last executing test programs:

2.856649587s ago: executing program 0 (id=2542):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x49, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r2, &(0x7f0000847fff)='X', 0x34c8, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (fail_nth: 2)

2.558674242s ago: executing program 0 (id=2544):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x2, &(0x7f0000000600)=@raw=[@btf_id={0x18, 0x8, 0x3, 0x0, 0x5}], &(0x7f0000000640)='GPL\x00', 0x5, 0x6f, &(0x7f0000000680)=""/111, 0x41100, 0x52, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x2, 0x3}, 0x8, 0x10, &(0x7f0000000740)={0x2, 0x6, 0xf4e0ab15, 0x365f}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000780)=[0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1], &(0x7f0000000800)=[{0x2, 0x1, 0x4, 0x3}, {0x0, 0x4, 0xf, 0x2}, {0x1, 0x5, 0x1, 0xb}, {0x3, 0x3, 0x9, 0x2}], 0x10, 0x3, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000dc0)={0x18, 0x19, &(0x7f0000000fc0)=ANY=[@ANYBLOB="1800000001000000000000005066e66418120000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b70500000800000085000000a500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000000000008500020086000000950000000000000088a88ca2c081710253deb34b0000aa19152ae1d16a7b0789a33cae2dea171c2cc37c1021ef9a86f0e651f2625754418a37236150cb428e5b27be3819dadfcf"], &(0x7f0000000940)='syzkaller\x00', 0x2, 0xa5, &(0x7f0000000a40)=""/165, 0x40f00, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000980)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000cc0)={0x2, 0x4, 0xf, 0x3}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000d00)=[0xffffffffffffffff, 0x1, 0xffffffffffffffff], &(0x7f0000000d40)=[{0x3, 0x1, 0x8, 0x6}, {0x5, 0x3, 0x1, 0x6}, {0x5, 0x4, 0x10, 0x7}, {0x4, 0x4, 0x7, 0x1}, {0x2, 0x1, 0x6, 0x7}], 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001100)={&(0x7f0000000e80)='io_uring_create\x00', r0, 0x0, 0x4000004}, 0x12)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f00000004c0)=@req={0xecf, 0x101, 0x3ff, 0x6}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0xa, 0x40)
setsockopt$sock_int(r5, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4)
r6 = syz_io_uring_setup(0x10d, &(0x7f0000000440)={0x0, 0x2000cfa5, 0x0, 0x9}, &(0x7f0000000380)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r6, 0x3f70, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f00000005c0)='./file0\x00', &(0x7f00000007c0), &(0x7f0000000040)=@v2, 0x14, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000f80)={0x9, &(0x7f0000000f00)=[{0xe, 0x5, 0x4, 0x17a}, {0x6b90, 0x7, 0x2, 0x7ff}, {0x6, 0x7, 0x4, 0x100}, {0x9, 0x0, 0xe9, 0x10000000}, {0x4, 0xc, 0x3, 0x97d0}, {0x7, 0x1, 0x2d, 0x401}, {0xa469, 0x5, 0x7f, 0x7}, {0x100, 0xf7, 0x8, 0x2}, {0xe, 0x3, 0x4, 0xff}]}, 0x10)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f00000015c0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001580)={&(0x7f00000013c0)={0x1a4, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x80, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4000010}, 0x20008000)
sendmsg$key(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)={0x2, 0x9, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000ec0)={0x1, &(0x7f0000000900)=[{0x8000, 0x83, 0x6, 0x552}]})
r10 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r10, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)

1.913254467s ago: executing program 3 (id=2552):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00'}, 0x10)
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
creat(0x0, 0x104)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000340)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1) (fail_nth: 8)

1.912257487s ago: executing program 1 (id=2553):
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16, @ANYBLOB="01000000090000000000140000001800018014"], 0x3c}}, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000001"], 0x24}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @void, @value}, 0x94)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x73)
close_range(r3, r2, 0x0)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r4, 0x84, 0x20, &(0x7f0000000000)=0x8, 0x4)
recvmmsg(r4, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/82, 0x52}], 0x1}, 0x1}], 0x1, 0x10000, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000580)={0x49, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x3}, 0xe)
recvmsg(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=""/11, 0xb}, 0x100)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x64, 0x10, 0x421, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x0, 0x61}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_IKEY={0x8, 0x4, 0x4}, @IFLA_GRE_OKEY={0x8, 0x5, 0xda4b}, @IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e21}, @IFLA_GRE_ENCAP_DPORT={0x6}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x64}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=@newlink={0x3c, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x6}]}}}]}, 0x3c}}, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140100001d00"], 0x114}], 0x1}, 0x0)

1.87887505s ago: executing program 4 (id=2555):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r4, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000100)="f400000000002f00020000000000000000000000000000000200"/40, 0x28}, {&(0x7f0000000180)="2510cd9b000000000000ad440da9c9959bb65801ff685b928de9ba193e466e00018f408ce9194b60bbe193449392a9f359f395469645db0dcc31d97a9662517501a096eccb89af277b74c124cac493c17cb265c226109702585c1bb6da6ab642e71ff172cb154f60ee437d3550fa7433f917d6009c9f77b50ab75cac9591b2f9c8e181514f287813b806ed4b2d879b6c8dc836114355d06b99070000007e7cf91eea8f53393a0ccb4b2f41932f42d52f4abaece79946ab60c33e64ceac10153f4c109073e9412c86fe9e23636610f0249bee3a1d3ef5", 0x4}], 0xe}, 0x0)
r5 = memfd_secret(0x0)
r6 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
fcntl$dupfd(r6, 0x0, r5)
ioctl$SNDRV_TIMER_IOCTL_START(r5, 0x54a0)
sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0)
recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)

1.826519985s ago: executing program 3 (id=2556):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00')
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
syz_emit_ethernet(0x4a, &(0x7f00000003c0)=ANY=[], 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'nr0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c844)
sendmsg$NL80211_CMD_SET_BEACON(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000300)=ANY=[@ANYBLOB="24010000", @ANYRESDEC=0x0, @ANYRESOCT=r3], 0x124}}, 0x20040000)
r5 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x23)
setsockopt$inet6_mtu(r5, 0x29, 0x17, &(0x7f0000000100)=0x2, 0x4)
connect$inet6(r5, &(0x7f0000002440)={0xa, 0x0, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1}, 0x1c)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x15, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC=r2], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd90, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
sendmsg$nl_route(r6, 0x0, 0x0)
socket$kcm(0x10, 0x5, 0x0)
r8 = socket$kcm(0x10, 0x5, 0x0)
sendmsg$kcm(r8, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001c40)="d80000001c0081064e81f782db44b9040a1d08041100000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

1.75810483s ago: executing program 4 (id=2557):
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000180)=0x6)
read(r0, 0x0, 0x2006)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0xa, 0x2, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000179fa10000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), 0xffffffffffffffff)
r4 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01fff0000000000000000d0000000c000180080001"], 0x20}}, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000040)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000009dfa00"/28], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8000)
sendmsg$NFT_BATCH(r6, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000002000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000007"], 0x64}}, 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000d40)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\a\x00\x00'], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141)
ioctl$HIDIOCGFEATURE(0xffffffffffffffff, 0xc0404807, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x2, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000c86c73b33970fc0d2a1d4c6726b29961f542f32c9c9a4af967d2e84b8e60c8c201be26b12467a2df24e4ba5916ea4b4c9fd420570a520a399213d932e49404ef5c75f0cef0e946a2266f23797f9aa6d2d8a8b990178a0817c7b333c78462c6e39b0d3a9c338079b786f6ecd8964afdc734e24e33f35a580e833e2f71b6e5b59b6dc14688c0932c58dc99da0ff406fc0754369451fca5215fa5c307633ed18a8732d3a31d18a0143f7259cf2bef38f6c4756cce31ee02ab0d292d93"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r9, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r9, &(0x7f0000000080), 0x4)

1.757458221s ago: executing program 3 (id=2558):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xfb, 0x0, &(0x7f0000000440))
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@mpol={'mpol', 0x3d, {'prefer', '=relative', @val={0x3a, [0x30]}}}}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
chdir(&(0x7f0000000140)='./file0\x00')
openat$incfs(0xffffffffffffff9c, &(0x7f00000000c0)='.pending_reads\x00', 0x802a40, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x10000, 0x3b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000080))
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r2, r1, 0x0, 0x2, &(0x7f0000000300)='-\x00'}, 0x30)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)

