0x8, 0x70bd27, 0x25dfdbfb, {}, [@action_gd=@TCA_ACT_TAB={0x24, 0x1, [{0x10, 0x10, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x200c, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x24e1}, @action_gd=@TCA_ACT_TAB={0x58, 0x1, [{0x10, 0x4, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0x10, 0xc, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0x10, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0xc, 0xd, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfffffff7}}]}, @action_gd=@TCA_ACT_TAB={0x40, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0x14, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}, {0xc, 0x19, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x88, 0x1, [{0x14, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0xc, 0xa, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x25d}}, {0xc, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ipt\x00'}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}, {0x14, 0x15, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}, {0x10, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x10, 0x13, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x2}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x58, 0x1, [{0x10, 0xe, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}, {0xc, 0x15, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x1a, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0x10, 0x2008, 0x0, 0x0, @TCA_ACT_KIND={0xa, 0x1, 'pedit\x00'}}, {0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}]}]}, 0x1e0}}, 0x800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="6400000010000305160000000000000000008847", @ANYRES32=0x0, @ANYBLOB="00000000000000004400128009000100626f6e6400000000340002800500010004000000050016"], 0xc3}, 0x1, 0x100000000000000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000005c0)=ANY=[@ANYBLOB="98ae20860ee24aaa284bc426c704fd8758b2a1fbf8512912f28d71956397c3f052eef0b4232d054ea558a98f7746def1f7c0b81917f6adf3cf48fecd4488863e1383aeed6fb6ed9c87c383b0bfcbc245ade0168a3b"], 0xa0}, 0x1, 0x0, 0x0, 0x4048}, 0x4002)
r0 = socket(0x10, 0x3, 0x0)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x200040, &(0x7f0000000280)=ANY=[@ANYBLOB='nodots,nodots,dots,dots,nodots,errors=continue,time_offset=0xfffffffffffffa93,dots,showexec,nodots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f74732c646f74732c6e66732c6e6f646f74732c646f74732c6e6f646f74732c646f74732c646f74732c6e6f646f74732c646f74732c646f74732c646f74732c636865636b3d72656c617865642c74696d655f6f66667365743d3078303030303030303030303030303437612c646f6e745f686173682c7365636c6162656c2c667373c322e2a50762a3d3fcae283b43ea02757569643d31643067586564382d353166312d62326634"], 0x1, 0x1d3, &(0x7f0000001a00)="$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")
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000340)=0x3)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x800, 0x0)
ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r4, 0x80083313, 0x0)
ioctl$GIO_SCRNMAP(r3, 0x5608, 0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TCSETA(r5, 0x5406, &(0x7f0000000340)={0xff00, 0x0, 0x0, 0x86fe, 0x0, "8b711000000010ac"})
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000006c0)=0x16)
r6 = syz_clone(0x38001000, &(0x7f0000000180)="0957f9ef08421397fadb58", 0xb, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f00000002c0)="7f4e")
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000400)={0x1, <r7=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000004c0)={{r7}, &(0x7f0000000440), &(0x7f0000000480)='%-5lx  \x00'}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001a40)=ANY=[@ANYBLOB="b70200000f000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000010000006a0a00fe00000000850000000d000000bf0000000000000095000000000000005ecefab8f2e85c6c1ca711fc206bb8ad6ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bd04000000000000009c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5f683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891184604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e101d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe151acc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394b9ba1a836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429ba63903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6d6fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f25005798ca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9958fad67ccaba76408da35c9f1534c8bd48bbdf9594e8b4ce73febaefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb3b379e221a5318849b6b0679b5d65ab855fc9f1d10022cc20603480ffb1e3392fad690ce56aaa717e56fd55aec3d9d6671f55d7bc33830a4095497586e8d15c2a32d3176d45b783cb27112a69c14134488b6dd302c3e92a7e659351b610ed5ba022f92d4bf26b0a5c10a3c8eb0fabdf0017995ea0c06b41fe6dda769729328d6ee80ab3b4aeeeee7926575d526431184b2034b5cdacc8eaab03cf45af6ec451f65705d8a4375d559e4c3ad80e942d237616d8f2fdd5afe4fdf21478228d9f6299bf67cf1e62fc11c285e18fb65eeb657bc7375401bb175f6d2625195ce8647945dbdfb7eacc06a24832d155059b0f0c36b9433eff190f4c4c160f0484d4d39f5f92e8bd49ad3df23b961fe7bf9e506c5098ca79deb7906257e4ce9035f3a6b29453ee41640ade8b5916f38d19ab6f2fd51a9fd9a2559411967460952acf5c549e5466ee2d8563397a5f028486220fae69611d9bc0f1a68d31ad1a4e387de687ab1537bd46703e4e5ae0f096f731916628bf743a49ea7b7d22c04d738ca439343aaab682d45dc91187e9ff08005358e1f3d864f36ee590fb0da9c958f15f9105c41add43a7c28874e58c31a7acb0467e0bd97f2ccd78615b5144267772381e7498bb98d9e8a3f98b505e5c9645e19d011dd86a1dc134fa4b21ff8ec2d054ae7e0044b4700cd54ce392c2ee515e86070f2df561c15f331a1babfa60504410fa56a848ba1f501c8eb0bd6856451d150cfaf95d6dc889be27e8915bb3670fc76bcbeb390f3cefb5429c84907a92c6eab2b15758194ece4b1461f622510bcff5c0f8354637856f94d71a0841180e78a3a837ae7847c479f5c9c54859cb85393f190042a5dc31197f2c463be8affe29869d71df330b3466fc79b3488b4a2a3e2aae9af6421cd0902347103f2384bf08e5230b37297b668be11b4428b9a8e8c259afa6c73dd87fcc165b2fea66a180bf048530a5849f849d37aca6874cb1d50defdb90b3da04a575db38825db87f6bb0013a5dabcc0e9783aaac0cbb5d6fc437f1e77bf69cae31a213ca2b90ece8cc70fa320c9ffd05618e7a6e6cf8ada6b3e62557174b6d3516cc0"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r10}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03076844268cb89e14f0080047e0ffff00124000633a77fbac141416e000000194029f034d2f87e589ca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x6b, 0x60000000}, 0xf)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x5, 0x4, 0x7f, 0x2, 0x0, 0x8, 0xa000, 0x4, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xffff, 0x1, @perf_bp={&(0x7f0000000000), 0x4}, 0x8, 0x3, 0x0, 0x0, 0x31e1f07a, 0xd5, 0x1, 0x0, 0x19f, 0x0, 0x4}, r6, 0xb, r2, 0x2)
chroot(&(0x7f00000003c0)='./file0\x00')
unshare(0x24020400)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

604.829226ms ago: executing program 1 (id=2215):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000680)=0x2)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000280)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r3 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{0x0}], 0x0, 0x1}, 0x20)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={@mcast1, @loopback, @loopback, 0x6, 0x4, 0x4, 0x0, 0x2, 0x82680027})
sendmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d800000019008111e0020f060d8107040a60090003bed7f95c0255a12a00090008000699e3ffffff14000500fe8081780c000567b8b7b94002000009080016060000000000000000d67f6f9400f7d1d9bbe94fa27100a007a2f7457f01896034277ce06bbace8017cb39b62ee5a7cef4090000001fb791643a5e83d42365f003724a237ee4b11602b2a10000000014d6d930dfe1d9c322fe040000005025acca262f3d40fad95667e006dcdf634c1f215ce3bb9ad809d50b694138c9f1ac76efb42a9ecbee5de6ccd44242f4d643f6fd0f26187b51980dd6", 0xd8}], 0x1}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000ec0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd608a37f200102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa2b0000059459569711"], 0x0)
r5 = getpgid(0x0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x1a35f542e29b8556, 0xffffffffffffffff, 0x146b1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f0000000180)=@abs={0x1, 0x0, 0x1ffffd}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

597.379936ms ago: executing program 3 (id=2216):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="9c10ae00", @ANYRES16=r2, @ANYBLOB="00042dbd7000fcdbdf253600000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x2011}, 0x4000080)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff08000900fcfc0000080011000000000008000e00800000000800", @ANYRES64=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

543.49527ms ago: executing program 5 (id=2217):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) (async)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x420, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$FICLONE(r2, 0x40049409, 0xffffffffffffffff) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000002000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000480180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
socketpair(0x11, 0x3, 0x300, &(0x7f0000000000))

441.076748ms ago: executing program 3 (id=2218):
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
semtimedop(0x0, &(0x7f0000000280)=[{0x4, 0x0, 0x1000}], 0x1, 0x0)
unshare(0x2c040000)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200), 0xfffffd9d)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000002b)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)

355.791814ms ago: executing program 2 (id=2219):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000d40)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x18)
setregid(0xee00, 0xffffffffffffffff)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x2, 0x0, 0x0, 0x2, 0x1000000, 0x6}, 0xffffffffffffffff, 0x0, r3, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
msgsnd(0x0, &(0x7f00000017c0)={0x3, "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"}, 0xfd1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x2400, 0x1000)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r6, &(0x7f0000004200)='t', 0x1)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x10)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r8}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1000000004000000040000000200000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000000000000000000006758a00ccf833ebd9b6901bf9c77a67ee118000600094060be028ccbc856c068a8442ab44835da57df", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r9, &(0x7f00000000c0), 0x0, 0x2}, 0x20)
sendfile(r6, r5, 0x0, 0x3ffff)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="38000000031401002cbd7000fcdbdf250900020073797a32000000000800410073697700140033006c6f0000000000000000000000000000ad7df1237744765234def44c2383374cbb60c62235f7674d2549aa7a1d75ef91f66974d6b660ae3415aab8ea39170c0f8958965f8dff464f61746b2f86ed7f783c75293e8f1602326f700ae18e082b744ab857e923c589c4a16cd2c6e609840dae413a2fe13e00cbde595a4577ca4ff92eb4fd5f2f045dda5dcdbc968dd06a1384952d46bf31c385d45e36a2c0c246f7844cd76d4300f318e68a407c74d758cf5f05d66c76bce0f6134ff992482843bcb763"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x810)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f000000c300)=ANY=[@ANYBLOB="140000001000050000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a300000000008000440000000000900010073797a30000000000800034000000004"], 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

355.535774ms ago: executing program 5 (id=2220):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001600)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
get_robust_list(0x0, 0x0, &(0x7f00000014c0))

354.991984ms ago: executing program 1 (id=2221):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000340), 0x181)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000380)={{0x1, 0x1, 0x1, 0x2, 0x9}})

307.905797ms ago: executing program 3 (id=2222):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_DEL(r0, 0x0, 0x44000)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x92, @time={0x65757100}})
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001100)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6b0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3, 0x0, 0x81}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0xc, 0x4, 0x7cb4, 0x181, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x300, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$AUDIT_GET(r4, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x855}, 0x24040000)
openat$vcs(0xffffffffffffff9c, 0x0, 0x105400, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)
write$P9_RUNLINKAT(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_read_part_table(0x5c0, &(0x7f0000000000)="$eJzs27+KJFUUB+BfVXdXdYNLa2KoDZsYuYHxsKOyOywYLIKZoKmJiGAgKFONookamRj4AptMIBgZD6IvIMIwBoJmIgZq4Fyp/jc1YySNqPB9QXHuufeccxuqwwr/b2U+SkbXkuO6rrbx/I9k+dLTSbtYrSebfH/ghQd37t5b3K+aXa5KfuqSetOnfzTJY7vGWWyiL8b58MHR+x99/FaTLt35cZJPky4p7fZqq9p80vzl0r9V2+b8u564tq52j16XhzNdRbeyectGq3TaPmre23v+ycHp8nYflPXQWXM5Pcnh1dN1jm+uo0l+vsikXuy2Nm/T7fX1rmqTUspk0Gb7L5gMpj315XfHWTbrndGgtnc2S147e/7JatADAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/nrKxWhzmkWlSJeN+9dkzVbc+NF5nnm3G6/Xvw6L9nByczt959/U6bx688s2rb39/9OP0lySj3Dp6qLTt7tzLaQdV46S+SPLobN/5Zdv2jReH6UWW+ermt4/Xo5Qyv8xPqv75edLluctaAAAAAAAAAAAAAAAAAAAA2NOdu/cW9+vZ9uv6epsvmSbVtQ/cy6+llMOU5kp2luTr81RJfkiphltNMr+RpP2gyWajS0q5Mf3nfhF/x58BAAD//++eW/s=")
unshare(0x44040480)

288.027678ms ago: executing program 5 (id=2223):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000004abad6a9c36d8374227c6d50ef06bfae01000000000000000001a200000000000007020025f8ffffffb70300e6ffffff00b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000600)='sys_enter\x00', r4}, 0x10)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
fstatfs(r5, &(0x7f0000000580)=""/4096)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[], 0x0, 0xfffffff8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xfec3)
r6 = socket(0xa, 0x3, 0x3a)
sendmsg$nl_netfilter(r6, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
setsockopt$MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f0000000000)={0x2, 0x2, 0xa, 0x0, 0x200}, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r7, 0x0, 0x80000000}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone3(0x0, 0x0)
syz_read_part_table(0x5e2, &(0x7f0000000600)="$eJzs3L1rHEcUAPC3e3t7J1CikDrFgZqQQBRIF3IkTRKpC/noUqSJwYWMkQvj6nTYYPDHH6DW2IVlg5BrFzYYIazOlTEI+7+wCosxtx93FqiShMHw+xX7Zmbfm7m9mXY3+LSlhYiURexVvTudKhT5cqe5/3/WZvbq0G26k/F/Nn/9bWXwR9abjk1G15u7vdkqZROLGDStx0Xc3jx3PW8zRnVYj+g+LKOY5Ka6buPIDJWDyfRFdmZ/AidVPEnVZkUZL+JRRKxmncnm9yLGcS/ii+hXeUsRX3ZSSqN+vclzEZ0oj+7qSWwNd8Y/R1EdtblozknTG93I0vdNXjdSSimP0WJb2Yn46qelteMmrY74uDpj7VBKqTvf1uazG6uHZdv8YffNKMb96eyRmsPdntOL+39+V/2SrJ6je9qHBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgzH196Zunedv5pbpm0+vy/chnqesR79r2oH9G628NdxauXlvL48rw/MsLWTvciaXf5yN607z/6rB9swrFNO20Vg/z8sHdZ3PTgWbqLOL54quD1K6w38TLP35QPMxPvT4AAAAAAAAAAAAAAAAAAABMbMfK4K88/o7I4t+Yve6foh+RTd/H70eklNLbVGlf/i83Pm9ae68jmxRFakt2y/qDAgufRaTerW+rDwrUhSmloloi+4gPyrHeBwAA//8IKl0g")

239.711672ms ago: executing program 1 (id=2224):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r1, &(0x7f0000000040)="aa", 0x1, 0x44000000, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)

228.350523ms ago: executing program 4 (id=2225):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2000c8, &(0x7f0000000200)=ANY=[], 0x0, 0x1bf, &(0x7f0000000940)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
ioprio_get$pid(0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_service_bytes\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000fdffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4", @ANYRES32=r5, @ANYBLOB], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r6=>0x0})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1e000000030000004000000008000000400a0000", @ANYRES32=r0, @ANYBLOB="dbf02bc23dcb25a7931120d42d0100"/27, @ANYRES32=r6, @ANYRES32=r3, @ANYBLOB="0500000002000000040000000600"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r9}, 0x10)
set_mempolicy(0x4005, &(0x7f0000000000)=0x7, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
close(r3)
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x20, 0x12506, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x7602}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(r3)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

