last executing test programs:

3.152515302s ago: executing program 2 (id=467):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x21, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)

2.770882391s ago: executing program 2 (id=473):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000001000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
quotactl_fd$Q_SETINFO(r2, 0xffffffff80000602, 0xffffffffffffffff, &(0x7f0000000000)={0xa77, 0xfffffffffffff697, 0x1, 0x6})
close_range(r2, 0xffffffffffffffff, 0x0)

2.715240721s ago: executing program 2 (id=476):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000005e00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@rights={{0x1c, 0x1, 0x1, [r1, r0, r0]}}, @rights={{0x18, 0x1, 0x1, [r1]}}], 0x38}}], 0x1, 0x0)

2.68566791s ago: executing program 0 (id=479):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001500)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x5d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x820, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8, 0x1, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000b80), r4)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000bc0)={0x44, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MLSLVLLST={0x1c, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa4}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4f}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x44}}, 0x80)
r6 = syz_genetlink_get_family_id$nfc(&(0x7f00000002c0), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000300)=<r7=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000380)=<r8=>0x0)
r9 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r9, 0x0, &(0x7f00000000c0)=<r10=>0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_VENDOR(r4, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0xb8, r6, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@NFC_ATTR_VENDOR_DATA={0x8a, 0x1f, "748c8417b1c88325838f807f0dd25274767453e68c05d8b6ab5a72c47a34c28a373a6223e1ae13b11e921340d212d02393f6593997b2404685b5c3182eb59d3a7cd09062ff49208b61f439f0a7345660c628a319383032060a40c73b2e9de6d5fdc98aca9ecbd1795b6363962ec0f9ad8cf4d889fb58af53dd805a2acd4a2f26dac2ba07fee0"}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r7}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r10}]}, 0xb8}, 0x1, 0x0, 0x0, 0x20000044}, 0x8010)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x34, r2, 0x1, 0x7ffffc, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x34}}, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x6a, @rand_addr=' \x01\x00'}, 0x1c)
accept$unix(0xffffffffffffffff, 0x0, &(0x7f00000000c0))
sendmmsg$inet6(r0, &(0x7f00000020c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000}, 0xa}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000290000cb614e810000000000000000002400000000000000290000003200000000000000000000000000ff"], 0x40}}], 0x2, 0x0)

2.676962491s ago: executing program 2 (id=480):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
r2 = dup2(r0, r0)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000180), r1, 0x0, 0x1, 0x4}}, 0x20) (fail_nth: 5)

2.40213701s ago: executing program 2 (id=481):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r0=>0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8, 0x0, 0x103, 0x3}, 0x20)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000180)={@loopback={0x200000000000000}, 0x800, 0x0, 0x2, 0x1, 0x0, 0x149}, 0x20)
r4 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000fcb000)=0x2, 0x4)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000000)=0x3)
ioctl$TIOCSSOFTCAR(r6, 0x541a, &(0x7f0000000100)=0x80000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10)
r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r7, 0x4c80, 0x7000000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000011c0)=@newtaction={0x90, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x7c, 0x1, [@m_tunnel_key={0x78, 0x1, 0x0, 0x0, {{0xf}, {0xfffffffffffffe80, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x4, 0x0, 0x300}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @private}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @remote}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0x90}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000340)={r9, 0x0, &(0x7f0000001540)=""/155}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB, @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000c4f41f965eed38b0d054efa7457455a5e258e816c90f910e989e32272581c90e464e64310fd7e130b0aea2d84982f4668c63719536c859cbc18358c25fa66a04bcfcc79bcea1d85b5404926803b55eb3b3a8ac6507d6e115c45436e4f57a6fe2ab548afc66583971d086f01fa2cd1ce881df2d86cb14dd332bb46522557ce65b0da1baee055f86531e3f9a367c7c4615909582a8aa30e41b61ff275706e3d37c270f9e1acbb4461df1a9a791727c23de58fc27fd926b59ca74e880ae6c7d2f"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r10}, 0x10)
getitimer(0x0, &(0x7f0000000380))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000980)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="04002bbd7000fddbdf25180d0000060005e7ff000000b1829de533ba50a09c94b7351b551c3cf6c26dfd32b846ce110b2ef9b4cc30525e47aed30d593ec17a6fbb6d510f3e"], 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x1)

2.385514829s ago: executing program 2 (id=483):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x4880)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000020000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}}, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'bridge0\x00'})
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r4}, 0x10)
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo\x00')
lseek(r5, 0x4, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
getresuid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440))

2.311020309s ago: executing program 0 (id=484):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00008, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@bloom_filter={0x1e, 0xfffffffc, 0x3, 0x1, 0x1a4c, r1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x4, 0x5, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

2.265963129s ago: executing program 0 (id=485):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000240)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7f}}, {@nolazytime}, {@noload}, {@nombcache}, {@acl}]}, 0x6, 0x56a, &(0x7f00000015c0)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486"], 0xfdef)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffffe, 0x4002011, r2, 0x0)
fallocate(r2, 0x0, 0x0, 0x81000f4)
r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bond_slave_0\x00', <r6=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e00000000400002800600010000000000340003800c00010000000000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r6, @ANYBLOB="080003"], 0x80}}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = socket(0x11, 0x800000003, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r9=>0x0})
r10 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@bridge_delneigh={0x28, 0x1c, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, r9, 0x80, 0x87}, [@NDA_LLADDR={0xa, 0x2, @link_local}]}, 0x28}}, 0x0)
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$bt_hci(r11, 0x11c, 0x4, &(0x7f0000002080)=""/4104, &(0x7f0000000040)=0x1008)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x16, '\x00', r9, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r12}, 0x10)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r13, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)

2.150166148s ago: executing program 3 (id=490):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000005e00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[@rights={{0x1c, 0x1, 0x1, [r1, r0, r0]}}, @rights={{0x18, 0x1, 0x1, [r1]}}], 0x38}}], 0x1, 0x0)

2.123268748s ago: executing program 3 (id=491):
openat$dir(0xffffffffffffff9c, 0x0, 0x680000, 0x10c)
socket$packet(0x11, 0x3, 0x300)
socket$kcm(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000ffffffff000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.586842167s ago: executing program 3 (id=493):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x58}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[], 0x20}}, 0x0)
open(0x0, 0x2a4c0, 0x0)
syz_open_dev$usbfs(0x0, 0x205, 0x8401)
pipe2$9p(&(0x7f0000000140), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_open_dev$hidraw(&(0x7f0000000080), 0x5, 0x400400)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000020018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000080007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000000300000095000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (fail_nth: 4)

1.574083976s ago: executing program 3 (id=494):
r0 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
r1 = socket$pppl2tp(0x18, 0x1, 0x1) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
gettid() (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000800000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) (async)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32) (async)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r5, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) (async)
r6 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@dev={0xfe, 0x80, '\x00', 0x19}, 0x0, 0x0, 0x1, 0x4, 0xa}, {0xbd1}, {0x0, 0x2}, 0x2000000, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000, 0x33}, 0x0, @in6=@empty, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10000}}, 0xe8)
sendmmsg(r6, &(0x7f0000000480), 0x2e9, 0x0) (async)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="0209000202"], 0x10}}, 0x0) (async)
listen(r0, 0x3)
r8 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r8, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) (async)
r9 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_LINK_GET(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x8c}, 0x1, 0x0, 0x0, 0x40090}, 0x810) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x9, 0x3, 0x8, 0x4, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000440)={0x87, 0x29, 0x1, {0x5, [{{0x80, 0x2, 0x6}, 0x88, 0xd, 0x7, './file0'}, {{0x1, 0x1, 0x6}, 0xbf64, 0xfb, 0x7, './file0'}, {{0x2, 0x1, 0x4}, 0x8, 0x7, 0x7, './file0'}, {{0x0, 0x0, 0x7}, 0x3ff, 0xd, 0x7, './file0'}]}}, 0x87) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r10}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r11}, 0x10)

899.204163ms ago: executing program 0 (id=501):
unshare(0x2a020400)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000000000)=0x7fff, 0x100000000, 0x1)
r1 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0x4c80, &(0x7f0000005780)={0x0, 0x0, "ac563d05d310141258e0a2a06783eb29e46b1fac57461914278705b6afba000000000000536dfdc9ce9c12d1207f8a3ad1dad7ed0fc16b2ccd00000000000000180000000c0996d78e489eef651d35ca509de7cf52e7578e9ce37710000001000032936e283ae72a63729b333fc1ee6b15fb899a2072631f76cd0a59b1709500000000000000c0df2d95b9c3fbccef0111f1fc6db466c73268074c38df1f6bf2cc88aa61ffffffff2b887e04e671d55f281047000002000000000003000000000100000039fb00", "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"})
openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x414080, 0x18d)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000080)=<r4=>0x0)
ptrace$ARCH_SHSTK_UNLOCK(0x1e, r4, 0x2, 0x5004)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)=ANY=[@ANYBLOB="600000001000030428b570000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003000128009000100766c616e9c4b6fd53588dbe295e500000000200002801c0003800c00010005000000050000000c000100000000000900000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x60}, 0x1, 0xba01, 0x0, 0x4004}, 0x810)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=@newlink={0x48, 0x10, 0x401, 0xff7f, 0x0, {0x0, 0x0, 0x0, r8, 0x40000}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vxcan={{0xa}, {0x18, 0x2, 0x0, 0x1, @val={0x14, 0x1, {{0x0, 0x0, 0x0, r8, 0x60044, 0x42242}}}}}}]}, 0x48}}, 0x0)

700.559603ms ago: executing program 0 (id=504):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)

700.236323ms ago: executing program 3 (id=505):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x3, &(0x7f0000000540)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000}}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='mm_page_alloc\x00', r0}, 0x10)
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, 0x0, 0x0)
syz_clone(0x638c1100, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

670.558902ms ago: executing program 0 (id=506):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000002c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000030f9dd695c139014f596bed1ca5a06a1ceb2b587c914ea367876c9f9630fe047bc664e0dacd29067fc93d252789ed5cf6c347a89f35e05540e3f76f183fd2b5a90ca7df3223030c576f3cb547d09787ad5e7e441e86c3570a304d04ff1b1c81e3da97707a1ff07000000000000f30f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000006800e97800000000000000000a00000000000000080005"], 0x20}}, 0x0)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r1, &(0x7f0000000380), 0x20000000}, 0x20)
r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$selinux_load(r3, &(0x7f0000000200)={0xf97cff8c, 0x8, 'SE Linux', "8c41bc8c1d54a30a"}, 0x18)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r4=>0x0})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x5, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, [@map_idx={0x18, 0x1}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r4, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r6=>0x0})
bind$can_j1939(r5, &(0x7f0000000100)={0x1d, r6, 0x0, {0x0, 0xff, 0x1}}, 0x18)
connect$can_j1939(r5, &(0x7f0000000140)={0x1d, r6}, 0x18)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
sendmsg$can_j1939(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)='data', 0xfdef}}, 0x0)

629.846962ms ago: executing program 1 (id=508):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00008, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0xfc000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

458.130352ms ago: executing program 3 (id=509):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000001dc0)=ANY=[@ANYBLOB="0b00000005000000020000000200000005000000", @ANYBLOB='\x00'/28, @ANYBLOB="00000000008a57454ff9f000000b00000010000000000000a138d099b251a9407479fbed34743b0cb217594240edda452217591b0f0bdbb42ff764", @ANYRES32=0x0, @ANYRES32, @ANYRESDEC=r0, @ANYRES16, @ANYRESOCT, @ANYRES8=r1], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=0x0, @ANYBLOB="0000000000000000b7080000fcff0409126701ffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x6cd47, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
close(r4)
r6 = syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x1808008, &(0x7f00000000c0)={[], [{@seclabel}]}, 0x6, 0x58f, &(0x7f0000000680)="$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")
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r5, 0x5000943f, &(0x7f0000000c40)={{r4}, 0x0, 0xa, @unused=[0x0, 0x6, 0x0, 0xff], @devid})
r8 = io_uring_setup(0x7db5, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYRES64=r6, @ANYRES32, @ANYRES32=r5, @ANYRES32=0x0, @ANYRES32=r2, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$tipc(0x1e, 0x2, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10)
r10 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r10, 0xc0109207, &(0x7f0000000080)={0x0, 0x6})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="640000001400140626bd7000fbdbdf250200500041aee3c89d88289fde6748a5c8b98df356160baaf04f0ffe789b72961b000fdce5681b8614528d9b2a175d0e4599d2b79b55c89fbcb9aaffb2007ae3f89f49cac80112c95e196eef94b9ddb1d2fce492a3f4090000000000000000000000c6d5d176d68dbd16d72c0e07fdabe0f4bed02c097bff8f33a57ef563c70db4", @ANYRES32=0x0, @ANYBLOB="08000400ffffffff08000a000000000008000100ac1414bb080009000200000008000400000000000800080086000000140003006970766c616e3000000000000000000008000200e0000001"], 0x64}}, 0x400c004)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r7}, &(0x7f0000000180), &(0x7f0000000200)}, 0x20)
r11 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
fcntl$notify(r11, 0x402, 0x29)
socket$kcm(0x10, 0x400000002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x1)

404.395781ms ago: executing program 1 (id=511):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = openat$cgroup_ro(r0, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
readv(r2, &(0x7f0000001680)=[{&(0x7f0000001180)=""/149, 0x95}], 0x1)
pread64(r2, &(0x7f0000001900)=""/4096, 0x1000, 0x7)
fcntl$lock(r1, 0x26, &(0x7f0000000000))
fcntl$lock(r1, 0x25, &(0x7f00000000c0)={0x2, 0x0, 0x4, 0x4000007fffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000dd615a6a5c982385e16000000000000000000594400"/38], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, 0x0, &(0x7f0000000040)=r4}, 0x20)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r7, &(0x7f0000000180), 0x40010)
fcntl$lock(r1, 0x5, &(0x7f00000001c0)={0x1, 0x1, 0x9})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x18, &(0x7f00000005c0)=ANY=[], 0x1, 0x705, &(0x7f0000000f80)="$eJzs3UFv2+YZAOBXjtO6HlAM21AUQZqyaQ8JkDqS3Dowehg0mXbYyqJAykWCHYqicYagTjs0G7B4h66XbjvsJ+zQ6/5E/8Ru+w297zQPpCTHjm3ZS1I7yJ5HiPmJfMnv/WiBr6lQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0eiuNJutRvSy/sat5GjdlSJfn7J8sr3v902m9BvRqP7F3Fy8Ppr1+i8eLX6t+nE5Lo6eXYy5ajIX2z957acf/Hx2ZrL+lIROxYOH259/urW1+dVZJ3JG1tJ+VubZemctTbIyT5aXlprXb66WyWrWS8vb5TBdT7pF2hnmRXKlezVpLS8vJunC7Xyjv7bS6aWTmTfebTebS8mHC4O0U5R5//qHC2X3ZtbrZf21OqZaXMXcSH7zZfFRNkyGaWc9Se7e29pcPC7JKqh1kqD2cUHtZrvdarXbraX3l9+/0WzOtptzsW9G8zGxb5Wk2ZydvGgb41f6iff1Hv98kpX40czsexZ/mv6bfVaHbnhqM+P6H73Ioh8bcSuSQx/dWIki8lg/YvnY9xF/rBvX06n9VvV7blz/J1X+9UeLL1Q/Ls+Nn106qv4fkcvpPR7Ew9iOz+PT2Iqt2Iyvzjyj032sRRr9yKKMPLJYj049JxnPSWI5lmIpmvFJ3IzVKCOJ1ciiF2mUcTvKGEZav6K6UUQanRhGHkUkcSW6cTWSaMVyLMdiJJHGQtyOPDaiH2uxEp16K3fjXr3fF6fkuBvUOklQe0rQpJi/NH5dzh74g2B6/b+xW///XteHB++cQnHi+XBu0ni2B3B4CjuT+h87O//ZqZx1RgAAAMCz1qjffW9cemn3+WrWS399xlkBAAAAz1J9GfLFanK+ar0Rjer8v3nWaQEAAADPUCMujd8FmI83R63JJ6G8CQAAAAAviPr//y9Vk/mq9WY0nP8DAADAi+Yvj+6xvx2H3mO3HMxExGxENL4Z3Hqncb9TxXXunxutd+7xLQ5XLzReHW+knizNjp9104uN8d0vd2+C+cN4cve4e/03iuL80yYQMTOOeevOaHpnd0ndy/xq1ksXunnvg1Z0Oq/ODNNbw99/ce8PEVXvf+2vv9qIu/e2Nhc++3LrTp3LN9VWvrk/vpt743/I5XfxxijmjZfjwIi3o3G+/iDGuN/5Ub/NveMfj2UypFdO0Oe3k5jL86Pp/P7xz1V9thaOGv184+Xx+k818m8nwW9feXs0OSSL9pQs6n3R3rv/H9sXJ8oi3j4+i8Xjslh8yiwAzsrd3Sq0v+6e363/B+ruExzlTqe6fxtXRjFXLtQH1tkLhxzRm4ce0XfOPVZjn7y6/SOujmKuToKPqrHVmP+222+r7ve7aoXvjuy37E12yP3fxvWZh9vv3qtjN79otxeXmu81m++343w9jPGkyvTfBzJ9JdQegP9rl+vr/6d9x87hEeciXprU7vfirVHEo7PqqibtVryf7V5SsBCfxZexFXfiWv1pg/qKg0P7nd9zGcK1uDxO9vCz1vk93/By7ZizulHs5G+Xk8SOvl4GAF4kl4+pw7v1f/JdfJOIuoSO6v+1Pefdc4ecd++v5dPPjvfWcgDgx5EWPzTmh39uFEU2+KS1vNzqDG+mSZF3P0qKbGUtTbL+MC26Nzv9tTQZFPkw7+a9qvFxtpKWSbkxGOTFMFnNi2SQl9mtX0bWS5PxV7+X6XqnP8y65aCXdso06eb9Yac7TFayspsMNn7Vy8qvd3Z2qpXLQdrNVrNuZ5jl/aTMN4puupAkZZqOA2+mRZKtpP1htppVzX4yKLKXo7idfJz3NtbTZCUtu0U2GOZFnc2kr6y/mhfr9WYXznpnA8Bz4sHD7c8/3dra/Orwxlwcuahu/Gv66qPGWY8RANhvWpU+cPUZAAAAAAAAAAAAAABwJo75/N+TNxqPzZmJiB+rrxeusfP1qfQ1+YCH387Bxnd75iTPQT6n3jjjAxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHOK/AQAA//8CLk+i")
socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, 0x0, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