1.693888136s ago: executing program 3 (id=2559):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
preadv(r0, &(0x7f0000000080)=[{&(0x7f0000000000)=""/1, 0x1}, {&(0x7f0000000040)=""/43, 0x2b}], 0x2, 0x8, 0x3)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), r1) (async)
r2 = accept$unix(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000180)=0x6e)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000400)={{{@in=@private, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@local}, 0x0, @in6=@remote}}, &(0x7f0000000500)=0xe8)
r4 = getpid() (async)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000540)={{{@in6=@mcast1, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in=@dev}, 0x0, @in=@remote}}, &(0x7f0000000640)=0xe8) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000680)={0x0, 0x0, <r6=>0x0}, &(0x7f00000006c0)=0xc)
r7 = getpgid(0xffffffffffffffff) (async)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000700)={{{@in=@private, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@empty}, 0x0, @in=@empty}}, &(0x7f0000000800)=0xe8) (async)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000840)={0x0, 0x0, <r9=>0x0}, &(0x7f0000000880)=0xc) (async)
r10 = openat$random(0xffffffffffffff9c, &(0x7f0000000bc0), 0x88001, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000001100)={{0x1, 0x1, 0x18, <r11=>r0}, './file0\x00'})
r12 = perf_event_open$cgroup(&(0x7f0000001140)={0x3, 0x80, 0x5, 0x57, 0x8f, 0xc1, 0x0, 0xce, 0x48588, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0xa, 0x586e81bc}, 0x0, 0x8001, 0x5c, 0x9, 0xe, 0xda, 0x0, 0x0, 0x6}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x1)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000011c0)=<r13=>0x0)
statx(0xffffffffffffff9c, &(0x7f0000001200)='./file0\x00', 0x0, 0x80, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, <r14=>0x0})
lstat(&(0x7f0000001340)='./file0\x00', &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, 0x0, <r15=>0x0}) (async)
r16 = socket$rds(0x15, 0x5, 0x0) (async)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000001400)=<r17=>0x0)
fstat(r0, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x0, <r18=>0x0}) (async)
stat(&(0x7f00000014c0)='./file0\x00', &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0, <r19=>0x0}) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001580)={{0x1, 0x1, 0x18, r0, {<r20=>0xee00, 0xffffffffffffffff}}, './file0\x00'}) (async)
r21 = getegid() (async)
fcntl$getownex(r0, 0x10, &(0x7f0000001a40)={0x0, <r22=>0x0}) (async)
r23 = getpgid(0xffffffffffffffff) (async)
getresuid(&(0x7f0000001a80), &(0x7f0000001ac0)=<r24=>0x0, &(0x7f0000001b00)) (async)
getresgid(&(0x7f0000001b40), &(0x7f0000001b80)=<r25=>0x0, &(0x7f0000001bc0)) (async)
fcntl$getownex(r0, 0x10, &(0x7f0000001c00)={0x0, <r26=>0x0})
sendmmsg$unix(r2, &(0x7f0000004a80)=[{{&(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000240)="6a4484292af735ba1b78c8ebc7cbe6a27b4039cb68195c8e238327e334eda98810e7893b443bb32016674eef75bc596e71fadbada8a8b6e8a84da92bf09b5d14d7737fdef8bfd37e0296bb48072b6b8407cd2a65cfa3", 0x56}, {&(0x7f00000002c0)="442954a95ad030e70a07aeff56fb57678d3a7b24ba0789e193fac9215c3c76de0a17580868ea939760a00a45b8ff37094402df63633ce4d5103ba196f4d8343ce06697f2575753fc6671def0b396401ed0e64635298d6745aef55d52869d8ee7d4790b9796d5d4e505afef3393c4f9a002c287f0cb46a5d31350dd8a6471fcb276ada5d9b058b9f6c0d8bee30f68a04a5fb190f2b7e829", 0x97}, {&(0x7f0000000380)="4ce2b815591f93", 0x7}], 0x3, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r3, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r4, r5, r6}}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}, @rights={{0x10}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {r7, r8, r9}}}], 0xa0, 0x4800}}, {{&(0x7f0000000980)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b80)=[{&(0x7f0000000a00)="ee7b0dc6a57ff511a7d0abc5c35f483177440ec7bd09da359dbd72f8f5c4c187758bbe9e4c7203e31b3ef7b5e388283829a1387f0182d7eabbd2fcf9e28ac1655a78790f1b33b0edbfc4fc9740c1abcc02a463c132218886cffa68211a8d9dff289ec7612625c3176ec209872fe4c8a71e250ade18c871c2fdb16115abf526785b36193b2fce448bf2ff4db08db22cd5ad0a12e42ac94e1fc9a2ae", 0x9b}, {&(0x7f0000000ac0)="1a85ca0c8a46497a2eb7b23a020ff8ac386b06e5dcddebf3cdbad77319125e194e32fe4930e2c8cc6ec8a2dfbc0dc0d70ed9c42e9d41a5b4b48ef3b79a7311d95bff0ccbca779b98b47fc3f3ab50c7", 0x4f}, {&(0x7f0000000b40)="24b143662722b71aa4aa4f9d2a356a7a7c4d40295ea86d58b1856a367ec3de1612cd85241faee8dfa53e314bcf0818", 0x2f}], 0x3, &(0x7f0000000c00)=[@rights={{0x28, 0x1, 0x1, [r0, r1, r1, 0xffffffffffffffff, r10, r1]}}, @rights={{0x18, 0x1, 0x1, [r1, r0]}}, @rights={{0x14, 0x1, 0x1, [r1]}}, @rights={{0x20, 0x1, 0x1, [r0, r1, r0, r1]}}], 0x78, 0x46004}}, {{&(0x7f0000000c80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001080)=[{&(0x7f0000000d00)="77f45ba97df2267867362f10c43d8048bfb96a67bf13e944938677d4e070fcbad3f06b93a682167e90a5d06c7660cae2008b23f1f823f9976d380c28c2251da9657321ef8cb60568afa453333272fc2e9b8cff27ecf884acbf9661ea4c118a297dd96da873419921ef70d7990a88dab9034637701a4c2dcd24b0a8139c43102697dccdddda19e397999ca29f6466aa47493d4f8dc706997112e6fc96e17c24d3199aba6058f440d51f518144d299fa85e5817fb38ca0cc94db7b12f92172672af5d1165e503c8db52373", 0xca}, {&(0x7f0000000e00)}, {&(0x7f0000000e40)="f27210c471576d698d", 0x9}, {&(0x7f0000000e80)="ccb5d46a642e24598b8b9e9c027dc02d679aba7961e70ae3f15bc71a656a6e4b1dd180e8873e46f43c2ce99106f323f309b34b8ae5aba4496841efbeb828e2fb1368a0427ae141f037ba7c0a5e202476fd7f375de1f8b48202688c9dae756e778a9c6aa9fbc8fce5eea9840e43635e8584f93e59d833b8ade28c03b6f661d128e03d85e05865db1ef18ea798cb0eb0e6b5599cd173f707255aad43a9199ca9439fef64b7a5", 0xa5}, {&(0x7f0000000f40)="478d66402b3effdb12e673f2ee644b967fb9d5f05870ab7b649304ececfdf1de817fa10c82ec41fba2ad479b6fb14e3a244c9f919c3f99b16984dd61ac0738995736f069be11e58c766eb390899e3e6e0fd5a6c333e65247e2cd602629a15af069b088b8399624180e4d3de611869b3b73fe594b358e355aea1907deafa0b1661a0a0030ad3aa72ec465439eaebde9ac463daddae83b0582e84c003ea598752b0b0d0b9b452c7d53c1b50fc68c9dce101cdbc8350904123373d994ac64e1ced05367eb6ee3c1699ec0f3222618064956d286ceed70d1119a57ffc3b64d33dd359f08056aec2572956561854499c2cd9a32da", 0xf2}, {&(0x7f0000001040)="42e39157b1146fc1de8baea7702cd44eea0820a36ad26542c8e70c154025d4", 0x1f}], 0x6, &(0x7f00000015c0)=[@rights={{0x28, 0x1, 0x1, [r1, r1, r1, r11, r12, r0]}}, @cred={{0x1c, 0x1, 0x2, {r13, r14, r15}}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x2c, 0x1, 0x1, [r0, r1, r1, r16, r1, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {r17, r18, r19}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r20, r21}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r0]}}], 0xe8, 0x40}}, {{&(0x7f00000016c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000001740)="bec8ec0005203f68badc4366f81dde9402903980f5e3787054e9404b0c52f4edcc322db7cdfab2875d703ffd89a1456d629181c9af5d47e491dba180cab1ef2e6bebad31780d6cc312141c30cc9f297053c8bb1e7dcef7fc3e570f7ce76675f8c42e9ec8b9a5d1e65bd1c314b99dfefee2841b1e2c6ea4652df0160031c16c30ea84ddc86808f7efbf4920fd7ced4f4e8288f416b601e41a1ceb7398bd4293e69dbe9f02cb1bd222bc5b2b79", 0xac}, {&(0x7f0000001800)="e0954d878b59e897b767e7465a0d9ad0e39df672cf78537c42aa39cb6262889a8ccffd183d735a6953fe64c0b9742858c71830cbec06284ef75fddfa3f89a2ddb591d844ecd76f1303f435f4b14bf380378ad642dd3275dc73d4c68868f634327c5a947e864f6d581726a59883ef5f2afc5238f589bc0ec9de44d905b48c265848f8e39eab56c56a0552e858e9fcd35ec26f160140303788f39b096e407bae88ab052acbfaf7a76086064a7d60a9504fe15d4e9b1a01437f024d28a2c2f6e90dca", 0xc1}, {&(0x7f0000001900)="37d85d2cb2172a84a0e349a5cd04edc5e9639d27dbce6a7de7477bb505f896f8d519c5f5893c6a8075ba95c4fe82ae9883aedcb8857b0bbe30aa3cd79f8d6355aa347c4a9d519cf372f68d7e51ccffa67e9206427fdb837a1c67103116b97dc09f1aa8dffdc27c257f42ecefe89810c048d3736b4f69accc0e9ca4692fe5a1844e1713125f1b4118080bb940d1a161b962d1c5a5817b21ef99edbfcab77e3ecc457f23128fcef64d679e2308a912dcef030e0fa7a1893c90177ac5fb1550b0775f44e44c21da7dbfa76c66042b3836", 0xcf}], 0x3, &(0x7f0000001e40)=[@cred={{0x1c, 0x1, 0x2, {r22, 0xee01, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r23, r24, r25}}}, @cred={{0x1c, 0x1, 0x2, {r26}}}, @cred={{0x1c}}], 0x80, 0x2000c050}}, {{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000001ec0)="8c277749b88e873adc4589512f8b06ee84a4506ae936ceba46bb748bcd9ad51f29ed124a697d0c69c17bfd33bda268adf00d4498fc66bcc89a59b0ef38afd7a72a19635d7763a60649f60540d28d14461c9c7e8792dcabffd4bc49494a1c95047c23ab4c7718f5f2de25714983f5867d31", 0x71}], 0x1, &(0x7f0000002280)=[@rights={{0x28, 0x1, 0x1, [r0, r1, r1, r1, r1, r0]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [r0, r1, r0, r0, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, r0, r1]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0x28, 0x1, 0x1, [r0, r0, r1, r0, r1, r1]}}], 0x128, 0x20040084}}, {{&(0x7f00000023c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000002a00)=[{&(0x7f0000002440)="049136cc83b635fb36f255480ea495b3942d6269667fe8013f3a948f5106dcd1f801f6bcadbe21170410172df1cdc9aac5357302d2b5c9df7a0450e579a6392da4146d173d4a56fbec21627b2cf91b951a9fa30ffac49b4495527ede2f5af69b1b59c9a58d6af44df29894b685fc584a148fbcb74e816ff42c98373a85163f0cb28f862cd85192d410dfbda5645001aa975baac135aff0f75a1bd59dc767ac3ea88c68959d5f3be7e4cf295eeffe625592e0acd0d37ce764d38f0e71f7e108c2cd809d35b6eac773aa2e53ffee8b1b216957531af3e403f284", 0xd9}, {&(0x7f0000002540)="4c97e80632b5e2f8836e9de82a3dc504b1584c59d10a1ac6d765c60a35c6114b28d20ca47193046a570645491bf2cb2e445f1f6aa6a467de52bb419c1dc2921ba0075187f59402d09c363c842ac39d3020887858121de397a7d4dc82deecbce6cb0e8fee5a2c2c95e48301857f3a1d93f108f955e6e8b1d2dba1b1b853ba7b3324521999e2982e48f97ed638a899bffb97aa2be950af4f7e681eb8901e7308a8c8c0d74624e1b74f90883403618b87d4d5591f0664e6c6b8bd96719de4e533bfe46ee3fbb78721d2904e18342632e78a244fd25af75a8e73b40334018f63e9b646488f463375ee11a5306256f4fb7c866b201af7dd681d7c56", 0xf9}, {&(0x7f0000002640)="e798041cc6bcdeed7afc01fc1c669ace5d3811e6eb438500e3fab86c1441655bc71fafb7fd456f2ed1e33b2e004b2a", 0x2f}, {&(0x7f0000002680)="57378b5046dc526e9a168aa098103fa37db1431cd3717eee0b389c27a3436184327e04d37dbe20a4fbdb69083dcefdb75c01899a34112955ffc1df8013368179bb117129213fe94f4d7eff3a2578123a3047f160e2fde71db53588119ce8aba80289d8ba06adc7450195c8e18015733c291001737c24ea476bfd3d8935bca036a0fa76916a9c7b98e38a055a67af08b170007b0f86c31ad2fd030214915ebe46615fb8ff03fe9a5b961c97", 0xab}, {&(0x7f0000002740)="87a51117e41aeaedb3c0ff1cdda951279a231a6fb39f93a4d5ef2d3d9314248eee2b35019caa2ccc866395f6cde9d1e30fa43d696cc866764924bd37ac0d5df4ea32d5d94d98812d8c4c8f55cc5028492bf17d9fb65f9a010e7db40eaae8affd9f8f1d4f199313135df0a451015114433e92a26c3c5e3e3cc8d208fe1da01a28c4ae7d7e15ecd9af74029d7e4907f0670cc3bc0e59d5f4051b441bd727a58a49fc93c4e3e37ece93d2eeb9a584", 0xad}, {&(0x7f0000002800)="6bdd6875a611cb89a24ffc07f0c9adbaaa3dc4a3912a41fc41c9159ecc0466aad8106d49997acb8e41cdde12d1190c14a95c1d6c090580c5c9a82ec80d06e0e6e9", 0x41}, {&(0x7f0000002880)="0974646daccca4d9a4b3cce5193a7985b2d299e697c9a4909a6d643a4746a0a9c110033b9c033f683a9539709aa2cce22f8ae5b8858d3ebdc5c718861976000a5abbb091b34c1c528c3f86b6c8426322d850c31dfd6bf74d85c4418427d1bcf9281f", 0x62}, {&(0x7f0000002900)="1bbf44590152b7ad14a8c4e746a5cd76fc8f593f0d3ea4f91b158870338af07c7a6dfa4fd481fbdb43ae69281b4bb939cacf2565b76f7760d69569c19aecbda92c6fb1bfae62b887bc7bba54c804c6e956731c2251b60bf454ca4f332a5a21026d0543451d55c3e4e88fab9279824a78ad87982f930d0f3eddbbc8760ee861a03ca47fa609d364", 0x87}, {&(0x7f00000029c0)="f7e4cd8bf5e4418fbe93e44f8e8d646e8e", 0x11}], 0x9, &(0x7f0000002dc0)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}, @rights={{0x30, 0x1, 0x1, [r0, r1, r1, 0xffffffffffffffff, r1, r1, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}], 0xa0, 0x4}}, {{&(0x7f0000002e80)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000002f00), 0x0, &(0x7f0000003880)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x2c, 0x1, 0x1, [r1, r0, r1, r0, r1, r0, r1]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [r1, r0, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c}}], 0x138, 0x20000000}}, {{&(0x7f00000039c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000003c00)=[{&(0x7f0000003a40)="d8cc686b8666407b6c26ad2dbe633b79e44af66608c77046778e62cdb1177f8ccca2b9842e92a7f4548420220c79eb68e61767d9d408026a5258362660351b18a10c0ff2639478f9fdf7d6f386fee4e25b63cd200e5870c43445d085c3bb2097684363a65a295ba0e0282c3ef34516f66f6ec858e241d767f78043cf8621c24594b9bc4875a5236546d464a876914f1ab0d10285cce532ad65a8f760a48fa5b742c2dc1fbbccb4bebc0ac9fd3fe375675ef68b2d1032b562e2939a4570c22f4430b6aff97002da9cafe45688eab55dc233cc7d8ce068813886a7d23314adfcb40209468a743ec1ef9f2d9c3cd1a718469bf0a361fd", 0xf5}, {&(0x7f0000003b40)="4959c90d1625a1794349aa609cf16c4c3af1bfb85a3bb8436ec83f9a91a129cf2316d99376f1d245744649e0edf37c14", 0x30}, {&(0x7f0000003b80)="d0b1e0cbdefc", 0x6}, {&(0x7f0000003bc0)="ee05127af78f0a8d17b908ec3d2c9ea64d1bdc2dd08131381a1c85b0e31fe84d4603391b4cc73a4fb3433ef4b65307f96484a1e2", 0x34}], 0x4, &(0x7f0000003c80)=[@rights={{0x1c, 0x1, 0x1, [r0, r1, r0]}}, @rights={{0x24, 0x1, 0x1, [r0, r1, r0, r0, 0xffffffffffffffff]}}], 0x48, 0x4040000}}, {{&(0x7f0000003d00)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e, &(0x7f0000003f40)=[{&(0x7f0000003d80)="2d57c819d2378a7d8f1033b96dd9d4fccafeaa52182d12f194e33ead296b968b821530ca66160e547a34726c7be2ddd9e6a2c0732203e5af3d9e5361713ca454de0a9e9c80a6dfd166d9d0a8aea4741248d77b311420ffcce1e6df51bb97b2a6f2a89f600d6aee64aa2220926328fb0e3527a02175ab66b4c175419515bc2f63035fbe6073308c8cf9ba4d9ed9bbef16ec6c486adf2d74a1ea3c598a8cea41d7c51d48b3125e7c4b8a6fb3877fa541f9f4f8b2eebc233eadb910c0d5ca1871d79b0b00738742f5d08d80d064a4b9b7c6f4b38c80e61c4349ef542d020db0d8f142fee58cad2b58287597edaabf9bb7e013", 0xf1}, {&(0x7f0000003e80)="f7aab096ed1b6310ba3b196a8ce72fe8c2b86e78fb1ece43a606b04a30209dde0f41a552d571520a21645918cb501f6d98ace6ce3909886212703ffb33f8a780e417e811d94719a51ae08ad43a8a32662b65c5c2cff96b081f2e466d511e", 0x5e}, {&(0x7f0000003f00)="de9c6b", 0x3}], 0x3, 0x0, 0x0, 0x44001}}, {{&(0x7f0000003f80)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004340)=[{&(0x7f0000004000)="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", 0xfd}, {&(0x7f0000004100)="d787356a9204ff122484f5fd1e60a7c4133195b1a063f70783a7c3b77002bef8a0bb27f34b9296253f2909c8d53d71877d87e08709be9f86c343355e909f34a50ae3f05705e0d8ea5d896dcda92f81666be6e5d1df06ae740652b1f2432d8d5e319ae52afecf3b18f91844ccd865ad5ffbde106c4f521a5e9eceb2352e9c764cc2e0c5321e49c7fcf471b5f72772102cc9b9ddd5b02a4319cc070457e9e2b4f2f9925bb7c850276a1c6406a67f53f36ae830", 0xb2}, {&(0x7f00000041c0)="861d72ed2e13cc09eb4484ee4d3b467aa4d9226063cdc3f5aec993d412daa6b114178dc1d9fca39e2a0c05a07d44d1117f8af95c931f749678eb773cfeb7b5", 0x3f}, {&(0x7f0000004200)="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", 0xfb}, {&(0x7f0000004300)="b1847e28670772f4791d264ffdbe6d6e756a72f26f97e7143335033958175809b27fc7", 0x23}], 0x5, &(0x7f0000004940)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, r1, r1]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, r1, r1]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r1]}}, @rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, r1, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x18, 0x1, 0x1, [r1, 0xffffffffffffffff]}}], 0x108, 0x4008814}}], 0xa, 0x8005)

1.693045176s ago: executing program 0 (id=2560):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f00000001c0), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000340)="01000722625a900ede290f00015b097ead85847837353d2dbad05d", 0x1b, r2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000079000000090000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x6002, &(0x7f0000000000)=0x3, 0x7, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
syz_clone(0x24001100, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x3, 0xc, &(0x7f0000000b00)=ANY=[], 0x0, 0xfffffffc, 0x0, 0x0, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_QUANTUM={0x8}]}}]}, 0x38}}, 0x0)
connect$packet(0xffffffffffffffff, &(0x7f0000000380)={0x11, 0x4, 0x0, 0x1, 0x9}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x18, &(0x7f0000000540), 0x1, 0x4a3, &(0x7f0000000580)="$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") (fail_nth: 6)

1.41437499s ago: executing program 3 (id=2561):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000d76018c12a2d0abc1bec4a06b1", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0xa00000, &(0x7f0000000240), 0xfe, 0x54b, &(0x7f0000000400)="$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")
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r4 = open(&(0x7f0000000180)='.\x00', 0x2000, 0xc0)
renameat2(r3, &(0x7f0000000080)='./file1\x00', r4, &(0x7f0000000100)='./file0\x00', 0x4)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000b80)={0x3c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x42}}]}, 0x3c}}, 0x0)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x810000, '\x00', 0x0, r4, 0x1, 0x4, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000380)={'gretap0\x00', <r7=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="ef00000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r7, @ANYBLOB="080004000001000008000a00", @ANYRES32=r7], 0x4c}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a40)={0x2, 0x4, 0x8, 0x1, 0x80, r5, 0x10000, '\x00', r7, 0xffffffffffffffff, 0x2, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)

1.355215055s ago: executing program 0 (id=2562):
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0xffffffc1)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, 0x0, &(0x7f00000000c0)='GPL\x00', 0x3ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000079000000090000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB="00000000ffffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000070018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='mm_page_alloc\x00', r4, 0x0, 0x20000000000000}, 0x18)
r5 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x13, r5, 0x0)
shmget$private(0x0, 0x400000, 0x20, &(0x7f000000e000/0x400000)=nil)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
r6 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x5})
mq_getsetattr(r6, 0x0, 0x0)

1.183985059s ago: executing program 4 (id=2564):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$packet(0x11, 0x3, 0x300)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x9801}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gre={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x3f}]}}}]}, 0x40}}, 0x0)
sendto$packet(r0, &(0x7f0000000000)='1', 0x26, 0x0, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)

1.16872408s ago: executing program 0 (id=2565):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x371f, &(0x7f0000000680)={0x0, 0x0, 0x100, 0x0, 0xfffffffe})
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000740)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r2, 0x17, &(0x7f0000002080)={0x0}, 0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r3)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r5, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002bbd7000000000000c00000054000580070001006962008007000100696200000400028007000100696200000c000280080004"], 0x68}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r3, 0x8b2b, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00  \x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
renameat2(r10, &(0x7f0000000080)='./file1\x00', r7, &(0x7f00000000c0)='./file0\x00', 0x0)
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0, 0x0)

1.119378355s ago: executing program 1 (id=2566):
r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x800008001ffc0)

1.118689605s ago: executing program 4 (id=2567):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

1.095044617s ago: executing program 1 (id=2568):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00'}, 0x10)
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000f4507d59556204ed78ff3c0d8d71", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000000000085000000860000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = creat(0x0, 0x104)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000340)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0, <r4=>0xffffffffffffffff}, 0x4)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'caif0\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10)
syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa88a800008100000086dd6076cd8a0028000020010000000000000000000000000000fe800000000000000000000000000000000400000000000007"], 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000800000000000000", @ANYRES32=r4, @ANYBLOB='\x00'/20, @ANYRES32=r5, @ANYRES32=r2, @ANYBLOB="0200000004000000000000000000000000000000000000000000000024213e93e7295b07d5131f6ae23f7228c225165f4ebe7951566db3c6ae23ab963c37bc55f828cd3c6ad3d2a6776a820092e50d028447d317a8c82806928062bc27dd2d4308131810a38aeb4ae442731009e308c74c9ce04832f3b772f6f34d51208831db6e10102fb482c4cd86eb3595"], 0x50)

1.05889062s ago: executing program 1 (id=2569):
r0 = syz_io_uring_setup(0x4172, &(0x7f0000000780)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x81, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)

1.044239711s ago: executing program 4 (id=2571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0a00000004000000ff0f00000700000000000000ee668853119d8a7422f29b562c092f60ad375420d8e1f220dca3f6cb", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup3(r1, r1, 0x80000)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x6000004, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f8c0000000c0a01080000000000000000010000000900020073797a3200000000600003805c000080080003400000000250000b80200001800a00010071756f7461000000100002800c0001400000000000000000140001800c000100636f756e74657200000000000000058011e70000666c6f775f6f66666c6f6164000000000900010073797a30"], 0x110}}, 0x0)

774.591634ms ago: executing program 1 (id=2572):
socket(0x1, 0xa, 0x1)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x50)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x8004587d, &(0x7f0000000140)={0x2, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000140)=ANY=[], 0x4)

732.692017ms ago: executing program 4 (id=2573):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000010"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x0, 0x800}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x13, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
pause()

732.039777ms ago: executing program 1 (id=2574):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000e80), r1)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000ec0)={'wpan1\x00', <r4=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f00000002c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000025000000050029000000000005002a000400000008000200e7d84e74184fb9e8f448737865b83853f4d681eae72bd8d0d2de37f0ed6429dfc9b7082ead2fe6f57bac18ef825de62facadd537cb41097991d3bc1153113c0d164c2a7c5554095b1700"/121, @ANYRES32=r4, @ANYBLOB], 0x2c}}, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc0c0583b, 0x0)
r5 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000040)=[{0x0}], 0x1, 0xd8c1, 0x0, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r6, &(0x7f0000000440), 0x10)
listen(r6, 0x0)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r7, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r8 = accept4$unix(r6, 0x0, 0x0, 0x0)
sendmmsg$inet(r7, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}], 0x1}}], 0x1, 0x0, 0x0)
inotify_init()
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000500)='^^/-c(\x00')