105.045172ms ago: executing program 1 (id=2226):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000003c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r2, 0x0, 0x8000000000002}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
socket$inet(0x2, 0x3, 0x8)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r3)

91.017993ms ago: executing program 5 (id=2227):
r0 = mq_open(&(0x7f0000000a00)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!T\xeeux\x00\xbf@\xf4\x1c\xbce\xca\x97\xd5pkv\x88L\xe8$\xef\xfeI\xdaW1\xfcg\xa1\xdb$,0y$\xcd{zl.\xae\x805\xa8\xd6\x85\x15\xd2\x0e~\xcc\x90\x97\xe8h\v\x1a9X\a\xca{\x11#\x95m{U\xe5-\xabRw\xcafy\xe6\aNhX4Ll[\x14\x15<z\xb2\x03d\xad\x925\xbfP\x1b\xea\vt\xe9C\xe9\xb4R\x85*\xdc\xc4@\xee\xd2\xae\x06\x1a\xe1\xd2s\x01\xb8\xf3\xf2\rr\x01mq\xd2\xaf\xe2{\xe4\x1a\xd3Z\x01C\xfbW', 0x6e93ebbbcc0884f2, 0x1c4, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x3})
mq_timedreceive(r0, &(0x7f0000000180)=""/196, 0xc4, 0x800000000000, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x3ed7, 0x0)

0s ago: executing program 5 (id=2228):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000980)={'wg2\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b031407e0ff640f0200475412f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRESHEX, @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet(r5, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=r5], 0x20}, 0x4000)

kernel console output (not intermixed with test programs):