346.343851ms ago: executing program 4 (id=513):
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
io_setup(0x5, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0xc, 0x4, 0x4, 0x10000, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

306.637911ms ago: executing program 4 (id=514):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
io_setup(0x30, &(0x7f0000000600)=<r2=>0x0)
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
io_submit(r2, 0x1, &(0x7f0000000180)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f00000000c0)="01", 0x24}])

171.140961ms ago: executing program 1 (id=515):
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000003, 0x1, @perf_config_ext={0x6, 0x200}, 0x0, 0x3, 0xfffe, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000040000000300000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='scsi_dispatch_cmd_start\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000005c0)={r3, 0x2, 0x6}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r0, {0xfffffffe}}, './file0\x00'})
setsockopt$inet_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000080)={@in6={{0xa, 0x4e21, 0x98, @empty, 0x5}}, 0x0, 0x0, 0x0, 0x0, "e77fe91a97a28097024d60227db2fd87695e5a4e0396388a85c93a862cd1b1ac757ad1b988b317d45cc20d91fb1e318543da80d367a8e9fc3edf864405dcab655922dcd8fc3a51ede3f502c6bfc7ed36"}, 0xd8)

170.786391ms ago: executing program 4 (id=516):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)

115.1582ms ago: executing program 4 (id=517):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="180200003f00ffff0000000000004000850000002c0000001800000004000000000000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
open(&(0x7f0000000040)='./file0\x00', 0x8880, 0x150) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000014c0)={'batadv_slave_1\x00'})
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020f00001000000000000000000000000300050000000000027c230b000000000000ffff000000000000000008001200000002000000000000000000060000000000"], 0x80}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$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") (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
unshare(0x24060400) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x18208e, &(0x7f0000005a00), 0x1, 0x42f, &(0x7f0000000940)="$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") (async)
setxattr$trusted_overlay_upper(&(0x7f00000017c0)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001800)=ANY=[], 0x835, 0x0) (async)
setxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0/file0\x00', &(0x7f00000000c0), &(0x7f0000000200)=ANY=[], 0x90f, 0x3) (async)
pwritev2(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfe}], 0x1, 0x5405, 0x0, 0x0) (async)
r3 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0) (async)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000400)="580000001400192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffe", 0x3c}], 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, &(0x7f0000000000)=ANY=[@ANYRES32=r3])
write$UHID_CREATE2(r1, &(0x7f0000001940)={0xb, {'syz0\x00', 'syz1\x00', 'syz0\x00', 0x92, 0x59ba, 0x5, 0x7, 0x100, 0x3, "af8718f163d06e9ab45cd238ff297d925e0048932593e2a5c14a08bee7c814363f1ce42f1aec6de41fe3f757e45a5c9cd6f517e7aeb630d5b712f70a557b730e5d363abd3870bd6a977f0ca0184e30b4fd8c5fd1523bde6941c186f5deee27000e3bbd7eb97d38c6f659859533980a3d518f5e472cbdede177a6ceec2a98d979710698084eaf100a7ec7e41ec9dc1a29a9bf"}}, 0x1aa) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00'}, 0x10) (async)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000027c0)={0x0, 0x0, &(0x7f0000001440), 0x0, &(0x7f0000002840)=ANY=[], 0x12c0}, 0x4000000) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x19, 0x0, 0x0, 0x0, 0x1400, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) (async)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r7=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1, 0xb, 0x100005, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r7, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
r8 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r8, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)

114.96671ms ago: executing program 1 (id=518):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r1, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1, 0x6}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000300)="83", 0x1}], 0x1}, 0x0)

114.77474ms ago: executing program 4 (id=519):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x48202, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000100)={@val, @void, @eth={@broadcast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, {0x4e22, 0x0, 0x14, 0x0, @gue={{0x2, 0x0, 0x0, 0x4, 0x0, @val=0xa3a17bb7d2de7a93}, "dd1f7186"}}}}}}}, 0x3a)

114.46623ms ago: executing program 1 (id=520):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c00000010004b0400000000000000007b000000", @ANYRES32, @ANYBLOB="00000000000000002c0012800b00010062726964676500001c000280080008"], 0x4c}}, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)

32.38443ms ago: executing program 1 (id=521):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = gettid()
ioprio_set$pid(0x3, r0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x3, 0x90182, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2cf98b00, 0x1, @perf_bp={0x0}, 0x10c288, 0x40, 0x0, 0x0, 0x3, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x23, 0x0, 0x0)
r3 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r4=>0x0)
io_submit(r4, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f0000000000), 0x1a00001a}])
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002940)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000040)={0x2, 0x0, @dev}, 0x10, 0x0, 0x0, &(0x7f0000004680)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000002bc0)=[{&(0x7f0000001900)=""/135, 0x87}], 0x1}}], 0x48}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
capset(0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0xd, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)

0s ago: executing program 4 (id=522):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = gettid()
ioprio_set$pid(0x3, r0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./file0\x00', 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11dc, &(0x7f0000001280)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x3, 0x90182, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2cf98b00, 0x1, @perf_bp={0x0}, 0x10c288, 0x40, 0x0, 0x0, 0x3, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x23, 0x0, 0x0)
r3 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000040)=<r4=>0x0)
io_submit(r4, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r3, &(0x7f0000000000), 0x1a00001a}])
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002940)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000040)={0x2, 0x0, @dev}, 0x10, 0x0, 0x0, &(0x7f0000004680)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f0000002bc0)=[{&(0x7f0000001900)=""/135, 0x87}], 0x1}}], 0x48}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
capset(0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0xd, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)

kernel console output (not intermixed with test programs):

