last executing test programs:

19.366299612s ago: executing program 3 (id=1566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002940)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1, 0x0, 0x4}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

19.286055102s ago: executing program 3 (id=1568):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000007c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000040)="3700000013000318680907070000000f0000ff3f13000000170a001700000000040037000d00030001362564aa58b9a6c011f6bbf44dc4", 0x37}], 0x1)

19.111601751s ago: executing program 3 (id=1574):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x8, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6200}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000300)='GPL\x00', 0x9, 0x1, &(0x7f0000000340)=""/1, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

18.995429661s ago: executing program 3 (id=1576):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000100)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000440)='./file0\x00', &(0x7f0000000080)='./file0\x00')

18.93478098s ago: executing program 3 (id=1579):
utime(0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
fchown(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000c, 0x1010, 0xffffffffffffffff, 0x4000)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000b00), r1)
sendmsg$IEEE802154_LIST_PHY(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r2, 0x30b}, 0x14}, 0x1, 0x0, 0x0, 0x4008801}, 0x40000)

18.099515847s ago: executing program 3 (id=1591):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xf, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010200009cff000000000000000a20000000000a01010000000000000000010000000900010073797a300000000048000000030a01010000000000000000010000000900010073797a30000000000900030073797a3100000000080007006e617400140004800800014000000000080002"], 0xa4}, 0x1, 0x0, 0x0, 0x80}, 0x0)

18.056619107s ago: executing program 32 (id=1591):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xf, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010200009cff000000000000000a20000000000a01010000000000000000010000000900010073797a300000000048000000030a01010000000000000000010000000900010073797a30000000000900030073797a3100000000080007006e617400140004800800014000000000080002"], 0xa4}, 0x1, 0x0, 0x0, 0x80}, 0x0)

4.159450276s ago: executing program 0 (id=1881):
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x2, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="00000000000057b6b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001700)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x86, &(0x7f00000001c0)={@random="591a1d9a2bdb", @link_local={0x1, 0x80, 0xc2, 0x25}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x29, 0x0, @empty=0xe0, @multicast1}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x220, 0x0, 0x0, "bfd8a5dd2002c02142c4391145badd28fd7f1a9aa8f6f3a6060ffc0e896f38da", "0b3d22b336984ffb47476e10c3ae64b1", {"5800010000080200", "524a72fc460b8cd26e095f24ab282591"}}}}}}}, 0x0)

4.110205735s ago: executing program 0 (id=1883):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001ec0)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYRESHEX], 0x6c}, 0x1, 0x0, 0xcdff000000000000}, 0x0)

4.078794955s ago: executing program 0 (id=1886):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000007000000ff0f000009"], 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10000, 0x0, 0xfffffffd, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x40, 0x3, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0xfffffffa, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, 0x2, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x2}, {0x2, 0x0, 0x0, 0x0, 0x0, 0x40}}}]}}]}, 0x45c}}, 0x0)

3.990382115s ago: executing program 0 (id=1890):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='mm_page_free\x00', r1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="0580040000000000500012800b00010067656e657665000040000280050008000000000005000d000100000005000d000200000008000b4000001e82060005004e210000140007"], 0x70}, 0x1, 0x0, 0x0, 0xff00}, 0x0)

3.867125654s ago: executing program 0 (id=1893):
socket$packet(0x11, 0x2, 0x300)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write(0xffffffffffffffff, &(0x7f0000004200)='t', 0x1)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3ffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0xf, &(0x7f0000000440)=ANY=[@ANYBLOB="18110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b16600007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000018210000", @ANYRES32, @ANYBLOB="000000000900000018280000ed894f5d3af30428747dea0d221b75d1e1735a85d35398626cf870c7cdcd84d4046c3a11fdec307fc3ac5385e04e22a3c25c6c5db013e24f3f7a93e0d282dc057095247efad58969426951433e51baaf7f96877a55176b2140453391679b94d426d581f1c771c34c88c19dd51fb5c5469584257fdd6961cffe1b936723bb00ad2f8a", @ANYRES32=0x1, @ANYBLOB="000000000000008018690000070000000000000004000000"], &(0x7f00000005c0)='GPL\x00', 0x1, 0x25, &(0x7f0000000640)=""/37, 0x40f00, 0x30, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000740)={0x4, 0x8, 0x4, 0xb4}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f00000007c0)=[{0x4, 0x2, 0x7, 0x4}, {0x0, 0x3, 0x5}, {0x4, 0x3, 0xd, 0x9}, {0x5, 0x2, 0x8, 0xb}, {0x2, 0x4, 0x2, 0xb}, {0x0, 0x5, 0x7, 0xa}, {0x3, 0x3, 0x3, 0xb}, {0x2, 0x1, 0x3, 0xc}], 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x4}, 0x18)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/udplite6\x00')
syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)=ANY=[], 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0xeec8, 0x8, 0x0, 0xfffff00d}, {0x6}, {0x20, 0xfd, 0x0, 0x693}]}, 0x10)
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x10, 0x0, 0x0, 0x9, 0x0, 0x0, 0x18000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x10498a, 0xc8, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = epoll_create1(0x0)
r4 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
close(r4)
socket$inet6_udp(0xa, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000180), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000050000000800000005"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r8}, 0x10)
lsm_get_self_attr(0x64, 0x0, &(0x7f0000000040), 0x0)
keyctl$negate(0xd, 0x0, 0x9, 0x0)
close(r6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
io_uring_setup(0x2e34, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r9=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000300)=ANY=[], 0xfdef)
getpid()

1.837892757s ago: executing program 2 (id=1948):
syz_usb_connect$cdc_ncm(0x4, 0x70, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5e, 0x2, 0x1, 0x0, 0x0, 0x3, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, "ea08"}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x6, 0x40, 0x92}, {0x6, 0x24, 0x1a, 0xb727, 0x10}}, {{0x9, 0x5, 0x81, 0x3, 0x0, 0xdb, 0x9, 0x71}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x28, 0x8, 0x80, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x5, 0x6, 0x3}}}}}}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x250, 0xfd, 0xf, 0x9, 0x20, 0x9}, 0x47, &(0x7f0000000380)={0x5, 0xf, 0x47, 0x3, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x1, 0x7f, 0x8, 0x2}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "de7c5ffdbfb818dafe42443b0411132a"}, @ssp_cap={0x24, 0x10, 0xa, 0x2, 0x6, 0xb, 0xf0f, 0x9, [0xc0, 0xff000f, 0x3f00, 0xc0, 0x0, 0xffc060]}]}, 0x1, [{0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x42d}}]})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000001040500000006000000000007000000050001000100daa30600064000c6"], 0x24}}, 0x2000004)
unshare(0x68040200)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x8205, &(0x7f0000000480)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x8}}, {@data_err_abort}, {@minixdf}, {@errors_remount}, {@abort}, {@noblock_validity}, {@barrier}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}]}, 0x1, 0x618, &(0x7f0000000640)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x2, 0x80805, 0x0)
socket$inet(0x2, 0x80001, 0x84)
prlimit64(0x0, 0xb, &(0x7f0000000000), 0x0)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xffffffff]}, 0x0, 0x8)
getpgrp(0x0)
r1 = gettid()
tkill(r1, 0x11)
rt_sigaction(0x11, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000000))

1.287577455s ago: executing program 5 (id=1967):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x80ff, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000fbff05000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0)

1.286974435s ago: executing program 5 (id=1968):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

1.262982184s ago: executing program 5 (id=1969):
r0 = socket$nl_route(0x10, 0x3, 0x0)
connect$netlink(r0, &(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$nl_route(r0, &(0x7f0000000300)={&(0x7f0000000080), 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000021000f0000f901000000000002"], 0x1c}, 0x1, 0x0, 0x2000000}, 0x0)

1.243569745s ago: executing program 5 (id=1971):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000f00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
write$selinux_validatetrans(r1, &(0x7f0000000200)={'system_u:object_r:modules_object_t:s0', 0x20, 'system_u:object_r:vmware_device_t:s0', 0x20, 0x9, 0x20, 'unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00'}, 0x8e)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10)
getrlimit(0x7, &(0x7f0000000040))
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x0, @loopback}]}, &(0x7f00000002c0)=0x10)

1.179631904s ago: executing program 4 (id=1973):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000700000006"], 0x48)
syz_usb_connect$hid(0x5, 0x10, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0xdfc, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0xfd, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x48, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x5, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010100}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x400002}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x40c0080)

1.081488934s ago: executing program 2 (id=1974):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$packet(0x11, 0xa, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="219a53f271a76d2608004c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = io_uring_setup(0x2e32, &(0x7f0000000180)={0x0, 0x0, 0x400, 0x1, 0xfffffffe})
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000400)=0x6, 0x4)
setsockopt$sock_int(r4, 0x1, 0x2f, &(0x7f0000000280), 0x4)
bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x4e23, 0x2, @private2={0xfc, 0x2, '\x00', 0x3}}, 0xffffffea)
sendto$inet6(r3, &(0x7f00000002c0)="9e", 0x1a000, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmsg$inet6(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)='h', 0x30400}], 0x1}, 0x0)
sendmmsg$sock(r3, &(0x7f0000004640)=[{{0x0, 0x0, &(0x7f0000000780)}}], 0x1, 0x40080)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8922, &(0x7f0000000300)={'batadv_slave_0\x00', 0x3ff})
close_range(r2, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYRES64=r4, @ANYRES16=r1], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = getuid()
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x200012, &(0x7f0000000100)=ANY=[@ANYRES8=r7, @ANYRESDEC, @ANYRES32=r7], 0x1, 0x52b, &(0x7f0000001600)="$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")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r8, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
socket$inet_smc(0x2b, 0x1, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42)
sendfile(r10, r6, 0x0, 0x80000100)

811.318903ms ago: executing program 0 (id=1976):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000060000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x80000000})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
fallocate(r3, 0x0, 0x7fffe, 0x7000000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwrite64(r4, &(0x7f0000003a80)='\t', 0x1, 0x8000c61)

787.811363ms ago: executing program 1 (id=1977):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$rds(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@rdma_args={0x48, 0x114, 0x1, {{0x1, 0x7}, {&(0x7f0000000680)=""/166, 0xa6}, 0x0, 0x0, 0x60, 0xffffffff00000003}}], 0x48, 0x8004}, 0x24000090)
r1 = socket$kcm(0x10, 0x400000002, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r2, 0x0, 0x0, 0x1000f4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0xfffffffffffffe3e)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
socket(0x10, 0x803, 0xffffffff)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
openat$cgroup_ro(r5, &(0x7f00000000c0)='devices.list\x00', 0x275a, 0x2)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000b40)=@raw={'raw\x00', 0x3c1, 0x3, 0x520, 0x340, 0x9403, 0x0, 0x0, 0x2c0, 0x450, 0x3d8, 0x3d8, 0x450, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@hashlimit3={{0x158}, {'syz_tun\x00', {0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0, 0x1, 0x6}}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {0xffffff80}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x580)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x20000, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[], 0x0, 0x7ae8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
r9 = getpgrp(0x0)
write$P9_RGETLOCK(r5, &(0x7f00000001c0)={0x20, 0x37, 0x1, {0x1, 0x40, 0x6, r9, 0x2, '\\.'}}, 0x20)
ioctl$PPPIOCNEWUNIT(r8, 0xc004743e, &(0x7f0000000140))
r10 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000001600)=@mangle={'mangle\x00', 0x1f, 0x6, 0x520, 0x108, 0x390, 0x2d0, 0x2d0, 0x390, 0x488, 0x488, 0x488, 0x488, 0x488, 0x6, &(0x7f0000000300), {[{{@uncond, 0x0, 0xd8, 0x108, 0x0, {}, [@common=@set={{0x40}, {{0x0, [0x1, 0x6, 0x7, 0x5, 0x7]}}}, @inet=@rpfilter={{0x28}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x6, 0x8, @loopback, 0x4e21}}}, {{@ip={@remote, @rand_addr=0x64010101, 0x0, 0x0, 'ipvlan0\x00', 'geneve0\x00', {}, {}, 0x2f, 0x0, 0x20}, 0x0, 0x98, 0xc0, 0x0, {}, [@common=@icmp={{0x28}, {0x8, "3cbd"}}]}, @ECN={0x28, 'ECN\x00', 0x0, {0x31, 0x40, 0x1}}}, {{@ip={@multicast1, @loopback, 0xff000000, 0xff, 'dvmrp0\x00', 'syz_tun\x00', {0xff}, {0xff}, 0x67}, 0x0, 0xe0, 0x108, 0x0, {}, [@common=@addrtype={{0x30}, {0x830, 0x41, 0x1}}, @common=@set={{0x40}, {{0x1, [0x4, 0x3, 0x0, 0x3, 0x0, 0x7]}}}]}, @TTL={0x28, 'TTL\x00', 0x0, {0x0, 0x5}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, 0xffffffff, 0xff, 'hsr0\x00', 'veth1_macvtap\x00', {}, {0xff}, 0x6, 0x1, 0x24}, 0x0, 0x98, 0xc0, 0x0, {}, [@common=@icmp={{0x28}, {0xf, "fc74"}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@multicast1, @rand_addr=0x64010101, 0xff000000, 0xff, 'vlan0\x00', 'vlan1\x00', {0xff}, {}, 0x88, 0x3, 0x3}, 0x0, 0x98, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x6}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @multicast, 0x0, 0x9, [0x22, 0x37, 0x1a, 0x2f, 0x18, 0x9, 0x22, 0x34, 0x20, 0x23, 0x10, 0x2d, 0x32, 0x0, 0x36, 0x16], 0x1, 0x7, 0x1224}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x580)
pwritev2(r10, &(0x7f0000000240)=[{&(0x7f0000000080)="85", 0x1}], 0x1, 0x1600, 0x30, 0xa)
write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="182000007800911fdabcf8b3077fa54a07"], 0xfe6b)

787.424733ms ago: executing program 2 (id=1978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000002940)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='net_dev_xmit\x00', r1, 0x0, 0x4}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e)

699.399222ms ago: executing program 2 (id=1979):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000000000b3180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
dup2(r2, r2)
write$cgroup_int(r0, &(0x7f0000000000), 0xffffff6a)
ioctl$FS_IOC_RESVSP(r0, 0x4030582b, &(0x7f00000001c0)={0x1100, 0x2, 0x3, 0x9})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/2944], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x400, @void, @value}, 0x94)

447.438631ms ago: executing program 1 (id=1980):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

416.739011ms ago: executing program 2 (id=1981):
bpf$MAP_CREATE(0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000001040)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x4e23, 0x0, @local, 0x20000}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x2, 0x0, @loopback}}}, 0x108)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYBLOB="200000001100010125bd70000000000000000000", @ANYRES32=r4], 0x20}}, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x1a, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r7, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000280)={0x1f, 0x1, 0x3}, 0x6)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001140)={0x0, 0x7}, 0xc)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x11, &(0x7f0000001180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x15e2}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r9}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @cb_func={0x18, 0x4}, @alu={0x7, 0x1, 0x3, 0x5, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff9}]}, &(0x7f0000001100)='syzkaller\x00', 0x5000000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r10}, 0x10)
bpf$TOKEN_CREATE(0x24, &(0x7f00000010c0)={0x0, r6}, 0x8)
r11 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r11, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1)