89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.911277][ T6711] RSP: 002b:00007f6107777038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   86.911293][ T6711] RAX: ffffffffffffffda RBX: 00007f6109325fa0 RCX: 00007f610910cde9
[   86.911305][ T6711] RDX: 0000400000000100 RSI: 0000400000000040 RDI: 0000000000000000
[   86.911320][ T6711] RBP: 00007f6107777090 R08: 0000400000000200 R09: 0000000000000000
[   86.911334][ T6711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.911347][ T6711] R13: 0000000000000000 R14: 00007f6109325fa0 R15: 00007ffd9e854a28
[   86.911375][ T6711]  </TASK>
[   87.265225][ T6721] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1321'.
[   87.492557][ T6734] 9pnet_fd: Insufficient options for proto=fd
[   87.705545][ T6755] loop4: detected capacity change from 0 to 1024
[   87.736337][ T6762] loop2: detected capacity change from 0 to 764
[   87.746580][ T6763] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   87.756428][ T6755] EXT4-fs: Ignoring removed nobh option
[   87.762044][ T6755] EXT4-fs: Ignoring removed bh option
[   87.843799][ T6755] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.887710][ T6780] 9pnet_fd: Insufficient options for proto=fd
[   87.973927][ T6795] loop2: detected capacity change from 0 to 512
[   88.004224][ T6795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.018265][ T6795] ext4 filesystem being mounted at /272/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   88.024250][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.071437][ T3297] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.187005][ T6812] syz.2.1352 uses obsolete (PF_INET,SOCK_PACKET)
[   88.251993][ T6822] 9pnet_fd: Insufficient options for proto=fd
[   88.389777][ T6833] rdma_op ffff88811b0fa580 conn xmit_rdma 0000000000000000
[   88.437672][ T6843] unsupported nla_type 65024
[   88.534461][ T6849] SELinux: syz.0.1370 (6849) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   88.602358][ T6856] FAULT_INJECTION: forcing a failure.
[   88.602358][ T6856] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   88.615543][ T6856] CPU: 1 UID: 0 PID: 6856 Comm: syz.4.1372 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   88.615643][ T6856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   88.615658][ T6856] Call Trace:
[   88.615675][ T6856]  <TASK>
[   88.615684][ T6856]  dump_stack_lvl+0xf2/0x150
[   88.615716][ T6856]  dump_stack+0x15/0x1a
[   88.615810][ T6856]  should_fail_ex+0x24a/0x260
[   88.615851][ T6856]  should_fail+0xb/0x10
[   88.615881][ T6856]  should_fail_usercopy+0x1a/0x20
[   88.615952][ T6856]  _copy_from_iter+0xd5/0xd00
[   88.615971][ T6856]  ? selinux_file_open+0x34a/0x3b0
[   88.615993][ T6856]  ? should_fail_ex+0xd7/0x260
[   88.616096][ T6856]  ? __virt_addr_valid+0x1ed/0x250
[   88.616124][ T6856]  ? __check_object_size+0x364/0x520
[   88.616159][ T6856]  skb_copy_datagram_from_iter+0xb3/0x460
[   88.616195][ T6856]  tun_get_user+0x1132/0x25c0
[   88.616304][ T6856]  ? _parse_integer+0x27/0x30
[   88.616398][ T6856]  ? ref_tracker_alloc+0x1f5/0x2f0
[   88.616540][ T6856]  tun_chr_write_iter+0x188/0x240
[   88.616583][ T6856]  vfs_write+0x77b/0x920
[   88.616608][ T6856]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   88.616693][ T6856]  ksys_write+0xe8/0x1b0
[   88.616715][ T6856]  __x64_sys_write+0x42/0x50
[   88.616741][ T6856]  x64_sys_call+0x287e/0x2dc0
[   88.616773][ T6856]  do_syscall_64+0xc9/0x1c0
[   88.616802][ T6856]  ? clear_bhb_loop+0x55/0xb0
[   88.616931][ T6856]  ? clear_bhb_loop+0x55/0xb0
[   88.616964][ T6856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.616994][ T6856] RIP: 0033:0x7f771d67cde9
[   88.617011][ T6856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.617140][ T6856] RSP: 002b:00007f771bce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   88.617163][ T6856] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67cde9
[   88.617176][ T6856] RDX: 0000000000000053 RSI: 0000400000000280 RDI: 0000000000000004
[   88.617188][ T6856] RBP: 00007f771bce7090 R08: 0000000000000000 R09: 0000000000000000
[   88.617199][ T6856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.617210][ T6856] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[   88.617228][ T6856]  </TASK>
[   88.849431][ T6858] 9pnet_fd: Insufficient options for proto=fd
[   88.993589][ T6863] syzkaller1: entered promiscuous mode
[   88.999266][ T6863] syzkaller1: entered allmulticast mode
[   89.163105][ T6885] loop4: detected capacity change from 0 to 512
[   89.172932][ T6885] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[   89.213345][ T6888] 9pnet_fd: Insufficient options for proto=fd
[   89.530738][ T6912] loop3: detected capacity change from 0 to 512
[   89.610644][ T6913] __nla_validate_parse: 11 callbacks suppressed
[   89.610662][ T6913] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1396'.
[   89.638613][ T6909] netlink: 144 bytes leftover after parsing attributes in process `syz.4.1394'.
[   89.660165][ T6915] bridge0: port 4(vlan2) entered blocking state
[   89.666526][ T6915] bridge0: port 4(vlan2) entered disabled state
[   89.678279][ T6915] vlan2: entered allmulticast mode
[   89.686843][ T6915] vlan2: left allmulticast mode
[   89.761819][ T6924] 9pnet_fd: Insufficient options for proto=fd
[   89.822469][ T6930] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1404'.
[   89.850189][ T6933] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1405'.
[   89.923698][ T6940] syz.4.1407 (6940) used greatest stack depth: 9096 bytes left
[   89.984322][ T6951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1406'.
[   89.995741][ T6953] rdma_op ffff888118096980 conn xmit_rdma 0000000000000000
[   90.002987][ T6951] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   90.047206][ T6961] 9pnet_fd: Insufficient options for proto=fd
[   90.075413][ T6966] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1416'.
[   90.129039][ T6972] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1418'.
[   90.142868][ T6968] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   90.174242][ T6968] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   90.243937][ T6988] rdma_op ffff888118096980 conn xmit_rdma 0000000000000000
[   90.277634][ T6993] IPv6: NLM_F_CREATE should be specified when creating new route
[   90.439864][ T7008] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1433'.
[   90.548845][ T7016] rdma_op ffff888118096980 conn xmit_rdma 0000000000000000
[   90.612202][ T7024] FAULT_INJECTION: forcing a failure.
[   90.612202][ T7024] name failslab, interval 1, probability 0, space 0, times 0
[   90.624971][ T7024] CPU: 0 UID: 0 PID: 7024 Comm: syz.3.1441 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   90.625000][ T7024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   90.625014][ T7024] Call Trace:
[   90.625021][ T7024]  <TASK>
[   90.625030][ T7024]  dump_stack_lvl+0xf2/0x150
[   90.625130][ T7024]  dump_stack+0x15/0x1a
[   90.625153][ T7024]  should_fail_ex+0x24a/0x260
[   90.625223][ T7024]  ? sctp_add_bind_addr+0x6f/0x1e0
[   90.625263][ T7024]  should_failslab+0x8f/0xb0
[   90.625294][ T7024]  __kmalloc_cache_noprof+0x4e/0x320
[   90.625337][ T7024]  sctp_add_bind_addr+0x6f/0x1e0
[   90.625390][ T7024]  sctp_copy_local_addr_list+0x19b/0x220
[   90.625443][ T7024]  sctp_copy_one_addr+0x83/0x410
[   90.625495][ T7024]  sctp_bind_addr_copy+0x81/0x2b0
[   90.625532][ T7024]  sctp_assoc_set_bind_addr_from_ep+0xc0/0xd0
[   90.625624][ T7024]  sctp_connect_new_asoc+0x1d0/0x3b0
[   90.625675][ T7024]  sctp_sendmsg+0xf05/0x1920
[   90.625712][ T7024]  ? __pfx_sctp_sendmsg+0x10/0x10
[   90.625739][ T7024]  inet_sendmsg+0xc5/0xd0
[   90.625847][ T7024]  __sock_sendmsg+0x102/0x180
[   90.625873][ T7024]  ____sys_sendmsg+0x312/0x410
[   90.625912][ T7024]  __sys_sendmmsg+0x227/0x4b0
[   90.625989][ T7024]  __x64_sys_sendmmsg+0x57/0x70
[   90.626026][ T7024]  x64_sys_call+0x29aa/0x2dc0
[   90.626057][ T7024]  do_syscall_64+0xc9/0x1c0
[   90.626086][ T7024]  ? clear_bhb_loop+0x55/0xb0
[   90.626165][ T7024]  ? clear_bhb_loop+0x55/0xb0
[   90.626197][ T7024]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.626228][ T7024] RIP: 0033:0x7f4a81e5cde9
[   90.626245][ T7024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.626295][ T7024] RSP: 002b:00007f4a804c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   90.626316][ T7024] RAX: ffffffffffffffda RBX: 00007f4a82075fa0 RCX: 00007f4a81e5cde9
[   90.626329][ T7024] RDX: 0000000000000002 RSI: 0000400000000880 RDI: 0000000000000005
[   90.626340][ T7024] RBP: 00007f4a804c7090 R08: 0000000000000000 R09: 0000000000000000
[   90.626351][ T7024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.626364][ T7024] R13: 0000000000000000 R14: 00007f4a82075fa0 R15: 00007ffed71df538
[   90.626387][ T7024]  </TASK>
[   90.888309][ T7029] netlink: 'syz.1.1443': attribute type 4 has an invalid length.
[   90.902870][ T7032] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1444'.
[   90.913800][ T7029] netlink: 'syz.1.1443': attribute type 4 has an invalid length.
[   90.955235][ T7029] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1443'.
[   90.991700][ T7039] rdma_op ffff888118096980 conn xmit_rdma 0000000000000000
[   91.054092][ T7040] loop3: detected capacity change from 0 to 8192
[   91.082680][   T29] kauditd_printk_skb: 296 callbacks suppressed
[   91.082696][   T29] audit: type=1326 audit(1739333436.552:3092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.100363][ T7051] capability: warning: `syz.2.1453' uses deprecated v2 capabilities in a way that may be insecure
[   91.129310][ T7052] netlink: 'syz.2.1453': attribute type 1 has an invalid length.
[   91.140921][ T7054] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   91.151437][   T29] audit: type=1326 audit(1739333436.562:3093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.175282][   T29] audit: type=1326 audit(1739333436.562:3094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.198998][   T29] audit: type=1326 audit(1739333436.562:3095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.222631][   T29] audit: type=1326 audit(1739333436.562:3096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.246024][   T29] audit: type=1326 audit(1739333436.562:3097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.269748][   T29] audit: type=1326 audit(1739333436.562:3098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.293182][   T29] audit: type=1326 audit(1739333436.562:3099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.293212][   T29] audit: type=1326 audit(1739333436.562:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.293292][   T29] audit: type=1326 audit(1739333436.562:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7050 comm="syz.2.1453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[   91.415817][ T7073] FAULT_INJECTION: forcing a failure.
[   91.415817][ T7073] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.415992][ T7073] CPU: 0 UID: 0 PID: 7073 Comm: syz.2.1460 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   91.416019][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   91.416032][ T7073] Call Trace:
[   91.416039][ T7073]  <TASK>
[   91.416052][ T7073]  dump_stack_lvl+0xf2/0x150
[   91.416078][ T7073]  dump_stack+0x15/0x1a
[   91.416102][ T7073]  should_fail_ex+0x24a/0x260
[   91.416161][ T7073]  should_fail+0xb/0x10
[   91.416196][ T7073]  should_fail_usercopy+0x1a/0x20
[   91.416219][ T7073]  _copy_to_user+0x20/0xa0
[   91.416242][ T7073]  simple_read_from_buffer+0xa0/0x110
[   91.416351][ T7073]  proc_fail_nth_read+0xf9/0x140
[   91.416382][ T7073]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   91.416412][ T7073]  vfs_read+0x19b/0x6f0
[   91.416437][ T7073]  ? __rcu_read_unlock+0x4e/0x70
[   91.416465][ T7073]  ? __fget_files+0x17c/0x1c0
[   91.416566][ T7073]  ksys_read+0xe8/0x1b0
[   91.416593][ T7073]  __x64_sys_read+0x42/0x50
[   91.416619][ T7073]  x64_sys_call+0x2874/0x2dc0
[   91.416652][ T7073]  do_syscall_64+0xc9/0x1c0
[   91.416729][ T7073]  ? clear_bhb_loop+0x55/0xb0
[   91.416764][ T7073]  ? clear_bhb_loop+0x55/0xb0
[   91.416797][ T7073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.416843][ T7073] RIP: 0033:0x7ffa51ebb7fc
[   91.416872][ T7073] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   91.416934][ T7073] RSP: 002b:00007ffa50521030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   91.416956][ T7073] RAX: ffffffffffffffda RBX: 00007ffa520d5fa0 RCX: 00007ffa51ebb7fc
[   91.417041][ T7073] RDX: 000000000000000f RSI: 00007ffa505210a0 RDI: 0000000000000007
[   91.417056][ T7073] RBP: 00007ffa50521090 R08: 0000000000000000 R09: 0000000000000000
[   91.417075][ T7073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.417089][ T7073] R13: 0000000000000000 R14: 00007ffa520d5fa0 R15: 00007ffd27f34bc8
[   91.417111][ T7073]  </TASK>
[   92.219290][ T7094] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.372629][ T7094] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.476899][ T7094] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.548114][ T7094] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.669078][ T7094] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.720348][ T7094] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.786506][ T7094] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.863670][ T7094] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.054059][ T7124] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   93.249480][ T7139] SELinux:  Context system_u:object_r:apt_var_log_t:s0 is not valid (left unmapped).
[   93.265252][ T7142] FAULT_INJECTION: forcing a failure.
[   93.265252][ T7142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.278469][ T7142] CPU: 0 UID: 0 PID: 7142 Comm: gtp Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   93.278526][ T7142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   93.278541][ T7142] Call Trace:
[   93.278547][ T7142]  <TASK>
[   93.278556][ T7142]  dump_stack_lvl+0xf2/0x150
[   93.278642][ T7142]  dump_stack+0x15/0x1a
[   93.278668][ T7142]  should_fail_ex+0x24a/0x260
[   93.278779][ T7142]  should_fail+0xb/0x10
[   93.278808][ T7142]  should_fail_usercopy+0x1a/0x20
[   93.278831][ T7142]  _copy_from_user+0x1c/0xa0
[   93.278859][ T7142]  copy_msghdr_from_user+0x54/0x2a0
[   93.278912][ T7142]  ? __fget_files+0x17c/0x1c0
[   93.278942][ T7142]  __sys_sendmsg+0x13e/0x230
[   93.279051][ T7142]  __x64_sys_sendmsg+0x46/0x50
[   93.279080][ T7142]  x64_sys_call+0x2734/0x2dc0
[   93.279111][ T7142]  do_syscall_64+0xc9/0x1c0
[   93.279141][ T7142]  ? clear_bhb_loop+0x55/0xb0
[   93.279201][ T7142]  ? clear_bhb_loop+0x55/0xb0
[   93.279230][ T7142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.279262][ T7142] RIP: 0033:0x7f343ceccde9
[   93.279279][ T7142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.279297][ T7142] RSP: 002b:00007f343b537038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   93.279375][ T7142] RAX: ffffffffffffffda RBX: 00007f343d0e5fa0 RCX: 00007f343ceccde9
[   93.279391][ T7142] RDX: 0000000000008000 RSI: 0000400000000180 RDI: 0000000000000005
[   93.279405][ T7142] RBP: 00007f343b537090 R08: 0000000000000000 R09: 0000000000000000
[   93.279419][ T7142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.279480][ T7142] R13: 0000000000000000 R14: 00007f343d0e5fa0 R15: 00007ffddd596d98
[   93.279502][ T7142]  </TASK>
[   93.321726][ T7143] syzkaller0: entered promiscuous mode
[   93.464489][ T7143] syzkaller0: entered allmulticast mode
[   93.865742][ T7174] block device autoloading is deprecated and will be removed.
[   93.888591][ T7174] syz.3.1497: attempt to access beyond end of device
[   93.888591][ T7174] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   94.084208][ T7191] FAULT_INJECTION: forcing a failure.
[   94.084208][ T7191] name failslab, interval 1, probability 0, space 0, times 0
[   94.096960][ T7191] CPU: 0 UID: 0 PID: 7191 Comm: syz.3.1507 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   94.097068][ T7191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   94.097083][ T7191] Call Trace:
[   94.097091][ T7191]  <TASK>
[   94.097100][ T7191]  dump_stack_lvl+0xf2/0x150
[   94.097132][ T7191]  dump_stack+0x15/0x1a
[   94.097153][ T7191]  should_fail_ex+0x24a/0x260
[   94.097187][ T7191]  should_failslab+0x8f/0xb0
[   94.097286][ T7191]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   94.097386][ T7191]  ? hugetlbfs_alloc_inode+0xbc/0x100
[   94.097410][ T7191]  ? should_fail_ex+0xd7/0x260
[   94.097483][ T7191]  hugetlbfs_alloc_inode+0xbc/0x100
[   94.097506][ T7191]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[   94.097530][ T7191]  alloc_inode+0x3c/0x160
[   94.097558][ T7191]  new_inode+0x1e/0x100
[   94.097590][ T7191]  hugetlbfs_get_inode+0x7d/0x380
[   94.097671][ T7191]  hugetlb_file_setup+0x188/0x3c0
[   94.097785][ T7191]  ksys_mmap_pgoff+0x172/0x330
[   94.097817][ T7191]  x64_sys_call+0x1940/0x2dc0
[   94.097849][ T7191]  do_syscall_64+0xc9/0x1c0
[   94.097873][ T7191]  ? clear_bhb_loop+0x55/0xb0
[   94.097935][ T7191]  ? clear_bhb_loop+0x55/0xb0
[   94.097962][ T7191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.097988][ T7191] RIP: 0033:0x7f4a81e5cde9
[   94.098002][ T7191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.098022][ T7191] RSP: 002b:00007f4a804c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   94.098045][ T7191] RAX: ffffffffffffffda RBX: 00007f4a82075fa0 RCX: 00007f4a81e5cde9
[   94.098099][ T7191] RDX: 000000000000000b RSI: 0000000000ff5000 RDI: 0000400000000000
[   94.098114][ T7191] RBP: 00007f4a804c7090 R08: ffffffffffffffff R09: 0000000000200000
[   94.098129][ T7191] R10: 000200000005c832 R11: 0000000000000246 R12: 0000000000000001
[   94.098144][ T7191] R13: 0000000000000000 R14: 00007f4a82075fa0 R15: 00007ffed71df538
[   94.098163][ T7191]  </TASK>
[   94.351473][ T7199] tmpfs: Bad value for 'mpol'
[   95.011326][ T7215] program syz.4.1516 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   95.058995][ T7227] loop3: detected capacity change from 0 to 1024