730.160238ms ago: executing program 0 (id=2575):
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000180)=0x6)
read(r0, 0x0, 0x2006)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0xa, 0x2, 0x2, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000179fa10000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000980), 0xffffffffffffffff)
r4 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01fff0000000000000000d0000000c000180080001"], 0x20}}, 0x0)
r5 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000040)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000009dfa00"/28], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1f, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8000)
sendmsg$NFT_BATCH(r6, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000002000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000000007"], 0x64}}, 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000d40)={0x2c, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00\a\x00\x00'], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_open_dev$hidraw(&(0x7f0000000280), 0x0, 0x4a141)
ioctl$HIDIOCGFEATURE(0xffffffffffffffff, 0xc0404807, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x2, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000c86c73b33970fc0d2a1d4c6726b29961f542f32c9c9a4af967d2e84b8e60c8c201be26b12467a2df24e4ba5916ea4b4c9fd420570a520a399213d932e49404ef5c75f0cef0e946a2266f23797f9aa6d2d8a8b990178a0817c7b333c78462c6e39b0d3a9c338079b786f6ecd8964afdc734e24e33f35a580e833e2f71b6e5b59b6dc14688c0932c58dc99da0ff406fc0754369451fca5215fa5c307633ed18a8732d3a31d18a0143f7259cf2bef38f6c4756cce31ee02ab0d292d93"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r9, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r9, &(0x7f0000000080), 0x4)

706.09121ms ago: executing program 2 (id=2576):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000680)=@newtaction={0x74, 0x30, 0x216822a75a8bdd29, 0x0, 0x0, {}, [{0x60, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x30, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0xffffffffffffffdf}, @TCA_SKBMOD_PARMS={0x24}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1ec}}, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000780)=""/4091, 0xffb}], 0x1}}, {{&(0x7f00000001c0)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f00000005c0), 0x14}, 0x3}], 0x2, 0x0, 0x0)

570.844691ms ago: executing program 2 (id=2577):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)={0x28, r2, 0x1, 0xfffffffd, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SEC_DEVKEY={0xc, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x3}]}]}, 0x28}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x24, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_PID={0x8}]}, 0x24}}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000180)={'wpan1\x00'})
r8 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)={0x24, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_PID={0x8, 0x1c, r8}]}, 0x24}, 0x1, 0x0, 0x0, 0x44080}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f00000002c0)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000c40)={0x39c, r2, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@NL802154_ATTR_SEC_DEVKEY={0x44, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x2}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x8}, @NL802154_DEVKEY_ATTR_ID={0x1c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x2}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_SEC_DEVKEY={0x11c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0xdc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xcf}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x10001}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x44, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xfffc}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x4c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}]}, @NL802154_DEVKEY_ATTR_ID={0x34, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}]}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x6}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6d4}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}]}, @NL802154_ATTR_SEC_DEVKEY={0xbc, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x8}, @NL802154_DEVKEY_ATTR_ID={0x54, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x80000000}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x936}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xc}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x6}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x1c, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa3}]}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x7}, @NL802154_DEVKEY_ATTR_ID={0x34, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1ff}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x7}]}, @NL802154_ATTR_SEC_DEVKEY={0x114, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x14, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x5}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x5}, @NL802154_DEVKEY_ATTR_ID={0xa8, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x38, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x5}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x20, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}]}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x40, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xaf1cf6de6952a8ef}]}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x6}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x18, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xef3}]}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_DEVKEY={0x34, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x30, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xfffffffffffffff5}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}]}]}, 0x39c}, 0x1, 0x0, 0x0, 0x5}, 0x800)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r11 = syz_genetlink_get_family_id$devlink(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r9, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000b80)={0x3c, r11, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x42}}]}, 0x3c}}, 0x0)

364.905999ms ago: executing program 2 (id=2578):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000340)={0x0, 0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file0\x00', 0x3014490, &(0x7f0000000100)={[{@nombcache}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@grpjquota}, {}]}, 0x45, 0x7b1, &(0x7f00000004c0)="$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")
setsockopt$MRT_DEL_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd3, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba0700000000ebffffff0000f7ffff00"})
r3 = syz_open_pts(r2, 0x0)
r4 = dup3(r3, r2, 0x0)
read$watch_queue(r4, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r1, r4, 0x24, 0x0, @void}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x275a, 0x0)
ioctl$TCSETSW2(r3, 0x402c542c, &(0x7f0000000200)={0x5, 0x6, 0x7, 0x2, 0x1, "2789f71db8834933b06ceffab8f71826690b11", 0x9, 0x124})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unshare(0x4a060480)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
ioctl$FIBMAP(r5, 0x660c, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000800000095000000000000009500a5050000000077d8f3b423cdac8d8000000000000020e16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d10bfe150a7487535f7866907dc6751dfb265a0e3ccae669e173a649c1cfd6587d452d46b7c57d77578f4c35235138d5521f9453559c3421eed73d5661cfeecf9c66c54c3b3ffe1b4ce25d7c983c044c03bf3ff03fe3e26e7a23129d6606fd28a7f9105f82317874b33d96b39fa4e045469989d552af6200000003a00000000000000abecc2f4a3799af2551ce935b0f327cb3f011a7d06602e2fd5234712596b696418f1623ed38ae89d24e14b40234756ddcebfba2f87925bfacba83109753f543ad027edd68149ee99eebc6f7d6dd4aed4afe1f44ccb19e810879b70a70900000000000000000000d7900a820b6327944e9a217b9800e02a92895614cd50cbf83a1ed25268816b004519c9c5cff097d8000000000009d27d753a30a147b24a48435bd8a568669596e9e08679b3ce48e90defb6670c3d6209000000c773713a66b223fa8b148871c8d31d24000025449f106b99893ed20fa7a050fbbef90327e827e513e9606800000000e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e69ee52b59d13182e1f24ed208ada12f7a1525320e71666f472a972d5eb1affb87ba55b2d72078e9f40b4ae7dc3b2aeb0d11cd22c35d32940f19dff00ffffffff080000ff003853e59de7621e348955735264f34b1046a1813668297a7edad187ef106ae7fcbb25090f17d0baadeb8ae190a1fb5a315f8347fb0379659500000000000000000000000000000000000000002fdf0193ec79c90ed210ebc2fbed6d4216770c1b0dec886b388d138c2b69c6aacb714e7264093061c660a5100b7cc165889eb94c8d7c77b6fa06f1a4f8e4a6b6cb37e319c5c22f276b03cae853f42b07ca0b03b1eb32a6b1a81cd511fd0b59d57a11c6a3ebf9731464ad21f07f618efc31023ac60007426162b57e803519954d7c956fda392fa84be38e937d36af1c35138e05a9e8d6dc0272de72c41500000000304402e22af23437126f330f8eb4075daaeae3134ece35cd86d95bd9836bd186c4b6565e967a4e3e86f299b7400994ba136b4eccf3b0f001a266c0d160b3ce1182001d64b52a5ce7f506295d59eea6903b84ffbabf5a5b91c1d6ecce8728a224aec66c610e3becd60a35e848c224f8251947eed20e2b612cb099bfe8924d33ba7f0691fed04a43e9c64b7a1e3165e86cdb9871c678a6bbb14821f441c6c14d1bd78d8ffdfea12c19ea04264335d60b6b7a7da6fb83f33101db32f6ab137d943dd3c1e8db9f3e1263573dc721ae82fe0bc63598751a5092c9f7dbfc39d564834e3703492c2a651643d8ce5c36d97a4812cf73fc8ea0d68d7489cfcb0176"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0xb)
r7 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r7, &(0x7f0000000440)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000240)="a9050000000074640021000000003552bde5c064", 0x14}], 0x1}}], 0x1, 0x0)
ioctl$USBDEVFS_CONNECTINFO(r0, 0x40085511, &(0x7f00000000c0))
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000c8efeb8000e6ffffff", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)

169.239466ms ago: executing program 3 (id=2579):
syz_open_dev$loop(&(0x7f00000001c0), 0xfff, 0x107382)
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x35c, 0x0)
preadv(r0, &(0x7f0000000040)=[{&(0x7f00000013c0)=""/4096, 0x5}], 0x3f, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x5, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000200)=ANY=[@ANYRES16=r1], &(0x7f0000000080)='GPL\x00', 0x4, 0xc0, &(0x7f0000000140)=""/192, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f0000001980)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001a00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="090b60f14073b2b68ae305"], 0x1c}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0x58, &(0x7f0000000180)}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='cgroup.freeze\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xb, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440), 0xc}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, r5, 0x0)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x1d, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$TUNSETOFFLOAD(r7, 0xc004743e, 0x20001400)
syz_clone(0x4eb82100, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r7, 0x8004745a, 0x2000000c)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_subtree(r8, &(0x7f0000000200), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r10=>r2, {0x5}}, '.\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000240)='scmi_xfer_response_wait\x00', r10, 0x0, 0x5}, 0x18)
write$cgroup_subtree(r9, &(0x7f0000000400)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r9, &(0x7f0000000040)={[{0x2b, 'cpu'}, {0x2d, 'pids'}]}, 0xb)

59.378855ms ago: executing program 2 (id=2580):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x101443, 0x4, 0x20}, 0x18)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=<r3=>0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r6 = inotify_init1(0x0)
r7 = syz_clone(0xc200000, 0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$setown(r6, 0x8, r7)
fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
r9 = syz_open_procfs(r8, &(0x7f00000008c0)='wchan\x00')
pread64(r9, &(0x7f0000000280)=""/252, 0xfc, 0x0)
r10 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4)
sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r10, 0x1, 0x70bd29, 0x100234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r3}]}, 0x1c}}, 0x20000000)
ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000140)={0x0, @rc={0x1f, @any, 0x3}, @nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x10}, @nfc={0x27, r3, 0xffffffffffffffff, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000000c0)='vcan0\x00', 0xffffffff, 0x3, 0xffff})
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r11}, 0x10)
sendmsg$rds(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8004}, 0x0)

31.484077ms ago: executing program 2 (id=2581):
r0 = socket$inet6(0xa, 0x2, 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd602e5cea00403c00200100"/36, @ANYBLOB="ca24c9c217"], 0x0) (async)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4) (async)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000340)="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", 0x1000, r0}, 0x68)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x18)
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000040)=0x5f, 0x4)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) (async)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

0s ago: executing program 2 (id=2582):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000001b51811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r3, &(0x7f0000000000)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x24)
listen(r3, 0x4)
close_range(r2, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