/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   30.579350][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.601174][   T29] audit: type=1400 audit(1734374756.306:115): avc:  denied  { mounton } for  pid=3302 comm="syz-executor" path="/root/syzkaller.y2iqeb/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4457 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   30.601282][   T29] audit: type=1400 audit(1734374756.306:116): avc:  denied  { unmount } for  pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   30.611720][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.640411][   T29] audit: type=1400 audit(1734374756.366:117): avc:  denied  { mounton } for  pid=3302 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   30.659045][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.659143][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.668897][   T29] audit: type=1400 audit(1734374756.366:118): avc:  denied  { mount } for  pid=3302 comm="syz-executor" name="/" dev="gadgetfs" ino=4464 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   30.691713][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.691731][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.697904][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.765009][ T3302] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   30.789023][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.799567][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.809559][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.820459][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.830331][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.840885][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.852030][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   30.870144][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.880716][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.890594][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.901115][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.910612][   T29] audit: type=1400 audit(1734374756.716:119): avc:  denied  { read write } for  pid=3302 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   30.911020][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.911059][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.911073][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.966162][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.976720][ T3296] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.992897][ T3305] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.000482][    C0] hrtimer: interrupt took 53072 ns
[   31.001698][ T3305] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.015678][ T3305] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.024542][ T3305] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.041538][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.052061][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.062020][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.072512][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.082477][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.092937][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.102797][ T3296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   31.113426][ T3296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   31.124225][ T3296] batman_adv: batadv0: Interface activated: batadv_slave_1
[   31.132693][ T3296] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   31.141555][ T3296] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   31.150591][ T3296] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   31.159688][ T3296] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   31.404137][ T3458] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7'.
[   31.422893][ T3458] random: crng reseeded on system resumption
[   31.440039][ T3452] infiniband syz1: set active
[   31.444771][ T3452] infiniband syz1: added team_slave_0
[   31.507889][ T3463] syz.1.9 uses obsolete (PF_INET,SOCK_PACKET)
[   31.515092][ T3465] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[   31.521730][ T3465] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   31.529375][ T3465] vhci_hcd vhci_hcd.0: Device attached
[   31.580280][ T3452] RDS/IB: syz1: added
[   31.584452][ T3452] smc: adding ib device syz1 with port count 1
[   31.590717][ T3452] smc:    ib device syz1 port 1 has pnetid 
[   31.598147][ T3469] vhci_hcd: cannot find the pending unlink 0
[   31.688761][ T3477] loop3: detected capacity change from 0 to 1024
[   31.722755][ T3477] EXT4-fs: Ignoring removed orlov option
[   31.728454][ T3477] EXT4-fs: Ignoring removed orlov option
[   31.734417][ T3377] vhci_hcd: vhci_device speed not set
[   31.770372][ T3477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   31.810303][ T3377] usb 5-1: new full-speed USB device number 2 using vhci_hcd
[   31.834901][ T3477] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.3.12: corrupted in-inode xattr: bad magic number in in-inode xattr
[   31.867236][ T3469] vhci_hcd: connection reset by peer
[   31.873404][  T386] vhci_hcd: stop threads
[   31.877693][  T386] vhci_hcd: release socket
[   31.882162][  T386] vhci_hcd: disconnect device
[   31.891660][ T3477] EXT4-fs (loop3): Remounting filesystem read-only
[   31.898227][ T3477] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2863: Unable to expand inode 12. Delete some EAs or run e2fsck.
[   31.922800][ T3485] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=13
[   31.933567][ T3485] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=13
[   31.974309][ T3485] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=13
[   32.004895][ T3477] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop3 ino=13
[   32.026216][ T3477] =======================================================
[   32.026216][ T3477] WARNING: The mand mount option has been deprecated and
[   32.026216][ T3477]          and is ignored by this kernel. Remove the mand
[   32.026216][ T3477]          option from the mount to silence this warning.
[   32.026216][ T3477] =======================================================
[   32.089707][ T3490] loop4: detected capacity change from 0 to 8192
[   32.146774][ T3452] syz.0.1 (3452) used greatest stack depth: 10752 bytes left
[   32.302463][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   32.476995][ T3511] loop2: detected capacity change from 0 to 512
[   32.518626][ T3511] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   32.548936][ T3511] pim6reg: entered allmulticast mode
[   32.557171][ T3511] pim6reg: left allmulticast mode
[   32.569225][ T3513] netlink: 3 bytes leftover after parsing attributes in process `syz.1.20'.
[   32.581967][ T3513] 0ªX¹¦À: renamed from caif0
[   32.589162][ T3513] 0ªX¹¦À: entered allmulticast mode
[   32.594571][ T3513] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   32.617597][ T3513] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   32.629703][ T3513] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   32.733402][ T3520] loop2: detected capacity change from 0 to 8192
[   32.899984][ T3522] 9pnet_fd: Insufficient options for proto=fd
[   32.915472][ T3522] loop0: detected capacity change from 0 to 512
[   32.950812][ T3522] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   32.964784][ T3522] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.140521][ T3533] FAULT_INJECTION: forcing a failure.
[   33.140521][ T3533] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   33.153772][ T3533] CPU: 1 UID: 0 PID: 3533 Comm: syz.0.27 Not tainted 6.13.0-rc3-syzkaller #0
[   33.162624][ T3533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   33.172726][ T3533] Call Trace:
[   33.176064][ T3533]  <TASK>
[   33.179012][ T3533]  dump_stack_lvl+0xf2/0x150
[   33.183759][ T3533]  dump_stack+0x15/0x1a
[   33.187990][ T3533]  should_fail_ex+0x223/0x230
[   33.192703][ T3533]  should_fail+0xb/0x10
[   33.197057][ T3533]  should_fail_usercopy+0x1a/0x20
[   33.202120][ T3533]  _copy_from_user+0x1e/0xb0
[   33.206756][ T3533]  get_user_ifreq+0x8c/0x160
[   33.211415][ T3533]  sock_ioctl+0x539/0x600
[   33.215887][ T3533]  ? __pfx_sock_ioctl+0x10/0x10
[   33.220768][ T3533]  __se_sys_ioctl+0xc9/0x140
[   33.225394][ T3533]  __x64_sys_ioctl+0x43/0x50
[   33.230061][ T3533]  x64_sys_call+0x1690/0x2dc0
[   33.234835][ T3533]  do_syscall_64+0xc9/0x1c0
[   33.239358][ T3533]  ? clear_bhb_loop+0x55/0xb0
[   33.244120][ T3533]  ? clear_bhb_loop+0x55/0xb0
[   33.248829][ T3533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   33.254778][ T3533] RIP: 0033:0x7f836d0a5d19
[   33.259251][ T3533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   33.279024][ T3533] RSP: 002b:00007f836b717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   33.287508][ T3533] RAX: ffffffffffffffda RBX: 00007f836d295fa0 RCX: 00007f836d0a5d19
[   33.295585][ T3533] RDX: 0000000020000080 RSI: 00000000000089f1 RDI: 0000000000000007
[   33.303718][ T3533] RBP: 00007f836b717090 R08: 0000000000000000 R09: 0000000000000000
[   33.311751][ T3533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   33.319803][ T3533] R13: 0000000000000000 R14: 00007f836d295fa0 R15: 00007fffd394b938
[   33.327857][ T3533]  </TASK>
[   33.390273][ T3540] 
@ÿ: renamed from bond_slave_0 (while UP)
[   33.421515][ T3538] SELinux: failed to load policy
[   33.498916][ T3548] loop4: detected capacity change from 0 to 128
[   33.506184][ T3548] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   33.522630][ T3550] loop1: detected capacity change from 0 to 512
[   33.540934][ T3548] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   33.545661][ T3550] EXT4-fs: Ignoring removed nobh option
[   33.556025][ T3550] EXT4-fs: Ignoring removed nobh option
[   33.574910][ T3550] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[   33.600534][ T3550] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.35: invalid indirect mapped block 2683928664 (level 1)
[   33.620085][ T3550] EXT4-fs (loop1): 1 truncate cleaned up
[   33.626299][ T3550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.727581][ T3550] netlink: 100 bytes leftover after parsing attributes in process `syz.1.35'.
[   33.799278][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.841328][ T3575] netlink: 4 bytes leftover after parsing attributes in process `syz.1.39'.
[   33.852658][ T3567] loop0: detected capacity change from 0 to 8192
[   34.003422][ T3596] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   34.277936][ T3575] syz.1.39 (3575) used greatest stack depth: 10528 bytes left
[   34.347709][ T3610] loop4: detected capacity change from 0 to 2048
[   34.370019][ T3610] EXT4-fs: quotafile must be on filesystem root
[   34.447976][ T3619] netlink: 'syz.1.48': attribute type 8 has an invalid length.
[   34.512031][ T3623] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.51' sets config #3
[   34.529839][ T3623] FAULT_INJECTION: forcing a failure.
[   34.529839][ T3623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   34.543064][ T3623] CPU: 1 UID: 0 PID: 3623 Comm: syz.1.51 Not tainted 6.13.0-rc3-syzkaller #0
[   34.552028][ T3623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   34.562273][ T3623] Call Trace:
[   34.565600][ T3623]  <TASK>
[   34.568590][ T3623]  dump_stack_lvl+0xf2/0x150
[   34.573279][ T3623]  dump_stack+0x15/0x1a
[   34.577544][ T3623]  should_fail_ex+0x223/0x230
[   34.582254][ T3623]  should_fail+0xb/0x10
[   34.586429][ T3623]  should_fail_usercopy+0x1a/0x20
[   34.591486][ T3623]  _copy_to_user+0x20/0xa0
[   34.595929][ T3623]  simple_read_from_buffer+0xa0/0x110
[   34.601342][ T3623]  proc_fail_nth_read+0xf9/0x140
[   34.606345][ T3623]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   34.611992][ T3623]  vfs_read+0x1a2/0x700
[   34.616166][ T3623]  ? __rcu_read_unlock+0x4e/0x70
[   34.621195][ T3623]  ? __fget_files+0x17c/0x1c0
[   34.626189][ T3623]  ksys_read+0xe8/0x1b0
[   34.630359][ T3623]  __x64_sys_read+0x42/0x50
[   34.634999][ T3623]  x64_sys_call+0x2874/0x2dc0
[   34.639772][ T3623]  do_syscall_64+0xc9/0x1c0
[   34.644284][ T3623]  ? clear_bhb_loop+0x55/0xb0
[   34.649030][ T3623]  ? clear_bhb_loop+0x55/0xb0
[   34.653801][ T3623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   34.659786][ T3623] RIP: 0033:0x7fb529ac472c
[   34.664293][ T3623] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   34.683955][ T3623] RSP: 002b:00007fb528131030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   34.692475][ T3623] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac472c
[   34.700451][ T3623] RDX: 000000000000000f RSI: 00007fb5281310a0 RDI: 0000000000000004
[   34.708447][ T3623] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   34.716428][ T3623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   34.724433][ T3623] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   34.732421][ T3623]  </TASK>
[   34.735657][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888118931000: rx timeout, send abort
[   34.744248][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff888118931000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   34.875355][ T3630] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   35.609719][   T29] kauditd_printk_skb: 295 callbacks suppressed
[   35.609740][   T29] audit: type=1400 audit(1734374761.456:415): avc:  denied  { ioctl } for  pid=3643 comm="syz.1.59" path="socket:[4066]" dev="sockfs" ino=4066 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   35.647032][   T29] audit: type=1400 audit(1734374761.496:416): avc:  denied  { name_connect } for  pid=3649 comm="syz.3.62" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   35.803325][   T29] audit: type=1400 audit(1734374761.656:417): avc:  denied  { unmount } for  pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   35.900758][ T3668] loop2: detected capacity change from 0 to 128
[   35.925692][ T3668] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   35.930360][ T3671] loop4: detected capacity change from 0 to 128
[   35.951676][ T3668] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   35.998292][ T3671] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   36.020004][ T3671] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   36.089853][   T29] audit: type=1400 audit(1734374761.936:418): avc:  denied  { setopt } for  pid=3683 comm="syz.3.75" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   36.138774][   T29] audit: type=1400 audit(1734374761.986:419): avc:  denied  { write } for  pid=3682 comm="syz.0.76" name="ip_vs" dev="proc" ino=4026532605 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   36.167739][ T3695] loop1: detected capacity change from 0 to 512
[   36.184735][ T3695] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   36.198149][ T3695] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   36.235213][ T3695] EXT4-fs (loop1): corrupt root inode, run e2fsck
[   36.241756][   T29] audit: type=1400 audit(1734374762.086:420): avc:  denied  { listen } for  pid=3694 comm="syz.3.78" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   36.261231][ T3695] EXT4-fs (loop1): mount failed
[   36.295899][   T29] audit: type=1400 audit(1734374762.146:421): avc:  denied  { ioctl } for  pid=3694 comm="syz.3.78" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   36.342040][ T3695] loop1: detected capacity change from 0 to 512
[   36.385487][ T3695] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.404508][   T29] audit: type=1400 audit(1734374762.236:422): avc:  denied  { create } for  pid=3722 comm="syz.3.80" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   36.406255][ T3721] loop0: detected capacity change from 0 to 2048
[   36.425956][ T3695] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.449416][ T3695] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   36.472167][ T3721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.487516][ T3721] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.504550][ T3721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.79'.
[   36.513678][ T3721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.79'.
[   36.523426][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.543890][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.606212][ T3743] netlink: 24 bytes leftover after parsing attributes in process `syz.1.85'.
[   36.625222][   T29] audit: type=1400 audit(1734374762.476:423): avc:  denied  { lock } for  pid=3742 comm="syz.1.85" path="socket:[5254]" dev="sockfs" ino=5254 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[   36.704583][   T29] audit: type=1326 audit(1734374762.556:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3747 comm="syz.1.86" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb529ac5d19 code=0x0
[   36.829970][ T3377] usb 5-1: enqueue for inactive port 0
[   36.843021][ T3377] usb 5-1: enqueue for inactive port 0
[   36.878165][ T3757] loop1: detected capacity change from 0 to 8192
[   36.902430][ T3757] vfat: Unknown parameter '@'
[   36.924660][ T3377] vhci_hcd: vhci_device speed not set
[   36.950605][ T3757] loop1: detected capacity change from 0 to 764
[   37.022260][ T3786] FAULT_INJECTION: forcing a failure.
[   37.022260][ T3786] name failslab, interval 1, probability 0, space 0, times 1
[   37.034945][ T3786] CPU: 1 UID: 0 PID: 3786 Comm: syz.1.98 Not tainted 6.13.0-rc3-syzkaller #0
[   37.043716][ T3786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   37.053858][ T3786] Call Trace:
[   37.057158][ T3786]  <TASK>
[   37.060102][ T3786]  dump_stack_lvl+0xf2/0x150
[   37.064744][ T3786]  dump_stack+0x15/0x1a
[   37.068967][ T3786]  should_fail_ex+0x223/0x230
[   37.073677][ T3786]  should_failslab+0x8f/0xb0
[   37.078428][ T3786]  kmem_cache_alloc_node_noprof+0x59/0x320
[   37.084351][ T3786]  ? __alloc_skb+0x10b/0x310
[   37.088977][ T3786]  __alloc_skb+0x10b/0x310
[   37.093427][ T3786]  netlink_alloc_large_skb+0xad/0xe0
[   37.098947][ T3786]  netlink_sendmsg+0x3b4/0x6e0
[   37.103750][ T3786]  ? __pfx_netlink_sendmsg+0x10/0x10
[   37.109213][ T3786]  __sock_sendmsg+0x140/0x180
[   37.113964][ T3786]  ____sys_sendmsg+0x312/0x410
[   37.118791][ T3786]  __sys_sendmsg+0x19d/0x230
[   37.123501][ T3786]  __x64_sys_sendmsg+0x46/0x50
[   37.128270][ T3786]  x64_sys_call+0x2734/0x2dc0
[   37.132972][ T3786]  do_syscall_64+0xc9/0x1c0
[   37.137492][ T3786]  ? clear_bhb_loop+0x55/0xb0
[   37.142327][ T3786]  ? clear_bhb_loop+0x55/0xb0
[   37.147024][ T3786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   37.153026][ T3786] RIP: 0033:0x7fb529ac5d19
[   37.157484][ T3786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   37.173406][ T3781] vlan2: entered promiscuous mode
[   37.177150][ T3786] RSP: 002b:00007fb528131038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   37.177179][ T3786] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac5d19
[   37.177192][ T3786] RDX: 000000000400c880 RSI: 00000000200016c0 RDI: 0000000000000006
[   37.177205][ T3786] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   37.177218][ T3786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   37.177230][ T3786] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   37.182313][ T3781] vlan2: entered allmulticast mode