[   95.073681][ T7229] tmpfs: Bad value for 'mpol'
[   95.094077][ T7227] journal_path: Non-blockdev passed as './file1'
[   95.100509][ T7227] EXT4-fs: error: could not find journal device path
[   95.118309][ T7234] __nla_validate_parse: 16 callbacks suppressed
[   95.118323][ T7234] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1525'.
[   95.133733][ T7234] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1525'.
[   95.169088][ T7227] FAULT_INJECTION: forcing a failure.
[   95.169088][ T7227] name failslab, interval 1, probability 0, space 0, times 0
[   95.181825][ T7227] CPU: 1 UID: 0 PID: 7227 Comm: syz.3.1521 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   95.181852][ T7227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   95.181865][ T7227] Call Trace:
[   95.181872][ T7227]  <TASK>
[   95.181881][ T7227]  dump_stack_lvl+0xf2/0x150
[   95.181914][ T7227]  dump_stack+0x15/0x1a
[   95.181938][ T7227]  should_fail_ex+0x24a/0x260
[   95.182049][ T7227]  should_failslab+0x8f/0xb0
[   95.182115][ T7227]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   95.182157][ T7227]  ? audit_log_vformat+0x23a/0x490
[   95.182188][ T7227]  ? sidtab_sid2str_get+0xb8/0x140
[   95.182215][ T7227]  kmemdup_noprof+0x2a/0x60
[   95.182356][ T7227]  sidtab_sid2str_get+0xb8/0x140
[   95.182383][ T7227]  security_sid_to_context_core+0x1eb/0x2f0
[   95.182429][ T7227]  security_sid_to_context+0x27/0x30
[   95.182462][ T7227]  avc_audit_post_callback+0x10d/0x530
[   95.182544][ T7227]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   95.182576][ T7227]  common_lsm_audit+0x95e/0x1020
[   95.182616][ T7227]  slow_avc_audit+0xf9/0x140
[   95.182662][ T7227]  avc_has_perm+0x129/0x160
[   95.182739][ T7227]  sel_write_load+0xe5/0x360
[   95.182767][ T7227]  ? __pfx_sel_write_load+0x10/0x10
[   95.182794][ T7227]  vfs_write+0x27d/0x920
[   95.182816][ T7227]  ? __fget_files+0x17c/0x1c0
[   95.182851][ T7227]  ksys_write+0xe8/0x1b0
[   95.182889][ T7227]  __x64_sys_write+0x42/0x50
[   95.182916][ T7227]  x64_sys_call+0x287e/0x2dc0
[   95.182945][ T7227]  do_syscall_64+0xc9/0x1c0
[   95.182968][ T7227]  ? clear_bhb_loop+0x55/0xb0
[   95.182997][ T7227]  ? clear_bhb_loop+0x55/0xb0
[   95.183113][ T7227]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.183146][ T7227] RIP: 0033:0x7f4a81e5cde9
[   95.183164][ T7227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.183185][ T7227] RSP: 002b:00007f4a804c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   95.183207][ T7227] RAX: ffffffffffffffda RBX: 00007f4a82075fa0 RCX: 00007f4a81e5cde9
[   95.183222][ T7227] RDX: 0000000000000010 RSI: 00004000000000c0 RDI: 0000000000000004
[   95.183237][ T7227] RBP: 00007f4a804c7090 R08: 0000000000000000 R09: 0000000000000000
[   95.183251][ T7227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.183299][ T7227] R13: 0000000000000000 R14: 00007f4a82075fa0 R15: 00007ffed71df538
[   95.183317][ T7227]  </TASK>
[   95.421095][ T7227] SELinux: failed to load policy
[   95.480921][ T7244] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1528'.
[   95.610575][ T7256] tmpfs: Bad value for 'mpol'
[   95.783443][ T7264] rdma_op ffff888119964580 conn xmit_rdma 0000000000000000
[   95.846209][ T7266] tmpfs: Bad value for 'mpol'
[   95.905649][ T7274] rdma_op ffff88810b0a6980 conn xmit_rdma 0000000000000000
[   96.113431][   T29] kauditd_printk_skb: 97 callbacks suppressed
[   96.113448][   T29] audit: type=1326 audit(1739333441.582:3199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7271 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[   96.143092][   T29] audit: type=1326 audit(1739333441.582:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7271 comm="syz.3.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[   96.181201][ T7280] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1546'.
[   96.197218][ T7283] SELinux:  policydb magic number 0x6 does not match expected magic number 0xf97cff8c
[   96.206989][ T7283] SELinux: failed to load policy
[   96.278134][   T29] audit: type=1326 audit(1739333441.752:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.326605][   T29] audit: type=1326 audit(1739333441.752:3202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.350069][   T29] audit: type=1326 audit(1739333441.752:3203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.373593][   T29] audit: type=1326 audit(1739333441.752:3204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.397202][   T29] audit: type=1326 audit(1739333441.752:3205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.420665][   T29] audit: type=1326 audit(1739333441.752:3206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.444165][   T29] audit: type=1326 audit(1739333441.752:3207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.467605][   T29] audit: type=1326 audit(1739333441.752:3208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7288 comm="syz.1.1550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[   96.504157][ T7292] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   96.665227][ T7304] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1555'.
[   96.756292][ T7313] xt_CHECKSUM: unsupported CHECKSUM operation f4
[   96.799459][ T7315] FAULT_INJECTION: forcing a failure.
[   96.799459][ T7315] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.812573][ T7315] CPU: 1 UID: 0 PID: 7315 Comm: syz.0.1551 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   96.812603][ T7315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   96.812682][ T7315] Call Trace:
[   96.812688][ T7315]  <TASK>
[   96.812696][ T7315]  dump_stack_lvl+0xf2/0x150
[   96.812728][ T7315]  dump_stack+0x15/0x1a
[   96.812883][ T7315]  should_fail_ex+0x24a/0x260
[   96.812924][ T7315]  should_fail+0xb/0x10
[   96.812959][ T7315]  should_fail_usercopy+0x1a/0x20
[   96.812982][ T7315]  _copy_to_user+0x20/0xa0
[   96.813010][ T7315]  simple_read_from_buffer+0xa0/0x110
[   96.813062][ T7315]  proc_fail_nth_read+0xf9/0x140
[   96.813090][ T7315]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   96.813124][ T7315]  vfs_read+0x19b/0x6f0
[   96.813148][ T7315]  ? __rcu_read_unlock+0x4e/0x70
[   96.813203][ T7315]  ? __fget_files+0x17c/0x1c0
[   96.813308][ T7315]  ksys_read+0xe8/0x1b0
[   96.813336][ T7315]  __x64_sys_read+0x42/0x50
[   96.813361][ T7315]  x64_sys_call+0x2874/0x2dc0
[   96.813448][ T7315]  do_syscall_64+0xc9/0x1c0
[   96.813477][ T7315]  ? clear_bhb_loop+0x55/0xb0
[   96.813587][ T7315]  ? clear_bhb_loop+0x55/0xb0
[   96.813613][ T7315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.813664][ T7315] RIP: 0033:0x7f610910b7fc
[   96.813682][ T7315] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   96.813704][ T7315] RSP: 002b:00007f6107777030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   96.813725][ T7315] RAX: ffffffffffffffda RBX: 00007f6109325fa0 RCX: 00007f610910b7fc
[   96.813739][ T7315] RDX: 000000000000000f RSI: 00007f61077770a0 RDI: 0000000000000003
[   96.813753][ T7315] RBP: 00007f6107777090 R08: 0000000000000000 R09: 0000000000000000
[   96.813765][ T7315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.813778][ T7315] R13: 0000000000000000 R14: 00007f6109325fa0 R15: 00007ffd9e854a28
[   96.813828][ T7315]  </TASK>
[   97.170158][ T7321] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1561'.
[   97.409535][ T7341] xt_CHECKSUM: unsupported CHECKSUM operation f4
[   97.507873][ T7356] netlink: 332 bytes leftover after parsing attributes in process `syz.1.1570'.
[   97.521087][ T7352] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   97.529184][ T7358] random: crng reseeded on system resumption
[   97.571450][ T7356] netlink: 'syz.1.1570': attribute type 9 has an invalid length.
[   97.579282][ T7356] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1570'.
[   97.588362][ T7356] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1570'.
[   97.633306][ T7367] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1575'.
[   97.802640][ T7375] 9pnet: Could not find request transport: fd0x0000000000000003
[   97.942735][ T7386] FAULT_INJECTION: forcing a failure.
[   97.942735][ T7386] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   97.956092][ T7386] CPU: 0 UID: 0 PID: 7386 Comm: syz.4.1583 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   97.956119][ T7386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   97.956134][ T7386] Call Trace:
[   97.956181][ T7386]  <TASK>
[   97.956190][ T7386]  dump_stack_lvl+0xf2/0x150
[   97.956223][ T7386]  dump_stack+0x15/0x1a
[   97.956248][ T7386]  should_fail_ex+0x24a/0x260
[   97.956322][ T7386]  should_fail_alloc_page+0xfd/0x110
[   97.956348][ T7386]  __alloc_frozen_pages_noprof+0x109/0x340
[   97.956380][ T7386]  alloc_pages_mpol+0xb4/0x260
[   97.956421][ T7386]  vma_alloc_folio_noprof+0x1a0/0x310
[   97.956478][ T7386]  handle_mm_fault+0xdd7/0x2ac0
[   97.956521][ T7386]  exc_page_fault+0x296/0x650
[   97.956540][ T7386]  ? pagemap_pte_hole+0x24c/0x280
[   97.956594][ T7386]  asm_exc_page_fault+0x26/0x30
[   97.956623][ T7386] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   97.956663][ T7386] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   97.956747][ T7386] RSP: 0018:ffffc90016bf7d58 EFLAGS: 00050206
[   97.956764][ T7386] RAX: ffff888118a7bc08 RBX: 0000400000002240 RCX: 0000000000000240
[   97.956776][ T7386] RDX: 0000000000000000 RSI: ffff88810b12edc0 RDI: 0000400000002000
[   97.956789][ T7386] RBP: 0000000000001000 R08: 0000000080000000 R09: 0000000000000000
[   97.956803][ T7386] R10: 000188810b12e000 R11: 000188810b12efff R12: 0000000000001000
[   97.956838][ T7386] R13: 00007ffffffff000 R14: 0000400000001240 R15: ffff88810b12e000
[   97.956862][ T7386]  _copy_to_user+0x7c/0xa0
[   97.956890][ T7386]  pagemap_read+0x3af/0x610
[   97.956944][ T7386]  ? __pfx_pagemap_read+0x10/0x10
[   97.956969][ T7386]  vfs_read+0x19b/0x6f0
[   97.956991][ T7386]  ? __rcu_read_unlock+0x4e/0x70
[   97.957014][ T7386]  ? __fget_files+0x17c/0x1c0
[   97.957046][ T7386]  __x64_sys_pread64+0xf6/0x150
[   97.957176][ T7386]  x64_sys_call+0x26ee/0x2dc0
[   97.957208][ T7386]  do_syscall_64+0xc9/0x1c0
[   97.957344][ T7386]  ? clear_bhb_loop+0x55/0xb0
[   97.957437][ T7386]  ? clear_bhb_loop+0x55/0xb0
[   97.957469][ T7386]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.957513][ T7386] RIP: 0033:0x7f771d67cde9
[   97.957530][ T7386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.957547][ T7386] RSP: 002b:00007f771bce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[   97.957571][ T7386] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67cde9
[   97.957629][ T7386] RDX: 0000000000200000 RSI: 0000400000001240 RDI: 0000000000000003
[   97.957643][ T7386] RBP: 00007f771bce7090 R08: 0000000000000000 R09: 0000000000000000
[   97.957656][ T7386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.957703][ T7386] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[   97.957721][ T7386]  </TASK>
[   98.170026][ T7395] rdma_op ffff88811450e580 conn xmit_rdma 0000000000000000
[   98.392863][ T7407] 9pnet: Could not find request transport: fd0x0000000000000003
[   98.485451][ T7419] tmpfs: Bad value for 'mpol'
[   98.565356][ T7429] rdma_op ffff888109101180 conn xmit_rdma 0000000000000000
[   98.767301][ T7441] 9pnet: Could not find request transport: fd0x0000000000000003
[   98.857341][ T7451] FAULT_INJECTION: forcing a failure.
[   98.857341][ T7451] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   98.870892][ T7451] CPU: 1 UID: 0 PID: 7451 Comm: syz.4.1609 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   98.870923][ T7451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   98.870954][ T7451] Call Trace:
[   98.870959][ T7451]  <TASK>
[   98.870967][ T7451]  dump_stack_lvl+0xf2/0x150
[   98.870997][ T7451]  dump_stack+0x15/0x1a
[   98.871017][ T7451]  should_fail_ex+0x24a/0x260
[   98.871077][ T7451]  should_fail_alloc_page+0xfd/0x110
[   98.871125][ T7451]  __alloc_frozen_pages_noprof+0x109/0x340
[   98.871156][ T7451]  alloc_pages_mpol+0xb4/0x260
[   98.871194][ T7451]  vma_alloc_folio_noprof+0x1a0/0x310
[   98.871232][ T7451]  do_wp_page+0x64b/0x2340
[   98.871282][ T7451]  ? __rcu_read_lock+0x36/0x50
[   98.871310][ T7451]  handle_mm_fault+0xc63/0x2ac0
[   98.871356][ T7451]  exc_page_fault+0x3b9/0x650
[   98.871397][ T7451]  asm_exc_page_fault+0x26/0x30
[   98.871466][ T7451] RIP: 0033:0x7f771d53fc50
[   98.871480][ T7451] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[   98.871498][ T7451] RSP: 002b:00007f771bce64a0 EFLAGS: 00010282
[   98.871516][ T7451] RAX: 000000000000c200 RBX: 00007f771bce6540 RCX: 000000000000001e
[   98.871603][ T7451] RDX: 000000000000ffff RSI: 0000000000008000 RDI: 00007f771bce65e0
[   98.871617][ T7451] RBP: 000000000000001f R08: 00007f77138c7000 R09: 00000000000000f8
[   98.871631][ T7451] R10: 0000400000001602 R11: 000000000000126d R12: 0000000000006001
[   98.871645][ T7451] R13: 00007f771d7193e0 R14: 000000000000001d R15: 00007f771bce65e0
[   98.871733][ T7451]  </TASK>
[   98.871789][ T7451] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   99.041844][ T7456] FAULT_INJECTION: forcing a failure.
[   99.041844][ T7456] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   99.055274][ T7456] CPU: 1 UID: 0 PID: 7456 Comm: syz.3.1610 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[   99.055305][ T7456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   99.055347][ T7456] Call Trace:
[   99.055352][ T7456]  <TASK>
[   99.055360][ T7456]  dump_stack_lvl+0xf2/0x150
[   99.055387][ T7456]  dump_stack+0x15/0x1a
[   99.055408][ T7456]  should_fail_ex+0x24a/0x260
[   99.055442][ T7456]  should_fail_alloc_page+0xfd/0x110
[   99.055511][ T7456]  __alloc_frozen_pages_noprof+0x109/0x340
[   99.055540][ T7456]  alloc_pages_mpol+0xb4/0x260
[   99.055631][ T7456]  vma_alloc_folio_noprof+0x1a0/0x310
[   99.055705][ T7456]  handle_mm_fault+0xdd7/0x2ac0
[   99.055746][ T7456]  exc_page_fault+0x3b9/0x650
[   99.055767][ T7456]  asm_exc_page_fault+0x26/0x30
[   99.055878][ T7456] RIP: 0033:0x7f4a81d1fba3
[   99.055893][ T7456] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   99.055911][ T7456] RSP: 002b:00007f4a804c64a0 EFLAGS: 00010202
[   99.055925][ T7456] RAX: 0000000000002000 RBX: 00007f4a804c6540 RCX: 00007f4a780a7000
[   99.056002][ T7456] RDX: 00007f4a804c66e0 RSI: 0000000000000017 RDI: 00007f4a804c65e0
[   99.056059][ T7456] RBP: 000000000000006a R08: 0000000000000008 R09: 00000000000000b0
[   99.056071][ T7456] R10: 00000000000000bc R11: 00007f4a804c6540 R12: 0000000000000001
[   99.056082][ T7456] R13: 00007f4a81ef93e0 R14: 0000000000000080 R15: 00007f4a804c65e0
[   99.056100][ T7456]  </TASK>
[   99.056201][ T7456] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   99.113259][ T7451] loop4: detected capacity change from 0 to 8192
[   99.164979][ T7456] loop3: detected capacity change from 0 to 1024
[   99.235582][ T7456] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   99.245410][ T7456] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   99.255316][ T7456] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   99.304229][ T7456] EXT4-fs error (device loop3): ext4_get_journal_inode:5798: inode #5: comm syz.3.1610: unexpected bad inode w/o EXT4_IGET_BAD
[   99.322533][ T7456] EXT4-fs (loop3): no journal found
[   99.398950][ T7468] rdma_op ffff88810b0a6d80 conn xmit_rdma 0000000000000000
[   99.478088][ T7477] 9pnet_fd: Insufficient options for proto=fd
[   99.548138][ T7488] loop4: detected capacity change from 0 to 256
[   99.622602][ T7491] loop2: detected capacity change from 0 to 1024
[   99.644315][ T7493] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[   99.645314][ T7491] EXT4-fs: Ignoring removed orlov option
[   99.678089][ T7491] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.701212][ T7491] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.752665][ T7512] rdma_op ffff88811450e580 conn xmit_rdma 0000000000000000
[   99.851177][ T7521] 9pnet_fd: Insufficient options for proto=fd
[   99.930862][ T7527] loop3: detected capacity change from 0 to 128
[  100.615703][ T7546] __nla_validate_parse: 5 callbacks suppressed
[  100.615720][ T7546] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1646'.
[  100.975024][ T7550] 9pnet_fd: Insufficient options for proto=fd
[  101.025978][ T7491] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  101.032642][ T7491] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  101.040271][ T7491] vhci_hcd vhci_hcd.0: Device attached
[  101.095092][ T7558] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1650'.
[  101.119420][   T29] kauditd_printk_skb: 289 callbacks suppressed
[  101.119436][   T29] audit: type=1326 audit(1739333446.592:3498): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.185455][   T29] audit: type=1326 audit(1739333446.592:3499): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.209433][ T7564] loop4: detected capacity change from 0 to 1024
[  101.209473][   T29] audit: type=1326 audit(1739333446.592:3500): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.236881][ T7564] EXT4-fs: Ignoring removed nobh option
[  101.239718][   T29] audit: type=1326 audit(1739333446.592:3501): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.239768][   T29] audit: type=1326 audit(1739333446.592:3502): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.239819][   T29] audit: type=1326 audit(1739333446.592:3503): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.245713][ T7564] EXT4-fs: Ignoring removed bh option
[  101.269159][   T29] audit: type=1326 audit(1739333446.592:3504): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.269270][   T29] audit: type=1326 audit(1739333446.592:3505): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.305821][ T1113] vhci_hcd: vhci_device speed not set
[  101.316873][   T29] audit: type=1326 audit(1739333446.592:3506): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.399948][   T29] audit: type=1326 audit(1739333446.592:3507): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7556 comm="syz.3.1650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  101.424904][ T1113] usb 5-1: new full-speed USB device number 2 using vhci_hcd