402.306352ms ago: executing program 1 (id=1982):
r0 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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") (async)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42042, 0x2) (async)
socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 64)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (rerun: 64)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_switch\x00', r3}, 0x10)
fremovexattr(0xffffffffffffffff, 0x0)
r5 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0) (async)
timer_gettime(0x0, &(0x7f0000000280)) (async)
r6 = syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff) (async)
perf_event_open(0x0, 0x0, 0xffbffffffffffffb, r5, 0x2) (async)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={0x0, r7}, 0x18) (async)
r8 = socket$inet_smc(0x2b, 0x1, 0x0) (async)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000001240)=@raw={'raw\x00', 0x4001, 0x8000000, 0x240, 0x1a8, 0x720d, 0x148, 0x0, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @private=0xa010102, 0x0, 0x0, 'veth0_to_team\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x4, 0x81, 0x7, 0x5, 'snmp_trap\x00', 'syz1\x00', {0x3}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev, 0x0, 0x0, [0x0, 0x6]}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0)
sendto$inet(r8, 0x0, 0x0, 0x24000080, 0x0, 0x0) (async)
r9 = dup(r8) (async)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYRES64=r0, @ANYRES32, @ANYRESHEX=r1, @ANYRESHEX=r2, @ANYRES64=r6, @ANYRESDEC=r4], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r11}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async, rerun: 32)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) (rerun: 32)
r12 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r12, &(0x7f00000004c0)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56) (async)
accept(r9, 0x0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)

327.477921ms ago: executing program 5 (id=1983):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = memfd_create(&(0x7f00000004c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf9\xff\x90\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
write$binfmt_elf64(r3, &(0x7f0000000000)=ANY=[], 0x78)
sendfile(r2, r3, &(0x7f00000001c0), 0x8)
fcntl$addseals(r3, 0x409, 0x8)
fallocate(r3, 0x3, 0x0, 0x3)
close_range(r1, 0xffffffffffffffff, 0x0)

326.541671ms ago: executing program 1 (id=1984):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d40)=ANY=[@ANYBLOB="84010000100013070000000000000300fe880000000000000000000000000001fc0100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000ac1414bb00000000000000000000000000000000000000000000000000000000ff0300000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000033500000a000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004c0014007368613100"/277], 0x184}, 0x1, 0x0, 0x0, 0x880}, 0x0)

319.279311ms ago: executing program 1 (id=1985):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1fa60000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet(0x2, 0x2, 0x0)
sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x14}, 0x4010)
sendmsg$inet(r2, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007600000890b040a0101027f00000100000000001c000000000000000000000008"], 0x40}, 0x20000000)

288.823241ms ago: executing program 4 (id=1986):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002e00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000040000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x9)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe28, 0xfffffffffffffff5, &(0x7f0000000980)="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", 0x0, 0x2f, 0xe8034000, 0xf000, 0xfffffffffffffe2a, &(0x7f0000000000), &(0x7f00000000c0)="c6769e45b7c61302926682c7f9e9bb5ba2b3cdf023e8da0392a4cd62e2370f25ae5ba0dab896bcf5b774cd28bebbde39f796ae27d04582bb7c03e9fe830ea22c9fd03f6d2779515fdad3f5d0de07b7b70996102fdb67b1e77a34a5b7136a212fa2c0ea502588309dc3e42c55a6f93e6ba5e1b492f9db48f0fdd2f9fb937b3e8a63dcf9dd855837433998ba579da27559", 0x5dc}, 0x28)

211.233321ms ago: executing program 4 (id=1987):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000076000018110000", @ANYRES8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)=ANY=[], 0x20}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = dup(r1)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe935"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
truncate(&(0x7f0000000040)='./file0\x00', 0x20000000002000)

210.60586ms ago: executing program 2 (id=1988):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
mlockall(0x3)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x8000f28, 0x0)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x300}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

144.958601ms ago: executing program 5 (id=1989):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10) (async)
listen(r0, 0xa) (async)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x40b00, 0x0)
accept4$unix(r1, &(0x7f0000000680)=@abs, &(0x7f0000000240)=0x6e, 0x800)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10) (async)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r6, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x14}, 0x7}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r6, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4) (async)
shutdown(r6, 0x2)
r7 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x4c, 0x0, 0x4) (async)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x40, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000000400"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000040000000000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x9, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r8, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000a40))
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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") (async)
syz_open_dev$loop(&(0x7f0000000180), 0x7, 0x2480)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0) (async)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) (async)
lseek(0xffffffffffffffff, 0xfffffffffffffffa, 0x500) (async)
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000440)=ANY=[], 0x0)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000540)='kmem_cache_free\x00', r3}, 0x18)

113.318231ms ago: executing program 4 (id=1990):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x220, 0x340, 0x25, 0x148, 0x0, 0x60, 0x488, 0x2a8, 0x2a8, 0x488, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x70, 0xb8, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0xd0, 0x0, {0x4000000}}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x280)

47.3727ms ago: executing program 4 (id=1991):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000a80)='kfree\x00', r2}, 0x18)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000ac0)=@filter={'filter\x00', 0xe, 0x4, 0x260, 0xffffffff, 0x0, 0x130, 0x1c8, 0xffffffff, 0xffffffff, 0x1c8, 0x1c8, 0x1c8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0x7}}}, {{@ip={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0xffffffff, 'pim6reg0\x00', 'syzkaller1\x00', {0xff}, {0xff}, 0x21, 0x1, 0x4d}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0xf}}}], {{'\x00', 0x0, 0x70, 0x98, 0x1e010000}, {0x28}}}}, 0x2c0)

16.47547ms ago: executing program 1 (id=1992):
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r0) (async)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000030000004c0001800d0001007564703a73797a300000000038000400140001000adeffff7e00000100000000000000002000"], 0x60}}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
removexattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='security.selinux\x00')

0s ago: executing program 4 (id=1993):
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000440)={[0x4000000000007ff]}, 0x8, 0x800)
io_setup(0x206, &(0x7f0000000100)=<r1=>0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)={0x1c, r3, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x2c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0xa0)
io_submit(r1, 0x2, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0xab, r0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x8, 0xcf, r0, 0x0, 0x0, 0x7, 0x0, 0x7, r0}])
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r5}, 0x10)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x8, 0x5, 0x8)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x73b, 0x200}, 0x280, 0x0, 0xfffffffe, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x13, &(0x7f0000000200)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32=r7, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
open(0x0, 0x2a4c0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={0x0, r8, 0x0, 0x4}, 0x18)
pipe2$9p(0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000040), 0x13, 0x80801)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
r10 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r10}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r11}, 0x10)
ioctl$USBDEVFS_IOCTL(r9, 0xc0105512, &(0x7f0000000140)=@usbdevfs_driver={0x4, 0x2bcc8a99, 0x0})

kernel console output (not intermixed with test programs):

4] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   78.898681][ T6413] netlink: 'syz.2.1063': attribute type 4 has an invalid length.
[   78.920075][ T6413] netlink: 'syz.2.1063': attribute type 4 has an invalid length.
[   78.950531][   T29] audit: type=1326 audit(1736086214.901:2275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6419 comm="syz.1.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[   78.959602][ T6417] loop4: detected capacity change from 0 to 2048
[   78.988258][   T29] audit: type=1326 audit(1736086214.931:2276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6419 comm="syz.1.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[   79.011899][   T29] audit: type=1326 audit(1736086214.931:2277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6419 comm="syz.1.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[   79.035370][   T29] audit: type=1326 audit(1736086214.931:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6419 comm="syz.1.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[   79.058810][   T29] audit: type=1326 audit(1736086214.931:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6419 comm="syz.1.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[   79.108746][ T6418] netlink: '+}[@': attribute type 25 has an invalid length.
[   79.116089][ T6418] IPv6: NLM_F_CREATE should be specified when creating new route
[   79.143337][ T6417] Alternate GPT is invalid, using primary GPT.
[   79.149778][ T6417]  loop4: p2 p3 p7
[   79.191831][ T6440] loop2: detected capacity change from 0 to 256
[   79.191962][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   79.211031][ T4650] udevd[4650]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   79.218622][ T3789] udevd[3789]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   79.234497][ T6442] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   79.259005][ T6438] tmpfs: Bad value for 'mpol'
[   79.324869][ T6458] loop1: detected capacity change from 0 to 736
[   79.356774][ T6461] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   79.357891][ T6457] ISOFS: unable to read i-node block
[   79.371372][ T6461] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[   79.389965][ T6458] ISOFS: unable to read i-node block
[   79.437246][ T6471] bond2: entered promiscuous mode
[   79.442518][ T6471] bond2: entered allmulticast mode
[   79.449448][ T6471] 8021q: adding VLAN 0 to HW filter on device bond2
[   79.460206][ T6478] loop6: detected capacity change from 0 to 7
[   79.466465][ T6478] Buffer I/O error on dev loop6, logical block 0, async page read
[   79.476598][ T6471] bond2 (unregistering): Released all slaves
[   79.508757][ T6478] Buffer I/O error on dev loop6, logical block 0, async page read
[   79.516717][ T6478]  loop6: unable to read partition table
[   79.532235][ T6478] loop_reread_partitions: partition scan of loop6 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[   79.532235][ T6478] 
) failed (rc=-5)
[   79.714273][ T6526] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   79.747778][ T6532] x_tables: duplicate underflow at hook 2
[   80.166448][ T6611] dummy0: entered promiscuous mode
[   80.272064][ T6619] xt_hashlimit: max too large, truncated to 1048576
[   80.279720][ T6619] Cannot find set identified by id 0 to match
[   80.362769][ T6624] loop3: detected capacity change from 0 to 1024
[   80.380353][ T6624] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.408522][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.472006][ T6636] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   80.525514][ T6640] loop3: detected capacity change from 0 to 2048
[   80.532231][ T6640] ext4: Unknown parameter 'euid<00000000000000000000'
[   80.647991][ T6649] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0
[   80.658152][ T6648] IPVS: stopping master sync thread 6649 ...
[   80.667597][ T6648] pimreg: entered allmulticast mode
[   80.766148][ T6656] loop1: detected capacity change from 0 to 512
[   80.790416][ T6656] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.803233][ T6656] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.220776][ T6671] SELinux: syz.2.1109 (6671) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   81.629232][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.698552][ T6675] loop1: detected capacity change from 0 to 512
[   81.711933][ T6682] __nla_validate_parse: 31 callbacks suppressed
[   81.711951][ T6682] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1115'.
[   81.712210][ T6675] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1112: bg 0: block 248: padding at end of block bitmap is not set
[   81.750123][ T6675] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1112: Failed to acquire dquot type 1
[   81.762175][ T6675] EXT4-fs (loop1): 1 truncate cleaned up
[   81.770053][ T6675] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.780334][ T6686] xt_CT: No such helper "snmp"
[   81.783001][ T6675] ext4 filesystem being mounted at /206/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.809406][ T6689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1118'.
[   81.830462][ T6689] ip6gretap1: entered allmulticast mode
[   81.870369][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.891143][ T6698] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1119'.
[   81.929005][ T6696] bond1: entered promiscuous mode
[   81.934086][ T6696] bond1: entered allmulticast mode
[   81.946628][ T6696] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.966600][ T6696] bond1 (unregistering): Released all slaves
[   81.978939][ T6706] netlink: 216 bytes leftover after parsing attributes in process `syz.4.1124'.
[   81.981813][ T6705] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   81.988037][ T6706] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1124'.
[   82.000313][ T6705] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   82.008710][ T6706] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1124'.
[   82.024701][ T6705] loop3: detected capacity change from 0 to 512
[   82.033135][ T6705] EXT4-fs: Ignoring removed i_version option
[   82.039197][ T6705] EXT4-fs: Ignoring removed mblk_io_submit option
[   82.051368][ T6705] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   82.068956][ T6698] vlan2: entered allmulticast mode
[   82.074210][ T6698] gretap0: entered allmulticast mode
[   82.081158][ T6698] bridge0: port 1(vlan2) entered blocking state
[   82.087552][ T6698] bridge0: port 1(vlan2) entered disabled state
[   82.094558][ T6698] vlan2: entered promiscuous mode
[   82.099702][ T6698] gretap0: entered promiscuous mode
[   82.116893][ T6705] EXT4-fs (loop3): 1 truncate cleaned up
[   82.130785][ T6705] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   82.173321][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.326028][ T6723] loop3: detected capacity change from 0 to 256
[   82.339156][ T6717] raw_sendmsg: syz.3.1129 forgot to set AF_INET. Fix it!
[   82.348744][ T6719] team0 (unregistering): Port device team_slave_0 removed
[   82.358776][ T6719] team0 (unregistering): Port device team_slave_1 removed
[   82.890784][ T6737] bpf_get_probe_write_proto: 5 callbacks suppressed
[   82.890802][ T6737] syz.0.1133[6737] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.897597][ T6737] syz.0.1133[6737] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.909066][ T6737] syz.0.1133[6737] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.925195][ T6741] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   82.944787][ T6741] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   82.953077][ T6741] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   82.961277][ T6741] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   82.969748][ T6741] vxlan0: entered promiscuous mode
[   82.974876][ T6741] vxlan0: entered allmulticast mode
[   83.119911][ T6753] loop2: detected capacity change from 0 to 8192
[   83.190688][ T6760] validate_nla: 1 callbacks suppressed
[   83.190706][ T6760] netlink: 'syz.3.1140': attribute type 10 has an invalid length.
[   83.325529][ T6773] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1142'.
[   83.334673][ T6773] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1142'.
[   83.407088][ T6766] loop4: detected capacity change from 0 to 128
[   83.416126][ T6776] loop3: detected capacity change from 0 to 256
[   83.424287][ T6776] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   83.434858][ T6766] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   83.451449][ T6766] ext4 filesystem being mounted at /210/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   83.493135][ T6788] netlink: 'syz.2.1146': attribute type 10 has an invalid length.
[   83.494229][ T6776] FAT-fs (loop3): Directory bread(block 64) failed
[   83.508009][ T6776] FAT-fs (loop3): Directory bread(block 65) failed
[   83.509335][ T6766] xt_CT: You must specify a L4 protocol and not use inversions on it
[   83.514541][ T6776] FAT-fs (loop3): Directory bread(block 66) failed
[   83.528275][ T6788] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.530265][ T6776] FAT-fs (loop3): Directory bread(block 67) failed
[   83.537315][ T6788] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.544842][ T6776] FAT-fs (loop3): Directory bread(block 68) failed
[   83.552061][ T6788] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.560119][ T6776] FAT-fs (loop3): Directory bread(block 69) failed
[   83.566761][ T6788] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.573780][ T6776] FAT-fs (loop3): Directory bread(block 70) failed
[   83.586756][ T6788] bond0: (slave geneve1): Enslaving as an active interface with an up link
[   83.597032][ T6776] FAT-fs (loop3): Directory bread(block 71) failed
[   83.604106][ T6776] FAT-fs (loop3): Directory bread(block 72) failed
[   83.610750][ T6776] FAT-fs (loop3): Directory bread(block 73) failed
[   83.683749][ T3309] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   83.702483][ T6799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1150'.
[   83.711486][ T6799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1150'.
[   83.808251][ T6809] SET target dimension over the limit!
[   83.835573][   T29] kauditd_printk_skb: 277 callbacks suppressed
[   83.835641][   T29] audit: type=1326 audit(1736086731.783:2555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   83.865319][   T29] audit: type=1326 audit(1736086731.783:2556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   83.888778][   T29] audit: type=1326 audit(1736086731.823:2557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   83.912440][   T29] audit: type=1326 audit(1736086731.823:2558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   83.935917][   T29] audit: type=1326 audit(1736086731.823:2559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   83.959558][   T29] audit: type=1326 audit(1736086731.823:2560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   83.982902][   T29] audit: type=1326 audit(1736086731.823:2561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   84.006431][   T29] audit: type=1326 audit(1736086731.823:2562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   84.029879][   T29] audit: type=1326 audit(1736086731.823:2563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   84.034786][ T6807] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[   84.053365][   T29] audit: type=1326 audit(1736086731.823:2564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6804 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ba8be5d29 code=0x7ffc0000
[   84.085163][ T6807] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[   84.098076][ T6816] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   84.185731][ T6827] syz.2.1162[6827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.185834][ T6827] syz.2.1162[6827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.210460][ T6827] syz.2.1162[6827] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.230250][ T6831] netlink: 'syz.3.1164': attribute type 4 has an invalid length.
[   84.284504][ T6835] FAULT_INJECTION: forcing a failure.
[   84.284504][ T6835] name failslab, interval 1, probability 0, space 0, times 0
[   84.297185][ T6835] CPU: 0 UID: 0 PID: 6835 Comm: syz.2.1166 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[   84.307888][ T6835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   84.317980][ T6835] Call Trace:
[   84.321347][ T6835]  <TASK>
[   84.324284][ T6835]  dump_stack_lvl+0xf2/0x150
[   84.328945][ T6835]  dump_stack+0x15/0x1a
[   84.333122][ T6835]  should_fail_ex+0x223/0x230
[   84.337827][ T6835]  should_failslab+0x8f/0xb0
[   84.342478][ T6835]  __kmalloc_noprof+0xab/0x3f0
[   84.347267][ T6835]  ? pneigh_lookup+0x196/0x3d0
[   84.352048][ T6835]  pneigh_lookup+0x196/0x3d0
[   84.356694][ T6835]  neigh_add+0x4b4/0x8e0
[   84.361033][ T6835]  ? __pfx_neigh_add+0x10/0x10
[   84.365851][ T6835]  rtnetlink_rcv_msg+0x6aa/0x710
[   84.370806][ T6835]  ? avc_has_perm_noaudit+0x1cc/0x210
[   84.376206][ T6835]  netlink_rcv_skb+0x12c/0x230
[   84.381098][ T6835]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   84.386642][ T6835]  rtnetlink_rcv+0x1c/0x30
[   84.391074][ T6835]  netlink_unicast+0x599/0x670
[   84.395876][ T6835]  netlink_sendmsg+0x5cc/0x6e0
[   84.400658][ T6835]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.405960][ T6835]  __sock_sendmsg+0x140/0x180
[   84.410682][ T6835]  ____sys_sendmsg+0x312/0x410
[   84.415505][ T6835]  __sys_sendmsg+0x19d/0x230
[   84.420121][ T6835]  __x64_sys_sendmsg+0x46/0x50
[   84.424915][ T6835]  x64_sys_call+0x2734/0x2dc0
[   84.429649][ T6835]  do_syscall_64+0xc9/0x1c0
[   84.434180][ T6835]  ? clear_bhb_loop+0x55/0xb0
[   84.438920][ T6835]  ? clear_bhb_loop+0x55/0xb0
[   84.443667][ T6835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.449687][ T6835] RIP: 0033:0x7f3fd8145d29
[   84.454146][ T6835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.473767][ T6835] RSP: 002b:00007f3fd67b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.482283][ T6835] RAX: ffffffffffffffda RBX: 00007f3fd8335fa0 RCX: 00007f3fd8145d29
[   84.490342][ T6835] RDX: 0000000000000000 RSI: 0000000020000940 RDI: 0000000000000003
[   84.498381][ T6835] RBP: 00007f3fd67b7090 R08: 0000000000000000 R09: 0000000000000000
[   84.506359][ T6835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.514368][ T6835] R13: 0000000000000000 R14: 00007f3fd8335fa0 R15: 00007ffe42332e88
[   84.522397][ T6835]  </TASK>
[   84.526983][ T6840] netlink: 'syz.3.1164': attribute type 4 has an invalid length.
[   84.541832][ T6831] FAULT_INJECTION: forcing a failure.
[   84.541832][ T6831] name failslab, interval 1, probability 0, space 0, times 0
[   84.554529][ T6831] CPU: 0 UID: 0 PID: 6831 Comm: syz.3.1164 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[   84.565228][ T6831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   84.575382][ T6831] Call Trace:
[   84.578703][ T6831]  <TASK>
[   84.581646][ T6831]  dump_stack_lvl+0xf2/0x150
[   84.586284][ T6831]  dump_stack+0x15/0x1a
[   84.590472][ T6831]  should_fail_ex+0x223/0x230
[   84.595205][ T6831]  ? ____ip_mc_inc_group+0x1c4/0x550
[   84.600502][ T6831]  should_failslab+0x8f/0xb0
[   84.605208][ T6831]  __kmalloc_cache_noprof+0x4e/0x320
[   84.610555][ T6831]  ____ip_mc_inc_group+0x1c4/0x550
[   84.615766][ T6831]  __ip_mc_join_group+0x242/0x2c0
[   84.620803][ T6831]  ip_mc_join_group+0x1f/0x30
[   84.625487][ T6831]  do_ip_setsockopt+0x1eee/0x2340
[   84.630587][ T6831]  ip_setsockopt+0x63/0x100
[   84.635197][ T6831]  udp_setsockopt+0x95/0xb0
[   84.639792][ T6831]  sock_common_setsockopt+0x64/0x80
[   84.645034][ T6831]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   84.651050][ T6831]  __sys_setsockopt+0x187/0x200
[   84.655998][ T6831]  __x64_sys_setsockopt+0x66/0x80
[   84.661035][ T6831]  x64_sys_call+0x282e/0x2dc0
[   84.665905][ T6831]  do_syscall_64+0xc9/0x1c0
[   84.670456][ T6831]  ? clear_bhb_loop+0x55/0xb0
[   84.675144][ T6831]  ? clear_bhb_loop+0x55/0xb0
[   84.679863][ T6831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.685914][ T6831] RIP: 0033:0x7fa137cf5d29
[   84.690389][ T6831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.710011][ T6831] RSP: 002b:00007fa136367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   84.718433][ T6831] RAX: ffffffffffffffda RBX: 00007fa137ee5fa0 RCX: 00007fa137cf5d29
[   84.726411][ T6831] RDX: 0000000000000023 RSI: 0000000000000000 RDI: 0000000000000007
[   84.734476][ T6831] RBP: 00007fa136367090 R08: 0000000000000040 R09: 0000000000000000
[   84.742496][ T6831] R10: 0000000020000740 R11: 0000000000000246 R12: 0000000000000001
[   84.750519][ T6831] R13: 0000000000000000 R14: 00007fa137ee5fa0 R15: 00007fff9d12a048
[   84.758503][ T6831]  </TASK>
[   84.807466][ T6831] loop3: detected capacity change from 0 to 512
[   84.827084][ T6831] EXT4-fs: Ignoring removed oldalloc option
[   84.894717][ T6831] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1164: Parent and EA inode have the same ino 15
[   84.913282][ T6831] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1164: Parent and EA inode have the same ino 15
[   84.926754][ T6831] EXT4-fs (loop3): 1 orphan inode deleted
[   84.934240][ T6831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.007211][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.175255][ T6875] loop3: detected capacity change from 0 to 2048
[   85.187542][ T6875] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[   85.229292][ T6879] x_tables: eb_tables: snat.0 target: invalid size 16 (kernel) != (user) 0
[   85.497423][ T6898] loop3: detected capacity change from 0 to 128
[   85.578505][ T6902] netlink: 'syz.3.1191': attribute type 10 has an invalid length.
[   85.988097][ T6928] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[   86.016463][ T6929] loop2: detected capacity change from 0 to 1024