[   37.190689][ T3786]  </TASK>
[   37.241828][ T3781] vlan0: entered allmulticast mode
[   37.247041][ T3781] veth0_vlan: entered allmulticast mode
[   37.252665][ T3781] vlan0: entered promiscuous mode
[   37.259829][ T3781] team0: Port device vlan2 added
[   37.306039][ T3794] +}[@ calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   37.347630][ T3794] SELinux: security_context_str_to_sid (B) failed with errno=-22
[   37.438126][ T3804] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3804 comm=syz.1.105
[   37.492925][ T3814] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=3814 comm=syz.2.110
[   37.511466][ T3814] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=3814 comm=syz.2.110
[   37.752394][ T3833] netlink: 'syz.1.116': attribute type 13 has an invalid length.
[   37.760332][ T3833] netlink: 152 bytes leftover after parsing attributes in process `syz.1.116'.
[   37.771402][ T3833] syz_tun: refused to change device tx_queue_len
[   37.777785][ T3833] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[   38.275310][ T3861] FAULT_INJECTION: forcing a failure.
[   38.275310][ T3861] name failslab, interval 1, probability 0, space 0, times 0
[   38.288148][ T3861] CPU: 1 UID: 0 PID: 3861 Comm: syz.1.129 Not tainted 6.13.0-rc3-syzkaller #0
[   38.297127][ T3861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   38.307223][ T3861] Call Trace:
[   38.310512][ T3861]  <TASK>
[   38.313520][ T3861]  dump_stack_lvl+0xf2/0x150
[   38.318200][ T3861]  dump_stack+0x15/0x1a
[   38.322392][ T3861]  should_fail_ex+0x223/0x230
[   38.327137][ T3861]  should_failslab+0x8f/0xb0
[   38.331859][ T3861]  __kmalloc_noprof+0xab/0x3f0
[   38.336720][ T3861]  ? io_alloc_async_data+0x4a/0xb0
[   38.341907][ T3861]  io_alloc_async_data+0x4a/0xb0
[   38.346985][ T3861]  io_prep_rw+0x2ec/0x440
[   38.351425][ T3861]  io_prep_rwv+0x59/0x1f0
[   38.355777][ T3861]  io_prep_readv+0x1f/0x30
[   38.360222][ T3861]  io_submit_sqes+0x5d0/0x1090
[   38.365021][ T3861]  __se_sys_io_uring_enter+0x1b9/0x1ba0
[   38.370634][ T3861]  ? 0xffffffff81000000
[   38.374824][ T3861]  ? selinux_file_permission+0x22a/0x360
[   38.380560][ T3861]  ? get_pid_task+0x8e/0xc0
[   38.385168][ T3861]  ? proc_fail_nth_write+0x12a/0x150
[   38.390595][ T3861]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   38.396275][ T3861]  ? vfs_write+0x596/0x920
[   38.400733][ T3861]  ? putname+0xcf/0xf0
[   38.405002][ T3861]  ? __fget_files+0x17c/0x1c0
[   38.409744][ T3861]  ? __x64_sys_io_uring_enter+0x39/0x90
[   38.415376][ T3861]  __x64_sys_io_uring_enter+0x78/0x90
[   38.420285][ T3863] loop2: detected capacity change from 0 to 8192
[   38.420778][ T3861]  x64_sys_call+0xb5e/0x2dc0
[   38.431765][ T3861]  do_syscall_64+0xc9/0x1c0
[   38.436347][ T3861]  ? clear_bhb_loop+0x55/0xb0
[   38.441073][ T3861]  ? clear_bhb_loop+0x55/0xb0
[   38.445781][ T3861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.451779][ T3861] RIP: 0033:0x7fb529ac5d19
[   38.456208][ T3861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.475929][ T3861] RSP: 002b:00007fb528131038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   38.484362][ T3861] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac5d19
[   38.492358][ T3861] RDX: 0000000000000000 RSI: 00000000000039c1 RDI: 0000000000000003
[   38.500404][ T3861] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   38.508473][ T3861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.516460][ T3861] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   38.524465][ T3861]  </TASK>
[   38.571580][ T3863] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[   38.579470][ T3863] FAT-fs (loop2): Filesystem has been set read-only
[   38.581272][ T3865] SELinux: failed to load policy
[   38.930530][ T3880] loop1: detected capacity change from 0 to 512
[   38.937207][ T3880] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   38.962792][ T3880] pim6reg: entered allmulticast mode
[   38.982266][ T3880] pim6reg: left allmulticast mode
[   39.117686][ T3890] netlink: 112 bytes leftover after parsing attributes in process `syz.2.142'.
[   39.254155][ T3892] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[   39.282245][ T3892] batman_adv: batadv0: Adding interface: ip6gretap1
[   39.288905][ T3892] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   39.316463][ T3892] batman_adv: batadv0: Interface activated: ip6gretap1
[   39.393375][ T3893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.141'.
[   39.575348][ T3904] loop2: detected capacity change from 0 to 764
[   39.845733][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888117f46000: rx timeout, send abort
[   39.854262][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff888117f46000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   40.511580][ T3924] FAULT_INJECTION: forcing a failure.
[   40.511580][ T3924] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   40.524775][ T3924] CPU: 0 UID: 0 PID: 3924 Comm: syz.3.154 Not tainted 6.13.0-rc3-syzkaller #0
[   40.533689][ T3924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   40.543856][ T3924] Call Trace:
[   40.547157][ T3924]  <TASK>
[   40.550103][ T3924]  dump_stack_lvl+0xf2/0x150
[   40.554735][ T3924]  dump_stack+0x15/0x1a
[   40.559205][ T3924]  should_fail_ex+0x223/0x230
[   40.563986][ T3924]  should_fail+0xb/0x10
[   40.568182][ T3924]  should_fail_usercopy+0x1a/0x20
[   40.573282][ T3924]  _copy_from_iter+0xd5/0xd00
[   40.578047][ T3924]  ? kmalloc_reserve+0x16e/0x190
[   40.583019][ T3924]  ? __build_skb_around+0x196/0x1f0
[   40.588280][ T3924]  ? __alloc_skb+0x21f/0x310
[   40.592978][ T3924]  ? __virt_addr_valid+0x1ed/0x250
[   40.598214][ T3924]  ? __check_object_size+0x364/0x520
[   40.603535][ T3924]  netlink_sendmsg+0x460/0x6e0
[   40.608327][ T3924]  ? __pfx_netlink_sendmsg+0x10/0x10
[   40.613623][ T3924]  __sock_sendmsg+0x140/0x180
[   40.618479][ T3924]  ____sys_sendmsg+0x312/0x410
[   40.623325][ T3924]  __sys_sendmsg+0x19d/0x230
[   40.627938][ T3924]  __x64_sys_sendmsg+0x46/0x50
[   40.632715][ T3924]  x64_sys_call+0x2734/0x2dc0
[   40.637405][ T3924]  do_syscall_64+0xc9/0x1c0
[   40.641915][ T3924]  ? clear_bhb_loop+0x55/0xb0
[   40.646603][ T3924]  ? clear_bhb_loop+0x55/0xb0
[   40.651394][ T3924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.657309][ T3924] RIP: 0033:0x7f404acf5d19
[   40.661848][ T3924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.681480][ T3924] RSP: 002b:00007f4049367038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   40.690013][ T3924] RAX: ffffffffffffffda RBX: 00007f404aee5fa0 RCX: 00007f404acf5d19
[   40.697992][ T3924] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005
[   40.706028][ T3924] RBP: 00007f4049367090 R08: 0000000000000000 R09: 0000000000000000
[   40.714103][ T3924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.722078][ T3924] R13: 0000000000000000 R14: 00007f404aee5fa0 R15: 00007fff205ff028
[   40.730128][ T3924]  </TASK>
[   40.764186][ T3928] syz.3.156[3928] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   40.764273][ T3928] syz.3.156[3928] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   40.815018][ T3928] syz.3.156[3928] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   40.817281][ T3931] loop2: detected capacity change from 0 to 512
[   40.844597][ T3931] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   40.936030][ T3938] FAULT_INJECTION: forcing a failure.
[   40.936030][ T3938] name failslab, interval 1, probability 0, space 0, times 0
[   40.947345][ T3937] vlan2: entered promiscuous mode
[   40.948747][ T3938] CPU: 0 UID: 0 PID: 3938 Comm: syz.3.158 Not tainted 6.13.0-rc3-syzkaller #0
[   40.958611][ T3937] bond0: entered promiscuous mode
[   40.962578][ T3938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   40.962596][ T3938] Call Trace:
[   40.962604][ T3938]  <TASK>
[   40.962614][ T3938]  dump_stack_lvl+0xf2/0x150
[   40.967631][ T3937] bond_slave_0: entered promiscuous mode
[   40.977677][ T3938]  dump_stack+0x15/0x1a
[   40.977721][ T3938]  should_fail_ex+0x223/0x230
[   40.977749][ T3938]  should_failslab+0x8f/0xb0
[   40.981219][ T3937] bond_slave_1: entered promiscuous mode
[   40.983962][ T3938]  kmem_cache_alloc_noprof+0x52/0x320
[   41.018744][ T3938]  ? security_inode_alloc+0x37/0x100
[   41.024087][ T3938]  security_inode_alloc+0x37/0x100
[   41.029268][ T3938]  inode_init_always_gfp+0x4a2/0x4f0
[   41.035038][ T3938]  ? __pfx_sock_alloc_inode+0x10/0x10
[   41.040506][ T3938]  alloc_inode+0x82/0x160
[   41.041193][   T29] kauditd_printk_skb: 296 callbacks suppressed
[   41.041209][   T29] audit: type=1400 audit(1734374766.856:721): avc:  denied  { name_bind } for  pid=3946 comm="syz.0.161" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   41.044914][ T3938]  new_inode_pseudo+0x15/0x20
[   41.044941][ T3938]  __sock_create+0x12b/0x5a0
[   41.051251][   T29] audit: type=1400 audit(1734374766.856:722): avc:  denied  { node_bind } for  pid=3946 comm="syz.0.161" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   41.072562][ T3938]  __sys_socketpair+0x17c/0x430
[   41.072644][ T3938]  __x64_sys_socketpair+0x52/0x60
[   41.072684][ T3938]  x64_sys_call+0x1cad/0x2dc0
[   41.072708][ T3938]  do_syscall_64+0xc9/0x1c0
[   41.072731][ T3938]  ? clear_bhb_loop+0x55/0xb0
[   41.072821][ T3938]  ? clear_bhb_loop+0x55/0xb0
[   41.115386][   T29] audit: type=1400 audit(1734374766.966:723): avc:  denied  { wake_alarm } for  pid=3946 comm="syz.0.161" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   41.117219][ T3938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.158013][ T3938] RIP: 0033:0x7f404acf7c6a
[   41.162441][ T3938] Code: 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 35 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.182158][ T3938] RSP: 002b:00007f4049366f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[   41.190744][ T3938] RAX: ffffffffffffffda RBX: 00007f404aee5f00 RCX: 00007f404acf7c6a
[   41.198738][ T3938] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[   41.206845][ T3938] RBP: 00007f4049367090 R08: 0000000000000000 R09: 0000000000000000
[   41.214892][ T3938] R10: 00007f4049366f98 R11: 0000000000000246 R12: 0000000000000000
[   41.222949][ T3938] R13: 0000000000000000 R14: 00007f404aee5fa0 R15: 00007fff205ff028
[   41.231029][ T3938]  </TASK>
[   41.234555][ T3938] socket: no more sockets
[   41.239571][ T3937] bond0: left promiscuous mode
[   41.244639][ T3937] bond_slave_0: left promiscuous mode
[   41.250242][ T3937] bond_slave_1: left promiscuous mode
[   41.258371][   T29] audit: type=1400 audit(1734374767.106:724): avc:  denied  { create } for  pid=3951 comm="syz.0.162" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   41.304900][   T29] audit: type=1400 audit(1734374767.106:725): avc:  denied  { write } for  pid=3951 comm="syz.0.162" name="file0" dev="tmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   41.327269][   T29] audit: type=1400 audit(1734374767.106:726): avc:  denied  { open } for  pid=3951 comm="syz.0.162" path="/27/file0" dev="tmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   41.349785][   T29] audit: type=1400 audit(1734374767.106:727): avc:  denied  { ioctl } for  pid=3951 comm="syz.0.162" path="/27/file0" dev="tmpfs" ino=159 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   41.381944][   T29] audit: type=1400 audit(1734374767.236:728): avc:  denied  { mounton } for  pid=3951 comm="syz.0.162" path="/27/file0" dev="tmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   41.409681][   T29] audit: type=1400 audit(1734374767.256:729): avc:  denied  { mount } for  pid=3951 comm="syz.0.162" name="/" dev="configfs" ino=1178 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   41.432324][   T29] audit: type=1400 audit(1734374767.256:730): avc:  denied  { read } for  pid=3951 comm="syz.0.162" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   41.538563][ T3967] syz.4.168[3967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.538641][ T3967] syz.4.168[3967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.550930][ T3967] syz.4.168[3967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   41.612634][ T3973] FAULT_INJECTION: forcing a failure.
[   41.612634][ T3973] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   41.637218][ T3973] CPU: 1 UID: 0 PID: 3973 Comm: syz.0.170 Not tainted 6.13.0-rc3-syzkaller #0
[   41.646103][ T3973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   41.656188][ T3973] Call Trace:
[   41.659491][ T3973]  <TASK>
[   41.662446][ T3973]  dump_stack_lvl+0xf2/0x150
[   41.667122][ T3973]  dump_stack+0x15/0x1a
[   41.671373][ T3973]  should_fail_ex+0x223/0x230
[   41.676172][ T3973]  should_fail+0xb/0x10
[   41.680349][ T3973]  should_fail_usercopy+0x1a/0x20
[   41.685442][ T3973]  _copy_from_user+0x1e/0xb0
[   41.690056][ T3973]  do_ipv6_setsockopt+0x1ef/0x2250
[   41.695254][ T3973]  ? kstrtoull+0x110/0x140
[   41.699706][ T3973]  ? kstrtouint+0x77/0xc0
[   41.704047][ T3973]  ? __rcu_read_unlock+0x4e/0x70
[   41.709141][ T3973]  ? avc_has_perm_noaudit+0x1cc/0x210
[   41.714639][ T3973]  ? selinux_netlbl_socket_setsockopt+0xe5/0x2d0
[   41.721051][ T3973]  ipv6_setsockopt+0x57/0x130
[   41.725805][ T3973]  udpv6_setsockopt+0x95/0xb0
[   41.730496][ T3973]  sock_common_setsockopt+0x64/0x80
[   41.735719][ T3973]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   41.741638][ T3973]  __sys_setsockopt+0x187/0x200
[   41.746555][ T3973]  __x64_sys_setsockopt+0x66/0x80
[   41.751609][ T3973]  x64_sys_call+0x282e/0x2dc0
[   41.756306][ T3973]  do_syscall_64+0xc9/0x1c0
[   41.760920][ T3973]  ? clear_bhb_loop+0x55/0xb0
[   41.765604][ T3973]  ? clear_bhb_loop+0x55/0xb0
[   41.770382][ T3973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.776332][ T3973] RIP: 0033:0x7f836d0a5d19
[   41.780753][ T3973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.800385][ T3973] RSP: 002b:00007f836b717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   41.808817][ T3973] RAX: ffffffffffffffda RBX: 00007f836d295fa0 RCX: 00007f836d0a5d19
[   41.816795][ T3973] RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000006
[   41.824784][ T3973] RBP: 00007f836b717090 R08: 0000000000000023 R09: 0000000000000000
[   41.832793][ T3973] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000001
[   41.840801][ T3973] R13: 0000000000000000 R14: 00007f836d295fa0 R15: 00007fffd394b938
[   41.848788][ T3973]  </TASK>
[   41.903921][ T3981] loop4: detected capacity change from 0 to 1024
[   41.911694][ T3981] EXT4-fs: Ignoring removed nobh option
[   41.917321][ T3981] EXT4-fs: Ignoring removed orlov option
[   41.948365][ T3981] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.990780][ T3983] loop0: detected capacity change from 0 to 8192
[   42.023830][ T3990] FAULT_INJECTION: forcing a failure.
[   42.023830][ T3990] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.036990][ T3990] CPU: 1 UID: 0 PID: 3990 Comm: syz.1.176 Not tainted 6.13.0-rc3-syzkaller #0
[   42.045952][ T3990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   42.054336][ T3981] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   42.056221][ T3990] Call Trace:
[   42.056231][ T3990]  <TASK>
[   42.067636][ T3981] netlink: 4 bytes leftover after parsing attributes in process `syz.4.173'.
[   42.070509][ T3990]  dump_stack_lvl+0xf2/0x150
[   42.081326][ T3981] bridge_slave_1: left allmulticast mode
[   42.083907][ T3990]  dump_stack+0x15/0x1a
[   42.089676][ T3981] bridge_slave_1: left promiscuous mode
[   42.093763][ T3990]  should_fail_ex+0x223/0x230
[   42.099424][ T3981] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.103971][ T3990]  should_fail+0xb/0x10
[   42.115382][ T3990]  should_fail_usercopy+0x1a/0x20
[   42.120442][ T3990]  _copy_from_user+0x1e/0xb0
[   42.125074][ T3990]  sg_io+0x1fd/0x450
[   42.129162][ T3990]  scsi_ioctl+0xe9d/0x1540
[   42.133703][ T3990]  sg_ioctl+0xd00/0x1870
[   42.137975][ T3990]  ? __fget_files+0x17c/0x1c0
[   42.142809][ T3990]  ? __pfx_sg_ioctl+0x10/0x10
[   42.147520][ T3990]  __se_sys_ioctl+0xc9/0x140
[   42.152244][ T3990]  __x64_sys_ioctl+0x43/0x50
[   42.156945][ T3990]  x64_sys_call+0x1690/0x2dc0
[   42.161659][ T3990]  do_syscall_64+0xc9/0x1c0
[   42.166300][ T3990]  ? clear_bhb_loop+0x55/0xb0
[   42.171073][ T3990]  ? clear_bhb_loop+0x55/0xb0
[   42.175787][ T3990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.181768][ T3990] RIP: 0033:0x7fb529ac5d19
[   42.186212][ T3990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.205896][ T3990] RSP: 002b:00007fb528131038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   42.214347][ T3990] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac5d19
[   42.222415][ T3990] RDX: 0000000020000000 RSI: 0000000000005393 RDI: 0000000000000004
[   42.230406][ T3990] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   42.238402][ T3990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   42.246422][ T3990] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   42.254431][ T3990]  </TASK>
[   42.258644][ T3981] bridge_slave_0: left allmulticast mode
[   42.264414][ T3981] bridge_slave_0: left promiscuous mode
[   42.270178][ T3981] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.277136][ T3996] loop3: detected capacity change from 0 to 128
[   42.290184][ T3996] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   42.323108][ T3996] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   42.719412][ T4020] loop2: detected capacity change from 0 to 512
[   42.789740][ T4022] 9pnet: p9_errstr2errno: server reported unknown error �@b‰éª©×
[   43.021428][ T4020] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.064315][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.087360][ T4020] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   43.197183][ T4026] sch_tbf: burst 1 is lower than device lo mtu (65550) !
[   43.329792][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.672519][ T4064] SELinux: syz.3.197 (4064) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   43.733009][ T4068] SELinux: syz.2.202 (4068) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   43.841453][ T4073] loop2: detected capacity change from 0 to 8192
[   43.998969][ T4079] hub 2-0:1.0: USB hub found
[   44.005022][ T4079] hub 2-0:1.0: 8 ports detected
[   44.546107][ T4095] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2564 sclass=netlink_route_socket pid=4095 comm=syz.0.212
[   44.562240][ T4094] loop4: detected capacity change from 0 to 512
[   44.604951][ T4095] netlink: 'syz.0.212': attribute type 1 has an invalid length.
[   44.612680][ T4095] netlink: 224 bytes leftover after parsing attributes in process `syz.0.212'.
[   44.651695][ T4094] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.666523][ T4094] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.679239][ T4095] netlink: 'syz.0.212': attribute type 10 has an invalid length.
[   44.689942][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.760059][ T4114] Zero length message leads to an empty skb
[   44.816892][ T4119] FAULT_INJECTION: forcing a failure.
[   44.816892][ T4119] name failslab, interval 1, probability 0, space 0, times 0
[   44.817475][ T4117] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.829575][ T4119] CPU: 0 UID: 0 PID: 4119 Comm: syz.3.222 Not tainted 6.13.0-rc3-syzkaller #0