[  101.448046][ T7574] loop3: detected capacity change from 0 to 512
[  101.467754][ T7574] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  101.495818][ T7574] EXT4-fs (loop3): mount failed
[  101.498845][ T7564] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.554071][ T7567] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  101.624640][ T7553] vhci_hcd: connection reset by peer
[  101.628000][ T7589] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1659'.
[  101.645227][   T55] vhci_hcd: stop threads
[  101.649526][   T55] vhci_hcd: release socket
[  101.653975][   T55] vhci_hcd: disconnect device
[  101.673041][ T7593] 9pnet_fd: Insufficient options for proto=fd
[  101.736433][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.894004][ T3297] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.904350][ T7618] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1668'.
[  101.960553][ T7624] 9pnet_fd: Insufficient options for proto=fd
[  101.989892][ T7628] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1674'.
[  102.108484][ T7642] loop4: detected capacity change from 0 to 1024
[  102.120934][ T7642] EXT4-fs: Ignoring removed nobh option
[  102.126724][ T7642] EXT4-fs: Ignoring removed bh option
[  102.173426][ T7642] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.200828][ T7651] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  102.255276][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.288207][ T7639] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1680'.
[  102.386469][ T7664] 9pnet_fd: Insufficient options for proto=fd
[  102.407285][ T7667] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1686'.
[  102.795684][ T7662] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1684'.
[  102.859799][ T7699] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1698'.
[  103.122958][ T7687] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1693'.
[  103.286304][ T7721] loop4: detected capacity change from 0 to 128
[  103.332046][ T7723] loop0: detected capacity change from 0 to 764
[  103.398807][ T7723] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  104.011304][ T7750] loop0: detected capacity change from 0 to 1024
[  104.022512][ T7750] EXT4-fs: Ignoring removed nobh option
[  104.028143][ T7750] EXT4-fs: Ignoring removed bh option
[  104.051039][ T7751] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  104.078376][ T7750] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.141872][ T7742] xt_TPROXY: Can be used only with -p tcp or -p udp
[  104.153693][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.268979][ T7766] FAULT_INJECTION: forcing a failure.
[  104.268979][ T7766] name failslab, interval 1, probability 0, space 0, times 0
[  104.281873][ T7766] CPU: 1 UID: 0 PID: 7766 Comm: syz.3.1722 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  104.281904][ T7766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  104.281919][ T7766] Call Trace:
[  104.281927][ T7766]  <TASK>
[  104.281936][ T7766]  dump_stack_lvl+0xf2/0x150
[  104.281969][ T7766]  dump_stack+0x15/0x1a
[  104.281994][ T7766]  should_fail_ex+0x24a/0x260
[  104.282093][ T7766]  should_failslab+0x8f/0xb0
[  104.282124][ T7766]  kmem_cache_alloc_node_noprof+0x59/0x320
[  104.282217][ T7766]  ? __alloc_skb+0x10b/0x310
[  104.282240][ T7766]  ? __rtnl_unlock+0x99/0xb0
[  104.282260][ T7766]  __alloc_skb+0x10b/0x310
[  104.282358][ T7766]  netlink_ack+0xef/0x4f0
[  104.282394][ T7766]  ? __dev_queue_xmit+0x186/0x2090
[  104.282458][ T7766]  netlink_rcv_skb+0x19c/0x230
[  104.282491][ T7766]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  104.282530][ T7766]  rtnetlink_rcv+0x1c/0x30
[  104.282611][ T7766]  netlink_unicast+0x599/0x670
[  104.282683][ T7766]  netlink_sendmsg+0x5cc/0x6e0
[  104.282726][ T7766]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.282765][ T7766]  __sock_sendmsg+0x140/0x180
[  104.282801][ T7766]  ____sys_sendmsg+0x312/0x410
[  104.282840][ T7766]  __sys_sendmsg+0x19d/0x230
[  104.282895][ T7766]  __x64_sys_sendmsg+0x46/0x50
[  104.283027][ T7766]  x64_sys_call+0x2734/0x2dc0
[  104.283095][ T7766]  do_syscall_64+0xc9/0x1c0
[  104.283126][ T7766]  ? clear_bhb_loop+0x55/0xb0
[  104.283198][ T7766]  ? clear_bhb_loop+0x55/0xb0
[  104.283232][ T7766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.283259][ T7766] RIP: 0033:0x7f4a81e5cde9
[  104.283275][ T7766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.283293][ T7766] RSP: 002b:00007f4a804c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  104.283379][ T7766] RAX: ffffffffffffffda RBX: 00007f4a82075fa0 RCX: 00007f4a81e5cde9
[  104.283395][ T7766] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000003
[  104.283409][ T7766] RBP: 00007f4a804c7090 R08: 0000000000000000 R09: 0000000000000000
[  104.283421][ T7766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  104.283433][ T7766] R13: 0000000000000000 R14: 00007f4a82075fa0 R15: 00007ffed71df538
[  104.283450][ T7766]  </TASK>
[  104.514932][ T7769] loop0: detected capacity change from 0 to 128
[  104.693161][ T7775] loop4: detected capacity change from 0 to 512
[  104.719720][ T7775] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  106.083546][ T7779] __nla_validate_parse: 2 callbacks suppressed
[  106.083605][ T7779] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1726'.
[  106.149548][ T7775] EXT4-fs (loop4): orphan cleanup on readonly fs
[  106.235239][ T7775] __quota_error: 64 callbacks suppressed
[  106.235254][ T7775] Quota error (device loop4): do_check_range: Getting block 196613 out of range 1-5
[  106.250474][ T7775] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  106.259908][ T7775] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.1724: Failed to acquire dquot type 1
[  106.273507][ T7775] EXT4-fs (loop4): 1 truncate cleaned up
[  106.280762][ T7775] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  106.540157][ T1113] usb 5-1: enqueue for inactive port 0
[  106.604337][ T1113] usb 5-1: enqueue for inactive port 0
[  106.891292][ T7789] syz.1.1730: attempt to access beyond end of device
[  106.891292][ T7789] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  106.931372][   T29] audit: type=1400 audit(1739333452.402:3571): avc:  denied  { setopt } for  pid=7791 comm="syz.2.1731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  107.029935][   T29] audit: type=1326 audit(1739333452.502:3572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.3.1732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  107.053541][   T29] audit: type=1326 audit(1739333452.502:3573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.3.1732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  107.086010][ T7792] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1731'.
[  107.380133][   T29] audit: type=1326 audit(1739333452.552:3574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.3.1732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  107.403805][   T29] audit: type=1326 audit(1739333452.552:3575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.3.1732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  107.427531][   T29] audit: type=1326 audit(1739333452.552:3576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.3.1732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  107.428572][ T1113] vhci_hcd: vhci_device speed not set
[  107.451086][   T29] audit: type=1326 audit(1739333452.552:3577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7794 comm="syz.3.1732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  107.479885][   T29] audit: type=1400 audit(1739333452.562:3578): avc:  denied  { ioctl } for  pid=7791 comm="syz.2.1731" path="socket:[18772]" dev="sockfs" ino=18772 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  107.506026][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.649486][ T7804] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  108.007414][ T7823] rdma_op ffff88811878dd80 conn xmit_rdma 0000000000000000
[  108.010479][ T7819] loop3: detected capacity change from 0 to 1024
[  108.025700][ T7819] EXT4-fs: Ignoring removed nobh option
[  108.031491][ T7819] EXT4-fs: Ignoring removed bh option
[  108.126858][ T7825] loop4: detected capacity change from 0 to 764
[  108.134087][ T7819] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.162227][ T7825] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  108.239686][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.354199][ T7842] loop3: detected capacity change from 0 to 128
[  108.582983][ T7833] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1745'.
[  109.040096][ T7862] loop4: detected capacity change from 0 to 512
[  109.056477][ T7863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1754'.
[  109.073978][ T7865] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1755'.
[  109.639274][ T7889] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  109.913367][ T7905] loop2: detected capacity change from 0 to 128
[  110.623911][ T7912] loop3: detected capacity change from 0 to 1024
[  110.654027][ T7912] EXT4-fs: Ignoring removed nobh option
[  110.659713][ T7912] EXT4-fs: Ignoring removed bh option
[  110.724392][ T7912] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.852786][ T7927] loop2: detected capacity change from 0 to 512
[  110.890396][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.927633][ T7927] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.005126][ T7927] ext4 filesystem being mounted at /353/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.240358][ T7944] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1775'.
[  111.305612][   T29] kauditd_printk_skb: 69 callbacks suppressed
[  111.305639][   T29] audit: type=1400 audit(1739333456.782:3648): avc:  denied  { write } for  pid=7925 comm="syz.2.1775" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  111.333593][   T29] audit: type=1400 audit(1739333456.782:3649): avc:  denied  { add_name } for  pid=7925 comm="syz.2.1775" name="memory.stat" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  111.355109][   T29] audit: type=1400 audit(1739333456.782:3650): avc:  denied  { create } for  pid=7925 comm="syz.2.1775" name="memory.stat" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  111.394156][   T29] audit: type=1400 audit(1739333456.832:3651): avc:  denied  { append open } for  pid=7925 comm="syz.2.1775" path="/353/file1/memory.stat" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  111.423476][   T29] audit: type=1326 audit(1739333456.892:3652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7952 comm="syz.4.1781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  111.447054][   T29] audit: type=1326 audit(1739333456.892:3653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7952 comm="syz.4.1781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  111.501936][   T29] audit: type=1326 audit(1739333456.902:3654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7952 comm="syz.4.1781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  111.525558][   T29] audit: type=1326 audit(1739333456.902:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7952 comm="syz.4.1781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  111.548993][   T29] audit: type=1326 audit(1739333456.902:3656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7952 comm="syz.4.1781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  111.561281][ T7962] loop4: detected capacity change from 0 to 764
[  111.572491][   T29] audit: type=1326 audit(1739333456.902:3657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7952 comm="syz.4.1781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  111.681245][ T7962] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  111.712659][ T3297] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.882865][ T7989] xt_CT: No such helper "pptp"
[  111.962285][ T8003] loop4: detected capacity change from 0 to 128
[  111.978235][ T7999] loop2: detected capacity change from 0 to 512
[  112.131768][ T7999] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  112.353616][ T7999] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #4: comm syz.2.1789: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 2047, max 0(0), depth 0(0)
[  112.479631][ T7999] EXT4-fs error (device loop2): ext4_quota_enable:7104: comm syz.2.1789: Bad quota inode: 4, type: 1
[  112.483857][ T8018] loop3: detected capacity change from 0 to 128
[  112.490812][ T7999] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  112.693529][ T7999] EXT4-fs (loop2): mount failed
[  113.816259][ T8023] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1795'.
[  113.843481][ T8023] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  113.850988][ T8023] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.016277][ T8023] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.023725][ T8023] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.085717][ T8035] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1799'.
[  114.158109][ T8022] delete_channel: no stack
[  114.202763][ T8037] netlink: 'syz.1.1801': attribute type 1 has an invalid length.
[  114.210760][ T8037] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1801'.
[  114.574330][ T8066] loop2: detected capacity change from 0 to 256
[  114.687379][ T8069] loop2: detected capacity change from 0 to 128
[  115.297454][ T8075] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1812'.
[  115.378077][ T8080] loop3: detected capacity change from 0 to 512
[  115.390434][ T8080] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  115.430492][ T8080] EXT4-fs (loop3): 1 orphan inode deleted
[  115.440578][ T8080] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.462365][ T8080] ext4 filesystem being mounted at /358/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.474302][ T3930] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:7: Failed to release dquot type 1
[  115.615388][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.824866][ T8108] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1824'.
[  116.019794][ T8118] loop3: detected capacity change from 0 to 2048
[  116.041164][ T8120] FAULT_INJECTION: forcing a failure.
[  116.041164][ T8120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  116.054307][ T8120] CPU: 1 UID: 0 PID: 8120 Comm: syz.4.1827 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  116.054370][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  116.054386][ T8120] Call Trace:
[  116.054394][ T8120]  <TASK>
[  116.054402][ T8120]  dump_stack_lvl+0xf2/0x150
[  116.054437][ T8120]  dump_stack+0x15/0x1a
[  116.054462][ T8120]  should_fail_ex+0x24a/0x260
[  116.054495][ T8120]  should_fail+0xb/0x10
[  116.054608][ T8120]  should_fail_usercopy+0x1a/0x20
[  116.054631][ T8120]  _copy_from_user+0x1c/0xa0
[  116.054658][ T8120]  copy_msghdr_from_user+0x54/0x2a0
[  116.054688][ T8120]  ? __fget_files+0x17c/0x1c0
[  116.054726][ T8120]  __sys_sendmsg+0x13e/0x230
[  116.054805][ T8120]  __x64_sys_sendmsg+0x46/0x50
[  116.054921][ T8120]  x64_sys_call+0x2734/0x2dc0
[  116.054953][ T8120]  do_syscall_64+0xc9/0x1c0
[  116.054984][ T8120]  ? clear_bhb_loop+0x55/0xb0
[  116.055086][ T8120]  ? clear_bhb_loop+0x55/0xb0
[  116.055189][ T8120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.055223][ T8120] RIP: 0033:0x7f771d67cde9
[  116.055240][ T8120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.055259][ T8120] RSP: 002b:00007f771bce7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  116.055277][ T8120] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67cde9
[  116.055294][ T8120] RDX: 0000000000000000 RSI: 0000400000000100 RDI: 0000000000000004
[  116.055308][ T8120] RBP: 00007f771bce7090 R08: 0000000000000000 R09: 0000000000000000
[  116.055322][ T8120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.055336][ T8120] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[  116.055425][ T8120]  </TASK>
[  116.234240][ T8118] tmpfs: Bad value for 'mpol'
[  116.240865][ T8118] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  116.274617][ T8122] loop4: detected capacity change from 0 to 512
[  116.299955][ T8122] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #15: comm syz.4.1829: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[  116.330138][ T8122] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1829: couldn't read orphan inode 15 (err -117)
[  116.349767][ T8127] loop3: detected capacity change from 0 to 128
[  116.370950][ T8122] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.489313][   T29] kauditd_printk_skb: 136 callbacks suppressed
[  116.489331][   T29] audit: type=1326 audit(1739333461.962:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.519396][   T29] audit: type=1400 audit(1739333461.972:3792): avc:  denied  { create } for  pid=8121 comm="syz.4.1829" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  116.539469][   T29] audit: type=1326 audit(1739333461.992:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.567181][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.576505][   T29] audit: type=1326 audit(1739333461.992:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.600022][   T29] audit: type=1326 audit(1739333461.992:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.623482][   T29] audit: type=1326 audit(1739333461.992:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.647029][   T29] audit: type=1326 audit(1739333461.992:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.670489][   T29] audit: type=1326 audit(1739333461.992:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.693767][   T29] audit: type=1326 audit(1739333461.992:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  116.717249][   T29] audit: type=1326 audit(1739333461.992:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8129 comm="syz.1.1832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  117.142887][ T8147] sctp: [Deprecated]: syz.2.1840 (pid 8147) Use of struct sctp_assoc_value in delayed_ack socket option.
[  117.142887][ T8147] Use struct sctp_sack_info instead