 T9119] syz.0.1887[9119] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.265158][ T9119] syz.0.1887[9119] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.348572][ T9126] loop4: detected capacity change from 0 to 2048
[  149.380842][ T9070] team0: Port device team_slave_0 added
[  149.398546][ T9070] team0: Port device team_slave_1 added
[  149.448869][ T9130] can0: slcan on ttyS3.
[  149.574902][ T9070] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.581922][ T9070] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.607889][ T9070] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.630997][ T9126] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.644484][ T9130] can0 (unregistered): slcan off ttyS3.
[  149.737472][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.758214][ T9070] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.765285][ T9070] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.791180][ T9070] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.816133][ T9148] loop4: detected capacity change from 0 to 512
[  149.817686][ T9146] loop1: detected capacity change from 0 to 512
[  149.822802][ T9148] ext4: Unknown parameter 'func'
[  149.859383][ T9146] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.874977][ T9146] ext4 filesystem being mounted at /396/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  149.897531][ T9143] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1896'.
[  149.922891][ T9070] hsr_slave_0: entered promiscuous mode
[  149.944623][ T9070] hsr_slave_1: entered promiscuous mode
[  149.963341][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.976065][ T9070] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  149.996473][ T9070] Cannot create hsr debugfs directory
[  150.056884][ T9159] can0: slcan on ttyS3.
[  150.156364][ T9070] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.168614][ T9166] FAULT_INJECTION: forcing a failure.
[  150.168614][ T9166] name failslab, interval 1, probability 0, space 0, times 0
[  150.181425][ T9166] CPU: 0 UID: 0 PID: 9166 Comm: syz.0.1902 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  150.193682][ T9166] Tainted: [W]=WARN
[  150.197554][ T9166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  150.207606][ T9166] Call Trace:
[  150.210890][ T9166]  <TASK>
[  150.213824][ T9166]  dump_stack_lvl+0xf2/0x150
[  150.218419][ T9166]  dump_stack+0x15/0x20
[  150.222604][ T9166]  should_fail_ex+0x223/0x230
[  150.227397][ T9166]  ? bpf_test_init+0xc7/0x170
[  150.232107][ T9166]  should_failslab+0x8f/0xb0
[  150.236702][ T9166]  __kmalloc_noprof+0xa5/0x370
[  150.241474][ T9166]  ? _parse_integer+0x27/0x30
[  150.246160][ T9166]  bpf_test_init+0xc7/0x170
[  150.250948][ T9166]  bpf_prog_test_run_skb+0x151/0xba0
[  150.256247][ T9166]  ? kstrtouint_from_user+0xb0/0xe0
[  150.261575][ T9166]  ? __fget_files+0x1d4/0x210
[  150.266466][ T9166]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  150.272289][ T9166]  bpf_prog_test_run+0x20f/0x3a0
[  150.277337][ T9166]  __sys_bpf+0x400/0x7a0
[  150.281701][ T9166]  __x64_sys_bpf+0x43/0x50
[  150.286210][ T9166]  x64_sys_call+0x2625/0x2d60
[  150.291181][ T9166]  do_syscall_64+0xc9/0x1c0
[  150.295789][ T9166]  ? clear_bhb_loop+0x55/0xb0
[  150.300627][ T9166]  ? clear_bhb_loop+0x55/0xb0
[  150.305320][ T9166]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.311255][ T9166] RIP: 0033:0x7fb1662fdff9
[  150.315658][ T9166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.335496][ T9166] RSP: 002b:00007fb164f77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  150.343899][ T9166] RAX: ffffffffffffffda RBX: 00007fb1664b5f80 RCX: 00007fb1662fdff9
[  150.352294][ T9166] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a
[  150.360258][ T9166] RBP: 00007fb164f77090 R08: 0000000000000000 R09: 0000000000000000
[  150.368336][ T9166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.376297][ T9166] R13: 0000000000000000 R14: 00007fb1664b5f80 R15: 00007ffcffebfdd8
[  150.384260][ T9166]  </TASK>
[  150.409364][ T9170] Process accounting resumed
[  150.455980][ T9070] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.467392][ T9164] can0 (unregistered): slcan off ttyS3.
[  150.547759][ T9070] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.566163][ T9180] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  150.592958][ T9187] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1907'.
[  150.638983][ T9070] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.694681][ T9202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1917'.
[  150.703884][ T9202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1917'.
[  150.765655][ T9070] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  150.779988][ T9215] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1922'.
[  150.790518][ T9070] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  150.804878][ T9070] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  150.835804][ T9070] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  150.896553][ T9230] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  150.952399][ T9070] 8021q: adding VLAN 0 to HW filter on device bond0
[  150.981498][ T9070] 8021q: adding VLAN 0 to HW filter on device team0
[  151.008251][ T9236] loop4: detected capacity change from 0 to 2048
[  151.018133][ T3417] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.025272][ T3417] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.034806][ T9236]  loop4: p1 < > p4
[  151.042723][ T3417] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.049810][ T3417] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.057851][ T9236] loop4: p4 size 8388608 extends beyond EOD, truncated
[  151.076074][ T9070] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  151.086493][ T9070] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  151.210185][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  151.278907][ T9070] 8021q: adding VLAN 0 to HW filter on device batadv0
[  151.372680][ T9070] veth0_vlan: entered promiscuous mode
[  151.395685][ T9070] veth1_vlan: entered promiscuous mode
[  151.427140][ T9070] veth0_macvtap: entered promiscuous mode
[  151.449218][ T9292] loop3: detected capacity change from 0 to 2048
[  151.459397][ T9070] veth1_macvtap: entered promiscuous mode
[  151.478050][ T9070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.488568][ T9070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.498391][ T9070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.508891][ T9070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.518733][ T9070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  151.529228][ T9070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.541904][ T9070] batman_adv: batadv0: Interface activated: batadv_slave_0
[  151.550481][ T9070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.560996][ T9070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.570997][ T9070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.581486][ T9070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.591479][ T9070] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  151.601906][ T9070] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  151.613063][ T9070] batman_adv: batadv0: Interface activated: batadv_slave_1
[  151.626937][ T9292]  loop3: p1 < > p4
[  151.626960][ T9070] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  151.635960][ T9292] loop3: p4 size 8388608 extends beyond EOD, truncated
[  151.639511][ T9070] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  151.655213][ T9070] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  151.663903][ T9070] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  151.760161][ T9311] loop2: detected capacity change from 0 to 1024
[  151.778959][ T9311] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.809854][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.890200][ T9319] loop2: detected capacity change from 0 to 512
[  151.917263][ T9319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.930697][ T9319] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  151.982492][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.087878][ T9330] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  152.146125][ T9336] can0: slcan on ttyS3.
[  152.204444][ T9336] can0 (unregistered): slcan off ttyS3.
[  152.210112][ T9336] Falling back ldisc for ttyS3.
[  152.289279][ T9360] can0: slcan on ttyS3.
[  152.316489][ T9365] hsr0: entered promiscuous mode
[  152.327126][ T9365] hsr0: left promiscuous mode
[  152.342260][ T9368] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  152.354421][ T9358] Invalid logical block size (65472)
[  152.414699][ T9360] can0 (unregistered): slcan off ttyS3.
[  152.423243][ T9378] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1984'.
[  152.498539][ T9387] syz.0.1987[9387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.498610][ T9387] syz.0.1987[9387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.513489][ T9387] syz.0.1987[9387] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.528232][ T9381] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1985'.
[  152.586377][ T9397] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  152.667256][ T9401] loop3: detected capacity change from 0 to 2048
[  152.695698][ T9401] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.695765][ T9407] loop1: detected capacity change from 0 to 512
[  152.715224][ T9407] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  152.724524][ T9401] Invalid logical block size (65472)
[  152.735305][ T9407] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1996: bg 0: block 248: padding at end of block bitmap is not set
[  152.751078][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.762587][ T9407] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.1996: Failed to acquire dquot type 1
[  152.778957][ T9407] EXT4-fs (loop1): 1 truncate cleaned up
[  152.789959][ T9407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.806250][ T9407] ext4 filesystem being mounted at /423/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  152.820219][ T9414] can0: slcan on ttyS3.
[  152.934640][ T9407] can0 (unregistered): slcan off ttyS3.
[  153.148953][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.164578][   T11] EXT4-fs error (device loop1): ext4_release_dquot:6902: comm kworker/u8:0: Failed to release dquot type 1
[  153.237245][ T9428] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2000'.
[  153.314032][ T9435] xt_CT: You must specify a L4 protocol and not use inversions on it
[  153.363080][ T9443] syz.1.2006[9443] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  153.363182][ T9443] syz.1.2006[9443] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  153.363666][ T9437] FAULT_INJECTION: forcing a failure.
[  153.363666][ T9437] name failslab, interval 1, probability 0, space 0, times 0
[  153.374630][   T29] kauditd_printk_skb: 314 callbacks suppressed
[  153.374641][   T29] audit: type=1326 audit(1728673238.492:14443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  153.385914][ T9437] CPU: 0 UID: 0 PID: 9437 Comm: syz.0.2005 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  153.398539][   T29] audit: type=1326 audit(1728673238.492:14444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb1662fc990 code=0x7ffc0000
[  153.404552][ T9437] Tainted: [W]=WARN
[  153.404559][ T9437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  153.404570][ T9437] Call Trace:
[  153.404616][ T9437]  <TASK>
[  153.404622][ T9437]  dump_stack_lvl+0xf2/0x150
[  153.404647][ T9437]  dump_stack+0x15/0x20
[  153.428103][   T29] audit: type=1326 audit(1728673238.492:14445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb1662fcadf code=0x7ffc0000
[  153.440173][ T9437]  should_fail_ex+0x223/0x230
[  153.440207][ T9437]  ? audit_log_d_path+0x96/0x250
[  153.526205][ T9437]  should_failslab+0x8f/0xb0
[  153.530804][ T9437]  __kmalloc_cache_noprof+0x4b/0x2a0
[  153.536098][ T9437]  audit_log_d_path+0x96/0x250
[  153.540870][ T9437]  ? get_file_rcu+0xeb/0x100
[  153.545542][ T9437]  ? __rcu_read_unlock+0x4e/0x70
[  153.550485][ T9437]  audit_log_d_path_exe+0x42/0x70
[  153.555506][ T9437]  audit_log_task+0x155/0x180
[  153.560188][ T9437]  audit_seccomp+0x68/0x130
[  153.565010][ T9437]  __seccomp_filter+0x6fa/0x1180
[  153.570026][ T9437]  ? proc_fail_nth_write+0x12a/0x150
[  153.575314][ T9437]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  153.580943][ T9437]  ? vfs_write+0x580/0x910
[  153.585473][ T9437]  ? __fget_files+0x1d4/0x210
[  153.590207][ T9437]  __secure_computing+0x9f/0x1c0
[  153.595145][ T9437]  syscall_trace_enter+0xd1/0x1f0
[  153.600348][ T9437]  ? fpregs_assert_state_consistent+0x83/0xa0
[  153.606497][ T9437]  do_syscall_64+0xaa/0x1c0
[  153.611002][ T9437]  ? clear_bhb_loop+0x55/0xb0
[  153.615881][ T9437]  ? clear_bhb_loop+0x55/0xb0
[  153.620559][ T9437]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.626471][ T9437] RIP: 0033:0x7fb1662fdff9
[  153.630875][ T9437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.650499][ T9437] RSP: 002b:00007fb164f77038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e6
[  153.659019][ T9437] RAX: ffffffffffffffda RBX: 00007fb1664b5f80 RCX: 00007fb1662fdff9
[  153.666980][ T9437] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000009
[  153.675012][ T9437] RBP: 00007fb164f77090 R08: 0000000000000000 R09: 0000000000000000
[  153.682979][ T9437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.691286][ T9437] R13: 0000000000000000 R14: 00007fb1664b5f80 R15: 00007ffcffebfdd8
[  153.699258][ T9437]  </TASK>
[  153.725189][   T29] audit: type=1326 audit(1728673238.492:14446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="<no_memory>" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  153.748126][   T29] audit: type=1400 audit(1728673238.832:14447): avc:  denied  { wake_alarm } for  pid=9436 comm="syz.0.2005" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  153.782295][ T9448] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.790910][ T9448] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.800611][ T9448] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2008'.
[  153.834673][   T29] audit: type=1326 audit(1728673238.962:14448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fb1662fca3c code=0x7ffc0000
[  153.858165][   T29] audit: type=1326 audit(1728673238.962:14449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb1662fcadf code=0x7ffc0000
[  153.882288][   T29] audit: type=1326 audit(1728673238.962:14450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb1662fcc8a code=0x7ffc0000
[  153.906039][   T29] audit: type=1326 audit(1728673238.962:14451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  153.929763][   T29] audit: type=1326 audit(1728673238.962:14452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9436 comm="syz.0.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  154.120232][ T9460] syz.0.2013[9460] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.120345][ T9460] syz.0.2013[9460] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.260787][ T9463] loop1: detected capacity change from 0 to 1024
[  154.398482][ T9463] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.490505][ T9468] loop2: detected capacity change from 0 to 512
[  154.498789][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.509288][ T9468] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  154.527393][ T9468] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.2015: iget: bad i_size value: -6917529027641081756
[  154.604747][ T9468] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2015: couldn't read orphan inode 17 (err -117)
[  154.658479][ T9468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.726494][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.740176][ T9477] xt_CT: You must specify a L4 protocol and not use inversions on it
[  154.810892][ T9483] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2021'.
[  154.862060][ T9498] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  154.869023][ T9499] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  154.928055][ T9507] loop4: detected capacity change from 0 to 512
[  154.988039][ T9507] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.038421][ T9507] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  155.069632][ T9519] loop1: detected capacity change from 0 to 512
[  155.117367][ T9519] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  155.139396][ T9522] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2038'.
[  155.139638][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.165559][ T9519] EXT4-fs error (device loop1): ext4_orphan_get:1388: inode #17: comm syz.1.2036: iget: bad i_size value: -6917529027641081756
[  155.216791][ T9519] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.2036: couldn't read orphan inode 17 (err -117)
[  155.266765][ T9532] loop4: detected capacity change from 0 to 512
[  155.311716][ T9532] ext4 filesystem being mounted at /38/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  155.327756][ T9541] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  155.889068][ T9568] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2052'.
[  155.898040][ T9568] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.905466][ T9568] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.918488][ T9568] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.926021][ T9568] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.432747][ T9575] loop3: detected capacity change from 0 to 512
[  156.451499][ T9575] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  156.664911][ T9594] loop2: detected capacity change from 0 to 1024
[  156.817780][ T9603] xt_CT: You must specify a L4 protocol and not use inversions on it
[  157.594502][ T9613] Invalid logical block size (65472)
[  157.619238][ T9621] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2073'.
[  157.662570][ T9630] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  157.722453][ T9636] Cannot find del_set index 4 as target
[  157.742417][ T9639] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  157.791941][ T9640] loop4: detected capacity change from 0 to 512
[  157.840703][ T9649] lo speed is unknown, defaulting to 1000
[  157.903728][ T9640] ext4 filesystem being mounted at /47/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.027549][ T9666] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  158.030666][ T9663] loop4: detected capacity change from 0 to 2048
[  158.037515][ T9668] loop3: detected capacity change from 0 to 512
[  158.061249][ T9668] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  158.070467][ T9668] EXT4-fs (loop3): blocks per group (71) and clusters per group (32768) inconsistent
[  158.123869][ T9663] Invalid logical block size (65472)
[  158.133849][ T9672] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2092'.
[  158.281570][ T9681] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2096'.
[  158.358800][ T9687] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.376187][ T9687] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.390776][ T9687] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2098'.
[  158.410494][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x7
[  158.418008][    T9] hid-generic 0000:0000:0000.0029: ignoring exceeding usage max
[  158.428999][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.449819][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.457273][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.464733][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.472124][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.479532][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.487027][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.494435][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.501906][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.502086][ T9688] loop3: detected capacity change from 0 to 2048
[  158.509321][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.523129][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.530572][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.537962][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.545391][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.552882][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.560367][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.567802][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.575196][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.582579][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.589976][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.597379][    T9] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[  158.607358][    T9] hid-generic 0000:0000:0000.0029: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  158.668928][   T29] kauditd_printk_skb: 114 callbacks suppressed
[  158.668943][   T29] audit: type=1400 audit(1728673243.802:14565): avc:  denied  { watch } for  pid=9684 comm="syz.3.2097" path="/85/control" dev="tmpfs" ino=477 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  158.745045][ T9698] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  158.792653][ T9703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2105'.
[  158.801670][ T9703] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  158.809520][ T9703] batman_adv: batadv0: Removing interface: batadv_slave_0
[  158.817868][ T9703] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  158.825305][ T9703] batman_adv: batadv0: Removing interface: batadv_slave_1
[  158.835238][ T9706] usb usb8: usbfs: process 9706 (syz.0.2107) did not claim interface 0 before use