[   86.034593][ T6929] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   86.065599][ T6929] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   86.083336][ T6929] EXT4-fs (loop2): orphan cleanup on readonly fs
[   86.127839][ T6929] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   86.153329][ T6929] EXT4-fs (loop2): Remounting filesystem read-only
[   86.171281][ T6929] EXT4-fs (loop2): 1 orphan inode deleted
[   86.178045][ T6929] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   86.191456][ T6929] SELinux: (dev loop2, type ext4) getxattr errno 5
[   86.214213][ T6929] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.238796][ T6937] netlink: 'syz.0.1205': attribute type 10 has an invalid length.
[   86.308781][ T6944] bond1: entered promiscuous mode
[   86.313855][ T6944] bond1: entered allmulticast mode
[   86.321030][ T6944] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.339065][ T6943] loop3: detected capacity change from 0 to 1024
[   86.346156][ T6954] loop1: detected capacity change from 0 to 512
[   86.366347][ T6944] bond1 (unregistering): Released all slaves
[   86.395291][ T6954] EXT4-fs (loop1): external journal device major/minor numbers have changed
[   86.408493][ T6943] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1208: Failed to acquire dquot type 0
[   86.422130][ T6943] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   86.439277][ T6943] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.1208: corrupted inode contents
[   86.452902][ T6943] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #13: comm syz.3.1208: mark_inode_dirty error
[   86.465166][ T6962] netlink: 'syz.2.1213': attribute type 1 has an invalid length.
[   86.477652][ T6943] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.1208: corrupted inode contents
[   86.518797][ T6954] EXT4-fs (loop1): failed to open journal device unknown-block(11,127) -6
[   86.527721][ T6943] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.1208: mark_inode_dirty error
[   86.554162][ T6943] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.1208: corrupted inode contents
[   86.567068][ T6943] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   86.577469][ T6943] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #13: comm syz.3.1208: corrupted inode contents
[   86.613316][ T6943] EXT4-fs error (device loop3): ext4_truncate:4240: inode #13: comm syz.3.1208: mark_inode_dirty error
[   86.624779][ T6981] tipc: New replicast peer: 0000:0000:0000:0000:0000:0000:0000:0001
[   86.633424][ T6981] tipc: Enabled bearer <udp:syz0>, priority 10
[   86.641336][ T6943] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   86.651126][ T6943] EXT4-fs (loop3): 1 truncate cleaned up
[   86.657327][ T6943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.677806][ T6987] SET target dimension over the limit!
[   86.704626][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.714457][ T6991] netlink: 'syz.2.1222': attribute type 13 has an invalid length.
[   86.724679][ T6991] gretap0: refused to change device tx_queue_len
[   86.731111][ T6991] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   86.772191][ T6993] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   86.829440][ T6999] loop4: detected capacity change from 0 to 2048
[   86.881242][ T7011] __nla_validate_parse: 11 callbacks suppressed
[   86.881259][ T7011] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1231'.
[   86.900308][ T6999] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.918530][ T7011] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1231'.
[   86.980666][ T7011] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1231'.
[   86.985762][ T6999] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[   87.001764][ T7011] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1231'.
[   87.004428][ T6999] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 32 with max blocks 1 with error 28
[   87.025198][ T6999] EXT4-fs (loop4): This should not happen!! Data will be lost
[   87.025198][ T6999] 
[   87.034948][ T6999] EXT4-fs (loop4): Total free blocks count 0
[   87.041254][ T6999] EXT4-fs (loop4): Free/Dirty block details
[   87.047178][ T6999] EXT4-fs (loop4): free_blocks=4096
[   87.047337][ T7021] loop3: detected capacity change from 0 to 1024
[   87.052659][ T6999] EXT4-fs (loop4): dirty_blocks=16
[   87.063949][ T6999] EXT4-fs (loop4): Block reservation details
[   87.070146][ T6999] EXT4-fs (loop4): i_reserved_data_blocks=1
[   87.075091][ T7021] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   87.087429][ T7021] JBD2: no valid journal superblock found
[   87.093174][ T7021] EXT4-fs (loop3): Could not load journal inode
[   87.113087][ T7026] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1237'.
[   87.135256][ T7011] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1231'.
[   87.159263][ T7026] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1237'.
[   87.168780][ T7011] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1231'.
[   87.187657][ T7026] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1237'.
[   87.196743][ T7026] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1237'.
[   87.243815][ T7036] netlink: 'syz.0.1240': attribute type 8 has an invalid length.
[   87.254881][ T7032] loop1: detected capacity change from 0 to 1024
[   87.263418][ T7032] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   87.269646][ T7039] syz.3.1241[7039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.274579][ T7032] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   87.277190][ T7039] syz.3.1241[7039] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.302019][ T7032] EXT4-fs (loop1): orphan cleanup on readonly fs
[   87.329215][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.340899][ T7032] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   87.351092][ T7032] EXT4-fs (loop1): Remounting filesystem read-only
[   87.365187][ T7032] EXT4-fs (loop1): 1 orphan inode deleted
[   87.394235][ T7032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   87.408522][ T7032] SELinux: (dev loop1, type ext4) getxattr errno 5
[   87.415445][ T7032] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.449753][ T7054] vlan2: entered allmulticast mode
[   87.518713][ T7058] syz.2.1250[7058] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.518790][ T7058] syz.2.1250[7058] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.635420][ T7065] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   87.654194][ T7073] loop3: detected capacity change from 0 to 1024
[   87.670173][ T7075] netlink: 'syz.0.1256': attribute type 10 has an invalid length.
[   87.697078][ T7073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.746925][ T7073] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.3.1255: corrupted in-inode xattr: bad magic number in in-inode xattr
[   87.820490][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.900905][ T7106] loop4: detected capacity change from 0 to 512
[   87.915290][ T7106] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   87.938885][ T7106] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #17: comm syz.4.1266: iget: bad i_size value: -6917529027641081756
[   87.953266][ T7106] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1266: couldn't read orphan inode 17 (err -117)
[   87.988430][ T7106] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.059405][ T7116] FAULT_INJECTION: forcing a failure.
[   88.059405][ T7116] name failslab, interval 1, probability 0, space 0, times 0
[   88.072159][ T7116] CPU: 0 UID: 0 PID: 7116 Comm: syz.1.1269 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[   88.082987][ T7116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   88.093084][ T7116] Call Trace:
[   88.096376][ T7116]  <TASK>
[   88.099321][ T7116]  dump_stack_lvl+0xf2/0x150
[   88.104013][ T7116]  dump_stack+0x15/0x1a
[   88.108208][ T7116]  should_fail_ex+0x223/0x230
[   88.112909][ T7116]  should_failslab+0x8f/0xb0
[   88.117528][ T7116]  kmem_cache_alloc_noprof+0x52/0x320
[   88.122940][ T7116]  ? getname_flags+0x81/0x3b0
[   88.127677][ T7116]  ? should_fail_ex+0xd7/0x230
[   88.132526][ T7116]  getname_flags+0x81/0x3b0
[   88.137051][ T7116]  user_path_at+0x26/0x120
[   88.141491][ T7116]  __se_sys_mount+0x248/0x2d0
[   88.146203][ T7116]  __x64_sys_mount+0x67/0x80
[   88.150835][ T7116]  x64_sys_call+0x2c84/0x2dc0
[   88.155568][ T7116]  do_syscall_64+0xc9/0x1c0
[   88.160106][ T7116]  ? clear_bhb_loop+0x55/0xb0
[   88.164812][ T7116]  ? clear_bhb_loop+0x55/0xb0
[   88.169513][ T7116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.175444][ T7116] RIP: 0033:0x7f84d20a5d29
[   88.179870][ T7116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.199543][ T7116] RSP: 002b:00007f84d0717038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   88.208115][ T7116] RAX: ffffffffffffffda RBX: 00007f84d2295fa0 RCX: 00007f84d20a5d29
[   88.216169][ T7116] RDX: 0000000020000080 RSI: 0000000020000300 RDI: 0000000000000000
[   88.224273][ T7116] RBP: 00007f84d0717090 R08: 0000000020000000 R09: 0000000000000000
[   88.232268][ T7116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.240254][ T7116] R13: 0000000000000000 R14: 00007f84d2295fa0 R15: 00007ffd4a983bf8
[   88.248355][ T7116]  </TASK>
[   88.270542][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.444986][ T7148] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   88.532210][ T7155] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.548249][ T7162] tipc: Started in network mode
[   88.553187][ T7162] tipc: Node identity 7f000001, cluster identity 4711
[   88.562257][ T7162] tipc: Enabled bearer <udp:syz2>, priority 10
[   88.571145][ T7162] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[   88.621941][ T7155] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.688063][ T7169] bond2: entered promiscuous mode
[   88.693185][ T7169] bond2: entered allmulticast mode
[   88.698672][ T7169] 8021q: adding VLAN 0 to HW filter on device bond2
[   88.729287][ T7155] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.780886][ T7155] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.865637][ T7155] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.889731][ T7155] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.908831][ T7155] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.911930][ T7187] loop3: detected capacity change from 0 to 2048
[   88.920623][ T7155] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.950173][   T29] kauditd_printk_skb: 224 callbacks suppressed
[   88.950188][   T29] audit: type=1400 audit(1736086736.903:2779): avc:  denied  { mount } for  pid=7186 comm="syz.3.1292" name="/" dev="loop3" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   89.050067][   T29] audit: type=1400 audit(1736086737.003:2780): avc:  denied  { unmount } for  pid=3311 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   89.121833][ T7193] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   89.129777][ T7193] batman_adv: batadv0: Removing interface: batadv_slave_0
[   89.137925][ T7193] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.145373][ T7193] batman_adv: batadv0: Removing interface: batadv_slave_1
[   89.285097][   T29] audit: type=1400 audit(1736086737.223:2781): avc:  denied  { egress } for  pid=7195 comm="syz.1.1297" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[   89.308801][   T29] audit: type=1400 audit(1736086737.223:2782): avc:  denied  { sendto } for  pid=7195 comm="syz.1.1297" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1
[   89.533886][   T29] audit: type=1400 audit(1736086737.473:2783): avc:  denied  { unlink } for  pid=3300 comm="syz-executor" name="bus" dev="tmpfs" ino=1571 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[   89.590005][ T7203] bond1: entered promiscuous mode
[   89.595156][ T7203] bond1: entered allmulticast mode
[   89.612047][ T7203] 8021q: adding VLAN 0 to HW filter on device bond1
[   89.648215][ T7203] bond1 (unregistering): Released all slaves
[   89.687391][ T4409] tipc: Node number set to 2130706433
[   89.892505][   T29] audit: type=1326 audit(1736086737.833:2784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7212 comm="syz.3.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa137cf5d29 code=0x7ffc0000
[   89.916346][   T29] audit: type=1326 audit(1736086737.833:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7212 comm="syz.3.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa137cf5d29 code=0x7ffc0000
[   89.947007][   T29] audit: type=1326 audit(1736086737.893:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7212 comm="syz.3.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa137cf5d29 code=0x7ffc0000
[   89.970607][   T29] audit: type=1326 audit(1736086737.893:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7212 comm="syz.3.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa137cf5d29 code=0x7ffc0000
[   89.994086][   T29] audit: type=1326 audit(1736086737.893:2788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7212 comm="syz.3.1302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa137cf5d29 code=0x7ffc0000
[   90.025146][ T7213] FAULT_INJECTION: forcing a failure.
[   90.025146][ T7213] name failslab, interval 1, probability 0, space 0, times 0
[   90.037831][ T7213] CPU: 0 UID: 0 PID: 7213 Comm: syz.3.1302 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[   90.048712][ T7213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   90.058779][ T7213] Call Trace:
[   90.062064][ T7213]  <TASK>
[   90.064999][ T7213]  dump_stack_lvl+0xf2/0x150
[   90.069622][ T7213]  dump_stack+0x15/0x1a
[   90.073854][ T7213]  should_fail_ex+0x223/0x230
[   90.078629][ T7213]  should_failslab+0x8f/0xb0
[   90.083399][ T7213]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   90.089755][ T7213]  ? sidtab_sid2str_get+0xb8/0x140
[   90.094979][ T7213]  kmemdup_noprof+0x2a/0x60
[   90.099512][ T7213]  sidtab_sid2str_get+0xb8/0x140
[   90.104472][ T7213]  security_sid_to_context_core+0x1eb/0x2f0
[   90.110388][ T7213]  security_sid_to_context+0x27/0x30
[   90.115766][ T7213]  selinux_lsmprop_to_secctx+0x2c/0x40
[   90.121358][ T7213]  security_lsmprop_to_secctx+0x4a/0x90
[   90.126975][ T7213]  audit_log_task_context+0x93/0x1c0
[   90.132324][ T7213]  audit_log_task+0xf9/0x1c0
[   90.136968][ T7213]  audit_seccomp+0x68/0x130
[   90.141605][ T7213]  __seccomp_filter+0x6fa/0x1180
[   90.146649][ T7213]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   90.152349][ T7213]  ? vfs_write+0x596/0x920
[   90.156798][ T7213]  __secure_computing+0x9f/0x1c0
[   90.161784][ T7213]  syscall_trace_enter+0xd1/0x1f0
[   90.166883][ T7213]  ? fpregs_assert_state_consistent+0x83/0xa0
[   90.172973][ T7213]  do_syscall_64+0xaa/0x1c0
[   90.177490][ T7213]  ? clear_bhb_loop+0x55/0xb0
[   90.182175][ T7213]  ? clear_bhb_loop+0x55/0xb0
[   90.186935][ T7213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.192916][ T7213] RIP: 0033:0x7fa137cf5d29
[   90.197431][ T7213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.217118][ T7213] RSP: 002b:00007fa136367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000132
[   90.225605][ T7213] RAX: ffffffffffffffda RBX: 00007fa137ee5fa0 RCX: 00007fa137cf5d29
[   90.233584][ T7213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   90.241566][ T7213] RBP: 00007fa136367090 R08: 0000000000000000 R09: 0000000000000000
[   90.249550][ T7213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.257528][ T7213] R13: 0000000000000000 R14: 00007fa137ee5fa0 R15: 00007fff9d12a048
[   90.265513][ T7213]  </TASK>
[   90.351988][ T7231] rdma_op ffff888131d89580 conn xmit_rdma 0000000000000000
[   90.421689][ T7233] RDS: rds_bind could not find a transport for ::ffff:10.1.1.2, load rds_tcp or rds_rdma?
[   90.490462][ T7240] bridge_slave_1: left allmulticast mode
[   90.496209][ T7240] bridge_slave_1: left promiscuous mode
[   90.502162][ T7240] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.510260][ T7240] bridge_slave_0: left allmulticast mode
[   90.515974][ T7240] bridge_slave_0: left promiscuous mode
[   90.521759][ T7240] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.580791][ T7241] bpf_get_probe_write_proto: 4 callbacks suppressed
[   90.580808][ T7241] syz.0.1312[7241] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.588478][ T7241] syz.0.1312[7241] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.600349][ T7241] syz.0.1312[7241] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.614530][ T7241] netlink: 'syz.0.1312': attribute type 4 has an invalid length.
[   90.651673][ T7241] netlink: 'syz.0.1312': attribute type 4 has an invalid length.
[   90.724837][ T7247] bond1: entered promiscuous mode
[   90.729958][ T7247] bond1: entered allmulticast mode
[   90.736154][ T7247] 8021q: adding VLAN 0 to HW filter on device bond1
[   90.754419][ T7247] bond1 (unregistering): Released all slaves
[   90.908806][ T7197] Set syz1 is full, maxelem 65536 reached
[   90.953325][ T7263] xt_HMARK: spi-set and port-set can't be combined
[   91.012757][ T7270] netlink: 'syz.2.1325': attribute type 13 has an invalid length.
[   91.022005][ T7270] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.030422][ T7270] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.038832][ T7270] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.047272][ T7270] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   91.183602][ T7292] tipc: Started in network mode
[   91.188708][ T7292] tipc: Node identity 00000000000000000000000200000001, cluster identity 4711
[   91.197679][ T7292] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[   91.323184][ T7299] loop2: detected capacity change from 0 to 1024
[   91.329436][ T7302] loop4: detected capacity change from 0 to 256
[   91.403997][ T7302] FAT-fs (loop4): bogus number of FAT sectors
[   91.410171][ T7302] FAT-fs (loop4): Can't find a valid FAT filesystem
[   91.731851][ T7307] loop2: detected capacity change from 0 to 2048
[   91.795340][ T7317] 8021q: adding VLAN 0 to HW filter on device batadv1
[   91.808424][ T7316] loop3: detected capacity change from 0 to 1764