[   44.829608][ T4119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   44.829624][ T4119] Call Trace:
[   44.829631][ T4119]  <TASK>
[   44.829641][ T4119]  dump_stack_lvl+0xf2/0x150
[   44.869879][ T4119]  dump_stack+0x15/0x1a
[   44.874141][ T4119]  should_fail_ex+0x223/0x230
[   44.878858][ T4119]  should_failslab+0x8f/0xb0
[   44.883560][ T4119]  kmem_cache_alloc_node_noprof+0x59/0x320
[   44.889419][ T4119]  ? __alloc_skb+0x10b/0x310
[   44.894102][ T4119]  __alloc_skb+0x10b/0x310
[   44.898570][ T4119]  netlink_alloc_large_skb+0xad/0xe0
[   44.903952][ T4119]  netlink_sendmsg+0x3b4/0x6e0
[   44.908807][ T4119]  ? __pfx_netlink_sendmsg+0x10/0x10
[   44.914210][ T4119]  __sock_sendmsg+0x140/0x180
[   44.919005][ T4119]  ____sys_sendmsg+0x312/0x410
[   44.923863][ T4119]  __sys_sendmsg+0x19d/0x230
[   44.928501][ T4119]  __x64_sys_sendmsg+0x46/0x50
[   44.933344][ T4119]  x64_sys_call+0x2734/0x2dc0
[   44.938045][ T4119]  do_syscall_64+0xc9/0x1c0
[   44.942559][ T4119]  ? clear_bhb_loop+0x55/0xb0
[   44.947399][ T4119]  ? clear_bhb_loop+0x55/0xb0
[   44.952083][ T4119]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.958075][ T4119] RIP: 0033:0x7f404acf5d19
[   44.962497][ T4119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.982124][ T4119] RSP: 002b:00007f4049367038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   44.990676][ T4119] RAX: ffffffffffffffda RBX: 00007f404aee5fa0 RCX: 00007f404acf5d19
[   44.998708][ T4119] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[   45.006714][ T4119] RBP: 00007f4049367090 R08: 0000000000000000 R09: 0000000000000000
[   45.014698][ T4119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.022790][ T4119] R13: 0000000000000000 R14: 00007f404aee5fa0 R15: 00007fff205ff028
[   45.030828][ T4119]  </TASK>
[   45.087745][ T4117] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.109983][ T4138] netlink: 4 bytes leftover after parsing attributes in process `syz.0.225'.
[   45.137994][ T4139] netlink: 8 bytes leftover after parsing attributes in process `syz.2.226'.
[   45.162947][ T4117] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.191936][ T4147] loop1: detected capacity change from 0 to 2048
[   45.213009][ T4117] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.462140][ T4175] loop2: detected capacity change from 0 to 256
[   46.101788][ T4171] loop3: detected capacity change from 0 to 8192
[   46.118149][ T4147] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.133010][ T4147] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.228: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   46.138934][   T29] kauditd_printk_skb: 199 callbacks suppressed
[   46.139032][   T29] audit: type=1400 audit(1734374771.990:930): avc:  denied  { create } for  pid=4142 comm="syz.1.228" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.195385][ T4117] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.202876][ T4181] syz.0.232[4181] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.204002][ T4181] syz.0.232[4181] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.207801][ T4117] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.219958][ T4181] syz.0.232[4181] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.230459][ T4117] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.300031][ T4117] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.309112][ T4189] FAULT_INJECTION: forcing a failure.
[   46.309112][ T4189] name failslab, interval 1, probability 0, space 0, times 0
[   46.322211][ T4189] CPU: 0 UID: 0 PID: 4189 Comm: syz.0.234 Not tainted 6.13.0-rc3-syzkaller #0
[   46.331268][ T4189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   46.341349][ T4189] Call Trace:
[   46.344632][ T4189]  <TASK>
[   46.347585][ T4189]  dump_stack_lvl+0xf2/0x150
[   46.352471][ T4189]  dump_stack+0x15/0x1a
[   46.356661][ T4189]  should_fail_ex+0x223/0x230
[   46.361414][ T4189]  should_failslab+0x8f/0xb0
[   46.366458][ T4189]  __kmalloc_noprof+0xab/0x3f0
[   46.371232][ T4189]  ? alloc_pipe_info+0x1cb/0x360
[   46.376214][ T4189]  alloc_pipe_info+0x1cb/0x360
[   46.381021][ T4189]  splice_direct_to_actor+0x60f/0x670
[   46.386414][ T4189]  ? __pfx_direct_splice_actor+0x10/0x10
[   46.392107][ T4189]  ? 0xffffffff81000000
[   46.396331][ T4189]  ? selinux_file_permission+0x22a/0x360
[   46.402088][ T4189]  ? __rcu_read_unlock+0x4e/0x70
[   46.407042][ T4189]  ? avc_policy_seqno+0x15/0x20
[   46.411915][ T4189]  ? selinux_file_permission+0x22a/0x360
[   46.417561][ T4189]  do_splice_direct+0xd7/0x150
[   46.422415][ T4189]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   46.428330][ T4189]  do_sendfile+0x398/0x660
[   46.432876][ T4189]  __x64_sys_sendfile64+0x110/0x150
[   46.438187][ T4189]  x64_sys_call+0xfbd/0x2dc0
[   46.442832][ T4189]  do_syscall_64+0xc9/0x1c0
[   46.447346][ T4189]  ? clear_bhb_loop+0x55/0xb0
[   46.452091][ T4189]  ? clear_bhb_loop+0x55/0xb0
[   46.456814][ T4189]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.462795][ T4189] RIP: 0033:0x7f836d0a5d19
[   46.467211][ T4189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.486826][ T4189] RSP: 002b:00007f836b717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[   46.495337][ T4189] RAX: ffffffffffffffda RBX: 00007f836d295fa0 RCX: 00007f836d0a5d19
[   46.503319][ T4189] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[   46.511370][ T4189] RBP: 00007f836b717090 R08: 0000000000000000 R09: 0000000000000000
[   46.519412][ T4189] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[   46.527417][ T4189] R13: 0000000000000000 R14: 00007f836d295fa0 R15: 00007fffd394b938
[   46.535421][ T4189]  </TASK>
[   46.585157][ T4194] syz.2.237[4194] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.585367][ T4194] syz.2.237[4194] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.596804][ T4194] syz.2.237[4194] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   46.637983][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.731036][ T4200] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4200 comm=syz.1.236
[   46.799913][ T4201] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=86 sclass=netlink_audit_socket pid=4201 comm=syz.1.236
[   46.828501][   T29] audit: type=1400 audit(1734374772.680:931): avc:  denied  { ioctl } for  pid=4196 comm="syz.0.238" path="socket:[6807]" dev="sockfs" ino=6807 ioctlcmd=0x8902 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   46.881453][ T4207] SELinux: failed to load policy
[   47.019975][ T4215] loop4: detected capacity change from 0 to 1024
[   47.033309][ T4215] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   47.052561][ T4215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.067444][   T29] audit: type=1400 audit(1734374772.920:932): avc:  denied  { append } for  pid=4214 comm="syz.4.244" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   47.089701][   T29] audit: type=1400 audit(1734374772.920:933): avc:  denied  { open } for  pid=4214 comm="syz.4.244" path="/35/file1/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   47.116078][ T4215] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.244: corrupted in-inode xattr: bad magic number in in-inode xattr
[   47.145061][ T4215] netlink: 44 bytes leftover after parsing attributes in process `syz.4.244'.
[   47.181033][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.191993][   T29] audit: type=1400 audit(1734374773.040:934): avc:  denied  { connect } for  pid=4226 comm="syz.3.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   47.244962][ T4234] loop4: detected capacity change from 0 to 2048
[   47.249413][ T4236] loop3: detected capacity change from 0 to 512
[   47.272140][ T4236] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.272242][ T4234] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.285974][ T4236] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.307804][ T4234] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.247: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   47.327370][   T29] audit: type=1400 audit(1734374773.180:935): avc:  denied  { read append open } for  pid=4235 comm="syz.3.249" path="/46/file0/cpuacct.usage_all" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   47.350768][ T4236] EXT4-fs (loop3): shut down requested (0)
[   47.352429][   T29] audit: type=1400 audit(1734374773.210:936): avc:  denied  { ioctl } for  pid=4235 comm="syz.3.249" path="/46/file0/cpuacct.usage_all" dev="loop3" ino=18 ioctlcmd=0x587d scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   47.387932][   T29] audit: type=1400 audit(1734374773.240:937): avc:  denied  { setattr } for  pid=4235 comm="syz.3.249" name="cpuacct.usage_all" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   47.417247][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.426985][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.484999][ T4252] blktrace: Concurrent blktraces are not allowed on loop7
[   47.509153][ T4254] loop3: detected capacity change from 0 to 128
[   47.515974][ T4254] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   47.528547][ T4254] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   47.633064][ T4270] FAULT_INJECTION: forcing a failure.
[   47.633064][ T4270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.646207][ T4270] CPU: 1 UID: 0 PID: 4270 Comm: syz.0.258 Not tainted 6.13.0-rc3-syzkaller #0
[   47.655129][ T4270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   47.665233][ T4270] Call Trace:
[   47.668534][ T4270]  <TASK>
[   47.671507][ T4270]  dump_stack_lvl+0xf2/0x150
[   47.676204][ T4270]  dump_stack+0x15/0x1a
[   47.680420][ T4270]  should_fail_ex+0x223/0x230
[   47.685175][ T4270]  should_fail+0xb/0x10
[   47.689366][ T4270]  should_fail_usercopy+0x1a/0x20
[   47.694510][ T4270]  _copy_from_iter+0xd5/0xd00
[   47.699330][ T4270]  ? alloc_pages_mpol_noprof+0xd5/0x1e0
[   47.705123][ T4270]  copy_page_from_iter+0x14f/0x280
[   47.710301][ T4270]  tun_get_user+0x686/0x25b0
[   47.715078][ T4270]  ? _parse_integer+0x27/0x30
[   47.719780][ T4270]  ? ref_tracker_alloc+0x1f5/0x2f0
[   47.725087][ T4270]  tun_chr_write_iter+0x188/0x240
[   47.730136][ T4270]  vfs_write+0x77f/0x920
[   47.734513][ T4270]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   47.740077][ T4270]  ksys_write+0xe8/0x1b0
[   47.744382][ T4270]  __x64_sys_write+0x42/0x50
[   47.748988][ T4270]  x64_sys_call+0x287e/0x2dc0
[   47.753679][ T4270]  do_syscall_64+0xc9/0x1c0
[   47.758292][ T4270]  ? clear_bhb_loop+0x55/0xb0
[   47.762979][ T4270]  ? clear_bhb_loop+0x55/0xb0
[   47.767824][ T4270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.773831][ T4270] RIP: 0033:0x7f836d0a47cf
[   47.778253][ T4270] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   47.798048][ T4270] RSP: 002b:00007f836b6f6000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   47.806546][ T4270] RAX: ffffffffffffffda RBX: 00007f836d296080 RCX: 00007f836d0a47cf
[   47.814535][ T4270] RDX: 000000000000004a RSI: 0000000020000140 RDI: 00000000000000c8
[   47.822514][ T4270] RBP: 00007f836b6f6090 R08: 0000000000000000 R09: 0000000000000000
[   47.830980][ T4270] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[   47.839030][ T4270] R13: 0000000000000001 R14: 00007f836d296080 R15: 00007fffd394b938
[   47.847160][ T4270]  </TASK>
[   47.850420][   T29] audit: type=1400 audit(1734374773.530:938): avc:  denied  { getopt } for  pid=4273 comm="syz.4.261" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   47.887452][ T4279] netlink: 36 bytes leftover after parsing attributes in process `syz.1.262'.
[   47.954308][   T29] audit: type=1400 audit(1734374773.810:939): avc:  denied  { setopt } for  pid=4287 comm="syz.4.263" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   48.037090][ T4296] xt_CT: You must specify a L4 protocol and not use inversions on it
[   48.137697][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88811876ae00: rx timeout, send abort
[   48.146057][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff88811876ae00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   48.201268][ T4315] netlink: 8 bytes leftover after parsing attributes in process `syz.1.268'.
[   48.210268][ T4315] netlink: 44 bytes leftover after parsing attributes in process `syz.1.268'.
[   48.218254][ T4318] loop2: detected capacity change from 0 to 512
[   48.225895][ T4318] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   48.246265][ T4315] bridge1: the hash_elasticity option has been deprecated and is always 16
[   48.261782][ T4318] pim6reg: entered allmulticast mode
[   48.267783][ T4318] pim6reg: left allmulticast mode
[   48.291317][ T4323] Cannot find set identified by id 632 to match
[   48.309441][ T4323] netlink: 108 bytes leftover after parsing attributes in process `syz.1.273'.
[   48.318555][ T4323] netlink: 108 bytes leftover after parsing attributes in process `syz.1.273'.
[   48.327647][ T4323] netlink: 108 bytes leftover after parsing attributes in process `syz.1.273'.
[   48.337884][ T4325] Unknown options in mask 5
[   48.362767][ T4327] loop1: detected capacity change from 0 to 2048
[   48.390149][ T4327]  loop1: p1 < > p4
[   48.408250][ T4327] loop1: p4 size 8388608 extends beyond EOD, truncated
[   48.528300][ T4335] loop4: detected capacity change from 0 to 128
[   48.535037][ T4335] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.551937][ T4335] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   48.628628][ T4341] FAULT_INJECTION: forcing a failure.
[   48.628628][ T4341] name failslab, interval 1, probability 0, space 0, times 0
[   48.641337][ T4341] CPU: 0 UID: 0 PID: 4341 Comm: syz.1.275 Not tainted 6.13.0-rc3-syzkaller #0
[   48.650351][ T4341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   48.660418][ T4341] Call Trace:
[   48.663791][ T4341]  <TASK>
[   48.666795][ T4341]  dump_stack_lvl+0xf2/0x150
[   48.671484][ T4341]  dump_stack+0x15/0x1a
[   48.675769][ T4341]  should_fail_ex+0x223/0x230
[   48.680472][ T4341]  should_failslab+0x8f/0xb0
[   48.685288][ T4341]  __kmalloc_node_noprof+0xad/0x410
[   48.690510][ T4341]  ? __kvmalloc_node_noprof+0x72/0x170
[   48.696366][ T4341]  __kvmalloc_node_noprof+0x72/0x170
[   48.701813][ T4341]  alloc_fdtable+0xfc/0x1b0
[   48.706346][ T4341]  dup_fd+0x60d/0x6a0
[   48.710392][ T4341]  ? _raw_spin_unlock+0x26/0x50
[   48.715275][ T4341]  ksys_unshare+0x33b/0x6e0
[   48.720077][ T4341]  __x64_sys_unshare+0x1f/0x30
[   48.724885][ T4341]  x64_sys_call+0x1a3e/0x2dc0
[   48.729597][ T4341]  do_syscall_64+0xc9/0x1c0
[   48.734129][ T4341]  ? clear_bhb_loop+0x55/0xb0
[   48.738847][ T4341]  ? clear_bhb_loop+0x55/0xb0
[   48.743687][ T4341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.749690][ T4341] RIP: 0033:0x7fb529ac5d19
[   48.754155][ T4341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.774042][ T4341] RSP: 002b:00007fb5280ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   48.782660][ T4341] RAX: ffffffffffffffda RBX: 00007fb529cb6160 RCX: 00007fb529ac5d19
[   48.790714][ T4341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000064000600
[   48.798818][ T4341] RBP: 00007fb5280ef090 R08: 0000000000000000 R09: 0000000000000000
[   48.806895][ T4341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.815328][ T4341] R13: 0000000000000000 R14: 00007fb529cb6160 R15: 00007ffe5569e778
[   48.823390][ T4341]  </TASK>
[   48.880530][ T4340] SELinux: failed to load policy
[   49.083504][ T4350] netlink: 5 bytes leftover after parsing attributes in process `syz.4.283'.
[   49.095695][ T4350] 0ªX¹¦Dö»: renamed from gretap0 (while UP)
[   49.105910][ T4350] 0ªX¹¦Dö»: entered allmulticast mode
[   49.161145][ T4354] loop4: detected capacity change from 0 to 512
[   49.175408][ T4354] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   49.260468][ T4354] pim6reg: entered allmulticast mode
[   49.271832][ T4354] pim6reg: left allmulticast mode
[   49.388569][ T4364] FAULT_INJECTION: forcing a failure.
[   49.388569][ T4364] name failslab, interval 1, probability 0, space 0, times 0
[   49.401290][ T4364] CPU: 1 UID: 0 PID: 4364 Comm: syz.4.290 Not tainted 6.13.0-rc3-syzkaller #0
[   49.410258][ T4364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   49.420432][ T4364] Call Trace:
[   49.423729][ T4364]  <TASK>
[   49.426690][ T4364]  dump_stack_lvl+0xf2/0x150
[   49.431429][ T4364]  dump_stack+0x15/0x1a
[   49.435762][ T4364]  should_fail_ex+0x223/0x230
[   49.440649][ T4364]  should_failslab+0x8f/0xb0
[   49.445358][ T4364]  kmem_cache_alloc_noprof+0x52/0x320
[   49.450844][ T4364]  ? skb_clone+0x154/0x1f0
[   49.455399][ T4364]  skb_clone+0x154/0x1f0
[   49.459770][ T4364]  __netlink_deliver_tap+0x2bd/0x4f0
[   49.465184][ T4364]  netlink_unicast+0x64a/0x670
[   49.470121][ T4364]  netlink_sendmsg+0x5cc/0x6e0
[   49.474930][ T4364]  ? __pfx_netlink_sendmsg+0x10/0x10
[   49.480407][ T4364]  __sock_sendmsg+0x140/0x180
[   49.485183][ T4364]  sock_write_iter+0x15e/0x1a0
[   49.490109][ T4364]  vfs_write+0x77f/0x920
[   49.494391][ T4364]  ? __pfx_sock_write_iter+0x10/0x10
[   49.499768][ T4364]  ksys_write+0xe8/0x1b0
[   49.504057][ T4364]  __x64_sys_write+0x42/0x50
[   49.508769][ T4364]  x64_sys_call+0x287e/0x2dc0
[   49.513479][ T4364]  do_syscall_64+0xc9/0x1c0
[   49.518073][ T4364]  ? clear_bhb_loop+0x55/0xb0
[   49.522787][ T4364]  ? clear_bhb_loop+0x55/0xb0
[   49.527549][ T4364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.533538][ T4364] RIP: 0033:0x7f71f2ff5d19
[   49.537989][ T4364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.557636][ T4364] RSP: 002b:00007f71f1667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   49.566140][ T4364] RAX: ffffffffffffffda RBX: 00007f71f31e5fa0 RCX: 00007f71f2ff5d19
[   49.574235][ T4364] RDX: 0000000000000024 RSI: 0000000020000000 RDI: 000000000000000a
[   49.582412][ T4364] RBP: 00007f71f1667090 R08: 0000000000000000 R09: 0000000000000000
[   49.590475][ T4364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.598483][ T4364] R13: 0000000000000000 R14: 00007f71f31e5fa0 R15: 00007ffc6a941d88
[   49.606607][ T4364]  </TASK>
[   49.609826][ T4364] netlink: 4 bytes leftover after parsing attributes in process `syz.4.290'.
[   49.954382][ T4373] netlink: 4 bytes leftover after parsing attributes in process `syz.2.293'.
[   49.967913][ T4373] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.975665][ T4373] batman_adv: batadv0: Removing interface: batadv_slave_0
[   49.995806][ T4373] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.003349][ T4373] batman_adv: batadv0: Removing interface: batadv_slave_1
[   50.035079][ T4373] batman_adv: batadv0: Interface deactivated: ip6gretap1
[   50.042240][ T4373] batman_adv: batadv0: Removing interface: ip6gretap1
[   50.198606][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8881187da400: rx timeout, send abort
[   50.207142][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881187da400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   50.478547][ T4480] vlan2: entered allmulticast mode
[   50.494605][ T4480] bridge0: port 3(vlan2) entered blocking state
[   50.501390][ T4480] bridge0: port 3(vlan2) entered disabled state
[   50.513368][ T4480] vlan2: entered promiscuous mode