[  158.892101][ T9708] loop1: detected capacity change from 0 to 2048
[  158.902344][ T9708] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  158.941578][ T9713] syz.1.2110[9713] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  158.941739][ T9713] syz.1.2110[9713] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.231162][ T9719] loop4: detected capacity change from 0 to 1024
[  159.267158][ T9721] loop2: detected capacity change from 0 to 512
[  159.397774][ T9721] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  159.439850][   T29] audit: type=1400 audit(1728673244.552:14566): avc:  denied  { name_bind } for  pid=9720 comm="syz.2.2113" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  159.564318][ T9729] loop2: detected capacity change from 0 to 512
[  159.579717][ T9733] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  159.588853][ T9729] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  159.616640][ T9729] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.2114: iget: bad i_size value: -6917529027641081756
[  159.633361][ T9729] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2114: couldn't read orphan inode 17 (err -117)
[  159.663082][ T9729] Quota error (device loop2): do_check_range: Getting block 144 out of range 0-5
[  159.732667][ T9745] syz.2.2120[9745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.732801][ T9745] syz.2.2120[9745] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  159.798987][ T9748] FAULT_INJECTION: forcing a failure.
[  159.798987][ T9748] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  159.823420][ T9748] CPU: 0 UID: 0 PID: 9748 Comm: syz.0.2121 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  159.835707][ T9748] Tainted: [W]=WARN
[  159.839500][ T9748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  159.849543][ T9748] Call Trace:
[  159.852814][ T9748]  <TASK>
[  159.855788][ T9748]  dump_stack_lvl+0xf2/0x150
[  159.860412][ T9748]  dump_stack+0x15/0x20
[  159.864556][ T9748]  should_fail_ex+0x223/0x230
[  159.869303][ T9748]  should_fail+0xb/0x10
[  159.873524][ T9748]  should_fail_usercopy+0x1a/0x20
[  159.878643][ T9748]  _copy_to_user+0x1e/0xa0
[  159.883057][ T9748]  simple_read_from_buffer+0xa0/0x110
[  159.888459][ T9748]  proc_fail_nth_read+0xf9/0x140
[  159.893408][ T9748]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  159.899048][ T9748]  vfs_read+0x195/0x720
[  159.903295][ T9748]  ? __rcu_read_unlock+0x4e/0x70
[  159.908360][ T9748]  ? __fget_files+0x1d4/0x210
[  159.913085][ T9748]  ksys_read+0xeb/0x1b0
[  159.917309][ T9748]  __x64_sys_read+0x42/0x50
[  159.921830][ T9748]  x64_sys_call+0x27d3/0x2d60
[  159.926515][ T9748]  do_syscall_64+0xc9/0x1c0
[  159.931014][ T9748]  ? clear_bhb_loop+0x55/0xb0
[  159.935725][ T9748]  ? clear_bhb_loop+0x55/0xb0
[  159.940454][ T9748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.946487][ T9748] RIP: 0033:0x7fb1662fca3c
[  159.950915][ T9748] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  159.970520][ T9748] RSP: 002b:00007fb164f56030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  159.979092][ T9748] RAX: ffffffffffffffda RBX: 00007fb1664b6058 RCX: 00007fb1662fca3c
[  159.987094][ T9748] RDX: 000000000000000f RSI: 00007fb164f560a0 RDI: 0000000000000005
[  159.995056][ T9748] RBP: 00007fb164f56090 R08: 0000000000000000 R09: 0000000000000000
[  160.003082][ T9748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.011120][ T9748] R13: 0000000000000000 R14: 00007fb1664b6058 R15: 00007ffcffebfdd8
[  160.019099][ T9748]  </TASK>
[  160.042576][   T29] audit: type=1400 audit(1728673245.172:14567): avc:  denied  { create } for  pid=9750 comm="syz.1.2122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  160.100865][ T9751] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2122'.
[  160.163389][ T9757] can0: slcan on ttyS3.
[  160.264835][ T9761] can0 (unregistered): slcan off ttyS3.
[  160.301763][   T29] audit: type=1400 audit(1728673245.282:14568): avc:  denied  { write } for  pid=9750 comm="syz.1.2122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  160.466174][ T9769] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2127'.
[  160.654147][ T9794] can0: slcan on ttyS3.
[  160.686532][ T9800] loop2: detected capacity change from 0 to 512
[  160.695867][ T9800] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  160.717698][ T9800] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.2141: iget: bad i_size value: -6917529027641081756
[  160.734126][ T9800] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2141: couldn't read orphan inode 17 (err -117)
[  160.748376][ T9809] FAULT_INJECTION: forcing a failure.
[  160.748376][ T9809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.761526][ T9809] CPU: 1 UID: 0 PID: 9809 Comm: syz.1.2143 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  160.773683][ T9809] Tainted: [W]=WARN
[  160.777473][ T9809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  160.787528][ T9809] Call Trace:
[  160.790807][ T9809]  <TASK>
[  160.793766][ T9809]  dump_stack_lvl+0xf2/0x150
[  160.798365][ T9809]  dump_stack+0x15/0x20
[  160.802518][ T9809]  should_fail_ex+0x223/0x230
[  160.807229][ T9809]  should_fail+0xb/0x10
[  160.811388][ T9809]  should_fail_usercopy+0x1a/0x20
[  160.816493][ T9809]  _copy_from_user+0x1e/0xd0
[  160.821087][ T9809]  __sys_bpf+0x14e/0x7a0
[  160.825496][ T9809]  __x64_sys_bpf+0x43/0x50
[  160.829939][ T9809]  x64_sys_call+0x2625/0x2d60
[  160.834617][ T9809]  do_syscall_64+0xc9/0x1c0
[  160.839119][ T9809]  ? clear_bhb_loop+0x55/0xb0
[  160.843844][ T9809]  ? clear_bhb_loop+0x55/0xb0
[  160.848609][ T9809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.854607][ T9809] RIP: 0033:0x7f51c8b8dff9
[  160.859012][ T9809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.878624][ T9809] RSP: 002b:00007f51c7801038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  160.887073][ T9809] RAX: ffffffffffffffda RBX: 00007f51c8d45f80 RCX: 00007f51c8b8dff9
[  160.895117][ T9809] RDX: 0000000000000020 RSI: 0000000020000000 RDI: 0000000000000004
[  160.903082][ T9809] RBP: 00007f51c7801090 R08: 0000000000000000 R09: 0000000000000000
[  160.911410][ T9809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.916366][ T9800] Quota error (device loop2): do_check_range: Getting block 144 out of range 0-5
[  160.919544][ T9809] R13: 0000000000000000 R14: 00007f51c8d45f80 R15: 00007ffd734bea88
[  160.919567][ T9809]  </TASK>
[  160.944427][ T9794] can0 (unregistered): slcan off ttyS3.
[  160.991844][ T9816] syz.2.2145[9816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.992010][ T9816] syz.2.2145[9816] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  161.032258][ T9820] loop4: detected capacity change from 0 to 1024
[  161.088577][ T9824] FAULT_INJECTION: forcing a failure.
[  161.088577][ T9824] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.101744][ T9824] CPU: 1 UID: 0 PID: 9824 Comm: syz.1.2149 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  161.113912][ T9824] Tainted: [W]=WARN
[  161.117846][ T9824] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  161.127964][ T9824] Call Trace:
[  161.131240][ T9824]  <TASK>
[  161.134236][ T9824]  dump_stack_lvl+0xf2/0x150
[  161.138851][ T9824]  dump_stack+0x15/0x20
[  161.143076][ T9824]  should_fail_ex+0x223/0x230
[  161.147761][ T9824]  should_fail+0xb/0x10
[  161.151991][ T9824]  should_fail_usercopy+0x1a/0x20
[  161.157099][ T9824]  _copy_from_user+0x1e/0xd0
[  161.161739][ T9824]  copy_msghdr_from_user+0x54/0x2a0
[  161.167068][ T9824]  __sys_sendmsg+0x171/0x270
[  161.171680][ T9824]  __x64_sys_sendmsg+0x46/0x50
[  161.176494][ T9824]  x64_sys_call+0x2689/0x2d60
[  161.181268][ T9824]  do_syscall_64+0xc9/0x1c0
[  161.185845][ T9824]  ? clear_bhb_loop+0x55/0xb0
[  161.190617][ T9824]  ? clear_bhb_loop+0x55/0xb0
[  161.195306][ T9824]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.201239][ T9824] RIP: 0033:0x7f51c8b8dff9
[  161.205656][ T9824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.225357][ T9824] RSP: 002b:00007f51c7801038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.233808][ T9824] RAX: ffffffffffffffda RBX: 00007f51c8d45f80 RCX: 00007f51c8b8dff9
[  161.242221][ T9824] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[  161.250264][ T9824] RBP: 00007f51c7801090 R08: 0000000000000000 R09: 0000000000000000
[  161.258250][ T9824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.266239][ T9824] R13: 0000000000000000 R14: 00007f51c8d45f80 R15: 00007ffd734bea88
[  161.274316][ T9824]  </TASK>
[  161.340993][ T9833] capability: warning: `syz.4.2153' uses 32-bit capabilities (legacy support in use)
[  161.345090][ T9829] Invalid logical block size (65472)
[  161.416128][ T9841] can0: slcan on ttyS3.
[  161.484782][ T9841] can0 (unregistered): slcan off ttyS3.
[  161.493498][ T9857] loop4: detected capacity change from 0 to 1024
[  161.614395][ T9868] Invalid logical block size (65472)
[  161.657034][ T9872] loop4: detected capacity change from 0 to 512
[  161.666933][ T9875] loop1: detected capacity change from 0 to 512
[  161.686449][ T9872] ext4 filesystem being mounted at /75/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  161.696836][ T9875] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  161.709600][ T9875] System zones: 0-2, 18-18, 34-34
[  161.717784][ T9875] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2170: bg 0: block 248: padding at end of block bitmap is not set
[  161.751991][ T9875] Quota error (device loop1): write_blk: dquota write failed
[  161.759538][ T9875] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  161.774626][ T9875] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.2170: Failed to acquire dquot type 1
[  161.792449][ T9875] EXT4-fs (loop1): 1 truncate cleaned up
[  161.805414][ T9875] ext4 filesystem being mounted at /465/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.891258][ T9892] can0: slcan on ttyS3.
[  161.922955][ T9896] loop1: detected capacity change from 0 to 1024
[  161.984526][ T9892] can0 (unregistered): slcan off ttyS3.
[  162.012878][   T29] audit: type=1326 audit(1728673247.142:14569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9909 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efec0e7dff9 code=0x7ffc0000
[  162.012902][   T29] audit: type=1326 audit(1728673247.142:14570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9909 comm="syz.2.2182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efec0e7dff9 code=0x7ffc0000
[  162.074554][ T9906] Invalid logical block size (65472)
[  162.247265][ T9935] can0: slcan on ttyS3.
[  162.252127][ T9936] loop4: detected capacity change from 0 to 1024
[  162.315237][ T9943] Invalid logical block size (65472)
[  162.324611][ T9935] can0 (unregistered): slcan off ttyS3.
[  162.329055][ T9947] FAULT_INJECTION: forcing a failure.
[  162.329055][ T9947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.343405][ T9947] CPU: 1 UID: 0 PID: 9947 Comm: syz.3.2196 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  162.355605][ T9947] Tainted: [W]=WARN
[  162.359416][ T9947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  162.369471][ T9947] Call Trace:
[  162.372747][ T9947]  <TASK>
[  162.375735][ T9947]  dump_stack_lvl+0xf2/0x150
[  162.380325][ T9947]  dump_stack+0x15/0x20
[  162.384560][ T9947]  should_fail_ex+0x223/0x230
[  162.389310][ T9947]  should_fail+0xb/0x10
[  162.393526][ T9947]  should_fail_usercopy+0x1a/0x20
[  162.398594][ T9947]  _copy_from_user+0x1e/0xd0
[  162.403250][ T9947]  do_sock_getsockopt+0xd3/0x260
[  162.408257][ T9947]  __sys_getsockopt+0x18a/0x200
[  162.413191][ T9947]  __x64_sys_getsockopt+0x66/0x80
[  162.418279][ T9947]  x64_sys_call+0x11cd/0x2d60
[  162.423083][ T9947]  do_syscall_64+0xc9/0x1c0
[  162.427593][ T9947]  ? clear_bhb_loop+0x55/0xb0
[  162.432285][ T9947]  ? clear_bhb_loop+0x55/0xb0
[  162.437061][ T9947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.442998][ T9947] RIP: 0033:0x7fad09f3dff9
[  162.447404][ T9947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.467090][ T9947] RSP: 002b:00007fad08bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  162.475504][ T9947] RAX: ffffffffffffffda RBX: 00007fad0a0f5f80 RCX: 00007fad09f3dff9
[  162.483475][ T9947] RDX: 0000000000000072 RSI: 0000000000000084 RDI: 0000000000000003
[  162.491525][ T9947] RBP: 00007fad08bb1090 R08: 0000000020000300 R09: 0000000000000000
[  162.499490][ T9947] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  162.507455][ T9947] R13: 0000000000000000 R14: 00007fad0a0f5f80 R15: 00007ffc1b82d688
[  162.515429][ T9947]  </TASK>
[  162.570766][ T9957] loop2: detected capacity change from 0 to 512
[  162.587385][ T9957] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  162.675893][ T9957] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.2200: iget: bad i_size value: -6917529027641081756
[  162.700430][ T9983] loop4: detected capacity change from 0 to 512
[  162.708306][ T9957] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2200: couldn't read orphan inode 17 (err -117)
[  162.723648][ T9988] can0: slcan on ttyS3.
[  162.724396][ T9981] Invalid logical block size (65472)
[  162.762049][ T9983] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  162.774906][ T9983] System zones: 0-2, 18-18, 34-34
[  162.776449][ T9994] syz.2.2211[9994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.780058][ T9994] syz.2.2211[9994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.783166][ T9983] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2208: bg 0: block 248: padding at end of block bitmap is not set
[  162.802842][ T9994] syz.2.2211[9994] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.819811][ T9983] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.2208: Failed to acquire dquot type 1
[  162.855163][ T9988] can0 (unregistered): slcan off ttyS3.
[  162.876477][ T9983] EXT4-fs (loop4): 1 truncate cleaned up
[  162.901675][ T9983] EXT4-fs mount: 32 callbacks suppressed
[  162.901695][ T9983] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.937748][T10006] loop1: detected capacity change from 0 to 512
[  162.944715][ T9983] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.976071][T10006] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.996039][ T9983] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.013104][T10006] ext4 filesystem being mounted at /480/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  163.066493][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.152110][T10026] loop4: detected capacity change from 0 to 2048
[  163.156588][T10034] syz.2.2226[10034] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.239337][T10026]  loop4: p1 < > p4
[  163.260141][T10026] loop4: p4 size 8388608 extends beyond EOD, truncated
[  163.580968][T10040] can0: slcan on ttyS3.
[  163.665000][T10040] can0 (unregistered): slcan off ttyS3.
[  163.861129][T10064] loop4: detected capacity change from 0 to 512
[  163.882107][T10064] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  163.906207][T10064] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #17: comm syz.4.2238: iget: bad i_size value: -6917529027641081756
[  163.922870][T10064] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.2238: couldn't read orphan inode 17 (err -117)
[  163.961666][T10070] loop3: detected capacity change from 0 to 512
[  163.980424][T10064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.052196][T10070] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.069390][   T29] kauditd_printk_skb: 278 callbacks suppressed
[  164.069402][   T29] audit: type=1326 audit(1728673249.202:14846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.099213][   T29] audit: type=1326 audit(1728673249.202:14847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.104751][T10070] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  164.122855][   T29] audit: type=1326 audit(1728673249.202:14848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.122881][   T29] audit: type=1326 audit(1728673249.202:14849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.122932][   T29] audit: type=1326 audit(1728673249.202:14850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.122956][   T29] audit: type=1326 audit(1728673249.202:14851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.122979][   T29] audit: type=1326 audit(1728673249.202:14852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.123027][   T29] audit: type=1326 audit(1728673249.202:14853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.123049][   T29] audit: type=1326 audit(1728673249.202:14854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.123070][   T29] audit: type=1326 audit(1728673249.202:14855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.1.2241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  164.324384][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.415811][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.493213][T10093] bpf_get_probe_write_proto: 1 callbacks suppressed
[  164.493231][T10093] syz.3.2247[10093] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.499962][T10093] syz.3.2247[10093] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.622392][T10104] syz.2.2252[10104] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.634073][T10104] syz.2.2252[10104] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  164.692938][T10110] loop4: detected capacity change from 0 to 1024
[  164.742925][T10110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.769136][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.929471][T10123] lo speed is unknown, defaulting to 1000
[  164.974053][T10125] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.024177][T10125] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.080232][T10125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2260'.
[  165.127985][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x7
[  165.135501][   T24] hid-generic 0000:0000:0000.002A: ignoring exceeding usage max
[  165.147040][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.165783][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.173212][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.180725][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.188242][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.195651][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.203088][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.210567][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.218023][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.225507][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.233022][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.240504][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.248078][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.255505][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.262899][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.270441][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.277932][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.285435][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.292849][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.300468][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.308228][   T24] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  165.319266][   T24] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  165.423454][T10135] loop3: detected capacity change from 0 to 512
[  165.446835][T10135] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  165.556677][T10135] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.578916][T10135] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.625045][T10148] syz.1.2267[10148] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.625140][T10148] syz.1.2267[10148] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.637542][T10148] syz.1.2267[10148] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.650133][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.728983][T10147] loop1: detected capacity change from 0 to 512
[  165.852037][T10167] syz.3.2274[10167] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.852172][T10167] syz.3.2274[10167] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.866128][T10171] FAULT_INJECTION: forcing a failure.
[  165.866128][T10171] name failslab, interval 1, probability 0, space 0, times 0
[  165.890563][T10171] CPU: 1 UID: 0 PID: 10171 Comm: syz.1.2276 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  165.903072][T10171] Tainted: [W]=WARN
[  165.907020][T10171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  165.917114][T10171] Call Trace:
[  165.920447][T10171]  <TASK>
[  165.923375][T10171]  dump_stack_lvl+0xf2/0x150
[  165.927985][T10171]  dump_stack+0x15/0x20
[  165.932182][T10171]  should_fail_ex+0x223/0x230
[  165.936918][T10171]  ? ceph_key_preparse+0x92/0x220
[  165.941991][T10171]  should_failslab+0x8f/0xb0
[  165.945229][T10169] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  165.946571][T10171]  __kmalloc_cache_noprof+0x4b/0x2a0
[  165.954901][T10167] syz.3.2274[10167] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.958946][T10171]  ceph_key_preparse+0x92/0x220
[  165.958978][T10171]  __key_create_or_update+0x29f/0x750
[  165.980661][T10171]  key_create_or_update+0x42/0x60
[  165.985706][T10171]  __se_sys_add_key+0x280/0x320
[  165.990561][T10171]  ? fput+0x14e/0x190
[  165.994552][T10171]  __x64_sys_add_key+0x67/0x80
[  165.999395][T10171]  x64_sys_call+0x157d/0x2d60
[  166.004113][T10171]  do_syscall_64+0xc9/0x1c0
[  166.008636][T10171]  ? clear_bhb_loop+0x55/0xb0
[  166.013346][T10171]  ? clear_bhb_loop+0x55/0xb0
[  166.018101][T10171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.024184][T10171] RIP: 0033:0x7f51c8b8dff9