[   91.840506][ T7307] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.863524][ T7316] ISOFS: unable to read i-node block
[   91.868983][ T7316] isofs_fill_super: get root inode failed
[   92.044889][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.108747][ T3376] hid-generic 000B:0009:0002.0003: item fetching failed at offset 0/3
[   92.124915][ T7330] netlink: 'syz.0.1345': attribute type 39 has an invalid length.
[   92.137225][ T3376] hid-generic 000B:0009:0002.0003: probe with driver hid-generic failed with error -22
[   92.196085][ T7329] loop3: detected capacity change from 0 to 1024
[   92.205878][ T7330] veth1_macvtap: left promiscuous mode
[   92.212868][ T7329] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   92.223025][ T7329] EXT4-fs (loop3): group descriptors corrupted!
[   92.332906][ T7337] loop2: detected capacity change from 0 to 128
[   92.361917][ T7341] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   92.370344][ T7341] syz.0.1349[7341] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.370418][ T7341] syz.0.1349[7341] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.381846][ T7341] syz.0.1349[7341] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.408870][ T7345] __nla_validate_parse: 87 callbacks suppressed
[   92.408889][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.435561][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.444815][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.466408][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.475481][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.484496][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.536527][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.537003][ T7355] netlink: 'syz.4.1353': attribute type 29 has an invalid length.
[   92.545558][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.562378][ T7345] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1351'.
[   92.623382][ T7362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1356'.
[   92.665368][ T7367] syz.0.1358[7367] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.665435][ T7367] syz.0.1358[7367] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.695833][ T7370] syz.2.1359[7370] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.696145][ T7368] loop4: detected capacity change from 0 to 1024
[   92.716033][ T7371] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   92.719742][ T7367] syz.0.1358[7367] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.730683][ T7370] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   92.733017][ T7368] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   92.767614][ T7368] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   92.784200][ T7368] EXT4-fs (loop4): orphan cleanup on readonly fs
[   92.807257][ T7368] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   92.820456][ T7376] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   92.828699][ T7368] EXT4-fs (loop4): Remounting filesystem read-only
[   92.835459][ T7368] EXT4-fs (loop4): 1 orphan inode deleted
[   92.842697][ T7368] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   92.855339][ T7368] SELinux: (dev loop4, type ext4) getxattr errno 5
[   92.862757][ T7368] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.893890][ T7378] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   93.067628][ T7393] FAULT_INJECTION: forcing a failure.
[   93.067628][ T7393] name failslab, interval 1, probability 0, space 0, times 0
[   93.080345][ T7393] CPU: 1 UID: 0 PID: 7393 Comm: syz.2.1369 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[   93.091109][ T7393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   93.101183][ T7393] Call Trace:
[   93.104468][ T7393]  <TASK>
[   93.107412][ T7393]  dump_stack_lvl+0xf2/0x150
[   93.112055][ T7393]  dump_stack+0x15/0x1a
[   93.116309][ T7393]  should_fail_ex+0x223/0x230
[   93.121041][ T7393]  ? resv_map_alloc+0x57/0x190
[   93.125883][ T7393]  should_failslab+0x8f/0xb0
[   93.130491][ T7393]  __kmalloc_cache_noprof+0x4e/0x320
[   93.135789][ T7393]  resv_map_alloc+0x57/0x190
[   93.140436][ T7393]  hugetlbfs_get_inode+0x64/0x380
[   93.145530][ T7393]  hugetlb_file_setup+0x188/0x3c0
[   93.150617][ T7393]  ksys_mmap_pgoff+0x172/0x330
[   93.155412][ T7393]  x64_sys_call+0x1940/0x2dc0
[   93.160174][ T7393]  do_syscall_64+0xc9/0x1c0
[   93.164723][ T7393]  ? clear_bhb_loop+0x55/0xb0
[   93.169441][ T7393]  ? clear_bhb_loop+0x55/0xb0
[   93.174214][ T7393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.180133][ T7393] RIP: 0033:0x7f3fd8145d29
[   93.184605][ T7393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.204263][ T7393] RSP: 002b:00007f3fd67b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   93.212730][ T7393] RAX: ffffffffffffffda RBX: 00007f3fd8335fa0 RCX: 00007f3fd8145d29
[   93.220712][ T7393] RDX: 0000000001000009 RSI: 0000000000c00000 RDI: 0000000020400000
[   93.228763][ T7393] RBP: 00007f3fd67b7090 R08: ffffffffffffffff R09: 0000000000000000
[   93.236828][ T7393] R10: 0000000000050032 R11: 0000000000000246 R12: 0000000000000001
[   93.244915][ T7393] R13: 0000000000000000 R14: 00007f3fd8335fa0 R15: 00007ffe42332e88
[   93.252964][ T7393]  </TASK>
[   93.325558][ T7400] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   93.562866][ T7434] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   93.835192][ T7464] FAULT_INJECTION: forcing a failure.
[   93.835192][ T7464] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   93.848320][ T7464] CPU: 0 UID: 0 PID: 7464 Comm: syz.1.1395 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[   93.859119][ T7464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   93.869305][ T7464] Call Trace:
[   93.872603][ T7464]  <TASK>
[   93.875623][ T7464]  dump_stack_lvl+0xf2/0x150
[   93.880368][ T7464]  dump_stack+0x15/0x1a
[   93.884562][ T7464]  should_fail_ex+0x223/0x230
[   93.889331][ T7464]  should_fail+0xb/0x10
[   93.893504][ T7464]  should_fail_usercopy+0x1a/0x20
[   93.898622][ T7464]  _copy_to_user+0x20/0xa0
[   93.903132][ T7464]  simple_read_from_buffer+0xa0/0x110
[   93.908545][ T7464]  proc_fail_nth_read+0xf9/0x140
[   93.913547][ T7464]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   93.919259][ T7464]  vfs_read+0x1a2/0x700
[   93.923538][ T7464]  ? __rcu_read_unlock+0x4e/0x70
[   93.928576][ T7464]  ? __fget_files+0x17c/0x1c0
[   93.933370][ T7464]  ksys_read+0xe8/0x1b0
[   93.937624][ T7464]  __x64_sys_read+0x42/0x50
[   93.942260][ T7464]  x64_sys_call+0x2874/0x2dc0
[   93.947000][ T7464]  do_syscall_64+0xc9/0x1c0
[   93.951616][ T7464]  ? clear_bhb_loop+0x55/0xb0
[   93.956327][ T7464]  ? clear_bhb_loop+0x55/0xb0
[   93.961047][ T7464]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.961726][   T29] kauditd_printk_skb: 123 callbacks suppressed
[   93.961743][   T29] audit: type=1400 audit(1736086741.913:2907): avc:  denied  { create } for  pid=7450 comm="syz.4.1390" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   93.966963][ T7464] RIP: 0033:0x7f84d20a473c
[   93.966988][ T7464] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   94.016604][ T7464] RSP: 002b:00007f84d0717030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   94.025036][ T7464] RAX: ffffffffffffffda RBX: 00007f84d2295fa0 RCX: 00007f84d20a473c
[   94.033059][ T7464] RDX: 000000000000000f RSI: 00007f84d07170a0 RDI: 0000000000000003
[   94.041073][ T7464] RBP: 00007f84d0717090 R08: 0000000000000000 R09: 0000000000000000
[   94.049063][ T7464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.057054][ T7464] R13: 0000000000000000 R14: 00007f84d2295fa0 R15: 00007ffd4a983bf8
[   94.065039][ T7464]  </TASK>
[   94.123494][ T7470] loop1: detected capacity change from 0 to 1024
[   94.133088][ T7470] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   94.144802][ T7470] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   94.152949][ T7470] EXT4-fs (loop1): orphan cleanup on readonly fs
[   94.161040][ T7470] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   94.170829][ T7470] EXT4-fs (loop1): Remounting filesystem read-only
[   94.177847][ T7470] Quota error (device loop1): write_blk: dquota write failed
[   94.185292][ T7470] Quota error (device loop1): write_blk: dquota write failed
[   94.192853][ T7470] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[   94.203409][ T7470] Quota error (device loop1): v2_write_file_info: Can't write info structure
[   94.213412][ T7470] EXT4-fs (loop1): 1 orphan inode deleted
[   94.220206][ T7470] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   94.232345][ T7470] SELinux: (dev loop1, type ext4) getxattr errno 5
[   94.240977][ T7470] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.305267][   T29] audit: type=1400 audit(1736086742.253:2908): avc:  denied  { associate } for  pid=7480 comm="syz.0.1398" name="core" scontext=root:object_r:etc_runtime_t tcontext=system_u:object_r:root_t tclass=filesystem permissive=1
[   94.335990][   T29] audit: type=1326 audit(1736086742.283:2909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7481 comm="syz.0.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa7d15d29 code=0x7ffc0000
[   94.359581][   T29] audit: type=1326 audit(1736086742.283:2910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7481 comm="syz.0.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa7d15d29 code=0x7ffc0000
[   94.383373][   T29] audit: type=1326 audit(1736086742.283:2911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7481 comm="syz.0.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f2fa7d15d29 code=0x7ffc0000
[   94.407426][   T29] audit: type=1326 audit(1736086742.283:2912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7481 comm="syz.0.1401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fa7d15d29 code=0x7ffc0000
[   94.474752][ T7488] loop3: detected capacity change from 0 to 512
[   94.509765][ T7488] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1404: corrupted in-inode xattr: invalid ea_ino
[   94.547439][ T7488] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1404: couldn't read orphan inode 15 (err -117)
[   94.592000][ T7486] x_tables: eb_tables: snat.0 target: invalid size 16 (kernel) != (user) 0
[   94.751547][ T7504] loop2: detected capacity change from 0 to 1024
[   94.758950][ T7504] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   94.959745][ T7513] loop2: detected capacity change from 0 to 512
[   94.986636][ T7517] wireguard0: entered promiscuous mode
[   94.992185][ T7517] wireguard0: entered allmulticast mode
[   95.015351][ T7513] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   95.176145][ T7527] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   95.201261][ T7529] SET target dimension over the limit!
[   95.361323][ T7540] dvmrp0: entered allmulticast mode
[   95.370417][ T7540] pimreg: entered allmulticast mode
[   95.448771][ T7541] loop3: detected capacity change from 0 to 1024
[   95.514153][ T7541] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   95.528037][ T7541] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   95.536457][ T7541] EXT4-fs (loop3): orphan cleanup on readonly fs
[   95.544093][ T7547] netlink: 'syz.4.1426': attribute type 6 has an invalid length.
[   95.551930][ T7547] netlink: 'syz.4.1426': attribute type 5 has an invalid length.
[   95.567105][ T7541] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   95.578186][ T7551] futex_wake_op: syz.0.1425 tries to shift op by -1; fix this program
[   95.591108][ T7541] EXT4-fs (loop3): Remounting filesystem read-only
[   95.598083][ T7541] EXT4-fs (loop3): 1 orphan inode deleted
[   95.614628][ T7541] SELinux: (dev loop3, type ext4) getxattr errno 5
[   95.654357][ T7555] SET target dimension over the limit!
[   95.715645][ T7558] loop2: detected capacity change from 0 to 2048
[   95.863296][ T7573] xt_TPROXY: Can be used only with -p tcp or -p udp
[   96.011790][ T7587] netlink: 'syz.0.1443': attribute type 10 has an invalid length.
[   96.162151][ T7598] netlink: 'syz.1.1448': attribute type 8 has an invalid length.
[   96.272713][ T7606] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[   96.351955][ T7610] loop3: detected capacity change from 0 to 1024
[   96.490175][ T7635] netlink: 'syz.2.1461': attribute type 10 has an invalid length.
[   96.558664][ T7636] loop1: detected capacity change from 0 to 1024
[   96.568802][ T7643] xt_hashlimit: max too large, truncated to 1048576
[   96.599068][ T7636] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   96.728503][ T7636] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   96.736702][ T7636] EXT4-fs (loop1): orphan cleanup on readonly fs
[   96.767758][ T7636] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   96.781391][ T7666] loop3: detected capacity change from 0 to 512
[   96.789213][ T7666] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.1465: casefold flag without casefold feature
[   96.792744][ T7636] EXT4-fs (loop1): Remounting filesystem read-only
[   96.802451][ T7666] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1465: couldn't read orphan inode 15 (err -117)
[   96.817565][ T7636] EXT4-fs (loop1): 1 orphan inode deleted
[   96.829928][ T7636] SELinux: (dev loop1, type ext4) getxattr errno 5
[   97.120192][ T7696] hub 6-0:1.0: USB hub found
[   97.124866][ T7696] hub 6-0:1.0: 8 ports detected
[   97.197247][ T7703] loop2: detected capacity change from 0 to 512
[   97.210702][ T7703] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.242614][ T7709] netlink: 'syz.4.1477': attribute type 9 has an invalid length.
[   97.249865][ T7703] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[   97.258511][ T7703] System zones: 0-2, 18-18, 34-35
[   97.569757][ T7748] loop3: detected capacity change from 0 to 512
[   97.577857][ T7748] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.587101][ T7748] EXT4-fs (loop3): orphan cleanup on readonly fs
[   97.598891][ T7748] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1489: bg 0: block 248: padding at end of block bitmap is not set
[   97.629424][ T7748] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1489: Failed to acquire dquot type 1
[   97.647755][ T7748] EXT4-fs (loop3): 1 truncate cleaned up
[   97.706063][ T7762] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   97.767541][ T7769] __nla_validate_parse: 14 callbacks suppressed
[   97.767560][ T7769] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1501'.
[   97.811692][ T7771] loop4: detected capacity change from 0 to 1024
[   97.825883][ T7771] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   97.839536][ T7774] ieee802154 phy0 wpan0: encryption failed: -22
[   97.850372][ T7771] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   97.858860][ T7771] EXT4-fs (loop4): orphan cleanup on readonly fs
[   97.872239][ T7771] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   97.884004][ T7771] EXT4-fs (loop4): Remounting filesystem read-only
[   97.893112][ T7777] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1503'.
[   97.903182][ T7771] EXT4-fs (loop4): 1 orphan inode deleted
[   97.916953][ T7771] SELinux: (dev loop4, type ext4) getxattr errno 5
[   97.987148][ T7779] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1504'.
[   98.007629][ T7779] netlink: 'syz.0.1504': attribute type 10 has an invalid length.
[   98.444734][ T7793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1511'.
[   98.453800][ T7793] netlink: 'syz.0.1511': attribute type 21 has an invalid length.
[   98.518385][ T7798] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1513'.
[   98.580410][ T7803] netlink: 'syz.4.1516': attribute type 4 has an invalid length.
[   98.592229][ T7801] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   98.602095][ T7803] netlink: 'syz.4.1516': attribute type 4 has an invalid length.
[   98.618606][ T7804] loop2: detected capacity change from 0 to 512
[   98.691007][ T7804] ext4 filesystem being mounted at /351/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.725554][ T7791] ip6t_REJECT: ECHOREPLY is not supported
[   98.740958][ T7813] ip6gre1: entered allmulticast mode
[   98.980574][   T29] kauditd_printk_skb: 330 callbacks suppressed
[   98.980645][   T29] audit: type=1326 audit(1736087771.921:3229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f84d20a5db7 code=0x7ffc0000
[   99.081352][ T7774] loop1: detected capacity change from 0 to 8192
[   99.091724][   T29] audit: type=1326 audit(1736087772.021:3230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84d20a4690 code=0x7ffc0000
[   99.115234][   T29] audit: type=1326 audit(1736087772.021:3231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f84d20a592b code=0x7ffc0000
[   99.160757][ T7823] loop4: detected capacity change from 0 to 1024
[   99.177031][ T7823] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   99.193638][ T7774] vfat: Unknown parameter './file0'
[   99.228045][ T7823] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   99.242544][ T7823] EXT4-fs (loop4): orphan cleanup on readonly fs
[   99.310429][   T29] audit: type=1326 audit(1736087772.121:3232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f84d20a498a code=0x7ffc0000
[   99.333786][   T29] audit: type=1326 audit(1736087772.121:3233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f84d20a498a code=0x7ffc0000
[   99.357307][   T29] audit: type=1326 audit(1736087772.121:3234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f84d20a4597 code=0x7ffc0000
[   99.380840][   T29] audit: type=1326 audit(1736087772.141:3235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f84d20a74ca code=0x7ffc0000
[   99.404391][   T29] audit: type=1326 audit(1736087772.151:3236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84d20a4690 code=0x7ffc0000
[   99.427935][   T29] audit: type=1326 audit(1736087772.151:3237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f84d20a592b code=0x7ffc0000