[   50.532102][ T4480] bridge0: mtu less than device minimum
[   50.597344][ T4485] FAULT_INJECTION: forcing a failure.
[   50.597344][ T4485] name failslab, interval 1, probability 0, space 0, times 0
[   50.610050][ T4485] CPU: 0 UID: 0 PID: 4485 Comm: syz.3.301 Not tainted 6.13.0-rc3-syzkaller #0
[   50.619004][ T4485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   50.629287][ T4485] Call Trace:
[   50.632600][ T4485]  <TASK>
[   50.635563][ T4485]  dump_stack_lvl+0xf2/0x150
[   50.640287][ T4485]  dump_stack+0x15/0x1a
[   50.644615][ T4485]  should_fail_ex+0x223/0x230
[   50.649357][ T4485]  should_failslab+0x8f/0xb0
[   50.654100][ T4485]  kmem_cache_alloc_noprof+0x52/0x320
[   50.659529][ T4485]  ? vm_area_alloc+0x2c/0x130
[   50.664266][ T4485]  vm_area_alloc+0x2c/0x130
[   50.668931][ T4485]  __mmap_region+0x6b5/0x13f0
[   50.673872][ T4485]  mmap_region+0x164/0x1e0
[   50.678446][ T4485]  do_mmap+0x718/0xb60
[   50.682671][ T4485]  vm_mmap_pgoff+0x133/0x290
[   50.687345][ T4485]  ksys_mmap_pgoff+0xd0/0x330
[   50.692079][ T4485]  ? fpregs_assert_state_consistent+0x83/0xa0
[   50.698236][ T4485]  x64_sys_call+0x1940/0x2dc0
[   50.702960][ T4485]  do_syscall_64+0xc9/0x1c0
[   50.707496][ T4485]  ? clear_bhb_loop+0x55/0xb0
[   50.712235][ T4485]  ? clear_bhb_loop+0x55/0xb0
[   50.716988][ T4485]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.722940][ T4485] RIP: 0033:0x7f404acf5d53
[   50.727376][ T4485] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   50.747019][ T4485] RSP: 002b:00007f4049366e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   50.755505][ T4485] RAX: ffffffffffffffda RBX: 00000000000007a2 RCX: 00007f404acf5d53
[   50.763519][ T4485] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   50.771701][ T4485] RBP: 00000000200017c2 R08: 00000000ffffffff R09: 0000000000000000
[   50.779803][ T4485] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[   50.787887][ T4485] R13: 00007f4049366ef0 R14: 00007f4049366eb0 R15: 00000000200004c0
[   50.795987][ T4485]  </TASK>
[   51.029030][ T4487] tls_set_device_offload_rx: netdev not found
[   51.045292][ T4487] SELinux: syz.3.302 (4487) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   51.061415][ T4494] loop1: detected capacity change from 0 to 256
[   51.074193][ T4494] netlink: 'syz.1.305': attribute type 1 has an invalid length.
[   51.082019][ T4494] netlink: 'syz.1.305': attribute type 2 has an invalid length.
[   51.099067][ T4407] syz.2.296 (4407) used greatest stack depth: 10288 bytes left
[   51.169080][ T4504] SELinux: failed to load policy
[   51.277268][ T4518] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[   51.287059][ T4518] ªªªªªª: renamed from vlan0 (while UP)
[   51.297620][ T4523] loop1: detected capacity change from 0 to 256
[   51.328591][   T29] kauditd_printk_skb: 141 callbacks suppressed
[   51.328670][   T29] audit: type=1400 audit(1734374777.180:1081): avc:  denied  { connect } for  pid=4521 comm="syz.1.311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   51.380904][   T29] audit: type=1400 audit(1734374777.220:1082): avc:  denied  { remount } for  pid=4521 comm="syz.1.311" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   51.497259][ T4534] loop1: detected capacity change from 0 to 8192
[   51.529695][ T4546] pim6reg1: entered promiscuous mode
[   51.535080][ T4546] pim6reg1: entered allmulticast mode
[   51.852245][ T4567] sch_fq: defrate 7 ignored.
[   52.070958][ T4577] loop4: detected capacity change from 0 to 256
[   52.077545][   T29] audit: type=1400 audit(1734374777.930:1083): avc:  denied  { mounton } for  pid=4575 comm="syz.4.324" path="/59/bus" dev="tmpfs" ino=330 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   52.126136][ T4577] FAT-fs (loop4): Directory bread(block 64) failed
[   52.139748][ T4577] FAT-fs (loop4): Directory bread(block 65) failed
[   52.166229][ T4577] FAT-fs (loop4): Directory bread(block 66) failed
[   52.178392][ T4577] FAT-fs (loop4): Directory bread(block 67) failed
[   52.191020][ T4577] FAT-fs (loop4): Directory bread(block 68) failed
[   52.211637][ T4577] FAT-fs (loop4): Directory bread(block 69) failed
[   52.228431][ T4577] FAT-fs (loop4): Directory bread(block 70) failed
[   52.237314][ T4585] blktrace: Concurrent blktraces are not allowed on loop5
[   52.238238][ T4577] FAT-fs (loop4): Directory bread(block 71) failed
[   52.257038][ T4577] FAT-fs (loop4): Directory bread(block 72) failed
[   52.266053][ T4577] FAT-fs (loop4): Directory bread(block 73) failed
[   52.426381][    C1] vxcan1: j1939_tp_rxtimer: 0xffff8881186d3000: rx timeout, send abort
[   52.434790][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881186d3000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   52.511914][   T29] audit: type=1400 audit(1734374778.370:1084): avc:  denied  { create } for  pid=4604 comm="syz.1.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   52.546957][   T29] audit: type=1400 audit(1734374778.400:1085): avc:  denied  { create } for  pid=4609 comm="syz.2.338" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[   52.574311][ T4613] loop4: detected capacity change from 0 to 512
[   52.586170][ T4613] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[   52.599629][   T29] audit: type=1400 audit(1734374778.420:1086): avc:  denied  { write } for  pid=4604 comm="syz.1.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   52.619767][   T29] audit: type=1400 audit(1734374778.420:1087): avc:  denied  { nlmsg_write } for  pid=4604 comm="syz.1.334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   52.640501][   T29] audit: type=1400 audit(1734374778.440:1088): avc:  denied  { read } for  pid=4604 comm="syz.1.334" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   52.658952][ T4613] pim6reg: entered allmulticast mode
[   52.663472][   T29] audit: type=1400 audit(1734374778.440:1089): avc:  denied  { open } for  pid=4604 comm="syz.1.334" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   52.675419][ T4613] pim6reg: left allmulticast mode
[   52.701009][   T29] audit: type=1326 audit(1734374778.500:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4612 comm="syz.4.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71f2ff5d19 code=0x7ffc0000
[   52.751506][ T4619] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.758712][ T4619] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.839014][ T4628] SELinux: failed to load policy
[   52.915601][ T4633] x_tables: ip6_tables: icmp6 match: only valid for protocol 58
[   52.922497][ T4629] loop4: detected capacity change from 0 to 8192
[   53.023649][ T4640] FAULT_INJECTION: forcing a failure.
[   53.023649][ T4640] name failslab, interval 1, probability 0, space 0, times 0
[   53.036362][ T4640] CPU: 0 UID: 0 PID: 4640 Comm: syz.3.348 Not tainted 6.13.0-rc3-syzkaller #0
[   53.045269][ T4640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   53.055358][ T4640] Call Trace:
[   53.058647][ T4640]  <TASK>
[   53.061585][ T4640]  dump_stack_lvl+0xf2/0x150
[   53.066377][ T4640]  dump_stack+0x15/0x1a
[   53.070550][ T4640]  should_fail_ex+0x223/0x230
[   53.075245][ T4640]  should_failslab+0x8f/0xb0
[   53.079885][ T4640]  kmem_cache_alloc_noprof+0x52/0x320
[   53.085405][ T4640]  ? skb_clone+0x154/0x1f0
[   53.090107][ T4640]  skb_clone+0x154/0x1f0
[   53.094378][ T4640]  __netlink_deliver_tap+0x2bd/0x4f0
[   53.099775][ T4640]  netlink_unicast+0x64a/0x670
[   53.104550][ T4640]  netlink_sendmsg+0x5cc/0x6e0
[   53.109473][ T4640]  ? __pfx_netlink_sendmsg+0x10/0x10
[   53.114788][ T4640]  __sock_sendmsg+0x140/0x180
[   53.119488][ T4640]  ____sys_sendmsg+0x312/0x410
[   53.124268][ T4640]  __sys_sendmsg+0x19d/0x230
[   53.129029][ T4640]  __x64_sys_sendmsg+0x46/0x50
[   53.133814][ T4640]  x64_sys_call+0x2734/0x2dc0
[   53.138531][ T4640]  do_syscall_64+0xc9/0x1c0
[   53.143132][ T4640]  ? clear_bhb_loop+0x55/0xb0
[   53.147825][ T4640]  ? clear_bhb_loop+0x55/0xb0
[   53.152552][ T4640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.158470][ T4640] RIP: 0033:0x7f404acf5d19
[   53.162943][ T4640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.182914][ T4640] RSP: 002b:00007f4049346038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   53.191428][ T4640] RAX: ffffffffffffffda RBX: 00007f404aee6080 RCX: 00007f404acf5d19
[   53.199407][ T4640] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000006
[   53.207484][ T4640] RBP: 00007f4049346090 R08: 0000000000000000 R09: 0000000000000000
[   53.215555][ T4640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.223623][ T4640] R13: 0000000000000000 R14: 00007f404aee6080 R15: 00007fff205ff028
[   53.231709][ T4640]  </TASK>
[   53.239815][ T4644] sd 0:0:1:0: device reset
[   53.244505][ T4640] __nla_validate_parse: 2 callbacks suppressed
[   53.244519][ T4640] netlink: 4 bytes leftover after parsing attributes in process `syz.3.348'.
[   53.255410][ T4644] FAULT_INJECTION: forcing a failure.
[   53.255410][ T4644] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.272991][ T4644] CPU: 1 UID: 0 PID: 4644 Comm: syz.1.352 Not tainted 6.13.0-rc3-syzkaller #0
[   53.281906][ T4644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   53.292060][ T4644] Call Trace:
[   53.295360][ T4644]  <TASK>
[   53.298310][ T4644]  dump_stack_lvl+0xf2/0x150
[   53.302958][ T4644]  dump_stack+0x15/0x1a
[   53.307163][ T4644]  should_fail_ex+0x223/0x230
[   53.311876][ T4644]  should_fail+0xb/0x10
[   53.316064][ T4644]  should_fail_usercopy+0x1a/0x20
[   53.321163][ T4644]  _copy_to_user+0x20/0xa0
[   53.325638][ T4644]  simple_read_from_buffer+0xa0/0x110
[   53.331046][ T4644]  proc_fail_nth_read+0xf9/0x140
[   53.336008][ T4644]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   53.341617][ T4644]  vfs_read+0x1a2/0x700
[   53.345841][ T4644]  ? __rcu_read_unlock+0x4e/0x70
[   53.350804][ T4644]  ? __fget_files+0x17c/0x1c0
[   53.355531][ T4644]  ksys_read+0xe8/0x1b0
[   53.359810][ T4644]  __x64_sys_read+0x42/0x50
[   53.364410][ T4644]  x64_sys_call+0x2874/0x2dc0
[   53.369104][ T4644]  do_syscall_64+0xc9/0x1c0
[   53.373619][ T4644]  ? clear_bhb_loop+0x55/0xb0
[   53.378320][ T4644]  ? clear_bhb_loop+0x55/0xb0
[   53.383012][ T4644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.389023][ T4644] RIP: 0033:0x7fb529ac472c
[   53.393507][ T4644] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   53.413205][ T4644] RSP: 002b:00007fb528131030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   53.421799][ T4644] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac472c
[   53.429778][ T4644] RDX: 000000000000000f RSI: 00007fb5281310a0 RDI: 0000000000000008
[   53.437863][ T4644] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   53.445937][ T4644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.454044][ T4644] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   53.462081][ T4644]  </TASK>
[   53.569162][ T4649] loop1: detected capacity change from 0 to 164
[   53.662697][ T4654] wg2: entered promiscuous mode
[   53.667632][ T4654] wg2: entered allmulticast mode
[   53.951325][ T4681] netlink: 96 bytes leftover after parsing attributes in process `syz.4.365'.
[   53.961245][ T4681] netlink: 68 bytes leftover after parsing attributes in process `syz.4.365'.
[   53.966925][ T4684] 9pnet: Could not find request transport: 0xffffffffffffffff
[   54.031897][ T4692] loop3: detected capacity change from 0 to 512
[   54.039476][ T4694] netlink: 16 bytes leftover after parsing attributes in process `syz.4.369'.
[   54.048493][ T4694] netlink: 12 bytes leftover after parsing attributes in process `syz.4.369'.
[   54.070095][ T4692] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.092868][ T4692] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.111536][    C1] vxcan1: j1939_tp_rxtimer: 0xffff88811833b800: rx timeout, send abort
[   54.119937][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff88811833b800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   54.143693][ T4692] netlink: 8 bytes leftover after parsing attributes in process `syz.3.370'.
[   54.243497][ T4720] netlink: 3 bytes leftover after parsing attributes in process `syz.0.380'.
[   54.265069][ T4720] 0ªX¹¦À: renamed from caif0
[   54.273557][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.286294][ T4720] 0ªX¹¦À: entered allmulticast mode
[   54.291590][ T4720] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   54.328564][ T4728] loop3: detected capacity change from 0 to 128
[   54.341213][ T4728] /dev/loop3: Can't open blockdev
[   54.361391][ T4730] SELinux: failed to load policy
[   54.560562][ T4744] loop2: detected capacity change from 0 to 512
[   54.567320][ T4744] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[   54.630646][ T4746] loop2: detected capacity change from 0 to 2048
[   54.673042][ T4754] loop1: detected capacity change from 0 to 2048
[   54.681926][ T4746] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.711440][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.730628][ T4754] FAULT_INJECTION: forcing a failure.
[   54.730628][ T4754] name failslab, interval 1, probability 0, space 0, times 0
[   54.743479][ T4754] CPU: 0 UID: 0 PID: 4754 Comm: syz.1.393 Not tainted 6.13.0-rc3-syzkaller #0
[   54.752567][ T4754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   54.762769][ T4754] Call Trace:
[   54.766055][ T4754]  <TASK>
[   54.768987][ T4754]  dump_stack_lvl+0xf2/0x150
[   54.773661][ T4754]  dump_stack+0x15/0x1a
[   54.777899][ T4754]  should_fail_ex+0x223/0x230
[   54.782702][ T4754]  should_failslab+0x8f/0xb0
[   54.787315][ T4754]  kmem_cache_alloc_noprof+0x52/0x320
[   54.792752][ T4754]  ? audit_log_start+0x34c/0x6b0
[   54.797786][ T4754]  audit_log_start+0x34c/0x6b0
[   54.802675][ T4754]  audit_seccomp+0x4b/0x130
[   54.807244][ T4754]  __seccomp_filter+0x6fa/0x1180
[   54.812278][ T4754]  ? semctl_info+0x1c2/0x200
[   54.816894][ T4754]  __secure_computing+0x9f/0x1c0
[   54.821860][ T4754]  syscall_trace_enter+0xd1/0x1f0
[   54.827009][ T4754]  ? fpregs_assert_state_consistent+0x83/0xa0
[   54.833267][ T4754]  do_syscall_64+0xaa/0x1c0
[   54.837782][ T4754]  ? clear_bhb_loop+0x55/0xb0
[   54.842472][ T4754]  ? clear_bhb_loop+0x55/0xb0
[   54.847185][ T4754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.853101][ T4754] RIP: 0033:0x7fb529ac472c
[   54.857654][ T4754] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   54.877391][ T4754] RSP: 002b:00007fb528131030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   54.885826][ T4754] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac472c
[   54.893965][ T4754] RDX: 000000000000000f RSI: 00007fb5281310a0 RDI: 0000000000000004
[   54.901953][ T4754] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   54.909943][ T4754] R10: 0000000020006e80 R11: 0000000000000246 R12: 0000000000000001
[   54.917925][ T4754] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   54.925943][ T4754]  </TASK>
[   55.074692][ T4771] loop2: detected capacity change from 0 to 2048
[   55.092754][ T4771] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.111556][ T4771] FAULT_INJECTION: forcing a failure.
[   55.111556][ T4771] name failslab, interval 1, probability 0, space 0, times 0
[   55.124666][ T4771] CPU: 0 UID: 0 PID: 4771 Comm: syz.2.399 Not tainted 6.13.0-rc3-syzkaller #0
[   55.133552][ T4771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   55.143644][ T4771] Call Trace:
[   55.146946][ T4771]  <TASK>
[   55.149894][ T4771]  dump_stack_lvl+0xf2/0x150
[   55.154606][ T4771]  dump_stack+0x15/0x1a
[   55.158808][ T4771]  should_fail_ex+0x223/0x230
[   55.163596][ T4771]  should_failslab+0x8f/0xb0
[   55.168274][ T4771]  kmem_cache_alloc_noprof+0x52/0x320
[   55.173797][ T4771]  ? alloc_empty_file+0xd0/0x200
[   55.178755][ T4771]  alloc_empty_file+0xd0/0x200
[   55.183556][ T4771]  path_openat+0x6a/0x1fa0
[   55.188049][ T4771]  ? _parse_integer_limit+0x167/0x180
[   55.193425][ T4771]  ? _parse_integer+0x27/0x30
[   55.198113][ T4771]  ? kstrtoull+0x110/0x140
[   55.202637][ T4771]  ? kstrtouint+0x77/0xc0
[   55.207011][ T4771]  ? kstrtouint_from_user+0xb0/0xe0
[   55.212221][ T4771]  do_filp_open+0x107/0x230
[   55.216741][ T4771]  do_sys_openat2+0xab/0x120
[   55.221341][ T4771]  __x64_sys_openat+0xf3/0x120
[   55.226140][ T4771]  x64_sys_call+0x2b30/0x2dc0
[   55.230924][ T4771]  do_syscall_64+0xc9/0x1c0
[   55.235562][ T4771]  ? clear_bhb_loop+0x55/0xb0
[   55.240343][ T4771]  ? clear_bhb_loop+0x55/0xb0
[   55.245126][ T4771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.251394][ T4771] RIP: 0033:0x7f82fe075d19
[   55.255848][ T4771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.275461][ T4771] RSP: 002b:00007f82fc6e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   55.283952][ T4771] RAX: ffffffffffffffda RBX: 00007f82fe265fa0 RCX: 00007f82fe075d19
[   55.291952][ T4771] RDX: 0000000000007a05 RSI: 0000000020000140 RDI: ffffffffffffff9c
[   55.299947][ T4771] RBP: 00007f82fc6e7090 R08: 0000000000000000 R09: 0000000000000000
[   55.308032][ T4771] R10: 0000000000001700 R11: 0000000000000246 R12: 0000000000000001
[   55.316003][ T4771] R13: 0000000000000000 R14: 00007f82fe265fa0 R15: 00007fffdfa63f68
[   55.324042][ T4771]  </TASK>
[   55.358148][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.410686][ T4790] loop3: detected capacity change from 0 to 256
[   55.449849][ T4790] FAT-fs (loop3): Directory bread(block 64) failed
[   55.456806][ T4790] FAT-fs (loop3): Directory bread(block 65) failed
[   55.464025][ T4790] FAT-fs (loop3): Directory bread(block 66) failed
[   55.471096][ T4790] FAT-fs (loop3): Directory bread(block 67) failed
[   55.477688][ T4790] FAT-fs (loop3): Directory bread(block 68) failed
[   55.485131][ T4790] FAT-fs (loop3): Directory bread(block 69) failed
[   55.492187][ T4790] FAT-fs (loop3): Directory bread(block 70) failed
[   55.498786][ T4790] FAT-fs (loop3): Directory bread(block 71) failed
[   55.506048][ T4790] FAT-fs (loop3): Directory bread(block 72) failed
[   55.513182][ T4790] FAT-fs (loop3): Directory bread(block 73) failed
[   55.529007][ T4790] syz.3.406: attempt to access beyond end of device
[   55.529007][ T4790] loop3: rw=0, sector=1768, nr_sectors = 4 limit=256
[   55.558389][ T4790] process 'syz.3.406' launched './file1' with NULL argv: empty string added
[   55.567837][ T4790] syz.3.406: attempt to access beyond end of device
[   55.567837][ T4790] loop3: rw=0, sector=1768, nr_sectors = 4 limit=256
[   55.581387][ T4790] Buffer I/O error on dev loop3, logical block 442, async page read
[   55.612721][ T4797] capability: warning: `syz.3.408' uses deprecated v2 capabilities in a way that may be insecure
[   55.617728][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8881186cfc00: rx timeout, send abort
[   55.639663][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881186cfc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   55.816575][ T4800] FAULT_INJECTION: forcing a failure.
[   55.816575][ T4800] name failslab, interval 1, probability 0, space 0, times 0
[   55.829287][ T4800] CPU: 1 UID: 0 PID: 4800 Comm: syz.0.409 Not tainted 6.13.0-rc3-syzkaller #0
[   55.838162][ T4800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   55.848295][ T4800] Call Trace:
[   55.851674][ T4800]  <TASK>
[   55.854617][ T4800]  dump_stack_lvl+0xf2/0x150