[  166.028709][T10171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.048414][T10171] RSP: 002b:00007f51c7801038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  166.056918][T10171] RAX: ffffffffffffffda RBX: 00007f51c8d45f80 RCX: 00007f51c8b8dff9
[  166.064884][T10171] RDX: 0000000020000bc0 RSI: 0000000000000000 RDI: 0000000020000040
[  166.072931][T10171] RBP: 00007f51c7801090 R08: 000000002973f8aa R09: 0000000000000000
[  166.080989][T10171] R10: 000000000000012d R11: 0000000000000246 R12: 0000000000000001
[  166.089005][T10171] R13: 0000000000000000 R14: 00007f51c8d45f80 R15: 00007ffd734bea88
[  166.097008][T10171]  </TASK>
[  166.136364][T10178] can0: slcan on ttyS3.
[  166.141049][T10180] FAULT_INJECTION: forcing a failure.
[  166.141049][T10180] name failslab, interval 1, probability 0, space 0, times 0
[  166.154439][T10180] CPU: 0 UID: 0 PID: 10180 Comm: syz.4.2280 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  166.166769][T10180] Tainted: [W]=WARN
[  166.170557][T10180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  166.180682][T10180] Call Trace:
[  166.183951][T10180]  <TASK>
[  166.186879][T10180]  dump_stack_lvl+0xf2/0x150
[  166.191476][T10180]  dump_stack+0x15/0x20
[  166.195630][T10180]  should_fail_ex+0x223/0x230
[  166.200347][T10180]  ? getname_flags+0x81/0x3b0
[  166.205090][T10180]  should_failslab+0x8f/0xb0
[  166.209670][T10180]  kmem_cache_alloc_noprof+0x4c/0x290
[  166.215050][T10180]  getname_flags+0x81/0x3b0
[  166.219642][T10180]  user_path_at+0x26/0x110
[  166.224062][T10180]  __se_sys_pivot_root+0xca/0x1090
[  166.229197][T10180]  ? vfs_write+0x580/0x910
[  166.233646][T10180]  ? __fget_files+0x1d4/0x210
[  166.238332][T10180]  ? fput+0x14e/0x190
[  166.242479][T10180]  __x64_sys_pivot_root+0x31/0x40
[  166.247511][T10180]  x64_sys_call+0x270b/0x2d60
[  166.252232][T10180]  do_syscall_64+0xc9/0x1c0
[  166.256837][T10180]  ? clear_bhb_loop+0x55/0xb0
[  166.262099][T10180]  ? clear_bhb_loop+0x55/0xb0
[  166.266828][T10180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.272718][T10180] RIP: 0033:0x7fac4720dff9
[  166.277170][T10180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.296860][T10180] RSP: 002b:00007fac45e87038 EFLAGS: 00000246 ORIG_RAX: 000000000000009b
[  166.305283][T10180] RAX: ffffffffffffffda RBX: 00007fac473c5f80 RCX: 00007fac4720dff9
[  166.313243][T10180] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200000c0
[  166.321229][T10180] RBP: 00007fac45e87090 R08: 0000000000000000 R09: 0000000000000000
[  166.329221][T10180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  166.337260][T10180] R13: 0000000000000000 R14: 00007fac473c5f80 R15: 00007ffd258f9b38
[  166.345244][T10180]  </TASK>
[  166.353243][T10182] FAULT_INJECTION: forcing a failure.
[  166.353243][T10182] name failslab, interval 1, probability 0, space 0, times 0
[  166.365977][T10182] CPU: 0 UID: 0 PID: 10182 Comm: syz.0.2281 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  166.378385][T10182] Tainted: [W]=WARN
[  166.382189][T10182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  166.392245][T10182] Call Trace:
[  166.395513][T10182]  <TASK>
[  166.398443][T10182]  dump_stack_lvl+0xf2/0x150
[  166.403144][T10182]  dump_stack+0x15/0x20
[  166.407317][T10182]  should_fail_ex+0x223/0x230
[  166.412156][T10182]  ? find_get_context+0x99/0x540
[  166.417110][T10182]  should_failslab+0x8f/0xb0
[  166.421708][T10182]  __kmalloc_cache_noprof+0x4b/0x2a0
[  166.427006][T10182]  find_get_context+0x99/0x540
[  166.431891][T10182]  __se_sys_perf_event_open+0xc31/0x21f0
[  166.437626][T10182]  ? proc_fail_nth_write+0x81/0x150
[  166.442890][T10182]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  166.448587][T10182]  ? __fget_files+0x1d4/0x210
[  166.453291][T10182]  __x64_sys_perf_event_open+0x67/0x80
[  166.458844][T10182]  x64_sys_call+0x18d7/0x2d60
[  166.463563][T10182]  do_syscall_64+0xc9/0x1c0
[  166.468085][T10182]  ? clear_bhb_loop+0x55/0xb0
[  166.472849][T10182]  ? clear_bhb_loop+0x55/0xb0
[  166.477541][T10182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.483450][T10182] RIP: 0033:0x7fb1662fdff9
[  166.487885][T10182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.507761][T10182] RSP: 002b:00007fb164f77038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  166.516176][T10182] RAX: ffffffffffffffda RBX: 00007fb1664b5f80 RCX: 00007fb1662fdff9
[  166.524144][T10182] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[  166.532177][T10182] RBP: 00007fb164f77090 R08: 0000000000000003 R09: 0000000000000000
[  166.540693][T10182] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  166.548806][T10182] R13: 0000000000000000 R14: 00007fb1664b5f80 R15: 00007ffcffebfdd8
[  166.556778][T10182]  </TASK>
[  166.634984][T10189] can0 (unregistered): slcan off ttyS3.
[  166.681950][T10206] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  166.720575][T10210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  166.734395][T10210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  166.749799][T10210] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2290'.
[  166.780404][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x7
[  166.787857][  T981] hid-generic 0000:0000:0000.002B: ignoring exceeding usage max
[  166.799037][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.806684][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.814101][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.821530][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.828945][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.836351][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.843809][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.851247][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.858660][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.866220][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.873614][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.881059][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.888629][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.896111][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.903632][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.911060][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.918470][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.926174][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.933599][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.941004][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.948424][  T981] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  166.957054][  T981] hid-generic 0000:0000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  166.974977][T10216] Invalid logical block size (65472)
[  167.012230][T10225] loop4: detected capacity change from 0 to 512
[  167.104053][T10225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.117144][T10225] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  167.140892][T10236] xt_CT: You must specify a L4 protocol and not use inversions on it
[  167.501325][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.501570][T10239] loop3: detected capacity change from 0 to 512
[  167.525330][T10243] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  167.544268][T10239] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  167.576040][T10239] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #17: comm syz.3.2299: iget: bad i_size value: -6917529027641081756
[  167.599498][T10239] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.2299: couldn't read orphan inode 17 (err -117)
[  167.662455][T10239] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.694033][T10263] loop4: detected capacity change from 0 to 2048
[  167.696161][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.727665][T10263] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.742014][T10267] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  167.758240][T10267] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  167.766847][T10267] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2311'.
[  167.811817][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.907667][T10279] can0: slcan on ttyS3.
[  167.907678][T10275] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2314'.
[  167.930078][T10275] bridge_slave_1: left allmulticast mode
[  167.935808][T10275] bridge_slave_1: left promiscuous mode
[  167.941512][T10275] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.950055][T10275] bridge_slave_0: left allmulticast mode
[  167.955795][T10275] bridge_slave_0: left promiscuous mode
[  167.961446][T10275] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.031234][T10283] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=10283 comm=syz.1.2314
[  168.155200][T10279] can0 (unregistered): slcan off ttyS3.
[  168.157391][T10293] xt_CT: You must specify a L4 protocol and not use inversions on it
[  168.212657][T10300] loop1: detected capacity change from 0 to 256
[  168.359873][T10310] loop2: detected capacity change from 0 to 2048
[  168.505840][T10310]  loop2: p1 < > p4
[  168.521957][T10318] FAULT_INJECTION: forcing a failure.
[  168.521957][T10318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.535218][T10318] CPU: 1 UID: 0 PID: 10318 Comm: syz.4.2329 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  168.547461][T10318] Tainted: [W]=WARN
[  168.551253][T10318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  168.561387][T10318] Call Trace:
[  168.564691][T10318]  <TASK>
[  168.567696][T10318]  dump_stack_lvl+0xf2/0x150
[  168.572284][T10318]  dump_stack+0x15/0x20
[  168.576491][T10318]  should_fail_ex+0x223/0x230
[  168.581216][T10318]  should_fail+0xb/0x10
[  168.585392][T10318]  should_fail_usercopy+0x1a/0x20
[  168.590470][T10318]  _copy_from_user+0x1e/0xd0
[  168.595071][T10318]  snd_seq_ioctl+0x11b/0x2a0
[  168.599775][T10318]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  168.604880][T10318]  __se_sys_ioctl+0xcd/0x140
[  168.609485][T10318]  __x64_sys_ioctl+0x43/0x50
[  168.614190][T10318]  x64_sys_call+0x15cc/0x2d60
[  168.618944][T10318]  do_syscall_64+0xc9/0x1c0
[  168.623547][T10318]  ? clear_bhb_loop+0x55/0xb0
[  168.628363][T10318]  ? clear_bhb_loop+0x55/0xb0
[  168.633053][T10318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.638956][T10318] RIP: 0033:0x7fac4720dff9
[  168.643363][T10318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.663099][T10318] RSP: 002b:00007fac45e66038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  168.671515][T10318] RAX: ffffffffffffffda RBX: 00007fac473c6058 RCX: 00007fac4720dff9
[  168.679483][T10318] RDX: 0000000020000340 RSI: 00000000c0a85320 RDI: 000000000000000a
[  168.687550][T10318] RBP: 00007fac45e66090 R08: 0000000000000000 R09: 0000000000000000
[  168.695538][T10318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.703500][T10318] R13: 0000000000000000 R14: 00007fac473c6058 R15: 00007ffd258f9b38
[  168.711500][T10318]  </TASK>
[  168.719850][T10310] loop2: p4 size 8388608 extends beyond EOD, truncated
[  168.799707][T10326] loop3: detected capacity change from 0 to 1024
[  168.799841][T10328] xt_CT: You must specify a L4 protocol and not use inversions on it
[  168.817732][T10326] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.845654][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.861508][T10332] xt_CT: You must specify a L4 protocol and not use inversions on it
[  168.889202][T10336] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  168.926677][T10338] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  168.958129][T10340] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.967037][T10340] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.975640][T10340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2338'.
[  168.990073][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x7
[  168.997524][  T981] hid-generic 0000:0000:0000.002C: ignoring exceeding usage max
[  169.008905][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.016937][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.024376][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.031790][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.039243][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.046648][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.054099][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.061521][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.069013][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.076449][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.083962][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.091387][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.098841][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.106266][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.113665][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.121117][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.128542][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.135961][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.143355][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.150827][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.158255][  T981] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  169.212572][  T981] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  169.235982][   T29] kauditd_printk_skb: 470 callbacks suppressed
[  169.235997][   T29] audit: type=1326 audit(1728673254.372:15324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="syz.1.2340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.289899][   T29] audit: type=1326 audit(1728673254.412:15325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="syz.1.2340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.313598][   T29] audit: type=1326 audit(1728673254.412:15326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.336749][   T29] audit: type=1326 audit(1728673254.412:15327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.360027][   T29] audit: type=1326 audit(1728673254.412:15328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.383258][   T29] audit: type=1326 audit(1728673254.412:15329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.406586][   T29] audit: type=1326 audit(1728673254.412:15330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.429713][   T29] audit: type=1326 audit(1728673254.412:15331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10344 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f51c8b8dff9 code=0x7ffc0000
[  169.452742][   T29] audit: type=1326 audit(1728673254.422:15332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10348 comm="syz.2.2341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efec0e7dff9 code=0x7ffc0000
[  169.476576][   T29] audit: type=1326 audit(1728673254.422:15333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10348 comm="syz.2.2341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efec0e7dff9 code=0x7ffc0000
[  169.610808][T10372] loop3: detected capacity change from 0 to 512
[  169.618566][T10372] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.647737][T10372] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #17: comm syz.3.2349: iget: bad i_size value: -6917529027641081756
[  169.666826][T10372] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.2349: couldn't read orphan inode 17 (err -117)
[  169.687780][T10378] loop2: detected capacity change from 0 to 512
[  169.695210][T10372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.715640][T10378] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #15: comm syz.2.2350: casefold flag without casefold feature
[  169.728989][T10378] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2350: couldn't read orphan inode 15 (err -117)
[  169.741466][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.741598][T10378] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.797104][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.843293][T10388] loop2: detected capacity change from 0 to 512
[  169.854086][T10388] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.867308][T10388] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.2352: iget: bad i_size value: -6917529027641081756
[  169.881192][T10388] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2352: couldn't read orphan inode 17 (err -117)
[  169.894096][T10388] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.918164][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.929911][T10390] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2354'.
[  170.116589][T10411] can0: slcan on ttyS3.
[  170.174558][T10411] can0 (unregistered): slcan off ttyS3.
[  170.197634][T10418] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.207298][T10419] can0: slcan on ttyS3.
[  170.212692][T10418] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.230454][T10418] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2363'.
[  170.245384][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x7
[  170.252816][ T3344] hid-generic 0000:0000:0000.002D: ignoring exceeding usage max
[  170.254544][T10419] can0 (unregistered): slcan off ttyS3.
[  170.263810][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.274922][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.282439][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.289974][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.297480][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.304913][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.312560][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.319968][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.327403][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.334935][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.342311][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.349754][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.357264][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.364783][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.372271][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.379693][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.387094][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.394566][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.402001][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.409583][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.417090][ T3344] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  170.427072][ T3344] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  170.431014][T10423] bpf_get_probe_write_proto: 7 callbacks suppressed
[  170.431027][T10423] syz.4.2365[10423] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.448591][T10423] syz.4.2365[10423] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.477808][T10423] syz.4.2365[10423] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.497158][T10429] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  170.518962][T10430] loop1: detected capacity change from 0 to 512
[  170.531099][T10430] tmpfs: Bad value for 'mpol'
[  170.556144][T10437] loop4: detected capacity change from 0 to 128
[  170.648179][T10448] can0: slcan on ttyS3.
[  170.698190][T10460] syz.1.2379[10460] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.698235][T10460] syz.1.2379[10460] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.718483][T10448] can0 (unregistered): slcan off ttyS3.
[  170.722154][T10460] syz.1.2379[10460] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.868919][T10459] loop4: detected capacity change from 0 to 512
[  170.887911][T10459] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  170.898874][T10459] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[  170.908996][T10459] EXT4-fs (loop4): group descriptors corrupted!
[  171.024447][T10481] Invalid logical block size (65472)
[  171.144949][T10500] can0: slcan on ttyS3.
[  171.231513][T10505] loop1: detected capacity change from 0 to 2048
[  171.264527][T10500] can0 (unregistered): slcan off ttyS3.
[  171.285101][T10505]  loop1: p1 < > p4
[  171.289370][T10505] loop1: p4 size 8388608 extends beyond EOD, truncated
[  171.362158][T10510] loop1: detected capacity change from 0 to 512
[  171.435255][T10510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.454800][T10510] ext4 filesystem being mounted at /519/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  171.487317][T10517] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  171.515705][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.670120][T10527] loop1: detected capacity change from 0 to 128
[  171.733949][T10527] syz.1.2404: attempt to access beyond end of device
[  171.733949][T10527] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[  171.755625][T10528] siw: device registration error -23
[  171.791378][T10527] syz.1.2404: attempt to access beyond end of device
[  171.791378][T10527] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128
[  171.820108][T10527] syz.1.2404: attempt to access beyond end of device
[  171.820108][T10527] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  171.845997][T10527] syz.1.2404: attempt to access beyond end of device
[  171.845997][T10527] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  171.871984][T10529] IPv6: Can't replace route, no match found
[  171.886710][T10529] netlink: 'syz.1.2404': attribute type 10 has an invalid length.
[  171.900079][T10527] syz.1.2404: attempt to access beyond end of device
[  171.900079][T10527] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  171.928605][T10527] syz.1.2404: attempt to access beyond end of device
[  171.928605][T10527] loop1: rw=0, sector=145, nr_sectors = 8 limit=128
[  171.983953][T10531] FAULT_INJECTION: forcing a failure.
[  171.983953][T10531] name failslab, interval 1, probability 0, space 0, times 0