[   99.451269][   T29] audit: type=1326 audit(1736087772.151:3238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7773 comm="syz.1.1502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f84d20a498a code=0x7ffc0000
[   99.476887][ T7823] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   99.516463][ T7832] SET target dimension over the limit!
[   99.531577][ T7823] EXT4-fs (loop4): Remounting filesystem read-only
[   99.540163][ T7823] EXT4-fs (loop4): 1 orphan inode deleted
[   99.565682][ T7823] SELinux: (dev loop4, type ext4) getxattr errno 5
[   99.591738][ T7838] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   99.607130][ T7837] netlink: 268 bytes leftover after parsing attributes in process `syz.3.1529'.
[   99.627031][ T7844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1532'.
[   99.770697][ T7852] bond2: entered promiscuous mode
[   99.775808][ T7852] bond2: entered allmulticast mode
[   99.785673][ T7852] 8021q: adding VLAN 0 to HW filter on device bond2
[   99.791292][ T7858] loop2: detected capacity change from 0 to 1024
[   99.821426][ T7852] bond2 (unregistering): Released all slaves
[   99.831047][ T7858] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   99.841975][ T7858] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   99.853168][ T7858] JBD2: no valid journal superblock found
[   99.858930][ T7858] EXT4-fs (loop2): Could not load journal inode
[   99.869624][ T7865] netlink: 'syz.0.1540': attribute type 4 has an invalid length.
[   99.903923][ T7865] netlink: 'syz.0.1540': attribute type 4 has an invalid length.
[  100.046237][ T7862] bpf_get_probe_write_proto: 2 callbacks suppressed
[  100.046254][ T7862] syz.3.1539[7862] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.053130][ T7862] syz.3.1539[7862] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.065162][ T7862] syz.3.1539[7862] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.144979][ T7889] loop4: detected capacity change from 0 to 512
[  100.172849][ T7889] EXT4-fs mount: 24 callbacks suppressed
[  100.172866][ T7889] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.191196][ T7889] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.218418][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.245933][ T7899] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1554'.
[  100.250585][ T7897] bridge0: port 2(vlan3) entered blocking state
[  100.261152][ T7897] bridge0: port 2(vlan3) entered disabled state
[  100.268816][ T7897] vlan3: entered allmulticast mode
[  100.274907][ T7897] vlan3: left allmulticast mode
[  100.301370][ T7903] loop4: detected capacity change from 0 to 512
[  100.327199][ T7903] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.342788][ T7909] xt_CT: You must specify a L4 protocol and not use inversions on it
[  100.357654][ T7903] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.381519][ T7911] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1557'.
[  100.435169][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.449328][ T7918] FAULT_INJECTION: forcing a failure.
[  100.449328][ T7918] name failslab, interval 1, probability 0, space 0, times 0
[  100.462032][ T7918] CPU: 1 UID: 0 PID: 7918 Comm: syz.1.1560 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  100.468684][ T7919] loop2: detected capacity change from 0 to 1024
[  100.472718][ T7918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  100.472765][ T7918] Call Trace:
[  100.472773][ T7918]  <TASK>
[  100.472783][ T7918]  dump_stack_lvl+0xf2/0x150
[  100.500228][ T7918]  dump_stack+0x15/0x1a
[  100.504400][ T7918]  should_fail_ex+0x223/0x230
[  100.509140][ T7918]  should_failslab+0x8f/0xb0
[  100.513770][ T7918]  __kmalloc_noprof+0xab/0x3f0
[  100.518699][ T7918]  ? bpf_test_init+0xc7/0x170
[  100.523389][ T7918]  ? _parse_integer+0x27/0x30
[  100.528074][ T7918]  bpf_test_init+0xc7/0x170
[  100.532589][ T7918]  bpf_prog_test_run_skb+0x153/0xc00
[  100.532982][ T7919] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.537917][ T7918]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  100.555700][ T7918]  bpf_prog_test_run+0x20f/0x3a0
[  100.560721][ T7918]  __sys_bpf+0x400/0x7a0
[  100.565072][ T7918]  __x64_sys_bpf+0x43/0x50
[  100.569520][ T7918]  x64_sys_call+0x2914/0x2dc0
[  100.574202][ T7918]  do_syscall_64+0xc9/0x1c0
[  100.578736][ T7918]  ? clear_bhb_loop+0x55/0xb0
[  100.583410][ T7918]  ? clear_bhb_loop+0x55/0xb0
[  100.588104][ T7918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.594029][ T7918] RIP: 0033:0x7f84d20a5d29
[  100.598438][ T7918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.618052][ T7918] RSP: 002b:00007f84d0717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  100.626571][ T7918] RAX: ffffffffffffffda RBX: 00007f84d2295fa0 RCX: 00007f84d20a5d29
[  100.634552][ T7918] RDX: 000000000000001e RSI: 0000000020000080 RDI: 000000000000000a
[  100.642518][ T7918] RBP: 00007f84d0717090 R08: 0000000000000000 R09: 0000000000000000
[  100.650485][ T7918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.658484][ T7918] R13: 0000000000000000 R14: 00007f84d2295fa0 R15: 00007ffd4a983bf8
[  100.666545][ T7918]  </TASK>
[  100.672703][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.778863][ T7927] loop4: detected capacity change from 0 to 1024
[  100.786294][ T7927] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.817358][ T7933] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1567'.
[  100.845673][ T7927] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  100.858247][ T7927] EXT4-fs (loop4): orphan cleanup on readonly fs
[  100.860394][ T7940] 0ªX¹¦À: renamed from caif0
[  100.875125][ T7927] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  100.893019][ T7940] 0ªX¹¦À: entered allmulticast mode
[  100.895951][ T7927] EXT4-fs (loop4): Remounting filesystem read-only
[  100.898236][ T7940] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  100.907472][ T7927] EXT4-fs (loop4): 1 orphan inode deleted
[  100.926803][ T7927] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  100.938798][ T7927] SELinux: (dev loop4, type ext4) getxattr errno 5
[  100.945681][ T7927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.109274][ T7962] FAULT_INJECTION: forcing a failure.
[  101.109274][ T7962] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.122400][ T7962] CPU: 1 UID: 0 PID: 7962 Comm: syz.1.1577 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  101.133114][ T7962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  101.143179][ T7962] Call Trace:
[  101.146465][ T7962]  <TASK>
[  101.149474][ T7962]  dump_stack_lvl+0xf2/0x150
[  101.154112][ T7962]  dump_stack+0x15/0x1a
[  101.158299][ T7962]  should_fail_ex+0x223/0x230
[  101.163055][ T7962]  should_fail+0xb/0x10
[  101.167290][ T7962]  should_fail_usercopy+0x1a/0x20
[  101.172425][ T7962]  _copy_from_user+0x1e/0xb0
[  101.177133][ T7962]  copy_msghdr_from_user+0x54/0x2a0
[  101.182461][ T7962]  ? __fget_files+0x17c/0x1c0
[  101.187235][ T7962]  __sys_sendmsg+0x13e/0x230
[  101.191863][ T7962]  __x64_sys_sendmsg+0x46/0x50
[  101.196666][ T7962]  x64_sys_call+0x2734/0x2dc0
[  101.201444][ T7962]  do_syscall_64+0xc9/0x1c0
[  101.206030][ T7962]  ? clear_bhb_loop+0x55/0xb0
[  101.210726][ T7962]  ? clear_bhb_loop+0x55/0xb0
[  101.215411][ T7962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.221333][ T7962] RIP: 0033:0x7f84d20a5d29
[  101.225806][ T7962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.245420][ T7962] RSP: 002b:00007f84d0717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.253892][ T7962] RAX: ffffffffffffffda RBX: 00007f84d2295fa0 RCX: 00007f84d20a5d29
[  101.261910][ T7962] RDX: 0000000000040000 RSI: 0000000020000640 RDI: 0000000000000006
[  101.269893][ T7962] RBP: 00007f84d0717090 R08: 0000000000000000 R09: 0000000000000000
[  101.277872][ T7962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.285861][ T7962] R13: 0000000000000000 R14: 00007f84d2295fa0 R15: 00007ffd4a983bf8
[  101.293848][ T7962]  </TASK>
[  101.369581][ T3311] syz_tun: left allmulticast mode
[  101.374706][ T3311] syz_tun: left promiscuous mode
[  101.382118][ T3311] bridge0: port 3(vlan2) entered disabled state
[  101.405289][ T7975] x_tables: duplicate underflow at hook 2
[  101.444849][ T3311] vlan2 (unregistering): left promiscuous mode
[  101.451267][ T3311] bridge0: port 3(vlan2) entered disabled state
[  101.832706][ T7987] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  102.080010][ T7999] netlink: 'syz.0.1593': attribute type 10 has an invalid length.
[  102.154932][ T8002] loop2: detected capacity change from 0 to 512
[  102.176928][ T8007] xt_CT: No such helper "snmp"
[  102.184277][ T8002] EXT4-fs (loop2): too many log groups per flexible block group
[  102.192045][ T8002] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  102.199176][ T8002] EXT4-fs (loop2): mount failed
[  102.268866][ T8020] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  102.293216][ T8023] loop4: detected capacity change from 0 to 256
[  102.326358][ T8023] FAT-fs (loop4): Directory bread(block 64) failed
[  102.338204][ T8023] FAT-fs (loop4): Directory bread(block 65) failed
[  102.364962][ T8023] FAT-fs (loop4): Directory bread(block 66) failed
[  102.379760][ T8031] tmpfs: Bad value for 'mpol'
[  102.379851][ T8023] FAT-fs (loop4): Directory bread(block 67) failed
[  102.398763][ T8023] FAT-fs (loop4): Directory bread(block 68) failed
[  102.407307][ T8023] FAT-fs (loop4): Directory bread(block 69) failed
[  102.414112][ T8023] FAT-fs (loop4): Directory bread(block 70) failed
[  102.420722][ T8023] FAT-fs (loop4): Directory bread(block 71) failed
[  102.427348][ T8023] FAT-fs (loop4): Directory bread(block 72) failed
[  102.434001][ T8023] FAT-fs (loop4): Directory bread(block 73) failed
[  102.444623][ T8023] FAULT_INJECTION: forcing a failure.
[  102.444623][ T8023] name failslab, interval 1, probability 0, space 0, times 0
[  102.457283][ T8023] CPU: 1 UID: 0 PID: 8023 Comm: syz.4.1598 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  102.468043][ T8023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  102.478108][ T8023] Call Trace:
[  102.481397][ T8023]  <TASK>
[  102.484340][ T8023]  dump_stack_lvl+0xf2/0x150
[  102.489006][ T8023]  dump_stack+0x15/0x1a
[  102.493185][ T8023]  should_fail_ex+0x223/0x230
[  102.497915][ T8023]  should_failslab+0x8f/0xb0
[  102.502576][ T8023]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  102.508309][ T8023]  ? __d_alloc+0x3d/0x340
[  102.512650][ T8023]  ? __d_lookup+0x342/0x370
[  102.517169][ T8023]  __d_alloc+0x3d/0x340
[  102.521376][ T8023]  d_alloc+0x2e/0x100
[  102.525400][ T8023]  lookup_one_qstr_excl+0x97/0x1a0
[  102.530608][ T8023]  do_renameat2+0x432/0xa70
[  102.535200][ T8023]  __x64_sys_rename+0x58/0x70
[  102.539984][ T8023]  x64_sys_call+0x2b1c/0x2dc0
[  102.544670][ T8023]  do_syscall_64+0xc9/0x1c0
[  102.549183][ T8023]  ? clear_bhb_loop+0x55/0xb0
[  102.553867][ T8023]  ? clear_bhb_loop+0x55/0xb0
[  102.558551][ T8023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.564548][ T8023] RIP: 0033:0x7f8ba8be5d29
[  102.568968][ T8023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.588586][ T8023] RSP: 002b:00007f8ba7257038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  102.597005][ T8023] RAX: ffffffffffffffda RBX: 00007f8ba8dd5fa0 RCX: 00007f8ba8be5d29
[  102.605046][ T8023] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000020000200
[  102.613111][ T8023] RBP: 00007f8ba7257090 R08: 0000000000000000 R09: 0000000000000000
[  102.621133][ T8023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.629144][ T8023] R13: 0000000000000000 R14: 00007f8ba8dd5fa0 R15: 00007ffc3f9ce818
[  102.637256][ T8023]  </TASK>
[  102.647392][ T8003] chnl_net:caif_netlink_parms(): no params data found
[  102.723285][ T8033] netlink: 'syz.2.1602': attribute type 10 has an invalid length.
[  102.816861][ T8003] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.824035][ T8003] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.831656][ T8003] bridge_slave_0: entered allmulticast mode
[  102.838161][ T8003] bridge_slave_0: entered promiscuous mode
[  102.845283][ T8003] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.852428][ T8003] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.859930][ T8003] bridge_slave_1: entered allmulticast mode
[  102.867080][ T8003] bridge_slave_1: entered promiscuous mode
[  102.887742][ T8003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  102.923390][ T8003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  102.945085][ T8054] __nla_validate_parse: 2 callbacks suppressed
[  102.945137][ T8054] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1608'.
[  102.988538][ T8054] vlan2: entered allmulticast mode
[  102.998757][ T8003] team0: Port device team_slave_0 added
[  103.005739][ T8003] team0: Port device team_slave_1 added
[  103.038843][ T8003] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.045845][ T8003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.071948][ T8003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.092221][ T8003] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.099197][ T8003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.125399][ T8003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.160878][ T8062] syz.2.1611[8062] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.160954][ T8062] syz.2.1611[8062] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.172860][ T8062] syz.2.1611[8062] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.198701][ T8003] hsr_slave_0: entered promiscuous mode
[  103.204622][ T8060] loop2: detected capacity change from 0 to 512
[  103.222247][ T8003] hsr_slave_1: entered promiscuous mode
[  103.232333][ T8003] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  103.240562][ T8003] Cannot create hsr debugfs directory
[  103.249816][ T8068] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  103.250358][ T8060] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.271126][ T8060] ext4 filesystem being mounted at /370/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.292839][ T8072] netlink: 'syz.4.1615': attribute type 1 has an invalid length.
[  103.338042][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.414431][ T8084] loop1: detected capacity change from 0 to 512
[  103.422086][ T8084] EXT4-fs: Ignoring removed oldalloc option
[  103.459006][ T8084] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.1619: Parent and EA inode have the same ino 15
[  103.468876][ T8003] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  103.473108][ T8084] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.1619: Parent and EA inode have the same ino 15
[  103.490719][ T8084] EXT4-fs (loop1): 1 orphan inode deleted
[  103.499106][ T8003] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  103.506163][ T8084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.507319][ T8093] loop4: detected capacity change from 0 to 164
[  103.540814][ T8003] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  103.557089][ T8003] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  103.571203][ T8097] loop2: detected capacity change from 0 to 1024
[  103.605397][ T8097] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.667669][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.683648][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.711610][ T8003] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.728055][ T8104] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1627'.
[  103.737183][ T8104] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1627'.
[  103.754535][ T8003] 8021q: adding VLAN 0 to HW filter on device team0
[  103.779022][ T3970] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.786140][ T3970] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.801624][ T8109] xt_NFQUEUE: number of total queues is 0
[  103.864594][   T85] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.871718][   T85] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.990647][   T29] kauditd_printk_skb: 249 callbacks suppressed
[  103.990666][   T29] audit: type=1326 audit(1736088032.902:3480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.020414][   T29] audit: type=1326 audit(1736088032.932:3481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.043974][   T29] audit: type=1326 audit(1736088032.932:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.090963][ T8121] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1632'.
[  104.144695][ T8003] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.161980][   T29] audit: type=1326 audit(1736088032.992:3483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.185531][   T29] audit: type=1326 audit(1736088032.992:3484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.208919][   T29] audit: type=1326 audit(1736088032.992:3485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.232363][   T29] audit: type=1326 audit(1736088032.992:3486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.255974][   T29] audit: type=1326 audit(1736088033.022:3487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.279435][   T29] audit: type=1326 audit(1736088033.022:3488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.302970][   T29] audit: type=1326 audit(1736088033.022:3489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8117 comm="syz.1.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84d20a5d29 code=0x7ffc0000
[  104.331892][ T8147] loop2: detected capacity change from 0 to 256
[  104.461960][ T8162] loop2: detected capacity change from 0 to 128
[  104.494922][ T8162] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  104.510263][ T8162] ext4 filesystem being mounted at /377/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  104.529056][ T8174] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1645'.
[  104.581478][ T3300] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  104.614152][ T8184] SET target dimension over the limit!
[  104.622325][ T8177] IPVS: stopping master sync thread 8183 ...
[  104.634456][ T8003] veth0_vlan: entered promiscuous mode