[   55.859249][ T4800]  dump_stack+0x15/0x1a
[   55.863435][ T4800]  should_fail_ex+0x223/0x230
[   55.868143][ T4800]  should_failslab+0x8f/0xb0
[   55.872800][ T4800]  kmem_cache_alloc_node_noprof+0x59/0x320
[   55.878667][ T4800]  ? __alloc_skb+0x10b/0x310
[   55.883354][ T4800]  __alloc_skb+0x10b/0x310
[   55.887823][ T4800]  netlink_alloc_large_skb+0xad/0xe0
[   55.893130][ T4800]  netlink_sendmsg+0x3b4/0x6e0
[   55.897946][ T4800]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.903274][ T4800]  __sock_sendmsg+0x140/0x180
[   55.908182][ T4800]  ____sys_sendmsg+0x312/0x410
[   55.913017][ T4800]  __sys_sendmsg+0x19d/0x230
[   55.917699][ T4800]  __x64_sys_sendmsg+0x46/0x50
[   55.922502][ T4800]  x64_sys_call+0x2734/0x2dc0
[   55.927214][ T4800]  do_syscall_64+0xc9/0x1c0
[   55.931837][ T4800]  ? clear_bhb_loop+0x55/0xb0
[   55.936615][ T4800]  ? clear_bhb_loop+0x55/0xb0
[   55.941326][ T4800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.947326][ T4800] RIP: 0033:0x7f836d0a5d19
[   55.951764][ T4800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.971701][ T4800] RSP: 002b:00007f836b717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   55.980224][ T4800] RAX: ffffffffffffffda RBX: 00007f836d295fa0 RCX: 00007f836d0a5d19
[   55.988211][ T4800] RDX: 000000000000c000 RSI: 0000000020000040 RDI: 0000000000000007
[   55.996203][ T4800] RBP: 00007f836b717090 R08: 0000000000000000 R09: 0000000000000000
[   56.004224][ T4800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.012331][ T4800] R13: 0000000000000000 R14: 00007f836d295fa0 R15: 00007fffd394b938
[   56.020574][ T4800]  </TASK>
[   56.232206][ T4806] loop1: detected capacity change from 0 to 8192
[   56.249376][ T4797] loop3: detected capacity change from 0 to 32768
[   56.281484][ T4797] msdos: Unknown parameter ' ÜG·E4VfË÷ܼ7yº'
[   56.531868][ T4813] FAULT_INJECTION: forcing a failure.
[   56.531868][ T4813] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   56.545307][ T4813] CPU: 1 UID: 0 PID: 4813 Comm: syz.2.414 Not tainted 6.13.0-rc3-syzkaller #0
[   56.554351][ T4813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   56.564437][ T4813] Call Trace:
[   56.567744][ T4813]  <TASK>
[   56.570704][ T4813]  dump_stack_lvl+0xf2/0x150
[   56.575437][ T4813]  dump_stack+0x15/0x1a
[   56.579691][ T4813]  should_fail_ex+0x223/0x230
[   56.584494][ T4813]  should_fail_alloc_page+0xfd/0x110
[   56.590154][ T4813]  __alloc_pages_noprof+0x109/0x340
[   56.595490][ T4813]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   56.601046][ T4813]  alloc_pages_noprof+0xe1/0x100
[   56.606023][ T4813]  pte_alloc_one+0x31/0x110
[   56.610621][ T4813]  __pte_alloc+0x33/0x2a0
[   56.615124][ T4813]  handle_mm_fault+0x1b4a/0x2ac0
[   56.620127][ T4813]  exc_page_fault+0x296/0x650
[   56.624911][ T4813]  asm_exc_page_fault+0x26/0x30
[   56.629871][ T4813] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   56.635869][ T4813] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   56.655528][ T4813] RSP: 0018:ffffc9001002fe10 EFLAGS: 00050206
[   56.661654][ T4813] RAX: ffff888108dd6d78 RBX: 00000000200002e8 RCX: 0000000000000068
[   56.669739][ T4813] RDX: 0000000000000000 RSI: ffffc9001002fe48 RDI: 0000000020000280
[   56.677737][ T4813] RBP: 0000000000000002 R08: 0000000080000000 R09: 0000000000000000
[   56.685736][ T4813] R10: 0001c9001002fe48 R11: 0001c9001002feaf R12: 0000000000000068
[   56.693731][ T4813] R13: 00007ffffffff000 R14: 0000000020000280 R15: ffffc9001002fe48
[   56.701780][ T4813]  _copy_to_user+0x7c/0xa0
[   56.706278][ T4813]  __se_sys_semctl+0x1aa/0x2b0
[   56.711145][ T4813]  __x64_sys_semctl+0x55/0x70
[   56.715863][ T4813]  x64_sys_call+0x2a36/0x2dc0
[   56.720573][ T4813]  do_syscall_64+0xc9/0x1c0
[   56.725102][ T4813]  ? clear_bhb_loop+0x55/0xb0
[   56.729867][ T4813]  ? clear_bhb_loop+0x55/0xb0
[   56.734681][ T4813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.740637][ T4813] RIP: 0033:0x7f82fe075d19
[   56.745120][ T4813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.765019][ T4813] RSP: 002b:00007f82fc6e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[   56.773483][ T4813] RAX: ffffffffffffffda RBX: 00007f82fe265fa0 RCX: 00007f82fe075d19
[   56.781480][ T4813] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000001
[   56.789482][ T4813] RBP: 00007f82fc6e7090 R08: 0000000000000000 R09: 0000000000000000
[   56.797492][ T4813] R10: 0000000020000280 R11: 0000000000000246 R12: 0000000000000001
[   56.805525][ T4813] R13: 0000000000000000 R14: 00007f82fe265fa0 R15: 00007fffdfa63f68
[   56.813537][ T4813]  </TASK>
[   57.121065][ T4821] netlink: 96 bytes leftover after parsing attributes in process `syz.2.416'.
[   57.263062][ T4821] netlink: 68 bytes leftover after parsing attributes in process `syz.2.416'.
[   57.337080][ T4825] SELinux: failed to load policy
[   57.486672][   T29] kauditd_printk_skb: 119 callbacks suppressed
[   57.486752][   T29] audit: type=1400 audit(1734374783.340:1208): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   57.532527][   T29] audit: type=1400 audit(1734374783.390:1209): avc:  denied  { create } for  pid=4837 comm="syz.0.423" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   57.556387][ T4840] FAULT_INJECTION: forcing a failure.
[   57.556387][ T4840] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   57.569918][ T4840] CPU: 1 UID: 0 PID: 4840 Comm: syz.1.425 Not tainted 6.13.0-rc3-syzkaller #0
[   57.579026][ T4840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   57.589204][ T4840] Call Trace:
[   57.592501][ T4840]  <TASK>
[   57.595451][ T4840]  dump_stack_lvl+0xf2/0x150
[   57.600096][ T4840]  dump_stack+0x15/0x1a
[   57.604276][ T4840]  should_fail_ex+0x223/0x230
[   57.608980][ T4840]  should_fail_alloc_page+0xfd/0x110
[   57.614299][ T4840]  __alloc_pages_noprof+0x109/0x340
[   57.619646][ T4840]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   57.625054][ T4840]  alloc_pages_noprof+0xe1/0x100
[   57.630021][ T4840]  get_free_pages_noprof+0xc/0x30
[   57.634827][   T29] audit: type=1400 audit(1734374783.390:1210): avc:  denied  { ioctl } for  pid=4837 comm="syz.0.423" path="socket:[7868]" dev="sockfs" ino=7868 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   57.635116][ T4840]  pgd_alloc+0x22/0x170
[   57.659500][   T29] audit: type=1400 audit(1734374783.410:1211): avc:  denied  { execute } for  pid=4839 comm="syz.1.425" name="file1" dev="tmpfs" ino=584 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   57.663563][ T4840]  mm_init+0x33c/0x780
[   57.685734][   T29] audit: type=1400 audit(1734374783.430:1212): avc:  denied  { setattr } for  pid=4837 comm="syz.0.423" name="X25" dev="sockfs" ino=7868 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   57.689745][ T4840]  ? kmem_cache_alloc_noprof+0x22c/0x320
[   57.689776][ T4840]  ? mm_alloc+0x2b/0xa0
[   57.712001][   T29] audit: type=1400 audit(1734374783.430:1213): avc:  denied  { write } for  pid=4837 comm="syz.0.423" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   57.717591][ T4840]  mm_alloc+0x81/0xa0
[   57.745754][ T4840]  alloc_bprm+0x1c2/0x5d0
[   57.750129][ T4840]  do_execveat_common+0x134/0x800
[   57.755365][ T4840]  ? getname_flags+0x15a/0x3b0
[   57.760255][ T4840]  __x64_sys_execveat+0x75/0x90
[   57.765149][ T4840]  x64_sys_call+0x291e/0x2dc0
[   57.769913][ T4840]  do_syscall_64+0xc9/0x1c0
[   57.774523][ T4840]  ? clear_bhb_loop+0x55/0xb0
[   57.779357][ T4840]  ? clear_bhb_loop+0x55/0xb0
[   57.784104][ T4840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.784154][ T4840] RIP: 0033:0x7fb529ac5d19
[   57.794654][ T4840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.794680][ T4840] RSP: 002b:00007fb528131038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   57.822924][ T4840] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac5d19
[   57.822943][ T4840] RDX: 0000000000000000 RSI: 0000000020000140 RDI: ffffffffffffff9c
[   57.838903][ T4840] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   57.846911][ T4840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   57.846930][ T4840] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   57.862909][ T4840]  </TASK>
[   57.989014][   T29] audit: type=1400 audit(1734374783.840:1214): avc:  denied  { read write } for  pid=4854 comm="syz.1.430" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   58.012994][   T29] audit: type=1400 audit(1734374783.840:1215): avc:  denied  { open } for  pid=4854 comm="syz.1.430" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   58.216934][ T4867] FAULT_INJECTION: forcing a failure.
[   58.216934][ T4867] name failslab, interval 1, probability 0, space 0, times 0
[   58.229772][ T4867] CPU: 1 UID: 0 PID: 4867 Comm: syz.0.433 Not tainted 6.13.0-rc3-syzkaller #0
[   58.238662][ T4867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   58.248836][ T4867] Call Trace:
[   58.252130][ T4867]  <TASK>
[   58.255079][ T4867]  dump_stack_lvl+0xf2/0x150
[   58.259746][ T4867]  dump_stack+0x15/0x1a
[   58.263999][ T4867]  should_fail_ex+0x223/0x230
[   58.268709][ T4867]  should_failslab+0x8f/0xb0
[   58.273383][ T4867]  kmem_cache_alloc_noprof+0x52/0x320
[   58.278776][ T4867]  ? __anon_vma_prepare+0x73/0x310
[   58.283923][ T4867]  __anon_vma_prepare+0x73/0x310
[   58.288889][ T4867]  ? handle_mm_fault+0x1c07/0x2ac0
[   58.294097][ T4867]  handle_mm_fault+0x1da4/0x2ac0
[   58.299158][ T4867]  ? __rcu_read_lock+0x36/0x50
[   58.303963][ T4867]  __get_user_pages+0xf2c/0x2670
[   58.308918][ T4867]  ? up_write+0x30/0xf0
[   58.313268][ T4867]  get_user_pages_remote+0x1df/0x790
[   58.318655][ T4867]  ? mt_destroy_walk+0x638/0x740
[   58.323711][ T4867]  __update_ref_ctr+0x7d/0x310
[   58.328578][ T4867]  uprobe_mmap+0x2ba/0xcf0
[   58.333080][ T4867]  __mmap_region+0x11c7/0x13f0
[   58.337969][ T4867]  mmap_region+0x164/0x1e0
[   58.342713][ T4867]  do_mmap+0x718/0xb60
[   58.346899][ T4867]  vm_mmap_pgoff+0x133/0x290
[   58.351712][ T4867]  ksys_mmap_pgoff+0x286/0x330
[   58.356533][ T4867]  x64_sys_call+0x1940/0x2dc0
[   58.361274][ T4867]  do_syscall_64+0xc9/0x1c0
[   58.365826][ T4867]  ? clear_bhb_loop+0x55/0xb0
[   58.370575][ T4867]  ? clear_bhb_loop+0x55/0xb0
[   58.375294][ T4867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.381524][ T4867] RIP: 0033:0x7f836d0a5d19
[   58.385962][ T4867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.405847][ T4867] RSP: 002b:00007f836b717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   58.414295][ T4867] RAX: ffffffffffffffda RBX: 00007f836d295fa0 RCX: 00007f836d0a5d19
[   58.422327][ T4867] RDX: 000000000000001e RSI: 0000000000003000 RDI: 0000000020002000
[   58.430406][ T4867] RBP: 00007f836b717090 R08: 0000000000000008 R09: 0000000000000000
[   58.438453][ T4867] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000002
[   58.446448][ T4867] R13: 0000000000000000 R14: 00007f836d295fa0 R15: 00007fffd394b938
[   58.454483][ T4867]  </TASK>
[   58.457661][ T4867] ref_ctr increment failed for inode: 0x198 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff888115f94fc0
[   58.492782][ T4866] uprobe: syz.0.433:4866 failed to unregister, leaking uprobe
[   58.539046][ T4869] loop1: detected capacity change from 0 to 128
[   58.593831][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888118694e00: rx timeout, send abort
[   58.602239][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff888118694e00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   58.683558][ T4877] loop2: detected capacity change from 0 to 128
[   58.692077][ T4877] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   58.720709][   T29] audit: type=1400 audit(1734374784.570:1216): avc:  denied  { mounton } for  pid=4876 comm="syz.3.438" path="/syzcgroup/cpu/syz3/cgroup.procs" dev="cgroup" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[   58.747924][ T4879] loop3: detected capacity change from 0 to 1024
[   58.754737][ T4877] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   58.789072][ T4869] syz.1.434: attempt to access beyond end of device
[   58.789072][ T4869] loop1: rw=34817, sector=97, nr_sectors = 32 limit=128
[   58.817334][ T4879] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.833706][ T4878] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   58.842699][ T4878] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   58.851537][ T4878] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   58.860532][ T4878] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   58.869402][ T4878] vxlan0: entered promiscuous mode
[   58.874555][ T4878] vxlan0: entered allmulticast mode
[   58.895395][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.238826][ T4896] loop3: detected capacity change from 0 to 128
[   59.250353][ T4896] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   59.268158][ T4896] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.348512][ T4909] FAULT_INJECTION: forcing a failure.
[   59.348512][ T4909] name failslab, interval 1, probability 0, space 0, times 0
[   59.361241][ T4909] CPU: 1 UID: 0 PID: 4909 Comm: syz.0.443 Not tainted 6.13.0-rc3-syzkaller #0
[   59.370218][ T4909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   59.380310][ T4909] Call Trace:
[   59.383729][ T4909]  <TASK>
[   59.386690][ T4909]  dump_stack_lvl+0xf2/0x150
[   59.391382][ T4909]  dump_stack+0x15/0x1a
[   59.395699][ T4909]  should_fail_ex+0x223/0x230
[   59.400567][ T4909]  ? __xdp_reg_mem_model+0x179/0x3e0
[   59.406077][ T4909]  should_failslab+0x8f/0xb0
[   59.410830][ T4909]  __kmalloc_cache_noprof+0x4e/0x320
[   59.416248][ T4909]  ? _raw_spin_unlock+0x26/0x50
[   59.421216][ T4909]  __xdp_reg_mem_model+0x179/0x3e0
[   59.426359][ T4909]  xdp_reg_mem_model+0x22/0x40
[   59.431162][ T4909]  bpf_test_run_xdp_live+0x17a/0x1040
[   59.436679][ T4909]  ? __pfx_autoremove_wake_function+0x10/0x10
[   59.442788][ T4909]  ? 0xffffffffa0003c00
[   59.446960][ T4909]  ? synchronize_rcu+0x46/0x320
[   59.451832][ T4909]  ? 0xffffffffa0003c00
[   59.455995][ T4909]  ? bpf_dispatcher_change_prog+0x747/0x840
[   59.461918][ T4909]  ? 0xffffffffa0003c00
[   59.466138][ T4909]  ? 0xffffffffa00007c8
[   59.470385][ T4909]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   59.476366][ T4909]  bpf_prog_test_run_xdp+0x51d/0x8b0
[   59.481686][ T4909]  ? __rcu_read_unlock+0x4e/0x70
[   59.486844][ T4909]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   59.492765][ T4909]  bpf_prog_test_run+0x20f/0x3a0
[   59.497730][ T4909]  __sys_bpf+0x400/0x7a0
[   59.502093][ T4909]  __x64_sys_bpf+0x43/0x50
[   59.506659][ T4909]  x64_sys_call+0x2914/0x2dc0
[   59.511364][ T4909]  do_syscall_64+0xc9/0x1c0
[   59.516026][ T4909]  ? clear_bhb_loop+0x55/0xb0
[   59.520788][ T4909]  ? clear_bhb_loop+0x55/0xb0
[   59.525486][ T4909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.531427][ T4909] RIP: 0033:0x7f836d0a5d19
[   59.535916][ T4909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.555562][ T4909] RSP: 002b:00007f836b717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   59.564016][ T4909] RAX: ffffffffffffffda RBX: 00007f836d295fa0 RCX: 00007f836d0a5d19
[   59.572069][ T4909] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a
[   59.580095][ T4909] RBP: 00007f836b717090 R08: 0000000000000000 R09: 0000000000000000
[   59.588315][ T4909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.596389][ T4909] R13: 0000000000000000 R14: 00007f836d295fa0 R15: 00007fffd394b938
[   59.604458][ T4909]  </TASK>
[   59.657823][   T29] audit: type=1326 audit(1734374785.510:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4916 comm="syz.0.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f836d0a5d19 code=0x7ffc0000
[   59.768074][ T4921] netlink: 16 bytes leftover after parsing attributes in process `syz.0.446'.
[   59.839019][ T4919] loop2: detected capacity change from 0 to 8192
[   60.444078][ T4948] SELinux: failed to load policy
[   60.583702][ T4950] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1040 sclass=netlink_route_socket pid=4950 comm=syz.0.449
[   60.654623][ T4956] loop4: detected capacity change from 0 to 128
[   60.661378][ T4956] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   60.677335][ T4956] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.843285][ T4966] FAULT_INJECTION: forcing a failure.
[   60.843285][ T4966] name failslab, interval 1, probability 0, space 0, times 0
[   60.856044][ T4966] CPU: 0 UID: 0 PID: 4966 Comm: syz.1.455 Not tainted 6.13.0-rc3-syzkaller #0
[   60.864934][ T4966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   60.875036][ T4966] Call Trace:
[   60.878416][ T4966]  <TASK>
[   60.881380][ T4966]  dump_stack_lvl+0xf2/0x150
[   60.885988][ T4966]  dump_stack+0x15/0x1a
[   60.890169][ T4966]  should_fail_ex+0x223/0x230
[   60.894863][ T4966]  should_failslab+0x8f/0xb0
[   60.899828][ T4966]  kmem_cache_alloc_node_noprof+0x59/0x320
[   60.905929][ T4966]  ? __alloc_skb+0x10b/0x310
[   60.910548][ T4966]  __alloc_skb+0x10b/0x310
[   60.915010][ T4966]  netlink_alloc_large_skb+0xad/0xe0
[   60.920362][ T4966]  netlink_sendmsg+0x3b4/0x6e0
[   60.925152][ T4966]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.930616][ T4966]  __sock_sendmsg+0x140/0x180
[   60.935331][ T4966]  sock_write_iter+0x15e/0x1a0
[   60.940213][ T4966]  vfs_write+0x77f/0x920
[   60.944585][ T4966]  ? __pfx_sock_write_iter+0x10/0x10
[   60.949990][ T4966]  ksys_write+0xe8/0x1b0
[   60.954394][ T4966]  __x64_sys_write+0x42/0x50
[   60.959032][ T4966]  x64_sys_call+0x287e/0x2dc0
[   60.963736][ T4966]  do_syscall_64+0xc9/0x1c0
[   60.968271][ T4966]  ? clear_bhb_loop+0x55/0xb0
[   60.972977][ T4966]  ? clear_bhb_loop+0x55/0xb0
[   60.977695][ T4966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.983663][ T4966] RIP: 0033:0x7fb529ac5d19
[   60.988078][ T4966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.007753][ T4966] RSP: 002b:00007fb528131038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   61.016174][ T4966] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac5d19
[   61.024160][ T4966] RDX: 0000000000000014 RSI: 0000000020000000 RDI: 0000000000000007
[   61.032215][ T4966] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   61.040192][ T4966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.048254][ T4966] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   61.056265][ T4966]  </TASK>
[   61.095147][ T4971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.457'.
[   61.104674][ T4971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.457'.
[   61.378279][ T4989] FAULT_INJECTION: forcing a failure.
[   61.378279][ T4989] name failslab, interval 1, probability 0, space 0, times 0
[   61.391175][ T4989] CPU: 1 UID: 0 PID: 4989 Comm: syz.2.463 Not tainted 6.13.0-rc3-syzkaller #0
[   61.400046][ T4989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   61.410286][ T4989] Call Trace:
[   61.413576][ T4989]  <TASK>
[   61.416515][ T4989]  dump_stack_lvl+0xf2/0x150
[   61.421368][ T4989]  dump_stack+0x15/0x1a
[   61.425550][ T4989]  should_fail_ex+0x223/0x230
[   61.430269][ T4989]  should_failslab+0x8f/0xb0
[   61.435015][ T4989]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   61.440823][ T4989]  ? __d_alloc+0x3d/0x340
[   61.445215][ T4989]  ? __d_lookup+0x342/0x370