[  171.996674][T10531] CPU: 0 UID: 0 PID: 10531 Comm: syz.3.2405 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  172.008932][T10531] Tainted: [W]=WARN
[  172.012735][T10531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  172.022794][T10531] Call Trace:
[  172.026072][T10531]  <TASK>
[  172.029046][T10531]  dump_stack_lvl+0xf2/0x150
[  172.033717][T10531]  dump_stack+0x15/0x20
[  172.037874][T10531]  should_fail_ex+0x223/0x230
[  172.042620][T10531]  ? igmp6_group_dropped+0x22e/0x5a0
[  172.047976][T10531]  should_failslab+0x8f/0xb0
[  172.052621][T10531]  __kmalloc_cache_noprof+0x4b/0x2a0
[  172.057923][T10531]  ? _raw_spin_unlock_bh+0x36/0x40
[  172.063048][T10531]  igmp6_group_dropped+0x22e/0x5a0
[  172.068252][T10531]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  172.073667][T10531]  __ipv6_dev_mc_dec+0x197/0x3d0
[  172.078614][T10531]  addrconf_leave_solict+0xac/0xd0
[  172.083738][T10531]  __ipv6_dev_ac_dec+0x272/0x360
[  172.088781][T10531]  __ipv6_sock_ac_close+0x162/0x1f0
[  172.093984][T10531]  ipv6_sock_ac_close+0x7e/0xa0
[  172.098832][T10531]  inet6_release+0x36/0x60
[  172.103246][T10531]  sock_close+0x68/0x150
[  172.107491][T10531]  ? __pfx_sock_close+0x10/0x10
[  172.112424][T10531]  __fput+0x17a/0x6d0
[  172.116466][T10531]  ? dnotify_flush+0x163/0x370
[  172.121238][T10531]  __fput_sync+0x43/0x60
[  172.125571][T10531]  __se_sys_close+0xf9/0x1a0
[  172.130163][T10531]  __x64_sys_close+0x1f/0x30
[  172.134760][T10531]  x64_sys_call+0x25cb/0x2d60
[  172.139468][T10531]  do_syscall_64+0xc9/0x1c0
[  172.143971][T10531]  ? clear_bhb_loop+0x55/0xb0
[  172.148651][T10531]  ? clear_bhb_loop+0x55/0xb0
[  172.153360][T10531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.159507][T10531] RIP: 0033:0x7fad09f3dff9
[  172.164011][T10531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.183649][T10531] RSP: 002b:00007fad08bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  172.192073][T10531] RAX: ffffffffffffffda RBX: 00007fad0a0f5f80 RCX: 00007fad09f3dff9
[  172.200079][T10531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  172.208048][T10531] RBP: 00007fad08bb1090 R08: 0000000000000000 R09: 0000000000000000
[  172.216076][T10531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.224047][T10531] R13: 0000000000000000 R14: 00007fad0a0f5f80 R15: 00007ffc1b82d688
[  172.232076][T10531]  </TASK>
[  172.269612][T10537] can0: slcan on ttyS3.
[  172.285130][T10539] FAULT_INJECTION: forcing a failure.
[  172.285130][T10539] name failslab, interval 1, probability 0, space 0, times 0
[  172.297776][T10539] CPU: 0 UID: 0 PID: 10539 Comm: syz.3.2409 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  172.310050][T10539] Tainted: [W]=WARN
[  172.313870][T10539] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  172.324061][T10539] Call Trace:
[  172.327341][T10539]  <TASK>
[  172.330276][T10539]  dump_stack_lvl+0xf2/0x150
[  172.334920][T10539]  dump_stack+0x15/0x20
[  172.339124][T10539]  should_fail_ex+0x223/0x230
[  172.343872][T10539]  ? tipc_nametbl_lookup_group+0x450/0x620
[  172.349713][T10539]  should_failslab+0x8f/0xb0
[  172.354380][T10539]  __kmalloc_cache_noprof+0x4b/0x2a0
[  172.359681][T10539]  ? avc_has_perm+0xd4/0x160
[  172.364325][T10539]  tipc_nametbl_lookup_group+0x450/0x620
[  172.370022][T10539]  __tipc_sendmsg+0x1103/0x1c40
[  172.374878][T10539]  ? selinux_socket_sendmsg+0x19c/0x1d0
[  172.380423][T10539]  ? _raw_spin_unlock_bh+0x36/0x40
[  172.385541][T10539]  ? lock_sock_nested+0x10f/0x140
[  172.390560][T10539]  ? __pfx_tipc_sendmsg+0x10/0x10
[  172.395643][T10539]  tipc_sendmsg+0x3e/0x60
[  172.399961][T10539]  __sock_sendmsg+0x140/0x180
[  172.404629][T10539]  ____sys_sendmsg+0x312/0x410
[  172.409395][T10539]  __sys_sendmsg+0x1d9/0x270
[  172.413993][T10539]  __x64_sys_sendmsg+0x46/0x50
[  172.418765][T10539]  x64_sys_call+0x2689/0x2d60
[  172.423475][T10539]  do_syscall_64+0xc9/0x1c0
[  172.427971][T10539]  ? clear_bhb_loop+0x55/0xb0
[  172.432725][T10539]  ? clear_bhb_loop+0x55/0xb0
[  172.437420][T10539]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.443364][T10539] RIP: 0033:0x7fad09f3dff9
[  172.447770][T10539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.467449][T10539] RSP: 002b:00007fad08bb1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  172.475853][T10539] RAX: ffffffffffffffda RBX: 00007fad0a0f5f80 RCX: 00007fad09f3dff9
[  172.483832][T10539] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000007
[  172.491863][T10539] RBP: 00007fad08bb1090 R08: 0000000000000000 R09: 0000000000000000
[  172.499833][T10539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.507794][T10539] R13: 0000000000000000 R14: 00007fad0a0f5f80 R15: 00007ffc1b82d688
[  172.515774][T10539]  </TASK>
[  172.524395][T10535] Invalid logical block size (65472)
[  172.595925][T10554] loop4: detected capacity change from 0 to 2048
[  172.604758][T10537] can0 (unregistered): slcan off ttyS3.
[  172.638597][T10560] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  172.651713][T10554] Alternate GPT is invalid, using primary GPT.
[  172.658073][T10554]  loop4: p2 p3 p7
[  172.695773][T10565] loop1: detected capacity change from 0 to 2048
[  172.738515][T10565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.766839][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.782577][T10577] loop4: detected capacity change from 0 to 2048
[  172.908547][T10577] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.474733][ T3572] unregister_netdevice: waiting for vcan0 to become free. Usage count = 2
[  173.515753][T10594] can0: slcan on ttyS3.
[  173.553822][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.571177][T10600] loop3: detected capacity change from 0 to 1024
[  173.578369][T10600] EXT4-fs: Ignoring removed oldalloc option
[  173.585298][T10600] EXT4-fs (loop3): stripe (222) is not aligned with cluster size (16), stripe is disabled
[  173.604476][T10594] can0 (unregistered): slcan off ttyS3.
[  173.635164][T10607] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  173.643522][T10600] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.053786][T10650] syz.0.2445[10650] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.053881][T10650] syz.0.2445[10650] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.065722][T10650] syz.0.2445[10650] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.400897][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.550137][   T29] kauditd_printk_skb: 958 callbacks suppressed
[  174.550157][   T29] audit: type=1326 audit(1728673259.682:16290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10657 comm="syz.3.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad09f3dff9 code=0x7ffc0000
[  174.615358][   T29] audit: type=1326 audit(1728673259.722:16291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10659 comm="syz.4.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac4720dff9 code=0x7ffc0000
[  174.639169][   T29] audit: type=1326 audit(1728673259.722:16292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10659 comm="syz.4.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac4720dff9 code=0x7ffc0000
[  174.662849][   T29] audit: type=1326 audit(1728673259.722:16293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10657 comm="syz.3.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad09f3dff9 code=0x7ffc0000
[  174.686722][   T29] audit: type=1326 audit(1728673259.722:16294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10657 comm="syz.3.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad09f3dff9 code=0x7ffc0000
[  174.710372][   T29] audit: type=1326 audit(1728673259.722:16295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10657 comm="syz.3.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad09f3dff9 code=0x7ffc0000
[  174.734424][   T29] audit: type=1326 audit(1728673259.722:16296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10657 comm="syz.3.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad09f3dff9 code=0x7ffc0000
[  174.758331][   T29] audit: type=1326 audit(1728673259.722:16297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10657 comm="syz.3.2448" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fad09f3dff9 code=0x7ffc0000
[  174.782097][   T29] audit: type=1326 audit(1728673259.742:16298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10659 comm="syz.4.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac4720dff9 code=0x7ffc0000
[  174.805936][   T29] audit: type=1326 audit(1728673259.742:16299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10659 comm="syz.4.2449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac4720dff9 code=0x7ffc0000
[  174.853018][T10666] loop1: detected capacity change from 0 to 512
[  174.866732][T10666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.899934][T10666] ext4 filesystem being mounted at /530/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  174.959178][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.992422][T10684] loop3: detected capacity change from 0 to 2048
[  175.018372][T10684] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  175.083501][T10703] loop3: detected capacity change from 0 to 512
[  175.109353][T10703] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  175.147150][T10703] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #17: comm syz.3.2464: iget: bad i_size value: -6917529027641081756
[  175.185477][T10703] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.2464: couldn't read orphan inode 17 (err -117)
[  175.205870][T10703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.311220][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.401331][T10732] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2475'.
[  175.519001][T10734] loop3: detected capacity change from 0 to 8192
[  175.574832][T10734]  loop3: p1 p2 p3 p4
[  175.591861][T10734] loop3: p1 start 17760256 is beyond EOD, truncated
[  175.598542][T10734] loop3: p2 size 64053 extends beyond EOD, truncated
[  175.646009][T10734] loop3: p3 start 458496 is beyond EOD, truncated
[  175.652498][T10734] loop3: p4 size 50331648 extends beyond EOD, truncated
[  175.779956][T10746] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2477'.
[  175.936400][T10756] FAULT_INJECTION: forcing a failure.
[  175.936400][T10756] name failslab, interval 1, probability 0, space 0, times 0
[  175.949226][T10756] CPU: 1 UID: 0 PID: 10756 Comm: syz.3.2480 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  175.961567][T10756] Tainted: [W]=WARN
[  175.965364][T10756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  175.975418][T10756] Call Trace:
[  175.978776][T10756]  <TASK>
[  175.981705][T10756]  dump_stack_lvl+0xf2/0x150
[  175.986338][T10756]  dump_stack+0x15/0x20
[  175.990536][T10756]  should_fail_ex+0x223/0x230
[  175.991946][T10757] syz.2.2482[10757] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.995289][T10756]  ? io_alloc_page_table+0x3b/0x100
[  175.995319][T10756]  should_failslab+0x8f/0xb0
[  176.016582][T10756]  __kmalloc_noprof+0xa5/0x370
[  176.021393][T10756]  io_alloc_page_table+0x3b/0x100
[  176.026510][T10756]  ? __kmalloc_cache_noprof+0x10b/0x2a0
[  176.032092][T10756]  io_rsrc_data_alloc+0x7c/0x1a0
[  176.037054][T10756]  ? proc_fail_nth_write+0x12a/0x150
[  176.042372][T10756]  io_sqe_buffers_register+0xdf/0x450
[  176.047764][T10756]  ? __fget_files+0x1d4/0x210
[  176.048232][T10757] syz.2.2482[10757] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  176.052498][T10756]  __se_sys_io_uring_register+0x85c/0x1280
[  176.069813][T10756]  __x64_sys_io_uring_register+0x55/0x70
[  176.075465][T10756]  x64_sys_call+0x202/0x2d60
[  176.080067][T10756]  do_syscall_64+0xc9/0x1c0
[  176.084581][T10756]  ? clear_bhb_loop+0x55/0xb0
[  176.089382][T10756]  ? clear_bhb_loop+0x55/0xb0
[  176.094081][T10756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.100164][T10756] RIP: 0033:0x7fad09f3dff9
[  176.104788][T10756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.124416][T10756] RSP: 002b:00007fad08bb1038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  176.132889][T10756] RAX: ffffffffffffffda RBX: 00007fad0a0f5f80 RCX: 00007fad09f3dff9
[  176.140860][T10756] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000004
[  176.148842][T10756] RBP: 00007fad08bb1090 R08: 0000000000000000 R09: 0000000000000000
[  176.156822][T10756] R10: 100000000000011a R11: 0000000000000246 R12: 0000000000000001
[  176.164795][T10756] R13: 0000000000000000 R14: 00007fad0a0f5f80 R15: 00007ffc1b82d688
[  176.172765][T10756]  </TASK>
[  176.176284][T10757] syz.2.2482[10757] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  176.183166][T10754] loop1: detected capacity change from 0 to 2048
[  176.277880][T10761] loop4: detected capacity change from 0 to 512
[  176.296100][T10759]  loop1: p1 < > p4
[  176.296789][T10761] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  176.304320][T10759] loop1: p4 size 8388608 extends beyond EOD, truncated
[  176.313470][T10765] can0: slcan on ttyS3.
[  176.337250][T10754]  loop1: p1 < > p4
[  176.352139][T10761] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #17: comm syz.4.2483: iget: bad i_size value: -6917529027641081756
[  176.356774][T10754] loop1: p4 size 8388608 extends beyond EOD, truncated
[  176.379662][T10773] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2487'.
[  176.405418][T10761] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.2483: couldn't read orphan inode 17 (err -117)
[  176.431278][T10761] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.454827][T10765] can0 (unregistered): slcan off ttyS3.
[  176.484999][ T8881] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.653463][T10802] FAULT_INJECTION: forcing a failure.
[  176.653463][T10802] name failslab, interval 1, probability 0, space 0, times 0
[  176.666411][T10802] CPU: 0 UID: 0 PID: 10802 Comm: syz.3.2499 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  176.679212][T10802] Tainted: [W]=WARN
[  176.683008][T10802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  176.693077][T10802] Call Trace:
[  176.696358][T10802]  <TASK>
[  176.699289][T10802]  dump_stack_lvl+0xf2/0x150
[  176.703959][T10802]  dump_stack+0x15/0x20
[  176.708122][T10802]  should_fail_ex+0x223/0x230
[  176.712819][T10802]  ? dst_alloc+0xc0/0x100
[  176.717757][T10802]  should_failslab+0x8f/0xb0
[  176.722349][T10802]  kmem_cache_alloc_noprof+0x4c/0x290
[  176.727761][T10802]  dst_alloc+0xc0/0x100
[  176.731939][T10802]  ? fib_multipath_hash+0xf92/0x10d0
[  176.737696][T10802]  ip_route_output_key_hash_rcu+0xb90/0x12d0
[  176.743850][T10802]  ip_route_output_flow+0x76/0x120
[  176.749038][T10802]  udp_sendmsg+0xe5d/0x12f0
[  176.753554][T10802]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  176.759217][T10802]  ? avc_has_perm+0xd4/0x160
[  176.762598][T10805] can0: slcan on ttyS3.
[  176.763877][T10802]  ? __pfx_udp_sendmsg+0x10/0x10
[  176.773105][T10802]  inet_sendmsg+0xaf/0xd0
[  176.777449][T10802]  __sock_sendmsg+0x102/0x180
[  176.782145][T10802]  ____sys_sendmsg+0x312/0x410
[  176.787014][T10802]  __sys_sendmmsg+0x259/0x500
[  176.791776][T10802]  __x64_sys_sendmmsg+0x57/0x70
[  176.796730][T10802]  x64_sys_call+0xa49/0x2d60
[  176.796765][T10802]  do_syscall_64+0xc9/0x1c0
[  176.805846][T10802]  ? clear_bhb_loop+0x55/0xb0
[  176.805877][T10802]  ? clear_bhb_loop+0x55/0xb0
[  176.805901][T10802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.821695][T10802] RIP: 0033:0x7fad09f3dff9
[  176.826123][T10802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.846918][T10802] RSP: 002b:00007fad08bb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  176.855905][T10802] RAX: ffffffffffffffda RBX: 00007fad0a0f5f80 RCX: 00007fad09f3dff9
[  176.864057][T10802] RDX: 000000000800001d RSI: 0000000020007fc0 RDI: 0000000000000003
[  176.872146][T10802] RBP: 00007fad08bb1090 R08: 0000000000000000 R09: 0000000000000000
[  176.872160][T10802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.872171][T10802] R13: 0000000000000000 R14: 00007fad0a0f5f80 R15: 00007ffc1b82d688
[  176.872188][T10802]  </TASK>
[  176.938660][T10814] loop2: detected capacity change from 0 to 512
[  176.949746][T10814] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  176.959453][T10805] can0 (unregistered): slcan off ttyS3.
[  176.985482][T10814] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #17: comm syz.2.2503: iget: bad i_size value: -6917529027641081756
[  177.000927][T10816] loop3: detected capacity change from 0 to 512
[  177.016687][T10814] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2503: couldn't read orphan inode 17 (err -117)
[  177.033397][T10816] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2504: bg 0: block 131: padding at end of block bitmap is not set
[  177.050326][T10823] loop4: detected capacity change from 0 to 128
[  177.054862][T10814] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.090903][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.104560][T10816] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  177.123102][T10816] EXT4-fs (loop3): 1 truncate cleaned up
[  177.151532][T10816] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.254462][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.269632][T10837] syz.0.2512[10837] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  177.395024][T10860] FAULT_INJECTION: forcing a failure.
[  177.395024][T10860] name failslab, interval 1, probability 0, space 0, times 0
[  177.419612][T10860] CPU: 0 UID: 0 PID: 10860 Comm: syz.1.2519 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  177.431943][T10860] Tainted: [W]=WARN
[  177.435782][T10860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  177.445929][T10860] Call Trace:
[  177.449201][T10860]  <TASK>
[  177.452122][T10860]  dump_stack_lvl+0xf2/0x150
[  177.456713][T10860]  dump_stack+0x15/0x20
[  177.460971][T10860]  should_fail_ex+0x223/0x230
[  177.465849][T10860]  ? vm_area_dup+0x2c/0x130
[  177.470378][T10860]  should_failslab+0x8f/0xb0
[  177.474961][T10860]  kmem_cache_alloc_noprof+0x4c/0x290
[  177.480361][T10860]  vm_area_dup+0x2c/0x130
[  177.484785][T10860]  __split_vma+0xf7/0x6a0
[  177.489223][T10860]  ? mntput_no_expire+0x70/0x3c0
[  177.494158][T10860]  vma_modify+0x2cb/0xcd0
[  177.498497][T10860]  vma_modify_policy+0xec/0x120
[  177.503402][T10860]  mbind_range+0x1d8/0x490
[  177.507860][T10860]  __se_sys_mbind+0x915/0x1160
[  177.512629][T10860]  __x64_sys_mbind+0x78/0x90
[  177.517221][T10860]  x64_sys_call+0x2b4d/0x2d60
[  177.522274][T10860]  do_syscall_64+0xc9/0x1c0
[  177.526797][T10860]  ? clear_bhb_loop+0x55/0xb0
[  177.531475][T10860]  ? clear_bhb_loop+0x55/0xb0
[  177.536221][T10860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.542234][T10860] RIP: 0033:0x7f51c8b8dff9
[  177.546643][T10860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.566305][T10860] RSP: 002b:00007f51c7801038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  177.574981][T10860] RAX: ffffffffffffffda RBX: 00007f51c8d45f80 RCX: 00007f51c8b8dff9
[  177.582962][T10860] RDX: 0000000000000001 RSI: 0000000000600000 RDI: 0000000020000000
[  177.590922][T10860] RBP: 00007f51c7801090 R08: 0000000000000000 R09: 0000000000000000
[  177.598887][T10860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.607522][T10860] R13: 0000000000000001 R14: 00007f51c8d45f80 R15: 00007ffd734bea88
[  177.615534][T10860]  </TASK>
[  177.685354][T10867] loop1: detected capacity change from 0 to 1024
[  177.699042][T10865] loop2: detected capacity change from 0 to 512
[  177.714566][T10865] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  177.730577][T10861] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.759261][T10861] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.782724][T10865] EXT4-fs (loop2): 1 truncate cleaned up
[  177.788878][T10865] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.811367][T10861] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2520'.
[  177.811427][T10867] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.834267][T10865] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  177.839707][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x7
[  177.849024][    T9] hid-generic 0000:0000:0000.002E: ignoring exceeding usage max
[  177.860474][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.868555][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.876112][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.883561][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.883783][T10867] ext4 filesystem being mounted at /538/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.890963][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.890985][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.916364][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.923766][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.931339][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.938753][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.946173][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.953584][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.961072][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.968493][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.975900][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.983292][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.990731][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  177.998126][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  178.005620][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  178.013066][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  178.020481][    T9] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  178.034049][    T9] hid-generic 0000:0000:0000.002E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  178.044390][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.054264][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.133236][T10899] loop2: detected capacity change from 0 to 2048