[  117.164395][ T8147] loop2: detected capacity change from 0 to 1024
[  117.171338][ T8147] EXT4-fs: quotafile must be on filesystem root
[  117.272088][ T8153] loop2: detected capacity change from 0 to 128
[  117.379767][ T8162] loop2: detected capacity change from 0 to 764
[  117.399637][ T8163] loop4: detected capacity change from 0 to 512
[  117.408087][ T8163] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.418358][ T8163] EXT4-fs (loop4): orphan cleanup on readonly fs
[  117.426204][ T8163] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.1844: Failed to acquire dquot type 1
[  117.438982][ T8163] EXT4-fs (loop4): 1 truncate cleaned up
[  117.448390][ T8163] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.538061][ T8162] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  118.257386][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.546606][ T8203] FAULT_INJECTION: forcing a failure.
[  118.546606][ T8203] name failslab, interval 1, probability 0, space 0, times 0
[  118.559410][ T8203] CPU: 1 UID: 0 PID: 8203 Comm: syz.4.1858 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  118.559441][ T8203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  118.559457][ T8203] Call Trace:
[  118.559465][ T8203]  <TASK>
[  118.559474][ T8203]  dump_stack_lvl+0xf2/0x150
[  118.559510][ T8203]  dump_stack+0x15/0x1a
[  118.559536][ T8203]  should_fail_ex+0x24a/0x260
[  118.559578][ T8203]  should_failslab+0x8f/0xb0
[  118.559631][ T8203]  __kmalloc_cache_node_noprof+0x56/0x320
[  118.559678][ T8203]  ? __get_vm_area_node+0xfb/0x1c0
[  118.559717][ T8203]  __get_vm_area_node+0xfb/0x1c0
[  118.559775][ T8203]  __vmalloc_node_range_noprof+0x280/0xe70
[  118.559809][ T8203]  ? xt_counters_alloc+0x40/0x50
[  118.559844][ T8203]  ? strcmp+0x21/0x50
[  118.559874][ T8203]  ? translate_table+0xf8d/0x1040
[  118.559977][ T8203]  ? xt_counters_alloc+0x40/0x50
[  118.560072][ T8203]  vzalloc_noprof+0x5e/0x70
[  118.560099][ T8203]  ? xt_counters_alloc+0x40/0x50
[  118.560133][ T8203]  xt_counters_alloc+0x40/0x50
[  118.560161][ T8203]  __do_replace+0x4d/0x580
[  118.560207][ T8203]  do_ip6t_set_ctl+0x820/0x8c0
[  118.560256][ T8203]  nf_setsockopt+0x195/0x1b0
[  118.560354][ T8203]  ipv6_setsockopt+0x10f/0x130
[  118.560391][ T8203]  tcp_setsockopt+0x93/0xb0
[  118.560448][ T8203]  sock_common_setsockopt+0x64/0x80
[  118.560541][ T8203]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  118.560663][ T8203]  __sys_setsockopt+0x187/0x200
[  118.560727][ T8203]  __x64_sys_setsockopt+0x66/0x80
[  118.560764][ T8203]  x64_sys_call+0x282e/0x2dc0
[  118.560797][ T8203]  do_syscall_64+0xc9/0x1c0
[  118.560826][ T8203]  ? clear_bhb_loop+0x55/0xb0
[  118.560852][ T8203]  ? clear_bhb_loop+0x55/0xb0
[  118.560898][ T8203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.560930][ T8203] RIP: 0033:0x7f771d67cde9
[  118.560945][ T8203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.560964][ T8203] RSP: 002b:00007f771bce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  118.560984][ T8203] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67cde9
[  118.561073][ T8203] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000007
[  118.561142][ T8203] RBP: 00007f771bce7090 R08: 00000000000003d8 R09: 0000000000000000
[  118.561157][ T8203] R10: 00004000000007c0 R11: 0000000000000246 R12: 0000000000000001
[  118.561171][ T8203] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[  118.561194][ T8203]  </TASK>
[  118.561203][ T8203] syz.4.1858: vmalloc error: size 64, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  118.811126][ T8205] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1859'.
[  118.822689][ T8203] CPU: 1 UID: 0 PID: 8203 Comm: syz.4.1858 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  118.822762][ T8203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  118.822778][ T8203] Call Trace:
[  118.822787][ T8203]  <TASK>
[  118.822796][ T8203]  dump_stack_lvl+0xf2/0x150
[  118.822832][ T8203]  dump_stack+0x15/0x1a
[  118.822859][ T8203]  warn_alloc+0x145/0x1b0
[  118.822894][ T8203]  __vmalloc_node_range_noprof+0x2a5/0xe70
[  118.822972][ T8203]  ? strcmp+0x21/0x50
[  118.823011][ T8203]  ? translate_table+0xf8d/0x1040
[  118.823052][ T8203]  ? xt_counters_alloc+0x40/0x50
[  118.823103][ T8203]  vzalloc_noprof+0x5e/0x70
[  118.823131][ T8203]  ? xt_counters_alloc+0x40/0x50
[  118.823165][ T8203]  xt_counters_alloc+0x40/0x50
[  118.823229][ T8203]  __do_replace+0x4d/0x580
[  118.823273][ T8203]  do_ip6t_set_ctl+0x820/0x8c0
[  118.823321][ T8203]  nf_setsockopt+0x195/0x1b0
[  118.823365][ T8203]  ipv6_setsockopt+0x10f/0x130
[  118.823463][ T8203]  tcp_setsockopt+0x93/0xb0
[  118.823526][ T8203]  sock_common_setsockopt+0x64/0x80
[  118.823578][ T8203]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  118.823607][ T8203]  __sys_setsockopt+0x187/0x200
[  118.823752][ T8203]  __x64_sys_setsockopt+0x66/0x80
[  118.823788][ T8203]  x64_sys_call+0x282e/0x2dc0
[  118.823872][ T8203]  do_syscall_64+0xc9/0x1c0
[  118.823902][ T8203]  ? clear_bhb_loop+0x55/0xb0
[  118.823942][ T8203]  ? clear_bhb_loop+0x55/0xb0
[  118.823977][ T8203]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.824027][ T8203] RIP: 0033:0x7f771d67cde9
[  118.824078][ T8203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.824101][ T8203] RSP: 002b:00007f771bce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  118.824124][ T8203] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67cde9
[  118.824141][ T8203] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000007
[  118.824157][ T8203] RBP: 00007f771bce7090 R08: 00000000000003d8 R09: 0000000000000000
[  118.824172][ T8203] R10: 00004000000007c0 R11: 0000000000000246 R12: 0000000000000001
[  118.824188][ T8203] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[  118.824241][ T8203]  </TASK>
[  118.824249][ T8203] Mem-Info:
[  119.055450][ T8203] active_anon:7752 inactive_anon:5 isolated_anon:0
[  119.055450][ T8203]  active_file:17059 inactive_file:2062 isolated_file:0
[  119.055450][ T8203]  unevictable:0 dirty:229 writeback:0
[  119.055450][ T8203]  slab_reclaimable:2904 slab_unreclaimable:18229
[  119.055450][ T8203]  mapped:35068 shmem:3260 pagetables:1135
[  119.055450][ T8203]  sec_pagetables:0 bounce:0
[  119.055450][ T8203]  kernel_misc_reclaimable:0
[  119.055450][ T8203]  free:1854322 free_pcp:14188 free_cma:0
[  119.100623][ T8203] Node 0 active_anon:31008kB inactive_anon:20kB active_file:68236kB inactive_file:8248kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:140272kB dirty:916kB writeback:0kB shmem:13040kB writeback_tmp:0kB kernel_stack:3152kB pagetables:4540kB sec_pagetables:0kB all_unreclaimable? no
[  119.128686][ T8203] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  119.155746][ T8203] lowmem_reserve[]: 0 2885 7863 0
[  119.160826][ T8203] Node 0 DMA32 free:2950860kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2954492kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  119.189682][ T8203] lowmem_reserve[]: 0 0 4978 0
[  119.194500][ T8203] Node 0 Normal free:4451068kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:31008kB inactive_anon:20kB active_file:68236kB inactive_file:8248kB unevictable:0kB writepending:916kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:53144kB local_pcp:9836kB free_cma:0kB
[  119.225011][ T8203] lowmem_reserve[]: 0 0 0 0
[  119.229568][ T8203] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  119.242520][ T8203] Node 0 DMA32: 3*4kB (M) 0*8kB 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 2*256kB (M) 3*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950860kB
[  119.258603][ T8203] Node 0 Normal: 245*4kB (UME) 279*8kB (UME) 191*16kB (UME) 120*32kB (UM) 163*64kB (UME) 82*128kB (UME) 42*256kB (UME) 22*512kB (UME) 17*1024kB (UME) 9*2048kB (UME) 1065*4096kB (UM) = 4451132kB
[  119.278023][ T8203] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  119.287494][ T8203] 22386 total pagecache pages
[  119.292176][ T8203] 5 pages in swap cache
[  119.296465][ T8203] Free swap  = 124648kB
[  119.300630][ T8203] Total swap = 124996kB
[  119.305024][ T8203] 2097051 pages RAM
[  119.308844][ T8203] 0 pages HighMem/MovableOnly
[  119.313554][ T8203] 80036 pages reserved
[  119.317946][ T8207] syz_tun: entered allmulticast mode
[  120.470667][ T8252] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1873'.
[  120.499460][ T8250] loop3: detected capacity change from 0 to 2048
[  120.524700][ T8252] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1873'.
[  120.575940][ T8250] tmpfs: Bad value for 'mpol'
[  120.599043][ T8255] IPv6: NLM_F_CREATE should be specified when creating new route
[  120.626967][ T8252] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1873'.
[  120.650924][ T8252] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1873'.
[  120.724074][ T8252] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1873'.
[  120.744456][ T8252] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1873'.
[  120.898865][ T8281] loop2: detected capacity change from 0 to 128
[  121.501394][ T8278] netlink: 144 bytes leftover after parsing attributes in process `syz.3.1884'.
[  121.584833][ T8279] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1881'.
[  121.693402][   T29] kauditd_printk_skb: 154 callbacks suppressed
[  121.693419][   T29] audit: type=1400 audit(1739333467.162:3953): avc:  denied  { write } for  pid=8295 comm="syz.3.1886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  121.740548][   T29] audit: type=1400 audit(1739333467.162:3954): avc:  denied  { nlmsg_read } for  pid=8295 comm="syz.3.1886" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  121.761586][   T29] audit: type=1326 audit(1739333467.212:3955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  121.785084][   T29] audit: type=1326 audit(1739333467.212:3956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  121.808580][   T29] audit: type=1326 audit(1739333467.212:3957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  121.832031][   T29] audit: type=1326 audit(1739333467.212:3958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  121.855570][   T29] audit: type=1326 audit(1739333467.212:3959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  121.879044][   T29] audit: type=1326 audit(1739333467.212:3960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f343cecb750 code=0x7ffc0000
[  121.902476][   T29] audit: type=1326 audit(1739333467.212:3961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f343cecb750 code=0x7ffc0000
[  121.925941][   T29] audit: type=1326 audit(1739333467.212:3962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8297 comm="syz.1.1887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f343ceccde9 code=0x7ffc0000
[  122.181929][ T8312] FAULT_INJECTION: forcing a failure.
[  122.181929][ T8312] name failslab, interval 1, probability 0, space 0, times 0
[  122.194800][ T8312] CPU: 0 UID: 0 PID: 8312 Comm: syz.4.1889 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  122.194830][ T8312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  122.194846][ T8312] Call Trace:
[  122.194853][ T8312]  <TASK>
[  122.194863][ T8312]  dump_stack_lvl+0xf2/0x150
[  122.194935][ T8312]  dump_stack+0x15/0x1a
[  122.194960][ T8312]  should_fail_ex+0x24a/0x260
[  122.195018][ T8312]  should_failslab+0x8f/0xb0
[  122.195070][ T8312]  kmem_cache_alloc_noprof+0x52/0x320
[  122.195102][ T8312]  ? audit_log_start+0x34c/0x6b0
[  122.195143][ T8312]  audit_log_start+0x34c/0x6b0
[  122.195173][ T8312]  ? kmem_cache_free+0xdc/0x2d0
[  122.195295][ T8312]  audit_seccomp+0x4b/0x130
[  122.195331][ T8312]  __seccomp_filter+0x6fa/0x1180
[  122.195362][ T8312]  ? __rcu_read_unlock+0x4e/0x70
[  122.195418][ T8312]  ? _raw_spin_unlock+0x26/0x50
[  122.195455][ T8312]  ? do_prlimit+0x283/0x2d0
[  122.195485][ T8312]  ? bpf_trace_run2+0x123/0x1d0
[  122.195518][ T8312]  __secure_computing+0x9f/0x1c0
[  122.195546][ T8312]  syscall_trace_enter+0xd1/0x1f0
[  122.195593][ T8312]  ? fpregs_assert_state_consistent+0x83/0xa0
[  122.195638][ T8312]  do_syscall_64+0xaa/0x1c0
[  122.195699][ T8312]  ? clear_bhb_loop+0x55/0xb0
[  122.195735][ T8312]  ? clear_bhb_loop+0x55/0xb0
[  122.195769][ T8312]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.195855][ T8312] RIP: 0033:0x7f771d67b7fc
[  122.195875][ T8312] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  122.195898][ T8312] RSP: 002b:00007f771bce7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  122.195921][ T8312] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67b7fc
[  122.195976][ T8312] RDX: 000000000000000f RSI: 00007f771bce70a0 RDI: 0000000000000006
[  122.195987][ T8312] RBP: 00007f771bce7090 R08: 0000000000000000 R09: 0000000000000000
[  122.196001][ T8312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  122.196015][ T8312] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[  122.196039][ T8312]  </TASK>
[  122.619194][ T8322] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1897'.
[  122.889944][ T8326] SELinux:  Context a is not valid (left unmapped).
[  123.059296][ T8342] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8342 comm=syz.2.1906
[  123.071972][ T8342] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8342 comm=syz.2.1906
[  123.115938][ T8342] loop2: detected capacity change from 0 to 512
[  123.139758][ T8342] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  123.158088][ T8342] EXT4-fs (loop2): orphan cleanup on readonly fs
[  123.169745][ T8350] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  123.193219][ T8342] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  123.242581][ T8342] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  123.250087][ T8342] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1906: bg 0: block 40: padding at end of block bitmap is not set
[  123.271544][ T8342] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  123.281296][ T8342] EXT4-fs (loop2): 1 truncate cleaned up
[  123.293157][ T8342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  123.317491][ T8342] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #16: comm syz.2.1906: corrupted xattr block 31: invalid header
[  123.350190][ T8342] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=16
[  123.370767][ T8342] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #16: comm syz.2.1906: corrupted xattr block 31: invalid header
[  123.404559][ T8342] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=16
[  123.426234][ T8342] EXT4-fs error (device loop2): ext4_get_link:106: inode #16: comm syz.2.1906: bad symlink.
[  123.482345][ T3297] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.587705][ T8358] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=8358 comm=syz.2.1912
[  123.640118][ T8358] loop2: detected capacity change from 0 to 512
[  123.674394][ T8358] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.705554][ T8358] ext4 filesystem being mounted at /385/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  123.741366][ T8358] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #2: comm syz.2.1912: corrupted inode contents
[  123.753470][ T8358] EXT4-fs error (device loop2): ext4_dirty_inode:6042: inode #2: comm syz.2.1912: mark_inode_dirty error
[  123.771337][ T8358] EXT4-fs error (device loop2): ext4_do_update_inode:5154: inode #2: comm syz.2.1912: corrupted inode contents
[  123.783508][ T8358] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.1912: mark_inode_dirty error
[  123.811945][ T3297] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.171798][ T8393] loop3: detected capacity change from 0 to 764
[  124.201140][ T8393] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  124.211942][ T8391] __nla_validate_parse: 3 callbacks suppressed
[  124.211960][ T8391] netlink: 144 bytes leftover after parsing attributes in process `syz.4.1921'.
[  124.887735][ T8415] loop2: detected capacity change from 0 to 2048
[  125.154055][ T8438] loop2: detected capacity change from 0 to 764
[  125.169685][ T8438] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  125.294470][ T8444] FAULT_INJECTION: forcing a failure.
[  125.294470][ T8444] name failslab, interval 1, probability 0, space 0, times 0
[  125.310422][ T8444] CPU: 1 UID: 0 PID: 8444 Comm: syz.4.1935 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  125.310448][ T8444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  125.310460][ T8444] Call Trace:
[  125.310467][ T8444]  <TASK>
[  125.310475][ T8444]  dump_stack_lvl+0xf2/0x150
[  125.310503][ T8444]  dump_stack+0x15/0x1a
[  125.310640][ T8444]  should_fail_ex+0x24a/0x260
[  125.310680][ T8444]  should_failslab+0x8f/0xb0
[  125.310765][ T8444]  kmem_cache_alloc_noprof+0x52/0x320
[  125.310872][ T8444]  ? getname_flags+0x81/0x3b0
[  125.310909][ T8444]  getname_flags+0x81/0x3b0
[  125.311011][ T8444]  __x64_sys_mkdir+0x33/0x50
[  125.311037][ T8444]  x64_sys_call+0x1b2b/0x2dc0
[  125.311068][ T8444]  do_syscall_64+0xc9/0x1c0
[  125.311097][ T8444]  ? clear_bhb_loop+0x55/0xb0
[  125.311194][ T8444]  ? clear_bhb_loop+0x55/0xb0
[  125.311226][ T8444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.311258][ T8444] RIP: 0033:0x7f771d67cde9
[  125.311276][ T8444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.311303][ T8444] RSP: 002b:00007f771bce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  125.311324][ T8444] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67cde9
[  125.311415][ T8444] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000400000000580
[  125.311428][ T8444] RBP: 00007f771bce7090 R08: 0000000000000000 R09: 0000000000000000
[  125.311441][ T8444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.311531][ T8444] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[  125.311552][ T8444]  </TASK>
[  125.564550][ T8440] netlink: 144 bytes leftover after parsing attributes in process `syz.3.1934'.
[  125.609430][ T8454] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1938'.
[  126.084020][ T8464] process 'syz.1.1940' launched './file0' with NULL argv: empty string added
[  126.288732][ T8477] netlink: 'syz.1.1942': attribute type 4 has an invalid length.