[   61.449816][ T4989]  __d_alloc+0x3d/0x340
[   61.453996][ T4989]  d_alloc+0x2e/0x100
[   61.458077][ T4989]  lookup_one_qstr_excl+0x97/0x1a0
[   61.463301][ T4989]  filename_create+0x14d/0x2b0
[   61.468138][ T4989]  kern_path_create+0x37/0x120
[   61.472951][ T4989]  unix_bind+0x1c0/0x870
[   61.477263][ T4989]  __sys_bind+0x10c/0x190
[   61.481653][ T4989]  __x64_sys_bind+0x41/0x50
[   61.486179][ T4989]  x64_sys_call+0x20ab/0x2dc0
[   61.490977][ T4989]  do_syscall_64+0xc9/0x1c0
[   61.495486][ T4989]  ? clear_bhb_loop+0x55/0xb0
[   61.500182][ T4989]  ? clear_bhb_loop+0x55/0xb0
[   61.504918][ T4989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.510911][ T4989] RIP: 0033:0x7f82fe075d19
[   61.515329][ T4989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.535205][ T4989] RSP: 002b:00007f82fc6e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[   61.543695][ T4989] RAX: ffffffffffffffda RBX: 00007f82fe265fa0 RCX: 00007f82fe075d19
[   61.551758][ T4989] RDX: 000000000000006e RSI: 0000000020003000 RDI: 0000000000000005
[   61.559743][ T4989] RBP: 00007f82fc6e7090 R08: 0000000000000000 R09: 0000000000000000
[   61.567808][ T4989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.575965][ T4989] R13: 0000000000000000 R14: 00007f82fe265fa0 R15: 00007fffdfa63f68
[   61.583999][ T4989]  </TASK>
[   61.660653][ T4979] Cannot find add_set index 0 as target
[   61.747014][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888118768800: rx timeout, send abort
[   61.755441][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff888118768800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   62.203611][ T5036] SELinux: failed to load policy
[   62.224751][ T5038] FAULT_INJECTION: forcing a failure.
[   62.224751][ T5038] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.237985][ T5038] CPU: 1 UID: 0 PID: 5038 Comm: syz.2.480 Not tainted 6.13.0-rc3-syzkaller #0
[   62.246863][ T5038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   62.257032][ T5038] Call Trace:
[   62.260375][ T5038]  <TASK>
[   62.263343][ T5038]  dump_stack_lvl+0xf2/0x150
[   62.267982][ T5038]  dump_stack+0x15/0x1a
[   62.272202][ T5038]  should_fail_ex+0x223/0x230
[   62.276944][ T5038]  should_fail+0xb/0x10
[   62.281155][ T5038]  should_fail_usercopy+0x1a/0x20
[   62.286281][ T5038]  _copy_to_user+0x20/0xa0
[   62.290812][ T5038]  simple_read_from_buffer+0xa0/0x110
[   62.296240][ T5038]  proc_fail_nth_read+0xf9/0x140
[   62.301293][ T5038]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   62.306877][ T5038]  vfs_read+0x1a2/0x700
[   62.311065][ T5038]  ? __rcu_read_unlock+0x4e/0x70
[   62.316088][ T5038]  ? __fget_files+0x17c/0x1c0
[   62.320871][ T5038]  ksys_read+0xe8/0x1b0
[   62.325155][ T5038]  __x64_sys_read+0x42/0x50
[   62.329716][ T5038]  x64_sys_call+0x2874/0x2dc0
[   62.334432][ T5038]  do_syscall_64+0xc9/0x1c0
[   62.338954][ T5038]  ? clear_bhb_loop+0x55/0xb0
[   62.343648][ T5038]  ? clear_bhb_loop+0x55/0xb0
[   62.348441][ T5038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.354367][ T5038] RIP: 0033:0x7f82fe07472c
[   62.358880][ T5038] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   62.378505][ T5038] RSP: 002b:00007f82fc6e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   62.386931][ T5038] RAX: ffffffffffffffda RBX: 00007f82fe265fa0 RCX: 00007f82fe07472c
[   62.394915][ T5038] RDX: 000000000000000f RSI: 00007f82fc6e70a0 RDI: 0000000000000004
[   62.402901][ T5038] RBP: 00007f82fc6e7090 R08: 0000000000000000 R09: 0000000000000000
[   62.410966][ T5038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.419118][ T5038] R13: 0000000000000000 R14: 00007f82fe265fa0 R15: 00007fffdfa63f68
[   62.427121][ T5038]  </TASK>
[   62.469551][ T5043] netlink: 100 bytes leftover after parsing attributes in process `syz.2.481'.
[   62.478797][ T5043] netlink: 100 bytes leftover after parsing attributes in process `syz.2.481'.
[   62.515188][ T5054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.483'.
[   62.524577][ T5054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.483'.
[   62.639338][   T29] kauditd_printk_skb: 39 callbacks suppressed
[   62.639355][   T29] audit: type=1400 audit(1734374788.490:1257): avc:  denied  { listen } for  pid=5061 comm="syz.1.486" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[   62.817349][ T5073] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.846940][   T29] audit: type=1326 audit(1734374788.700:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   62.874146][ T5078] FAULT_INJECTION: forcing a failure.
[   62.874146][ T5078] name failslab, interval 1, probability 0, space 0, times 0
[   62.886830][ T5078] CPU: 1 UID: 0 PID: 5078 Comm: syz.3.493 Not tainted 6.13.0-rc3-syzkaller #0
[   62.895822][ T5078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   62.905989][ T5078] Call Trace:
[   62.909359][ T5078]  <TASK>
[   62.911470][   T29] audit: type=1326 audit(1734374788.730:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   62.912298][ T5078]  dump_stack_lvl+0xf2/0x150
[   62.935784][   T29] audit: type=1326 audit(1734374788.730:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   62.940272][ T5078]  dump_stack+0x15/0x1a
[   62.940379][ T5078]  should_fail_ex+0x223/0x230
[   62.963853][   T29] audit: type=1326 audit(1734374788.730:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   62.963882][   T29] audit: type=1326 audit(1734374788.730:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f404acf4680 code=0x7ffc0000
[   62.968036][ T5078]  should_failslab+0x8f/0xb0
[   62.972717][   T29] audit: type=1326 audit(1734374788.730:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   62.995933][ T5078]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   62.995969][ T5078]  ? sidtab_sid2str_get+0xb8/0x140
[   62.996040][ T5078]  kmemdup_noprof+0x2a/0x60
[   62.996075][ T5078]  sidtab_sid2str_get+0xb8/0x140
[   62.996107][ T5078]  security_sid_to_context_core+0x1eb/0x2f0
[   62.996140][ T5078]  security_sid_to_context+0x27/0x30
[   62.996230][ T5078]  selinux_lsmprop_to_secctx+0x2c/0x40
[   62.996264][ T5078]  security_lsmprop_to_secctx+0x4a/0x90
[   62.996308][ T5078]  audit_log_task_context+0x93/0x1c0
[   62.996339][ T5078]  audit_log_task+0xf9/0x1c0
[   62.996368][ T5078]  audit_seccomp+0x68/0x130
[   62.996395][ T5078]  __seccomp_filter+0x6fa/0x1180
[   63.020455][   T29] audit: type=1326 audit(1734374788.730:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   63.024748][ T5078]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   63.024790][ T5078]  ? vfs_write+0x596/0x920
[   63.024827][ T5078]  __secure_computing+0x9f/0x1c0
[   63.048157][   T29] audit: type=1326 audit(1734374788.730:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   63.054414][ T5078]  syscall_trace_enter+0xd1/0x1f0
[   63.059583][   T29] audit: type=1326 audit(1734374788.730:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5076 comm="syz.3.493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f404acf5d19 code=0x7ffc0000
[   63.064174][ T5078]  ? fpregs_assert_state_consistent+0x83/0xa0
[   63.207355][ T5078]  do_syscall_64+0xaa/0x1c0
[   63.211887][ T5078]  ? clear_bhb_loop+0x55/0xb0
[   63.216596][ T5078]  ? clear_bhb_loop+0x55/0xb0
[   63.221357][ T5078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.227495][ T5078] RIP: 0033:0x7f404acf5d19
[   63.231937][ T5078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.251729][ T5078] RSP: 002b:00007f4049367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   63.260179][ T5078] RAX: ffffffffffffffda RBX: 00007f404aee5fa0 RCX: 00007f404acf5d19
[   63.268192][ T5078] RDX: 0000000000000048 RSI: 00000000200009c0 RDI: 0000000000000000
[   63.276191][ T5078] RBP: 00007f4049367090 R08: 0000000000000000 R09: 0000000000000000
[   63.284229][ T5078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.292245][ T5078] R13: 0000000000000000 R14: 00007f404aee5fa0 R15: 00007fff205ff028
[   63.300270][ T5078]  </TASK>
[   63.327342][ T5073] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.416816][ T5073] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.460155][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8881186cf400: rx timeout, send abort
[   63.468536][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881186cf400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   63.504181][ T5073] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.598216][ T5073] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.611027][ T5073] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.622438][ T5073] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.652235][ T5073] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.667643][ T5095] loop4: detected capacity change from 0 to 128
[   63.685576][ T5095] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   63.700731][ T5095] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   63.795300][ T5102] loop1: detected capacity change from 0 to 764
[   63.805329][ T5102] FAULT_INJECTION: forcing a failure.
[   63.805329][ T5102] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.818544][ T5102] CPU: 0 UID: 0 PID: 5102 Comm: syz.1.500 Not tainted 6.13.0-rc3-syzkaller #0
[   63.827416][ T5102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   63.837602][ T5102] Call Trace:
[   63.840913][ T5102]  <TASK>
[   63.843870][ T5102]  dump_stack_lvl+0xf2/0x150
[   63.848554][ T5102]  dump_stack+0x15/0x1a
[   63.852799][ T5102]  should_fail_ex+0x223/0x230
[   63.857533][ T5102]  should_fail+0xb/0x10
[   63.861712][ T5102]  should_fail_usercopy+0x1a/0x20
[   63.866790][ T5102]  _copy_from_iter+0xd5/0xd00
[   63.871571][ T5102]  ? kmalloc_reserve+0x16e/0x190
[   63.876549][ T5102]  ? __build_skb_around+0x196/0x1f0
[   63.881845][ T5102]  ? __alloc_skb+0x21f/0x310
[   63.886461][ T5102]  ? __virt_addr_valid+0x1ed/0x250
[   63.891690][ T5102]  ? __check_object_size+0x364/0x520
[   63.897151][ T5102]  netlink_sendmsg+0x460/0x6e0
[   63.901965][ T5102]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.907365][ T5102]  __sock_sendmsg+0x140/0x180
[   63.912117][ T5102]  ____sys_sendmsg+0x312/0x410
[   63.916957][ T5102]  __sys_sendmsg+0x19d/0x230
[   63.921756][ T5102]  __x64_sys_sendmsg+0x46/0x50
[   63.926588][ T5102]  x64_sys_call+0x2734/0x2dc0
[   63.931449][ T5102]  do_syscall_64+0xc9/0x1c0
[   63.935985][ T5102]  ? clear_bhb_loop+0x55/0xb0
[   63.940705][ T5102]  ? clear_bhb_loop+0x55/0xb0
[   63.945586][ T5102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.951615][ T5102] RIP: 0033:0x7fb529ac5d19
[   63.956098][ T5102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.961560][ T5110] netlink: 16 bytes leftover after parsing attributes in process `syz.0.501'.
[   63.975819][ T5102] RSP: 002b:00007fb528131038 EFLAGS: 00000246
[   63.984775][ T5110] netlink: 32 bytes leftover after parsing attributes in process `syz.0.501'.
[   63.984780][ T5102]  ORIG_RAX: 000000000000002e
[   63.990846][ T5102] RAX: ffffffffffffffda RBX: 00007fb529cb5fa0 RCX: 00007fb529ac5d19
[   63.990866][ T5102] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000008
[   63.990880][ T5102] RBP: 00007fb528131090 R08: 0000000000000000 R09: 0000000000000000
[   63.990895][ T5102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.990918][ T5102] R13: 0000000000000000 R14: 00007fb529cb5fa0 R15: 00007ffe5569e778
[   63.990942][ T5102]  </TASK>
[   64.000620][ T5102] rock: directory entry would overflow storage
[   64.054243][ T5102] rock: sig=0x4f50, size=4, remaining=3
[   64.059860][ T5102] iso9660: Corrupted directory entry in block 4 of inode 1792
[   64.191244][ T5136] FAULT_INJECTION: forcing a failure.
[   64.191244][ T5136] name failslab, interval 1, probability 0, space 0, times 0
[   64.203935][ T5136] CPU: 1 UID: 0 PID: 5136 Comm: syz.3.505 Not tainted 6.13.0-rc3-syzkaller #0
[   64.212818][ T5136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   64.223065][ T5136] Call Trace:
[   64.226395][ T5136]  <TASK>
[   64.229341][ T5136]  dump_stack_lvl+0xf2/0x150
[   64.233972][ T5136]  dump_stack+0x15/0x1a
[   64.238269][ T5136]  should_fail_ex+0x223/0x230
[   64.242987][ T5136]  should_failslab+0x8f/0xb0
[   64.247663][ T5136]  __kmalloc_node_noprof+0xad/0x410
[   64.252894][ T5136]  ? __kvmalloc_node_noprof+0x72/0x170
[   64.258458][ T5136]  __kvmalloc_node_noprof+0x72/0x170
[   64.263795][ T5136]  alloc_fdtable+0xfc/0x1b0
[   64.268428][ T5136]  dup_fd+0x60d/0x6a0
[   64.272512][ T5136]  copy_files+0x98/0xe0
[   64.276777][ T5136]  copy_process+0xcbf/0x1f90
[   64.281550][ T5136]  kernel_clone+0x167/0x5e0
[   64.286100][ T5136]  ? vfs_write+0x596/0x920
[   64.290626][ T5136]  __x64_sys_clone+0xe8/0x120
[   64.295348][ T5136]  x64_sys_call+0x2d7e/0x2dc0
[   64.300082][ T5136]  do_syscall_64+0xc9/0x1c0
[   64.304623][ T5136]  ? clear_bhb_loop+0x55/0xb0
[   64.309352][ T5136]  ? clear_bhb_loop+0x55/0xb0
[   64.314148][ T5136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.320109][ T5136] RIP: 0033:0x7f404acf5d19
[   64.324556][ T5136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.344184][ T5136] RSP: 002b:00007f4049366fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   64.352673][ T5136] RAX: ffffffffffffffda RBX: 00007f404aee5fa0 RCX: 00007f404acf5d19
[   64.360942][ T5136] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000638c1000
[   64.369063][ T5136] RBP: 00007f4049367090 R08: 0000000000000000 R09: 0000000000000000
[   64.377039][ T5136] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   64.385103][ T5136] R13: 0000000000000000 R14: 00007f404aee5fa0 R15: 00007fff205ff028
[   64.393109][ T5136]  </TASK>
[   64.400461][ T5152] SELinux: failed to load policy
[   64.459995][ T5154] loop3: detected capacity change from 0 to 512
[   64.475860][ T5154] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   64.488489][ T5154] EXT4-fs (loop3): corrupt root inode, run e2fsck
[   64.495114][ T5154] EXT4-fs (loop3): mount failed
[   64.503118][ T5158] loop1: detected capacity change from 0 to 764
[   64.526015][ T5158] bridge_slave_0: left allmulticast mode
[   64.531763][ T5158] bridge_slave_0: left promiscuous mode
[   64.537472][ T5158] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.549507][ T5158] bridge_slave_1: left allmulticast mode
[   64.555312][ T5158] bridge_slave_1: left promiscuous mode
[   64.561040][ T5158] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.575256][ T5158] bond0: (slave 
0
@ÿ): Releasing backup interface
[   64.592907][ T5158] bond0: (slave bond_slave_1): Releasing backup interface
[   64.617674][ T5158] team0: Port device team_slave_0 removed
[   64.627662][ T5158] team0: Port device team_slave_1 removed
[   64.635323][ T5158] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.642826][ T5158] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.652261][ T5158] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.659788][ T5158] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.785666][ T5183] netlink: 'syz.1.520': attribute type 8 has an invalid length.
[   64.793664][ T5183] netlink: 16 bytes leftover after parsing attributes in process `syz.1.520'.
[   64.851352][ T5186] loop1: detected capacity change from 0 to 8192
[   64.945812][ T5188] loop4: detected capacity change from 0 to 8192
[   65.199553][ T5186] ==================================================================
[   65.207717][ T5186] BUG: KCSAN: data-race in relay_switch_subbuf / relay_switch_subbuf
[   65.215850][ T5186] 
[   65.218194][ T5186] write to 0xffff8881188bce38 of 8 bytes by task 5189 on cpu 0:
[   65.225848][ T5186]  relay_switch_subbuf+0x39e/0x3b0
[   65.231011][ T5186]  __blk_add_trace+0x66a/0x730
[   65.235853][ T5186]  blk_add_trace_plug+0x4c/0x70
[   65.240742][ T5186]  blk_add_rq_to_plug+0x31b/0x3d0
[   65.245820][ T5186]  blk_mq_submit_bio+0x96c/0xe40
[   65.250805][ T5186]  __submit_bio+0xf2/0x470
[   65.255257][ T5186]  submit_bio_noacct_nocheck+0x295/0x6e0
[   65.260914][ T5186]  submit_bio_noacct+0x766/0x9a0
[   65.265878][ T5186]  submit_bio+0x218/0x230
[   65.270238][ T5186]  submit_bh_wbc+0x2ed/0x330
[   65.274877][ T5186]  __sync_dirty_buffer+0x171/0x250
[   65.280027][ T5186]  sync_dirty_buffer+0x1a/0x20
[   65.284831][ T5186]  fat_mirror_bhs+0x278/0x330
[   65.289575][ T5186]  fat_alloc_clusters+0x994/0xa80
[   65.294642][ T5186]  fat_get_block+0x25c/0x5e0
[   65.299285][ T5186]  __block_write_begin_int+0x417/0xfa0
[   65.304794][ T5186]  cont_write_begin+0x546/0x860
[   65.309689][ T5186]  fat_write_begin+0x51/0xe0
[   65.314296][ T5186]  generic_perform_write+0x1a8/0x4a0
[   65.319646][ T5186]  __generic_file_write_iter+0xa1/0x120
[   65.325230][ T5186]  generic_file_write_iter+0x77/0x1c0
[   65.330630][ T5186]  aio_write+0x2f7/0x420
[   65.334917][ T5186]  io_submit_one+0xb0c/0x1230
[   65.339807][ T5186]  __se_sys_io_submit+0xf5/0x280
[   65.344785][ T5186]  __x64_sys_io_submit+0x43/0x50
[   65.349860][ T5186]  x64_sys_call+0x2c20/0x2dc0
[   65.354579][ T5186]  do_syscall_64+0xc9/0x1c0
[   65.359112][ T5186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.365033][ T5186] 
[   65.367573][ T5186] write to 0xffff8881188bce38 of 8 bytes by task 5186 on cpu 1:
[   65.375233][ T5186]  relay_switch_subbuf+0x39e/0x3b0
[   65.380476][ T5186]  __blk_add_trace+0x66a/0x730
[   65.385259][ T5186]  blk_add_trace_plug+0x4c/0x70
[   65.390181][ T5186]  blk_add_rq_to_plug+0x31b/0x3d0
[   65.395247][ T5186]  blk_mq_submit_bio+0x96c/0xe40
[   65.400227][ T5186]  __submit_bio+0xf2/0x470
[   65.404661][ T5186]  submit_bio_noacct_nocheck+0x295/0x6e0
[   65.410320][ T5186]  submit_bio_noacct+0x766/0x9a0
[   65.415285][ T5186]  submit_bio+0x218/0x230
[   65.419668][ T5186]  submit_bh_wbc+0x2ed/0x330
[   65.424298][ T5186]  write_dirty_buffer+0xf4/0x120
[   65.429272][ T5186]  fat_sync_bhs+0x4b/0x140
[   65.433719][ T5186]  fat_alloc_clusters+0x941/0xa80
[   65.438810][ T5186]  fat_get_block+0x25c/0x5e0
[   65.443436][ T5186]  __block_write_begin_int+0x417/0xfa0
[   65.448931][ T5186]  cont_write_begin+0x546/0x860
[   65.453827][ T5186]  fat_write_begin+0x51/0xe0
[   65.458438][ T5186]  generic_perform_write+0x1a8/0x4a0
[   65.463761][ T5186]  __generic_file_write_iter+0xa1/0x120
[   65.469343][ T5186]  generic_file_write_iter+0x77/0x1c0
[   65.474769][ T5186]  vfs_write+0x77f/0x920
[   65.479049][ T5186]  ksys_write+0xe8/0x1b0
[   65.483337][ T5186]  __x64_sys_write+0x42/0x50
[   65.487959][ T5186]  x64_sys_call+0x287e/0x2dc0
[   65.492696][ T5186]  do_syscall_64+0xc9/0x1c0
[   65.497253][ T5186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.503191][ T5186] 
[   65.505526][ T5186] value changed: 0x0000000000000038 -> 0x0000000000000030
[   65.512650][ T5186] 
[   65.514985][ T5186] Reported by Kernel Concurrency Sanitizer on:
[   65.521156][ T5186] CPU: 1 UID: 0 PID: 5186 Comm: syz.1.521 Not tainted 6.13.0-rc3-syzkaller #0
[   65.530026][ T5186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[   65.540110][ T5186] ==================================================================
[   65.657187][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8881186ce400: rx timeout, send abort
[   65.665751][    C0] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881186ce400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   65.799443][ T5186] syz.1.521 (5186) used greatest stack depth: 9880 bytes left