[  104.644249][ T8003] veth1_vlan: entered promiscuous mode
[  104.655714][ T8003] veth0_macvtap: entered promiscuous mode
[  104.663103][ T8003] veth1_macvtap: entered promiscuous mode
[  104.672808][ T8003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.683366][ T8003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.693442][ T8003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.703916][ T8003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.714503][ T8003] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.722728][ T8003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.733277][ T8003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.743155][ T8003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.753662][ T8003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.770842][ T8003] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.785469][ T8192] netlink: 'syz.2.1648': attribute type 1 has an invalid length.
[  104.800938][ T8003] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.809779][ T8003] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.818650][ T8003] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.827450][ T8003] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.919742][ T8195] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  104.966298][ T8206] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  104.982249][ T8208] FAULT_INJECTION: forcing a failure.
[  104.982249][ T8208] name failslab, interval 1, probability 0, space 0, times 0
[  104.994984][ T8208] CPU: 0 UID: 0 PID: 8208 Comm: syz.4.1653 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  105.005697][ T8208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  105.015820][ T8208] Call Trace:
[  105.019112][ T8208]  <TASK>
[  105.022119][ T8208]  dump_stack_lvl+0xf2/0x150
[  105.026763][ T8208]  dump_stack+0x15/0x1a
[  105.030976][ T8208]  should_fail_ex+0x223/0x230
[  105.035788][ T8208]  should_failslab+0x8f/0xb0
[  105.040500][ T8208]  kmem_cache_alloc_noprof+0x52/0x320
[  105.045901][ T8208]  ? security_inode_alloc+0x37/0x100
[  105.051225][ T8208]  security_inode_alloc+0x37/0x100
[  105.056367][ T8208]  inode_init_always_gfp+0x4a2/0x4f0
[  105.061744][ T8208]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  105.067221][ T8208]  alloc_inode+0x82/0x160
[  105.071594][ T8208]  new_inode+0x1e/0x100
[  105.075762][ T8208]  shmem_get_inode+0x24e/0x730
[  105.080622][ T8208]  __shmem_file_setup+0x127/0x1f0
[  105.085659][ T8208]  shmem_file_setup+0x3b/0x50
[  105.090348][ T8208]  __se_sys_memfd_create+0x31d/0x5c0
[  105.095702][ T8208]  __x64_sys_memfd_create+0x31/0x40
[  105.100912][ T8208]  x64_sys_call+0x2d4c/0x2dc0
[  105.105603][ T8208]  do_syscall_64+0xc9/0x1c0
[  105.110165][ T8208]  ? clear_bhb_loop+0x55/0xb0
[  105.114923][ T8208]  ? clear_bhb_loop+0x55/0xb0
[  105.119669][ T8208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.125654][ T8208] RIP: 0033:0x7f8ba8be5d29
[  105.130076][ T8208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.149698][ T8208] RSP: 002b:00007f8ba7256e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  105.158126][ T8208] RAX: ffffffffffffffda RBX: 000000000000050a RCX: 00007f8ba8be5d29
[  105.166103][ T8208] RDX: 00007f8ba7256ef0 RSI: 0000000000000000 RDI: 00007f8ba8c62469
[  105.174100][ T8208] RBP: 0000000020000200 R08: 00007f8ba7256bb7 R09: 00007f8ba7256e40
[  105.182075][ T8208] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[  105.190049][ T8208] R13: 00007f8ba7256ef0 R14: 00007f8ba7256eb0 R15: 0000000020000840
[  105.198077][ T8208]  </TASK>
[  105.339484][ T8221] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1660'.
[  105.344452][ T8223] syz.1.1661[8223] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.348547][ T8223] syz.1.1661[8223] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.348550][ T8221] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1660'.
[  105.348571][ T8221] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1660'.
[  105.408892][ T8223] syz.1.1661[8223] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.425403][ T8221] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1660'.
[  105.445975][ T8221] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1660'.
[  105.470449][ T8231] FAULT_INJECTION: forcing a failure.
[  105.470449][ T8231] name failslab, interval 1, probability 0, space 0, times 0
[  105.483222][ T8231] CPU: 1 UID: 0 PID: 8231 Comm: syz.4.1664 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  105.494054][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  105.504212][ T8231] Call Trace:
[  105.507555][ T8231]  <TASK>
[  105.510489][ T8231]  dump_stack_lvl+0xf2/0x150
[  105.515169][ T8231]  dump_stack+0x15/0x1a
[  105.519342][ T8231]  should_fail_ex+0x223/0x230
[  105.524043][ T8231]  should_failslab+0x8f/0xb0
[  105.528689][ T8231]  kmem_cache_alloc_node_noprof+0x59/0x320
[  105.534517][ T8231]  ? __alloc_skb+0x10b/0x310
[  105.539114][ T8231]  ? __rtnl_unlock+0x99/0xb0
[  105.543743][ T8231]  __alloc_skb+0x10b/0x310
[  105.548208][ T8231]  netlink_ack+0xef/0x4f0
[  105.552547][ T8231]  ? avc_has_perm_noaudit+0x1cc/0x210
[  105.557959][ T8231]  netlink_rcv_skb+0x19c/0x230
[  105.562734][ T8231]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  105.568210][ T8231]  rtnetlink_rcv+0x1c/0x30
[  105.572647][ T8231]  netlink_unicast+0x599/0x670
[  105.577553][ T8231]  netlink_sendmsg+0x5cc/0x6e0
[  105.582349][ T8231]  ? __pfx_netlink_sendmsg+0x10/0x10
[  105.587651][ T8231]  __sock_sendmsg+0x140/0x180
[  105.592405][ T8231]  ____sys_sendmsg+0x312/0x410
[  105.597200][ T8231]  __sys_sendmsg+0x19d/0x230
[  105.601825][ T8231]  __x64_sys_sendmsg+0x46/0x50
[  105.606629][ T8231]  x64_sys_call+0x2734/0x2dc0
[  105.611411][ T8231]  do_syscall_64+0xc9/0x1c0
[  105.616022][ T8231]  ? clear_bhb_loop+0x55/0xb0
[  105.620706][ T8231]  ? clear_bhb_loop+0x55/0xb0
[  105.625391][ T8231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.631461][ T8231] RIP: 0033:0x7f8ba8be5d29
[  105.635878][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.655529][ T8231] RSP: 002b:00007f8ba7257038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.664079][ T8231] RAX: ffffffffffffffda RBX: 00007f8ba8dd5fa0 RCX: 00007f8ba8be5d29
[  105.672104][ T8231] RDX: 0000000000000000 RSI: 0000000020000940 RDI: 0000000000000003
[  105.680079][ T8231] RBP: 00007f8ba7257090 R08: 0000000000000000 R09: 0000000000000000
[  105.688058][ T8231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.696047][ T8231] R13: 0000000000000000 R14: 00007f8ba8dd5fa0 R15: 00007ffc3f9ce818
[  105.704030][ T8231]  </TASK>
[  105.985471][ T8271] netlink: 'syz.1.1679': attribute type 4 has an invalid length.
[  106.105043][ T8285] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  106.126440][ T8288] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  106.314304][ T8298] xt_connbytes: Forcing CT accounting to be enabled
[  106.342968][ T8300] netlink: 'syz.2.1690': attribute type 4 has an invalid length.
[  106.402291][ T8298] x_tables: ip_tables: icmp match: only valid for protocol 1
[  106.435480][ T8259] Set syz1 is full, maxelem 65536 reached
[  106.598956][ T8319] bond1: entered promiscuous mode
[  106.604187][ T8319] bond1: entered allmulticast mode
[  106.616495][ T8290] syz.0.1686[8290] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.616563][ T8290] syz.0.1686[8290] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.660823][ T8319] 8021q: adding VLAN 0 to HW filter on device bond1
[  106.690343][ T8290] syz.0.1686[8290] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.730003][ T8326] netlink: 'syz.1.1697': attribute type 1 has an invalid length.
[  106.772217][ T8319] bond1 (unregistering): Released all slaves
[  106.834006][ T8334] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[  106.930488][ T8344] netlink: 'syz.5.1704': attribute type 13 has an invalid length.
[  106.994544][ T8344] gretap0: refused to change device tx_queue_len
[  107.001032][ T8344] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  107.063629][ T8351] bond1: entered promiscuous mode
[  107.068769][ T8351] bond1: entered allmulticast mode
[  107.098643][ T8351] 8021q: adding VLAN 0 to HW filter on device bond1
[  107.121979][ T8351] bond1 (unregistering): Released all slaves
[  107.368987][ T8374] ebtables: ebtables: counters copy to user failed while replacing table
[  107.495247][ T8394] loop5: detected capacity change from 0 to 2048
[  107.516069][ T8399] vlan2: entered allmulticast mode
[  107.521265][ T8399] bridge_slave_0: entered allmulticast mode
[  107.527881][ T8399] bridge_slave_0: left allmulticast mode
[  107.546456][ T8401] loop4: detected capacity change from 0 to 2048
[  107.560416][ T8394]  loop5: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  107.561955][ T8394] loop5: p3 start 4284289 is beyond EOD, 
[  107.624322][ T8401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.653324][ T8394] truncated
[  107.668301][ T8401] IPv6: NLM_F_CREATE should be specified when creating new route
[  107.689868][ T8401] SELinux:  Context system_u:object_r:printer_device_t:s0 is not valid (left unmapped).
[  107.742410][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.894761][ T8420] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  108.091376][ T8443] __nla_validate_parse: 21 callbacks suppressed
[  108.091393][ T8443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1738'.
[  108.106702][ T8443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1738'.
[  108.127816][ T8443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1738'.
[  108.255469][ T8456] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1740'.
[  108.278952][ T8456] netlink: 'syz.5.1740': attribute type 11 has an invalid length.
[  108.336584][ T8462] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (128)
[  108.620560][ T8495] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1757'.
[  108.658928][ T8495] bond4: entered promiscuous mode
[  108.664096][ T8495] bond4: entered allmulticast mode
[  108.669884][ T8495] 8021q: adding VLAN 0 to HW filter on device bond4
[  108.716366][ T8504] netlink: 'syz.4.1759': attribute type 1 has an invalid length.
[  108.724192][ T8504] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1759'.
[  108.757810][ T8504] FAULT_INJECTION: forcing a failure.
[  108.757810][ T8504] name failslab, interval 1, probability 0, space 0, times 0
[  108.770618][ T8504] CPU: 1 UID: 0 PID: 8504 Comm: syz.4.1759 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  108.781354][ T8504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  108.791468][ T8504] Call Trace:
[  108.794760][ T8504]  <TASK>
[  108.797751][ T8504]  dump_stack_lvl+0xf2/0x150
[  108.802450][ T8504]  dump_stack+0x15/0x1a
[  108.806649][ T8504]  should_fail_ex+0x223/0x230
[  108.811435][ T8504]  should_failslab+0x8f/0xb0
[  108.816100][ T8504]  __kmalloc_noprof+0xab/0x3f0
[  108.820971][ T8504]  ? wpan_phy_new+0x2a/0x190
[  108.825648][ T8504]  wpan_phy_new+0x2a/0x190
[  108.830126][ T8504]  ieee802154_alloc_hw+0xbd/0x5b0
[  108.835230][ T8504]  hwsim_add_one+0x48/0xa80
[  108.839767][ T8504]  ? genl_family_rcv_msg_attrs_parse+0x148/0x1a0
[  108.846150][ T8504]  ? genl_family_rcv_msg_attrs_parse+0x182/0x1a0
[  108.852632][ T8504]  hwsim_new_radio_nl+0x2e/0x40
[  108.857534][ T8504]  genl_rcv_msg+0x61b/0x6c0
[  108.862135][ T8504]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  108.867796][ T8504]  ? should_fail_ex+0x31/0x230
[  108.872592][ T8504]  netlink_rcv_skb+0x12c/0x230
[  108.877530][ T8504]  ? __pfx_genl_rcv_msg+0x10/0x10
[  108.882604][ T8504]  genl_rcv+0x28/0x40
[  108.886667][ T8504]  netlink_unicast+0x599/0x670
[  108.891448][ T8504]  netlink_sendmsg+0x5cc/0x6e0
[  108.896399][ T8504]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.901795][ T8504]  __sock_sendmsg+0x140/0x180
[  108.903014][ T8435] udevd[8435]: inotify_add_watch(7, /dev/loop5p32, 10) failed: No such file or directory
[  108.906503][ T8504]  ____sys_sendmsg+0x312/0x410
[  108.906543][ T8504]  __sys_sendmsg+0x19d/0x230
[  108.925716][ T8504]  __x64_sys_sendmsg+0x46/0x50
[  108.930519][ T8504]  x64_sys_call+0x2734/0x2dc0
[  108.935229][ T8504]  do_syscall_64+0xc9/0x1c0
[  108.936301][ T8435] udevd[8435]: inotify_add_watch(7, /dev/loop5p33, 10) failed: No such file or directory
[  108.939760][ T8504]  ? clear_bhb_loop+0x55/0xb0
[  108.954344][ T8504]  ? clear_bhb_loop+0x55/0xb0
[  108.959076][ T8504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.965082][ T8504] RIP: 0033:0x7f8ba8be5d29
[  108.969882][ T8504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.969938][ T8435] udevd[8435]: inotify_add_watch(7, /dev/loop5p34, 10) failed: No such file or directory
[  108.989584][ T8504] RSP: 002b:00007f8ba7257038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.989612][ T8504] RAX: ffffffffffffffda RBX: 00007f8ba8dd5fa0 RCX: 00007f8ba8be5d29
[  108.989629][ T8504] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000007
[  109.023990][ T8504] RBP: 00007f8ba7257090 R08: 0000000000000000 R09: 0000000000000000
[  109.031991][ T8504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.039965][ T8504] R13: 0000000000000000 R14: 00007f8ba8dd5fa0 R15: 00007ffc3f9ce818
[  109.047996][ T8504]  </TASK>
[  109.051671][ T8504] failure to allocate master IEEE802.15.4 device
[  109.060309][ T8435] udevd[8435]: inotify_add_watch(7, /dev/loop5p35, 10) failed: No such file or directory
[  109.090506][ T8510] tipc: Started in network mode
[  109.095444][ T8510] tipc: Node identity 7f000001, cluster identity 4711
[  109.123535][   T29] kauditd_printk_skb: 159 callbacks suppressed
[  109.123554][   T29] audit: type=1400 audit(1736088038.022:3649): avc:  denied  { execmem } for  pid=8507 comm="syz.0.1760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  109.177854][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop5p21, 10) failed: No such file or directory
[  109.178107][ T8510] tipc: Enabled bearer <udp:syz2>, priority 10
[  109.188722][ T8432] udevd[8432]: inotify_add_watch(7, /dev/loop5p23, 10) failed: No such file or directory
[  109.205082][ T8433] udevd[8433]: inotify_add_watch(7, /dev/loop5p24, 10) failed: No such file or directory
[  109.210801][ T8435] udevd[8435]: inotify_add_watch(7, /dev/loop5p36, 10) failed: No such file or directory
[  109.216189][ T3789] udevd[3789]: inotify_add_watch(7, /dev/loop5p26, 10) failed: No such file or directory
[  109.228989][ T4653] udevd[4653]: inotify_add_watch(7, /dev/loop5p27, 10) failed: No such file or directory
[  109.271905][ T8510] tipc: Enabled bearer <eth:team0>, priority 0
[  109.654760][   T29] audit: type=1400 audit(1736088038.092:3650): avc:  denied  { read } for  pid=2983 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  109.677004][   T29] audit: type=1400 audit(1736088038.092:3651): avc:  denied  { search } for  pid=2983 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  109.698723][   T29] audit: type=1400 audit(1736088038.102:3652): avc:  denied  { open } for  pid=2983 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  109.721319][   T29] audit: type=1400 audit(1736088038.102:3653): avc:  denied  { getattr } for  pid=2983 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  109.744697][   T29] audit: type=1400 audit(1736088038.202:3654): avc:  denied  { create } for  pid=8511 comm="syz.4.1761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  109.749247][ T8516] SET target dimension over the limit!
[  109.764705][   T29] audit: type=1400 audit(1736088038.202:3655): avc:  denied  { ioctl } for  pid=8511 comm="syz.4.1761" path="socket:[21900]" dev="sockfs" ino=21900 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  109.795001][   T29] audit: type=1400 audit(1736088038.232:3656): avc:  denied  { create } for  pid=8507 comm="syz.0.1760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  109.814414][   T29] audit: type=1400 audit(1736088038.232:3657): avc:  denied  { setopt } for  pid=8507 comm="syz.0.1760" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  109.833994][   T29] audit: type=1400 audit(1736088038.292:3658): avc:  denied  { egress } for  pid=8507 comm="syz.0.1760" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1
[  109.859332][ T8514] .: renamed from bond0
[  109.910525][ T8523] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1761'.
[  110.310798][ T4409] tipc: Node number set to 2130706433
[  110.661250][ T8544] loop4: detected capacity change from 0 to 2048
[  110.775165][ T8544] EXT4-fs (loop4): failed to initialize system zone (-117)
[  110.797525][ T8544] EXT4-fs (loop4): mount failed
[  110.911551][ T8557] xt_HMARK: spi-set and port-set can't be combined
[  111.064503][ T8566] binfmt_misc: register: failed to install interpreter file ./file2
[  111.118336][ T8571] loop5: detected capacity change from 0 to 512
[  111.157429][ T8571] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.177804][ T8571] ext4 filesystem being mounted at /23/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  111.246064][ T8571] veth0_to_team: entered promiscuous mode
[  111.252166][ T8571] veth0_to_team: entered allmulticast mode
[  111.295260][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.375835][ T8585] 9pnet_fd: Insufficient options for proto=fd
[  111.401721][ T8588] Unknown options in mask 5
[  111.507682][ T8603] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  111.507682][ T8603] The task syz.5.1787 (8603) triggered the difference, watch for misbehavior.
[  111.562701][ T8611] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1790'.
[  112.054738][ T8632] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1791'.
[  112.472214][ T8673] netlink: 'syz.4.1796': attribute type 13 has an invalid length.
[  112.650750][ T8683] loop5: detected capacity change from 0 to 512
[  112.695650][ T8683] EXT4-fs: Ignoring removed i_version option
[  112.701922][ T8683] EXT4-fs: Ignoring removed mblk_io_submit option
[  112.727672][ T8683] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  112.754154][ T8683] EXT4-fs (loop5): 1 truncate cleaned up