[  126.335482][ T8481] loop4: detected capacity change from 0 to 764
[  126.353452][ T8477] netlink: 'syz.1.1942': attribute type 4 has an invalid length.
[  126.361451][ T8481] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  126.411165][ T8483] loop2: detected capacity change from 0 to 512
[  126.478902][ T8483] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 2164260882)!
[  126.490079][ T8483] EXT4-fs (loop2): group descriptors corrupted!
[  126.555186][ T8487] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1948'.
[  126.610364][ T8490] ALSA: seq fatal error: cannot create timer (-16)
[  126.714703][   T29] kauditd_printk_skb: 432 callbacks suppressed
[  126.714718][   T29] audit: type=1400 audit(1739333472.182:4392): avc:  denied  { setopt } for  pid=8492 comm="syz.2.1951" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  126.759740][ T8504] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  126.777178][ T8441] chnl_net:caif_netlink_parms(): no params data found
[  126.788295][ T8506] loop2: detected capacity change from 0 to 164
[  126.802354][ T8506] Unable to read rock-ridge attributes
[  126.840368][ T8506] Unable to read rock-ridge attributes
[  126.861855][ T8511] loop3: detected capacity change from 0 to 128
[  126.868596][   T29] audit: type=1400 audit(1739333472.322:4393): avc:  denied  { mount } for  pid=8510 comm="syz.3.1958" name="/" dev="configfs" ino=1503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  126.868635][   T29] audit: type=1400 audit(1739333472.322:4394): avc:  denied  { search } for  pid=8510 comm="syz.3.1958" name="/" dev="configfs" ino=1503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  126.868684][   T29] audit: type=1400 audit(1739333472.322:4395): avc:  denied  { read } for  pid=8510 comm="syz.3.1958" name="/" dev="configfs" ino=1503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  126.868716][   T29] audit: type=1400 audit(1739333472.322:4396): avc:  denied  { open } for  pid=8510 comm="syz.3.1958" path="/" dev="configfs" ino=1503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  126.880815][   T29] audit: type=1400 audit(1739333472.352:4397): avc:  denied  { mount } for  pid=8510 comm="syz.3.1958" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  126.936988][ T8514] tmpfs: Bad value for 'mpol'
[  126.958151][   T29] audit: type=1400 audit(1739333472.412:4398): avc:  denied  { mounton } for  pid=8513 comm="syz.1.1959" path="/syzcgroup/cpu/syz1/cgroup.procs" dev="cgroup" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  127.062051][ T8514] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  127.078719][ T8441] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.086113][ T8441] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.100961][ T8441] bridge_slave_0: entered allmulticast mode
[  127.108340][ T8441] bridge_slave_0: entered promiscuous mode
[  127.115507][ T8441] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.122644][ T8441] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.131489][ T8441] bridge_slave_1: entered allmulticast mode
[  127.144354][   T29] audit: type=1400 audit(1739333472.612:4399): avc:  denied  { read append } for  pid=8521 comm="syz.4.1961" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  127.168798][ T8441] bridge_slave_1: entered promiscuous mode
[  127.292492][ T8441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  127.394081][ T8441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  127.615463][ T8441] team0: Port device team_slave_0 added
[  127.624766][   T29] audit: type=1400 audit(1739333472.642:4400): avc:  denied  { open } for  pid=8521 comm="syz.4.1961" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  127.648483][ T8533] vlan0: entered promiscuous mode
[  127.665876][   T29] audit: type=1400 audit(1739333473.142:4401): avc:  denied  { watch watch_reads } for  pid=8531 comm="syz.1.1964" path="/406" dev="tmpfs" ino=2150 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  127.705701][ T8441] team0: Port device team_slave_1 added
[  127.848788][ T8441] batman_adv: batadv0: Adding interface: batadv_slave_0
[  127.855923][ T8441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  127.882385][ T8441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  127.901705][ T8441] batman_adv: batadv0: Adding interface: batadv_slave_1
[  127.908790][ T8441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  127.934822][ T8441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  128.002637][ T8540] vlan2: entered promiscuous mode
[  128.008221][ T8540] : (slave vlan2): Opening slave failed
[  128.047606][ T8441] hsr_slave_0: entered promiscuous mode
[  128.060236][ T8441] hsr_slave_1: entered promiscuous mode
[  128.069780][ T8441] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  128.094844][ T8441] Cannot create hsr debugfs directory
[  128.169609][ T8553] tmpfs: Bad value for 'mpol'
[  128.186188][ T8553] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  128.253700][ T8441] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  128.262654][ T8441] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  128.283561][ T8441] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  128.293970][ T8441] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  128.446115][ T8572] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1976'.
[  128.474017][ T8572] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  128.481593][ T8572] batman_adv: batadv0: Removing interface: batadv_slave_0
[  128.505398][ T8572] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  128.512883][ T8572] batman_adv: batadv0: Removing interface: batadv_slave_1
[  128.570727][ T8441] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.578583][ T8560] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1974'.
[  128.600291][ T8441] 8021q: adding VLAN 0 to HW filter on device team0
[  128.636000][  T413] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.643164][  T413] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.684407][  T413] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.691534][  T413] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.839999][ T8441] 8021q: adding VLAN 0 to HW filter on device batadv0
[  128.866303][ T8592] loop3: detected capacity change from 0 to 512
[  128.877501][ T8592] program syz.3.1981 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  128.933962][ T8598] loop2: detected capacity change from 0 to 2048
[  128.987270][ T8598] tmpfs: Bad value for 'mpol'
[  128.992872][ T8598] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  129.028850][ T8607] loop3: detected capacity change from 0 to 512
[  129.035535][ T8607] EXT4-fs: Ignoring removed i_version option
[  129.041593][ T8607] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.052763][ T8607] EXT4-fs (loop3): can't mount with both data=journal and delalloc
[  129.174791][ T8441] veth0_vlan: entered promiscuous mode
[  129.201644][ T8441] veth1_vlan: entered promiscuous mode
[  129.252032][ T8441] veth0_macvtap: entered promiscuous mode
[  129.273348][ T8441] veth1_macvtap: entered promiscuous mode
[  129.290818][ T8441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.301447][ T8441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.311321][ T8441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.321782][ T8441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.362088][ T8441] batman_adv: batadv0: Interface activated: batadv_slave_0
[  129.393378][ T8441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.404031][ T8441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.413876][ T8441] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.424461][ T8441] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.436037][ T8631] xt_recent: Unsupported userspace flags (000000da)
[  129.443178][ T8635] loop3: detected capacity change from 0 to 512
[  129.454100][ T8441] batman_adv: batadv0: Interface activated: batadv_slave_1
[  129.464191][ T8441] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.473115][ T8441] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.481905][ T8441] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.483643][ T8635] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.490675][ T8441] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.530556][ T8635] ext4 filesystem being mounted at /404/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.543830][ T8635] EXT4-fs error (device loop3): ext4_search_dir:1505: inode #2: block 3: comm syz.3.1995: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0
[  129.641772][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.655180][ T8649] 9pnet_fd: Insufficient options for proto=fd
[  129.728701][ T8655] loop4: detected capacity change from 0 to 512
[  129.745110][ T8657] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1999'.
[  129.763117][ T8657] loop3: detected capacity change from 0 to 2048
[  129.802240][ T8655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.822007][ T8649] loop2: detected capacity change from 0 to 512
[  129.829081][ T8655] ext4 filesystem being mounted at /414/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.850120][ T8649] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.863078][ T8649] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.865232][ T8657]  loop3: p3 p4 < >
[  129.910591][ T2998]  loop3: p3 p4 < >
[  129.932609][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.948668][ T8665] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2003'.
[  130.058710][ T8466] udevd[8466]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  130.070132][ T8465] udevd[8465]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  130.312070][ T8701] bond1: entered promiscuous mode
[  130.317449][ T8701] bond1: entered allmulticast mode
[  130.325370][ T8710] netlink: 'syz.1.2022': attribute type 1 has an invalid length.
[  130.330347][ T8701] 8021q: adding VLAN 0 to HW filter on device bond1
[  130.333133][ T8706] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5)
[  130.333159][ T8706] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  130.333198][ T8706] vhci_hcd vhci_hcd.0: Device attached
[  130.364816][ T8701] bond1 (unregistering): Released all slaves
[  130.376220][ T8710] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  130.533713][ T8701] loop5: detected capacity change from 0 to 256
[  130.564873][ T3172] usb 5-1: new low-speed USB device number 3 using vhci_hcd
[  130.693302][ T8740] loop5: detected capacity change from 0 to 1024
[  130.706653][ T8740] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.737635][ T8441] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.810496][ T8758] 9pnet_fd: Insufficient options for proto=fd
[  130.862070][ T8708] vhci_hcd: connection reset by peer
[  130.879133][ T3930] vhci_hcd: stop threads
[  130.883417][ T3930] vhci_hcd: release socket
[  130.887934][ T3930] vhci_hcd: disconnect device
[  130.961789][ T8764] loop2: detected capacity change from 0 to 128
[  130.971490][ T8764] vfat: Unknown parameter '0x0000000000000007'
[  130.993027][ T8768] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2039'.
[  131.022912][ T8761] loop5: detected capacity change from 0 to 512
[  131.029704][ T8761] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities
[  131.108572][ T8776] FAULT_INJECTION: forcing a failure.
[  131.108572][ T8776] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.121721][ T8776] CPU: 1 UID: 0 PID: 8776 Comm: syz.4.2042 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  131.121749][ T8776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  131.121772][ T8776] Call Trace:
[  131.121780][ T8776]  <TASK>
[  131.121789][ T8776]  dump_stack_lvl+0xf2/0x150
[  131.121881][ T8776]  dump_stack+0x15/0x1a
[  131.121908][ T8776]  should_fail_ex+0x24a/0x260
[  131.121949][ T8776]  should_fail+0xb/0x10
[  131.121985][ T8776]  should_fail_usercopy+0x1a/0x20
[  131.122004][ T8776]  _copy_to_user+0x20/0xa0
[  131.122048][ T8776]  simple_read_from_buffer+0xa0/0x110
[  131.122072][ T8776]  proc_fail_nth_read+0xf9/0x140
[  131.122097][ T8776]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  131.122125][ T8776]  vfs_read+0x19b/0x6f0
[  131.122185][ T8776]  ? __cond_resched+0x28/0x50
[  131.122225][ T8776]  ksys_read+0xe8/0x1b0
[  131.122253][ T8776]  __x64_sys_read+0x42/0x50
[  131.122278][ T8776]  x64_sys_call+0x2874/0x2dc0
[  131.122310][ T8776]  do_syscall_64+0xc9/0x1c0
[  131.122408][ T8776]  ? clear_bhb_loop+0x55/0xb0
[  131.122442][ T8776]  ? clear_bhb_loop+0x55/0xb0
[  131.122476][ T8776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.122509][ T8776] RIP: 0033:0x7f771d67b7fc
[  131.122526][ T8776] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  131.122608][ T8776] RSP: 002b:00007f771bce7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  131.122627][ T8776] RAX: ffffffffffffffda RBX: 00007f771d895fa0 RCX: 00007f771d67b7fc
[  131.122638][ T8776] RDX: 000000000000000f RSI: 00007f771bce70a0 RDI: 000000000000000a
[  131.122649][ T8776] RBP: 00007f771bce7090 R08: 0000000000000000 R09: 0000000000000000
[  131.122660][ T8776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  131.122672][ T8776] R13: 0000000000000000 R14: 00007f771d895fa0 R15: 00007ffe9ba61da8
[  131.122760][ T8776]  </TASK>
[  131.327464][ T8782] xt_socket: unknown flags 0x58
[  131.363000][ T8786] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2046'.
[  131.452680][ T8798] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2050'.
[  131.544674][ T8805] loop3: detected capacity change from 0 to 2048
[  131.802174][ T8813] FAULT_INJECTION: forcing a failure.
[  131.802174][ T8813] name failslab, interval 1, probability 0, space 0, times 0
[  131.814898][ T8813] CPU: 0 UID: 0 PID: 8813 Comm: syz.3.2053 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  131.814928][ T8813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  131.814943][ T8813] Call Trace:
[  131.814951][ T8813]  <TASK>
[  131.814959][ T8813]  dump_stack_lvl+0xf2/0x150
[  131.814990][ T8813]  dump_stack+0x15/0x1a
[  131.815093][ T8813]  should_fail_ex+0x24a/0x260
[  131.815132][ T8813]  should_failslab+0x8f/0xb0
[  131.815177][ T8813]  __kmalloc_node_noprof+0xad/0x410
[  131.815217][ T8813]  ? __kvmalloc_node_noprof+0x72/0x170
[  131.815288][ T8813]  __kvmalloc_node_noprof+0x72/0x170
[  131.815319][ T8813]  alloc_fdtable+0xa5/0x1b0
[  131.815350][ T8813]  dup_fd+0x60d/0x6a0
[  131.815423][ T8813]  copy_files+0x98/0xe0
[  131.815455][ T8813]  copy_process+0xcbf/0x1fb0
[  131.815584][ T8813]  kernel_clone+0x167/0x5e0
[  131.815634][ T8813]  ? __rcu_read_unlock+0x4e/0x70
[  131.815663][ T8813]  __x64_sys_clone+0xe8/0x120
[  131.815783][ T8813]  x64_sys_call+0x2d7e/0x2dc0
[  131.815808][ T8813]  do_syscall_64+0xc9/0x1c0
[  131.815837][ T8813]  ? clear_bhb_loop+0x55/0xb0
[  131.815946][ T8813]  ? clear_bhb_loop+0x55/0xb0
[  131.815979][ T8813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.816006][ T8813] RIP: 0033:0x7f4a81e5cde9
[  131.816021][ T8813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.816101][ T8813] RSP: 002b:00007f4a80484fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  131.816119][ T8813] RAX: ffffffffffffffda RBX: 00007f4a82076160 RCX: 00007f4a81e5cde9
[  131.816131][ T8813] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000004010e000
[  131.816144][ T8813] RBP: 00007f4a80485090 R08: 0000000000000000 R09: 0000000000000000
[  131.816158][ T8813] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  131.816172][ T8813] R13: 0000000000000000 R14: 00007f4a82076160 R15: 00007ffed71df538
[  131.816195][ T8813]  </TASK>
[  132.250307][ T8818] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2058'.
[  132.579386][ T8832] loop3: detected capacity change from 0 to 2048
[  132.618255][ T8832] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  132.624470][   T29] kauditd_printk_skb: 588 callbacks suppressed
[  132.624487][   T29] audit: type=1326 audit(1739333477.986:4988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.2.2068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[  132.673662][ T8837] loop4: detected capacity change from 0 to 512
[  132.693889][ T8837] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.723455][   T29] audit: type=1326 audit(1739333478.023:4989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.2.2068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[  132.747120][   T29] audit: type=1326 audit(1739333478.023:4990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.2.2068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa51ebcde9 code=0x7ffc0000
[  132.779532][ T8837] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.849324][   T29] audit: type=1326 audit(1739333478.182:4991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8836 comm="syz.4.2066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  132.872970][   T29] audit: type=1326 audit(1739333478.182:4992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8836 comm="syz.4.2066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  132.896822][   T29] audit: type=1326 audit(1739333478.182:4993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8836 comm="syz.4.2066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  132.924404][   T29] audit: type=1400 audit(1739333478.276:4994): avc:  denied  { read write open } for  pid=8836 comm="syz.4.2066" path="/428/file0/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  132.966119][   T29] audit: type=1326 audit(1739333478.313:4995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8836 comm="syz.4.2066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  132.989778][   T29] audit: type=1326 audit(1739333478.313:4996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8836 comm="syz.4.2066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  132.990673][ T8837] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.2066'.
[  133.013770][   T29] audit: type=1326 audit(1739333478.332:4997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8836 comm="syz.4.2066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f771d67cde9 code=0x7ffc0000