[  178.159958][T10897] FAULT_INJECTION: forcing a failure.
[  178.159958][T10897] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  178.173702][T10897] CPU: 0 UID: 0 PID: 10897 Comm: syz.4.2534 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  178.185943][T10897] Tainted: [W]=WARN
[  178.189797][T10897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  178.199879][T10897] Call Trace:
[  178.203223][T10897]  <TASK>
[  178.206168][T10897]  dump_stack_lvl+0xf2/0x150
[  178.210761][T10897]  dump_stack+0x15/0x20
[  178.214918][T10897]  should_fail_ex+0x223/0x230
[  178.219622][T10897]  should_fail_alloc_page+0xfd/0x110
[  178.224979][T10897]  __alloc_pages_noprof+0x109/0x340
[  178.230217][T10897]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  178.235595][T10897]  folio_alloc_mpol_noprof+0x36/0x70
[  178.240902][T10897]  shmem_get_folio_gfp+0x3d1/0xd90
[  178.246084][T10897]  shmem_write_begin+0xa2/0x180
[  178.251018][T10897]  generic_perform_write+0x1a8/0x4a0
[  178.256305][T10897]  ? _raw_spin_unlock+0x26/0x50
[  178.261181][T10897]  shmem_file_write_iter+0xc2/0xe0
[  178.266328][T10897]  iter_file_splice_write+0x5f1/0x980
[  178.270443][T10899] Alternate GPT is invalid, using primary GPT.
[  178.271712][T10897]  ? __pfx_iter_file_splice_write+0x10/0x10
[  178.278115][T10899]  loop2: p2 p3 p7
[  178.283718][T10897]  do_splice+0x98f/0x1120
[  178.291814][T10897]  ? get_pid_task+0x8e/0xc0
[  178.296402][T10897]  ? proc_fail_nth_write+0x12a/0x150
[  178.301846][T10897]  ? __fget_files+0x1d4/0x210
[  178.306552][T10897]  __se_sys_splice+0x24c/0x390
[  178.311356][T10897]  __x64_sys_splice+0x78/0x90
[  178.316196][T10897]  x64_sys_call+0x2945/0x2d60
[  178.320874][T10897]  do_syscall_64+0xc9/0x1c0
[  178.325380][T10897]  ? clear_bhb_loop+0x55/0xb0
[  178.330157][T10897]  ? clear_bhb_loop+0x55/0xb0
[  178.334958][T10897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.340915][T10897] RIP: 0033:0x7fac4720dff9
[  178.345325][T10897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.365512][T10897] RSP: 002b:00007fac45e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  178.373936][T10897] RAX: ffffffffffffffda RBX: 00007fac473c5f80 RCX: 00007fac4720dff9
[  178.381899][T10897] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000007
[  178.389951][T10897] RBP: 00007fac45e87090 R08: 0000000000001000 R09: 0000000000000000
[  178.397919][T10897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.405946][T10897] R13: 0000000000000000 R14: 00007fac473c5f80 R15: 00007ffd258f9b38
[  178.413921][T10897]  </TASK>
[  178.598040][T10903] loop4: detected capacity change from 0 to 512
[  178.606379][T10903] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  178.617299][T10903] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[  178.627366][T10903] EXT4-fs (loop4): group descriptors corrupted!
[  178.696158][T10915] FAULT_INJECTION: forcing a failure.
[  178.696158][T10915] name failslab, interval 1, probability 0, space 0, times 0
[  178.708810][T10915] CPU: 0 UID: 0 PID: 10915 Comm: syz.0.2542 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  178.721144][T10915] Tainted: [W]=WARN
[  178.724974][T10915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  178.735069][T10915] Call Trace:
[  178.738344][T10915]  <TASK>
[  178.741336][T10915]  dump_stack_lvl+0xf2/0x150
[  178.746096][T10915]  dump_stack+0x15/0x20
[  178.750242][T10915]  should_fail_ex+0x223/0x230
[  178.755015][T10915]  ? sctp_get_port_local+0x410/0xa90
[  178.760300][T10915]  should_failslab+0x8f/0xb0
[  178.764980][T10915]  kmem_cache_alloc_noprof+0x4c/0x290
[  178.770355][T10915]  sctp_get_port_local+0x410/0xa90
[  178.775559][T10915]  sctp_do_bind+0x3a1/0x4c0
[  178.780192][T10915]  sctp_connect_new_asoc+0x15b/0x3b0
[  178.785480][T10915]  sctp_sendmsg+0xf05/0x1920
[  178.790092][T10915]  ? __pfx_sctp_sendmsg+0x10/0x10
[  178.795120][T10915]  inet_sendmsg+0xc5/0xd0
[  178.799450][T10915]  __sock_sendmsg+0x102/0x180
[  178.804126][T10915]  __sys_sendto+0x1d6/0x260
[  178.808633][T10915]  __x64_sys_sendto+0x78/0x90
[  178.813335][T10915]  x64_sys_call+0x2959/0x2d60
[  178.818021][T10915]  do_syscall_64+0xc9/0x1c0
[  178.822527][T10915]  ? clear_bhb_loop+0x55/0xb0
[  178.827306][T10915]  ? clear_bhb_loop+0x55/0xb0
[  178.831998][T10915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.837941][T10915] RIP: 0033:0x7fb1662fdff9
[  178.842355][T10915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.862397][T10915] RSP: 002b:00007fb164f77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  178.870871][T10915] RAX: ffffffffffffffda RBX: 00007fb1664b5f80 RCX: 00007fb1662fdff9
[  178.878859][T10915] RDX: 00000000000034c8 RSI: 0000000020847fff RDI: 0000000000000006
[  178.886900][T10915] RBP: 00007fb164f77090 R08: 000000002005ffe4 R09: 000000000000001c
[  178.895006][T10915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.902974][T10915] R13: 0000000000000000 R14: 00007fb1664b5f80 R15: 00007ffcffebfdd8
[  178.911005][T10915]  </TASK>
[  179.138650][T10935] FAULT_INJECTION: forcing a failure.
[  179.138650][T10935] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.151852][T10935] CPU: 1 UID: 0 PID: 10935 Comm: syz.4.2548 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  179.164315][T10935] Tainted: [W]=WARN
[  179.168124][T10935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  179.178191][T10935] Call Trace:
[  179.181466][T10935]  <TASK>
[  179.184395][T10935]  dump_stack_lvl+0xf2/0x150
[  179.189085][T10935]  dump_stack+0x15/0x20
[  179.193282][T10935]  should_fail_ex+0x223/0x230
[  179.197972][T10935]  should_fail+0xb/0x10
[  179.202144][T10935]  should_fail_usercopy+0x1a/0x20
[  179.207176][T10935]  strncpy_from_user+0x25/0x200
[  179.212131][T10935]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  179.217787][T10935]  getname_flags+0xb0/0x3b0
[  179.222316][T10935]  __x64_sys_rmdir+0x21/0x40
[  179.226980][T10935]  x64_sys_call+0xfb1/0x2d60
[  179.231592][T10935]  do_syscall_64+0xc9/0x1c0
[  179.236106][T10935]  ? clear_bhb_loop+0x55/0xb0
[  179.240858][T10935]  ? clear_bhb_loop+0x55/0xb0
[  179.245644][T10935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.251597][T10935] RIP: 0033:0x7fac4720dff9
[  179.256021][T10935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.275819][T10935] RSP: 002b:00007fac45e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  179.284245][T10935] RAX: ffffffffffffffda RBX: 00007fac473c5f80 RCX: 00007fac4720dff9
[  179.292225][T10935] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  179.300198][T10935] RBP: 00007fac45e87090 R08: 0000000000000000 R09: 0000000000000000
[  179.308174][T10935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.316145][T10935] R13: 0000000000000000 R14: 00007fac473c5f80 R15: 00007ffd258f9b38
[  179.324148][T10935]  </TASK>
[  179.369324][T10933] xt_hashlimit: overflow, try lower: 1113/0
[  179.439502][T10949] FAULT_INJECTION: forcing a failure.
[  179.439502][T10949] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.452702][T10949] CPU: 1 UID: 0 PID: 10949 Comm: syz.4.2554 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  179.465014][T10949] Tainted: [W]=WARN
[  179.468834][T10949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  179.478889][T10949] Call Trace:
[  179.482165][T10949]  <TASK>
[  179.485169][T10949]  dump_stack_lvl+0xf2/0x150
[  179.489756][T10949]  dump_stack+0x15/0x20
[  179.493996][T10949]  should_fail_ex+0x223/0x230
[  179.498726][T10949]  should_fail+0xb/0x10
[  179.502929][T10949]  should_fail_usercopy+0x1a/0x20
[  179.508000][T10949]  strncpy_from_user+0x25/0x200
[  179.512949][T10949]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  179.518623][T10949]  getname_flags+0xb0/0x3b0
[  179.523261][T10949]  __x64_sys_rmdir+0x21/0x40
[  179.528032][T10949]  x64_sys_call+0xfb1/0x2d60
[  179.532630][T10949]  do_syscall_64+0xc9/0x1c0
[  179.537223][T10949]  ? clear_bhb_loop+0x55/0xb0
[  179.541963][T10949]  ? clear_bhb_loop+0x55/0xb0
[  179.546650][T10949]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.552556][T10949] RIP: 0033:0x7fac4720dff9
[  179.556992][T10949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.576602][T10949] RSP: 002b:00007fac45e87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000054
[  179.585101][T10949] RAX: ffffffffffffffda RBX: 00007fac473c5f80 RCX: 00007fac4720dff9
[  179.593103][T10949] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  179.601093][T10949] RBP: 00007fac45e87090 R08: 0000000000000000 R09: 0000000000000000
[  179.609219][T10949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.617279][T10949] R13: 0000000000000001 R14: 00007fac473c5f80 R15: 00007ffd258f9b38
[  179.625256][T10949]  </TASK>
[  179.678611][   T29] kauditd_printk_skb: 1672 callbacks suppressed
[  179.678623][   T29] audit: type=1400 audit(1728673264.813:17969): avc:  denied  { read } for  pid=10945 comm="syz.1.2553" laddr=fe80::b lport=42582 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  179.756669][T10960] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.766207][T10960] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.774598][T10960] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2557'.
[  179.775777][T10962] syz.3.2558[10962] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  179.783703][T10962] syz.3.2558[10962] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  179.815743][T10963] bond0: entered promiscuous mode
[  179.832468][T10963] bond0: entered allmulticast mode
[  179.857067][T10965] netlink: 'syz.1.2553': attribute type 1 has an invalid length.
[  179.864913][T10965] netlink: 232 bytes leftover after parsing attributes in process `syz.1.2553'.
[  179.890503][   T29] audit: type=1400 audit(1728673265.023:17970): avc:  denied  { write } for  pid=10968 comm="syz.3.2559" name="random" dev="devtmpfs" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  179.895502][T10967] FAULT_INJECTION: forcing a failure.
[  179.895502][T10967] name failslab, interval 1, probability 0, space 0, times 0
[  179.926502][T10967] CPU: 1 UID: 0 PID: 10967 Comm: syz.0.2560 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  179.938896][T10967] Tainted: [W]=WARN
[  179.942697][T10967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  179.952755][T10967] Call Trace:
[  179.956055][T10967]  <TASK>
[  179.958981][T10967]  dump_stack_lvl+0xf2/0x150
[  179.963648][T10967]  dump_stack+0x15/0x20
[  179.967849][T10967]  should_fail_ex+0x223/0x230
[  179.972538][T10967]  ? alloc_empty_file+0xd0/0x2f0
[  179.977542][T10967]  should_failslab+0x8f/0xb0
[  179.982155][T10967]  kmem_cache_alloc_noprof+0x4c/0x290
[  179.987684][T10967]  alloc_empty_file+0xd0/0x2f0
[  179.992453][T10967]  alloc_file_pseudo+0xc3/0x140
[  179.997309][T10967]  __shmem_file_setup+0x1bb/0x1f0
[  180.002341][T10967]  shmem_file_setup+0x3b/0x50
[  180.007112][T10967]  __se_sys_memfd_create+0x31d/0x5c0
[  180.012399][T10967]  __x64_sys_memfd_create+0x31/0x40
[  180.017599][T10967]  x64_sys_call+0x2891/0x2d60
[  180.022351][T10967]  do_syscall_64+0xc9/0x1c0
[  180.026989][T10967]  ? clear_bhb_loop+0x55/0xb0
[  180.031763][T10967]  ? clear_bhb_loop+0x55/0xb0
[  180.035360][T10963] 8021q: adding VLAN 0 to HW filter on device bond0
[  180.036432][T10967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.048937][T10967] RIP: 0033:0x7fb1662fdff9
[  180.053349][T10967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.072971][T10967] RSP: 002b:00007fb164f76e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  180.081384][T10967] RAX: ffffffffffffffda RBX: 00000000000004a3 RCX: 00007fb1662fdff9
[  180.089396][T10967] RDX: 00007fb164f76ef0 RSI: 0000000000000000 RDI: 00007fb166370b02
[  180.097458][T10967] RBP: 0000000020000580 R08: 00007fb164f76bb7 R09: 00007fb164f76e40
[  180.105429][T10967] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000500
[  180.113572][T10967] R13: 00007fb164f76ef0 R14: 00007fb164f76eb0 R15: 0000000020000540
[  180.121545][T10967]  </TASK>
[  180.147158][T10975] loop3: detected capacity change from 0 to 1024
[  180.155062][   T29] audit: type=1326 audit(1728673265.293:17971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.183558][   T29] audit: type=1326 audit(1728673265.313:17972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.207217][   T29] audit: type=1326 audit(1728673265.313:17973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.230822][   T29] audit: type=1326 audit(1728673265.313:17974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.254486][   T29] audit: type=1326 audit(1728673265.313:17975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.278078][   T29] audit: type=1326 audit(1728673265.313:17976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.301630][   T29] audit: type=1326 audit(1728673265.313:17977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.325262][   T29] audit: type=1326 audit(1728673265.313:17978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10976 comm="syz.0.2562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1662fdff9 code=0x7ffc0000
[  180.357781][T10975] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.375404][T10982] program syz.2.2563 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  180.394817][T10982] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  180.412391][T10982] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2563'.
[  180.424951][T10988] Invalid logical block size (65472)
[  180.431185][T10975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2561'.
[  180.453002][T10982] bond1: entered promiscuous mode
[  180.458101][T10982] bond1: entered allmulticast mode
[  180.464269][T10982] 8021q: adding VLAN 0 to HW filter on device bond1
[  180.472801][T10987] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2565'.
[  180.508551][T10975] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.535020][T10998] FAULT_INJECTION: forcing a failure.
[  180.535020][T10998] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.548157][T10998] CPU: 0 UID: 0 PID: 10998 Comm: syz.2.2570 Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  180.560407][T10998] Tainted: [W]=WARN
[  180.564200][T10998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  180.574256][T10998] Call Trace:
[  180.577571][T10998]  <TASK>
[  180.580536][T10998]  dump_stack_lvl+0xf2/0x150
[  180.585168][T10998]  dump_stack+0x15/0x20
[  180.589331][T10998]  should_fail_ex+0x223/0x230
[  180.594081][T10998]  should_fail+0xb/0x10
[  180.598310][T10998]  should_fail_usercopy+0x1a/0x20
[  180.603345][T10998]  _copy_from_user+0x1e/0xd0
[  180.606004][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2571'.
[  180.607943][T10998]  sg_new_write+0x77a/0x8e0
[  180.616928][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2571'.
[  180.621356][T10998]  sg_ioctl+0xe22/0x1870
[  180.634421][T10998]  ? __pfx_sg_ioctl+0x10/0x10
[  180.639152][T10998]  __se_sys_ioctl+0xcd/0x140
[  180.643753][T10998]  __x64_sys_ioctl+0x43/0x50
[  180.645050][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2571'.
[  180.648353][T10998]  x64_sys_call+0x15cc/0x2d60
[  180.661853][T10998]  do_syscall_64+0xc9/0x1c0
[  180.666457][T10998]  ? clear_bhb_loop+0x55/0xb0
[  180.671142][T10998]  ? clear_bhb_loop+0x55/0xb0
[  180.675889][T10998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.681899][T10998] RIP: 0033:0x7efec0e7dff9
[  180.686302][T10998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.705981][T10998] RSP: 002b:00007efebfaf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  180.714382][T10998] RAX: ffffffffffffffda RBX: 00007efec1035f80 RCX: 00007efec0e7dff9
[  180.722474][T10998] RDX: 0000000020000040 RSI: 0000000000002285 RDI: 0000000000000007
[  180.730598][T10998] RBP: 00007efebfaf7090 R08: 0000000000000000 R09: 0000000000000000
[  180.738624][T10998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.746587][T10998] R13: 0000000000000000 R14: 00007efec1035f80 R15: 00007ffc54b86bd8
[  180.754556][T10998]  </TASK>
[  180.800899][T10975] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.826286][T11012] loop1: detected capacity change from 0 to 512
[  180.834669][T11016] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2576'.
[  180.844385][T11014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.844783][T11016] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2576'.
[  180.863482][T11012] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.876938][T11014] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.886677][T11012] ext4 filesystem being mounted at /549/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  180.898133][T11014] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2575'.
[  180.898630][T10975] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  180.931626][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x7
[  180.939208][    T9] hid-generic 0000:0000:0000.002F: ignoring exceeding usage max
[  180.950706][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  180.961088][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  180.968624][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  180.976139][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  180.983528][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  180.990950][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  180.998409][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.005837][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.013355][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.020975][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.028379][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.035762][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.043302][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.050754][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.058183][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.065634][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.073027][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.080509][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.087928][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.095310][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.102779][    T9] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  181.115554][    T9] hid-generic 0000:0000:0000.002F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  181.165927][T10975] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.201681][T11026] loop2: detected capacity change from 0 to 2048
[  181.208884][T11026] EXT4-fs: Ignoring removed mblk_io_submit option
[  181.227583][T11026] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.256551][T10975] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.267875][T11026] lo speed is unknown, defaulting to 1000
[  181.285659][T10975] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.310337][T10975] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.325531][T10975] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  181.356159][T11026] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2578: bg 0: block 234: padding at end of block bitmap is not set
[  181.372797][ T8078] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.382632][T11026] EXT4-fs (loop2): Remounting filesystem read-only
[  181.451282][ T9070] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.456575][T11031] lo speed is unknown, defaulting to 1000
[  181.572196][ T8078] ==================================================================
[  181.580303][ T8078] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  181.588208][ T8078] 
[  181.590529][ T8078] read-write to 0xffff8881160e33b0 of 8 bytes by task 11039 on cpu 0:
[  181.598678][ T8078]  shmem_add_to_page_cache+0x3b9/0x4b0
[  181.604149][ T8078]  shmem_get_folio_gfp+0x4f6/0xd90
[  181.609276][ T8078]  shmem_write_begin+0xa2/0x180
[  181.614135][ T8078]  generic_perform_write+0x1a8/0x4a0
[  181.619430][ T8078]  shmem_file_write_iter+0xc2/0xe0
[  181.624549][ T8078]  __kernel_write_iter+0x24b/0x4e0
[  181.629695][ T8078]  dump_user_range+0x3a7/0x550
[  181.634478][ T8078]  elf_core_dump+0x1b66/0x1c60
[  181.639257][ T8078]  do_coredump+0x1736/0x1ce0
[  181.643852][ T8078]  get_signal+0xdc0/0x1070
[  181.648284][ T8078]  arch_do_signal_or_restart+0x95/0x4b0
[  181.653836][ T8078]  irqentry_exit_to_user_mode+0x9a/0x130
[  181.659486][ T8078]  irqentry_exit+0x12/0x50
[  181.663916][ T8078]  asm_exc_page_fault+0x26/0x30
[  181.668772][ T8078] 
[  181.671093][ T8078] read to 0xffff8881160e33b0 of 8 bytes by task 8078 on cpu 1:
[  181.678645][ T8078]  shmem_getattr+0x69/0x200
[  181.683161][ T8078]  vfs_getattr+0x19b/0x1e0
[  181.687574][ T8078]  vfs_statx+0x134/0x2f0
[  181.691817][ T8078]  vfs_fstatat+0xec/0x110
[  181.696154][ T8078]  __se_sys_newfstatat+0x58/0x260
[  181.701186][ T8078]  __x64_sys_newfstatat+0x55/0x70
[  181.706227][ T8078]  x64_sys_call+0x141f/0x2d60
[  181.710907][ T8078]  do_syscall_64+0xc9/0x1c0
[  181.715417][ T8078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.721332][ T8078] 
[  181.723665][ T8078] value changed: 0x0000000000000a14 -> 0x0000000000000a17
[  181.730769][ T8078] 
[  181.733086][ T8078] Reported by Kernel Concurrency Sanitizer on:
[  181.739233][ T8078] CPU: 1 UID: 0 PID: 8078 Comm: syz-executor Tainted: G        W          6.12.0-rc2-syzkaller-00205-g1d227fcc7222 #0
[  181.751661][ T8078] Tainted: [W]=WARN
[  181.755467][ T8078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  181.765526][ T8078] ==================================================================
[  181.801837][ T4043] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.