[  112.762533][ T8683] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.875900][ T8683] EXT4-fs error (device loop5): ext4_find_dest_de:2079: inode #12: block 7: comm syz.5.1798: bad entry in directory: inode out of bounds - offset=0, inode=16777215, rec_len=16, size=56 fake=0
[  112.920945][ T8714] syz.4.1803[8714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.921097][ T8714] syz.4.1803[8714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.948761][ T8714] syz.4.1803[8714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.986557][ T8718] tmpfs: Bad value for 'mpol'
[  113.037964][ T8718] netlink: 'syz.0.1804': attribute type 12 has an invalid length.
[  113.045936][ T8718] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1804'.
[  113.062258][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.092442][ T8732] netlink: 'syz.1.1806': attribute type 3 has an invalid length.
[  113.142420][ T8741] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  113.155807][ T8741] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  113.353743][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.362790][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.371828][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.399133][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.408211][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.417284][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.468686][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.477763][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.486898][ T8778] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1813'.
[  113.596412][ T8816] macvlan2: entered promiscuous mode
[  113.601786][ T8816] bridge0: entered promiscuous mode
[  113.608232][ T8816] bridge0: port 2(macvlan2) entered blocking state
[  113.608422][ T8818] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1823'.
[  113.614856][ T8816] bridge0: port 2(macvlan2) entered disabled state
[  113.615032][ T8816] macvlan2: entered allmulticast mode
[  113.635777][ T8816] bridge0: entered allmulticast mode
[  113.643313][ T8816] macvlan2: left allmulticast mode
[  113.648489][ T8816] bridge0: left allmulticast mode
[  113.654412][ T8816] bridge0: left promiscuous mode
[  113.687742][ T8818] IPVS: Error joining to the multicast group
[  113.812317][ T8846] veth0_to_team: entered promiscuous mode
[  113.818739][ T8846] veth0_to_team: entered allmulticast mode
[  113.956882][ T8876] netlink: 'syz.5.1834': attribute type 6 has an invalid length.
[  113.964706][ T8876] netlink: 'syz.5.1834': attribute type 5 has an invalid length.
[  114.003460][ T8880] xt_hashlimit: max too large, truncated to 1048576
[  114.159411][   T29] kauditd_printk_skb: 114 callbacks suppressed
[  114.159426][   T29] audit: type=1400 audit(1736088043.102:3773): avc:  denied  { create } for  pid=8877 comm="syz.4.1836" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  114.186436][   T29] audit: type=1400 audit(1736088043.112:3774): avc:  denied  { sys_admin } for  pid=8877 comm="syz.4.1836" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  114.206400][ T8904] loop5: detected capacity change from 0 to 512
[  114.208070][   T29] audit: type=1326 audit(1736088043.152:3775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1c7e55d29 code=0x7ffc0000
[  114.237131][   T29] audit: type=1326 audit(1736088043.152:3776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd1c7e55d29 code=0x7ffc0000
[  114.260626][   T29] audit: type=1326 audit(1736088043.152:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd1c7e55d63 code=0x7ffc0000
[  114.283878][   T29] audit: type=1326 audit(1736088043.152:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd1c7e547df code=0x7ffc0000
[  114.307156][   T29] audit: type=1326 audit(1736088043.152:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd1c7e55db7 code=0x7ffc0000
[  114.330536][   T29] audit: type=1326 audit(1736088043.152:3780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd1c7e54690 code=0x7ffc0000
[  114.353971][   T29] audit: type=1326 audit(1736088043.152:3781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd1c7e5592b code=0x7ffc0000
[  114.379538][   T29] audit: type=1326 audit(1736088043.182:3782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8890 comm="syz.5.1840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd1c7e5498a code=0x7ffc0000
[  114.422515][ T8904] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.439509][ T8904] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.942122][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.032286][ T8945] veth0_to_team: entered promiscuous mode
[  115.038069][ T8945] veth0_to_team: entered allmulticast mode
[  115.046838][ T8943] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  115.071587][ T8940] loop5: detected capacity change from 0 to 1024
[  115.091815][ T8940] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  115.101729][ T8940] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  115.117875][ T8940] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  115.129837][ T8940] EXT4-fs error (device loop5): ext4_get_journal_inode:5809: inode #5: comm syz.5.1857: unexpected bad inode w/o EXT4_IGET_BAD
[  115.147267][ T8940] EXT4-fs (loop5): no journal found
[  115.222907][ T8958] xt_CT: You must specify a L4 protocol and not use inversions on it
[  115.420513][ T8972] netlink: 'syz.4.1865': attribute type 8 has an invalid length.
[  115.441959][ T8973] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20001 - 0
[  115.450306][ T8973] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20001 - 0
[  115.458606][ T8973] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20001 - 0
[  115.466926][ T8973] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20001 - 0
[  115.505280][ T8983] loop2: detected capacity change from 0 to 1764
[  115.529266][ T8983] iso9660: Bad value for 'sbsector'
[  115.649085][ T9000] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  115.675787][ T9004] xt_hashlimit: max too large, truncated to 1048576
[  116.027816][ T9035] loop2: detected capacity change from 0 to 1024
[  116.051760][ T9035] EXT4-fs: Ignoring removed i_version option
[  116.063582][ T9039] xt_hashlimit: max too large, truncated to 1048576
[  116.073474][ T9035] EXT4-fs: Ignoring removed bh option
[  116.079706][ T9037] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[  116.106713][ T9035] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.200067][ T9054] loop5: detected capacity change from 0 to 1024
[  116.206962][ T9054] EXT4-fs: Ignoring removed nobh option
[  116.207527][ T3300] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.212711][ T9054] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.229260][ T9054] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  116.253347][ T9054] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.501416][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.670769][ T9058] Set syz1 is full, maxelem 65536 reached
[  116.715387][ T9076] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  116.802421][ T9086] FAULT_INJECTION: forcing a failure.
[  116.802421][ T9086] name failslab, interval 1, probability 0, space 0, times 0
[  116.815193][ T9086] CPU: 0 UID: 0 PID: 9086 Comm: syz.1.1901 Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  116.825944][ T9086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  116.836017][ T9086] Call Trace:
[  116.839299][ T9086]  <TASK>
[  116.842236][ T9086]  dump_stack_lvl+0xf2/0x150
[  116.846854][ T9086]  dump_stack+0x15/0x1a
[  116.851147][ T9086]  should_fail_ex+0x223/0x230
[  116.855897][ T9086]  should_failslab+0x8f/0xb0
[  116.860509][ T9086]  kmem_cache_alloc_noprof+0x52/0x320
[  116.865930][ T9086]  ? alloc_empty_file+0xd0/0x200
[  116.870875][ T9086]  ? _raw_spin_unlock+0x26/0x50
[  116.875837][ T9086]  alloc_empty_file+0xd0/0x200
[  116.880651][ T9086]  alloc_file_pseudo+0xc3/0x140
[  116.885564][ T9086]  __shmem_file_setup+0x1bb/0x1f0
[  116.890603][ T9086]  shmem_file_setup+0x3b/0x50
[  116.895377][ T9086]  __se_sys_memfd_create+0x31d/0x5c0
[  116.900689][ T9086]  __x64_sys_memfd_create+0x31/0x40
[  116.905903][ T9086]  x64_sys_call+0x2d4c/0x2dc0
[  116.910643][ T9086]  do_syscall_64+0xc9/0x1c0
[  116.915320][ T9086]  ? clear_bhb_loop+0x55/0xb0
[  116.920022][ T9086]  ? clear_bhb_loop+0x55/0xb0
[  116.924741][ T9086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.930721][ T9086] RIP: 0033:0x7f84d20a5d29
[  116.935144][ T9086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.954868][ T9086] RSP: 002b:00007f84d0716e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  116.963337][ T9086] RAX: ffffffffffffffda RBX: 000000000000050a RCX: 00007f84d20a5d29
[  116.971320][ T9086] RDX: 00007f84d0716ef0 RSI: 0000000000000000 RDI: 00007f84d2122469
[  116.979365][ T9086] RBP: 0000000020000200 R08: 00007f84d0716bb7 R09: 00007f84d0716e40
[  116.987376][ T9086] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[  116.995352][ T9086] R13: 00007f84d0716ef0 R14: 00007f84d0716eb0 R15: 0000000020000840
[  117.003353][ T9086]  </TASK>
[  117.061242][ T9093] netlink: 'syz.1.1907': attribute type 10 has an invalid length.
[  117.070055][ T9095] netlink: 'syz.4.1908': attribute type 4 has an invalid length.
[  117.080081][ T9088] loop5: detected capacity change from 0 to 512
[  117.111791][ T9088] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.112446][ T9101] x_tables: duplicate underflow at hook 1
[  117.125447][ T9088] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  117.189518][ T9111] netlink: 'syz.1.1914': attribute type 4 has an invalid length.
[  117.199580][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.210423][ T9111] netlink: 'syz.1.1914': attribute type 4 has an invalid length.
[  117.259404][ T9116] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.292167][ T9119] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  117.333054][ T9116] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.366516][ T9122] loop4: detected capacity change from 0 to 1024
[  117.373801][ T9122] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  117.385044][ T9122] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  117.385791][ T9116] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.394526][ T9122] EXT4-fs (loop4): orphan cleanup on readonly fs
[  117.410680][ T9122] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  117.435918][ T9122] EXT4-fs (loop4): Remounting filesystem read-only
[  117.436269][ T9127] loop5: detected capacity change from 0 to 1024
[  117.442650][ T9122] EXT4-fs (loop4): 1 orphan inode deleted
[  117.456637][ T9122] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  117.468725][ T9122] SELinux: (dev loop4, type ext4) getxattr errno 5
[  117.471851][ T9127] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.476116][ T9122] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.522714][ T9116] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.556556][ T9130] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  117.573546][ T9130] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  117.585913][ T9130] EXT4-fs (loop5): This should not happen!! Data will be lost
[  117.585913][ T9130] 
[  117.595638][ T9130] EXT4-fs (loop5): Total free blocks count 0
[  117.601665][ T9130] EXT4-fs (loop5): Free/Dirty block details
[  117.607581][ T9130] EXT4-fs (loop5): free_blocks=68451041280
[  117.613570][ T9130] EXT4-fs (loop5): dirty_blocks=16
[  117.618848][ T9130] EXT4-fs (loop5): Block reservation details
[  117.624974][ T9130] EXT4-fs (loop5): i_reserved_data_blocks=1
[  117.652928][ T9116] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.665001][ T9116] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.677150][ T9116] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.688571][ T9116] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.790637][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.910503][ T9150] Falling back ldisc for ttyS3.
[  117.972455][ T9172] geneve2: entered promiscuous mode
[  117.977733][ T9172] geneve2: entered allmulticast mode
[  118.138603][ T9201] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  118.154412][ T9201] tipc: Enabled bearer <eth:team0>, priority 10
[  118.357642][ T9239] loop2: detected capacity change from 0 to 1024
[  118.368331][ T9239] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  118.395784][ T9239] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  118.405903][ T9239] EXT4-fs (loop2): orphan cleanup on readonly fs
[  118.414748][ T9239] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  118.425667][ T9239] EXT4-fs (loop2): Remounting filesystem read-only
[  118.434214][ T9239] EXT4-fs (loop2): 1 orphan inode deleted
[  118.440675][ T9239] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  118.455690][ T9239] SELinux: (dev loop2, type ext4) getxattr errno 5
[  118.465458][ T9239] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.532908][ T9260] loop4: detected capacity change from 0 to 512
[  118.556130][ T9260] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  118.576024][ T9260] EXT4-fs (loop4): orphan cleanup on readonly fs
[  118.591266][ T9260] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1958: bg 0: block 248: padding at end of block bitmap is not set
[  118.615408][ T9260] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1958: Failed to acquire dquot type 1
[  118.630346][ T9269] loop5: detected capacity change from 0 to 512
[  118.637084][ T9269] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  118.649162][ T9260] EXT4-fs (loop4): 1 truncate cleaned up
[  118.655713][ T9260] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.681449][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.701618][ T9271] __nla_validate_parse: 28 callbacks suppressed
[  118.701637][ T9271] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1963'.
[  118.739431][ T9274] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1965'.
[  119.177763][ T9298] loop2: detected capacity change from 0 to 2048
[  119.185718][   T29] kauditd_printk_skb: 371 callbacks suppressed
[  119.185732][   T29] audit: type=1400 audit(1736088560.134:4144): avc:  denied  { mount } for  pid=9295 comm="syz.2.1974" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  119.203310][ T9294] Set syz1 is full, maxelem 65536 reached
[  119.286441][   T29] audit: type=1400 audit(1736088560.234:4145): avc:  denied  { unmount } for  pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  119.358576][ T9305] xt_hashlimit: overflow, try lower: 18446744073709551615/7
[  119.368196][   T29] audit: type=1400 audit(1736088560.314:4146): avc:  denied  { write } for  pid=9304 comm="syz.1.1977" name="ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  119.411834][   T29] audit: type=1326 audit(1736088560.354:4147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  119.435447][   T29] audit: type=1326 audit(1736088560.354:4148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  119.458993][   T29] audit: type=1326 audit(1736088560.354:4149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  119.482515][   T29] audit: type=1326 audit(1736088560.354:4150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  119.506328][   T29] audit: type=1326 audit(1736088560.354:4151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  119.529860][   T29] audit: type=1326 audit(1736088560.354:4152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  119.553309][   T29] audit: type=1326 audit(1736088560.354:4153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9309 comm="syz.2.1979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3fd8145d29 code=0x7ffc0000
[  120.035955][ T9339] loop5: detected capacity change from 0 to 512
[  120.052072][ T9345] x_tables: duplicate underflow at hook 2
[  120.110673][ T9348] tipc: Invalid UDP bearer configuration
[  120.110691][ T9348] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  120.138766][ T3001] ==================================================================
[  120.146889][ T3001] BUG: KCSAN: data-race in set_nlink / set_nlink
[  120.153257][ T3001] 
[  120.155589][ T3001] read to 0xffff888106489858 of 4 bytes by task 3292 on cpu 1:
[  120.163141][ T3001]  set_nlink+0x2b/0xb0
[  120.167234][ T3001]  kernfs_iop_permission+0x1c8/0x210
[  120.172546][ T3001]  inode_permission+0x18c/0x300
[  120.177404][ T3001]  link_path_walk+0x14b/0x820
[  120.182086][ T3001]  path_openat+0x1af/0x1fa0
[  120.186601][ T3001]  do_filp_open+0x107/0x230
[  120.191118][ T3001]  do_sys_openat2+0xab/0x120
[  120.195712][ T3001]  __x64_sys_openat+0xf3/0x120
[  120.200495][ T3001]  x64_sys_call+0x2b30/0x2dc0
[  120.205180][ T3001]  do_syscall_64+0xc9/0x1c0
[  120.209697][ T3001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.215610][ T3001] 
[  120.217932][ T3001] write to 0xffff888106489858 of 4 bytes by task 3001 on cpu 0:
[  120.225564][ T3001]  set_nlink+0x98/0xb0
[  120.229651][ T3001]  kernfs_iop_permission+0x1c8/0x210
[  120.234950][ T3001]  inode_permission+0x18c/0x300
[  120.239808][ T3001]  link_path_walk+0x14b/0x820
[  120.244490][ T3001]  path_lookupat+0x72/0x2b0
[  120.248999][ T3001]  filename_lookup+0x150/0x340
[  120.253774][ T3001]  vfs_statx+0x9a/0x170
[  120.257936][ T3001]  __se_sys_newfstatat+0xdc/0x300
[  120.262970][ T3001]  __x64_sys_newfstatat+0x55/0x70
[  120.268002][ T3001]  x64_sys_call+0x236d/0x2dc0
[  120.272687][ T3001]  do_syscall_64+0xc9/0x1c0
[  120.277196][ T3001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.283110][ T3001] 
[  120.285433][ T3001] value changed: 0x00000009 -> 0x00000008
[  120.291155][ T3001] 
[  120.293484][ T3001] Reported by Kernel Concurrency Sanitizer on:
[  120.299640][ T3001] CPU: 0 UID: 0 PID: 3001 Comm: udevd Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0
[  120.309888][ T3001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  120.319951][ T3001] ==================================================================