[  133.068541][ T8870] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2073'.
[  133.108607][ T8877] netlink: 68 bytes leftover after parsing attributes in process `syz.5.2080'.
[  133.163483][ T8856] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2073'.
[  133.213286][ T8879] loop3: detected capacity change from 0 to 2048
[  133.233734][ T8879] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  133.577859][ T8899] loop2: detected capacity change from 0 to 2048
[  133.609858][ T3305] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 496: padding at end of block bitmap is not set
[  133.638318][ T8899]  loop2: p3 p4 < >
[  133.654982][ T2998]  loop2: p3 p4 < >
[  133.681822][ T3305] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  133.725478][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.746700][ T8465] udevd[8465]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  133.766025][ T8466] udevd[8466]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  133.796500][ T8466] udevd[8466]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  133.814295][ T3717] udevd[3717]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  134.028244][ T8933] loop3: detected capacity change from 0 to 128
[  134.314208][ T8948] loop2: detected capacity change from 0 to 2048
[  134.354549][ T8948]  loop2: p3 p4 < >
[  134.377647][ T2998]  loop2: p3 p4 < >
[  134.613482][ T8465] udevd[8465]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  134.623590][ T8466] udevd[8466]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  134.668146][ T8953] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  134.714359][ T8465] udevd[8465]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  134.725885][ T8466] udevd[8466]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  135.142759][ T8975] loop2: detected capacity change from 0 to 1024
[  135.243896][ T8975] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.318615][ T8975] ext4 filesystem being mounted at /440/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.466147][ T3297] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.549451][ T8998] __nla_validate_parse: 7 callbacks suppressed
[  135.549466][ T8998] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2124'.
[  135.599195][ T9002] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2123'.
[  135.663526][ T9005] loop4: detected capacity change from 0 to 2048
[  135.698331][ T9005] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  136.030700][ T3172] usb 5-1: enqueue for inactive port 0
[  136.038365][ T9019] netlink: 144 bytes leftover after parsing attributes in process `syz.4.2131'.
[  136.049171][ T3172] usb 5-1: enqueue for inactive port 0
[  136.129807][ T3172] vhci_hcd: vhci_device speed not set
[  136.278067][ T9037] loop4: detected capacity change from 0 to 512
[  136.324628][ T9037] EXT4-fs (loop4): too many log groups per flexible block group
[  136.332629][ T9037] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  136.343690][ T9037] EXT4-fs (loop4): mount failed
[  136.401147][ T9041] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2138'.
[  136.410415][ T9041] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  136.480861][ T9053] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2143'.
[  136.539315][ T9056] loop5: detected capacity change from 0 to 164
[  136.551998][ T9056] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  136.561856][ T9056] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  136.598345][ T9060] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2146'.
[  136.672499][ T9064] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2148'.
[  136.984318][ T9086] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2157'.
[  137.008572][ T9086] netlink: 'syz.3.2157': attribute type 21 has an invalid length.
[  137.016470][ T9086] IPv6: NLM_F_CREATE should be specified when creating new route
[  137.028545][ T9089] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2158'.
[  137.518645][ T9094] loop2: detected capacity change from 0 to 8192
[  137.525468][ T9094] vfat: Unknown parameter '0x0000000000000005'
[  137.719242][ T9105] loop3: detected capacity change from 0 to 1024
[  137.748343][ T9105] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.766558][ T9105] ext4 filesystem being mounted at /436/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.864843][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.901000][ T9104] netlink: 'syz.5.2165': attribute type 1 has an invalid length.
[  137.908971][ T9104] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2165'.
[  137.967344][   T29] kauditd_printk_skb: 443 callbacks suppressed
[  137.967360][   T29] audit: type=1326 audit(1739333482.981:5441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  137.996947][   T29] audit: type=1326 audit(1739333482.981:5442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.028262][   T29] audit: type=1326 audit(1739333482.981:5443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.052105][   T29] audit: type=1326 audit(1739333482.990:5444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.075613][   T29] audit: type=1326 audit(1739333482.990:5445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.099304][   T29] audit: type=1326 audit(1739333482.990:5446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.122993][   T29] audit: type=1326 audit(1739333482.990:5447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a81e5c9eb code=0x7ffc0000
[  138.146688][   T29] audit: type=1326 audit(1739333482.990:5448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a81e5b750 code=0x7ffc0000
[  138.170260][   T29] audit: type=1326 audit(1739333482.990:5449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.193857][   T29] audit: type=1326 audit(1739333482.990:5450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9119 comm="syz.3.2170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f4a81e5cde9 code=0x7ffc0000
[  138.422070][ T9145] loop2: detected capacity change from 0 to 164
[  138.452466][ T9145] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  138.473324][ T9145] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  138.563293][ T9149] loop2: detected capacity change from 0 to 2048
[  138.615911][ T9156] FAULT_INJECTION: forcing a failure.
[  138.615911][ T9156] name failslab, interval 1, probability 0, space 0, times 0
[  138.616617][ T9149] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  138.628724][ T9156] CPU: 0 UID: 0 PID: 9156 Comm: syz.3.2184 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  138.628755][ T9156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  138.628817][ T9156] Call Trace:
[  138.628825][ T9156]  <TASK>
[  138.628836][ T9156]  dump_stack_lvl+0xf2/0x150
[  138.628874][ T9156]  dump_stack+0x15/0x1a
[  138.628901][ T9156]  should_fail_ex+0x24a/0x260
[  138.628944][ T9156]  should_failslab+0x8f/0xb0
[  138.628978][ T9156]  kmem_cache_alloc_node_noprof+0x59/0x320
[  138.629022][ T9156]  ? __alloc_skb+0x10b/0x310
[  138.629055][ T9156]  __alloc_skb+0x10b/0x310
[  138.629087][ T9156]  netlink_alloc_large_skb+0xad/0xe0
[  138.629198][ T9156]  netlink_sendmsg+0x3b4/0x6e0
[  138.629283][ T9156]  ? __pfx_netlink_sendmsg+0x10/0x10
[  138.629325][ T9156]  __sock_sendmsg+0x140/0x180
[  138.629427][ T9156]  ____sys_sendmsg+0x312/0x410
[  138.629469][ T9156]  __sys_sendmsg+0x19d/0x230
[  138.629526][ T9156]  __x64_sys_sendmsg+0x46/0x50
[  138.629563][ T9156]  x64_sys_call+0x2734/0x2dc0
[  138.629629][ T9156]  do_syscall_64+0xc9/0x1c0
[  138.629660][ T9156]  ? clear_bhb_loop+0x55/0xb0
[  138.629700][ T9156]  ? clear_bhb_loop+0x55/0xb0
[  138.629735][ T9156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.629769][ T9156] RIP: 0033:0x7f4a81e5cde9
[  138.629789][ T9156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.629824][ T9156] RSP: 002b:00007f4a804c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.629847][ T9156] RAX: ffffffffffffffda RBX: 00007f4a82075fa0 RCX: 00007f4a81e5cde9
[  138.629862][ T9156] RDX: 0000000000000000 RSI: 0000400000000180 RDI: 0000000000000006
[  138.629877][ T9156] RBP: 00007f4a804c7090 R08: 0000000000000000 R09: 0000000000000000
[  138.629892][ T9156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.629907][ T9156] R13: 0000000000000000 R14: 00007f4a82075fa0 R15: 00007ffed71df538
[  138.629935][ T9156]  </TASK>
[  138.743104][ T9166] FAULT_INJECTION: forcing a failure.
[  138.743104][ T9166] name failslab, interval 1, probability 0, space 0, times 0
[  138.839126][ T9172] loop4: detected capacity change from 0 to 1024
[  138.845111][ T9166] CPU: 0 UID: 0 PID: 9166 Comm: syz.1.2183 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  138.845293][ T9166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  138.845308][ T9166] Call Trace:
[  138.845316][ T9166]  <TASK>
[  138.845325][ T9166]  dump_stack_lvl+0xf2/0x150
[  138.845368][ T9166]  dump_stack+0x15/0x1a
[  138.845444][ T9166]  should_fail_ex+0x24a/0x260
[  138.845487][ T9166]  should_failslab+0x8f/0xb0
[  138.845519][ T9166]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  138.845582][ T9166]  ? sidtab_sid2str_get+0xb8/0x140
[  138.845612][ T9166]  kmemdup_noprof+0x2a/0x60
[  138.845640][ T9166]  sidtab_sid2str_get+0xb8/0x140
[  138.845669][ T9166]  security_sid_to_context_core+0x1eb/0x2f0
[  138.845731][ T9166]  security_sid_to_context+0x27/0x30
[  138.845776][ T9166]  selinux_lsmprop_to_secctx+0x68/0xf0
[  138.845833][ T9166]  security_lsmprop_to_secctx+0x40/0x80
[  138.845944][ T9166]  audit_log_task_context+0x76/0x180
[  138.845989][ T9166]  audit_log_task+0xf9/0x1c0
[  138.846099][ T9166]  audit_seccomp+0x68/0x130
[  138.846140][ T9166]  __seccomp_filter+0x6fa/0x1180
[  138.846169][ T9166]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  138.846270][ T9166]  ? vfs_write+0x644/0x920
[  138.846303][ T9166]  __secure_computing+0x9f/0x1c0
[  138.846331][ T9166]  syscall_trace_enter+0xd1/0x1f0
[  138.846359][ T9166]  ? fpregs_assert_state_consistent+0x83/0xa0
[  138.846466][ T9166]  do_syscall_64+0xaa/0x1c0
[  138.846514][ T9166]  ? clear_bhb_loop+0x55/0xb0
[  138.846590][ T9166]  ? clear_bhb_loop+0x55/0xb0
[  138.846653][ T9166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.846688][ T9166] RIP: 0033:0x7f343ceccde9
[  138.846706][ T9166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.846729][ T9166] RSP: 002b:00007f343b4f5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.846752][ T9166] RAX: ffffffffffffffda RBX: 00007f343d0e6160 RCX: 00007f343ceccde9
[  138.846768][ T9166] RDX: 0000400000000400 RSI: 0000000000008982 RDI: 0000000000000008
[  138.846783][ T9166] RBP: 00007f343b4f5090 R08: 0000000000000000 R09: 0000000000000000
[  138.846873][ T9166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.846888][ T9166] R13: 0000000000000000 R14: 00007f343d0e6160 R15: 00007ffddd596d98
[  138.846911][ T9166]  </TASK>
[  138.872845][ T9173] loop2: detected capacity change from 0 to 2048
[  138.946800][ T9172] EXT4-fs error (device loop4): __ext4_fill_super:5497: inode #2: comm syz.4.2190: casefold flag without casefold feature
[  139.103085][ T9172] EXT4-fs (loop4): get root inode failed
[  139.108739][ T9172] EXT4-fs (loop4): mount failed
[  139.161722][ T9173] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  139.505078][ T9205] rdma_op ffff8881297ee180 conn xmit_rdma 0000000000000000
[  139.580380][ T9208] loop5: detected capacity change from 0 to 2048
[  139.628890][ T9208] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  139.803941][ T9217] loop5: detected capacity change from 0 to 512
[  139.845258][ T9217] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.859677][ T9217] ext4 filesystem being mounted at /47/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  139.877383][ T9217] FAULT_INJECTION: forcing a failure.
[  139.877383][ T9217] name failslab, interval 1, probability 0, space 0, times 0
[  139.890162][ T9217] CPU: 1 UID: 0 PID: 9217 Comm: syz.5.2207 Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  139.890191][ T9217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  139.890206][ T9217] Call Trace:
[  139.890213][ T9217]  <TASK>
[  139.890221][ T9217]  dump_stack_lvl+0xf2/0x150
[  139.890250][ T9217]  dump_stack+0x15/0x1a
[  139.890311][ T9217]  should_fail_ex+0x24a/0x260
[  139.890348][ T9217]  should_failslab+0x8f/0xb0
[  139.890373][ T9217]  __kmalloc_noprof+0xab/0x3f0
[  139.890484][ T9217]  ? qtree_read_dquot+0xc3/0x4b0
[  139.890519][ T9217]  qtree_read_dquot+0xc3/0x4b0
[  139.890610][ T9217]  v2_read_dquot+0x96/0xd0
[  139.890645][ T9217]  dquot_acquire+0xc3/0x2b0
[  139.890667][ T9217]  ? __ext4_journal_start_sb+0x130/0x340
[  139.890764][ T9217]  ext4_acquire_dquot+0x170/0x210
[  139.890801][ T9217]  dqget+0x522/0x8b0
[  139.890827][ T9217]  __dquot_initialize+0x194/0x760
[  139.890863][ T9217]  dquot_initialize+0x1a/0x20
[  139.890890][ T9217]  ext4_mkdir+0xd5/0x740
[  139.891048][ T9217]  ? selinux_inode_mkdir+0x22/0x30
[  139.891089][ T9217]  vfs_mkdir+0x1f4/0x320
[  139.891116][ T9217]  do_mkdirat+0x136/0x2c0
[  139.891151][ T9217]  __x64_sys_mkdirat+0x4e/0x60
[  139.891177][ T9217]  x64_sys_call+0x1b6f/0x2dc0
[  139.891205][ T9217]  do_syscall_64+0xc9/0x1c0
[  139.891229][ T9217]  ? clear_bhb_loop+0x55/0xb0
[  139.891296][ T9217]  ? clear_bhb_loop+0x55/0xb0
[  139.891323][ T9217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.891354][ T9217] RIP: 0033:0x7f6dc7d0b657
[  139.891373][ T9217] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.891399][ T9217] RSP: 002b:00007f6dc6370e68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[  139.891417][ T9217] RAX: ffffffffffffffda RBX: 00007f6dc6370ef0 RCX: 00007f6dc7d0b657
[  139.891529][ T9217] RDX: 00000000000001ff RSI: 0000400000000280 RDI: 00000000ffffff9c
[  139.891543][ T9217] RBP: 00004000000002c0 R08: 00004000000007c0 R09: 0000000000000000
[  139.891557][ T9217] R10: 00004000000002c0 R11: 0000000000000246 R12: 0000400000000280
[  139.891571][ T9217] R13: 00007f6dc6370eb0 R14: 0000000000000000 R15: 0000000000000000
[  139.891593][ T9217]  </TASK>
[  140.106485][ T9217] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.2207: Failed to acquire dquot type 0
[  140.137978][ T8441] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.297932][ T9234] loop2: detected capacity change from 0 to 256
[  140.304830][ T9234] msdos: Bad value for 'time_offset'
[  140.314196][ T9234] (unnamed net_device) (uninitialized): option ad_select: invalid value (110)
[  140.439538][ T9231] loop4: detected capacity change from 0 to 1024
[  140.513498][ T9231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.589928][ T9231] ext4 filesystem being mounted at /452/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.666296][ T9265] lo speed is unknown, defaulting to 1000
[  140.684478][ T9261] loop3: detected capacity change from 0 to 2048
[  140.691469][ T9263] loop5: detected capacity change from 0 to 2048
[  140.708294][ T9265] lo speed is unknown, defaulting to 1000
[  140.714304][ T9265] lo speed is unknown, defaulting to 1000
[  140.720627][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.728883][ T9265] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  140.745338][ T9265] lo speed is unknown, defaulting to 1000
[  140.751620][ T9261]  loop3: p3 < > p4 < >
[  140.755791][ T9261] loop3: partition table partially beyond EOD, truncated
[  140.758004][ T9265] lo speed is unknown, defaulting to 1000
[  140.763683][ T9261] loop3: p3 start 4284289 is beyond EOD, truncated
[  140.789957][ T9263]  loop5: p3 p4 < >
[  140.805429][ T2998]  loop3: p3 < > p4 < >
[  140.809628][ T2998] loop3: partition table partially beyond EOD, truncated
[  140.826453][ T9270] loop4: detected capacity change from 0 to 256
[  140.835771][ T2998] loop3: p3 start 4284289 is beyond EOD, truncated
[  140.846806][ T9265] lo speed is unknown, defaulting to 1000
[  140.853939][ T9265] lo speed is unknown, defaulting to 1000
[  140.876405][ T9270] netlink: 'syz.4.2225': attribute type 4 has an invalid length.
[  140.912064][ T4608] udevd[4608]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  140.930776][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  140.951597][ T9265] lo speed is unknown, defaulting to 1000
[  140.958069][ T3717] ==================================================================
[  140.966180][ T3717] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_unlink
[  140.973228][ T3717] 
[  140.975551][ T3717] write to 0xffff8881044cc9ac of 4 bytes by task 8466 on cpu 1:
[  140.983185][ T3717]  shmem_unlink+0x13b/0x170
[  140.987697][ T3717]  vfs_unlink+0x275/0x430
[  140.992036][ T3717]  do_unlinkat+0x237/0x4d0
[  140.996471][ T3717]  __x64_sys_unlink+0x2e/0x40
[  141.001160][ T3717]  x64_sys_call+0x2329/0x2dc0
[  141.005853][ T3717]  do_syscall_64+0xc9/0x1c0
[  141.010367][ T3717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.016271][ T3717] 
[  141.018595][ T3717] read to 0xffff8881044cc9ac of 4 bytes by task 3717 on cpu 0:
[  141.026144][ T3717]  fill_mg_cmtime+0x58/0x280
[  141.030752][ T3717]  generic_fillattr+0x241/0x330
[  141.035628][ T3717]  shmem_getattr+0x17b/0x200
[  141.040225][ T3717]  vfs_statx_path+0x178/0x2f0
[  141.044905][ T3717]  vfs_statx+0xe1/0x170
[  141.049072][ T3717]  __se_sys_newfstatat+0xdc/0x300
[  141.054117][ T3717]  __x64_sys_newfstatat+0x55/0x70
[  141.059158][ T3717]  x64_sys_call+0x236d/0x2dc0
[  141.063848][ T3717]  do_syscall_64+0xc9/0x1c0
[  141.068375][ T3717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.074280][ T3717] 
[  141.076601][ T3717] value changed: 0x2ef17fe2 -> 0x2f00581f
[  141.082317][ T3717] 
[  141.084641][ T3717] Reported by Kernel Concurrency Sanitizer on:
[  141.090789][ T3717] CPU: 0 UID: 0 PID: 3717 Comm: udevd Not tainted 6.14.0-rc2-syzkaller-00039-g09fbf3d50205 #0
[  141.101038][ T3717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  141.111099][ T3717] ==================================================================
[  141.122065][ T9261] lo speed is unknown, defaulting to 1000
[  141.138514][ T9265] lo speed is unknown, defaulting to 1000