last executing test programs:

5.035882963s ago: executing program 1 (id=502):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = open$dir(&(0x7f0000000040)='./file0\x00', 0x105240, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f0000000080)={0x80, 0x0, 0x2})
dup3(r2, r3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYRES16=r2, @ANYRES64=r2, @ANYRES16=r2], 0x48)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

4.987480703s ago: executing program 1 (id=504):
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)

4.952569063s ago: executing program 1 (id=506):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r1, &(0x7f0000000240)={0x14, 0x88, 0xfa00, {r3, 0x1c, 0x0, @in6={0xa, 0x9, 0xc080, @private0, 0x28}}}, 0x90)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000480), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x304}, "000000b72000", "0d07080d004fcfabd5e8ffff1a8600", "aba200fe", "865703b7e43b34e4"}, 0x28)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
close(r0)

4.903428373s ago: executing program 1 (id=507):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f00000001c0)='signal_generate\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000040), 0x0, 0x0, 0x0)
fremovexattr(r1, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')

4.888456513s ago: executing program 1 (id=508):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000440)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b0000000000000000000000008000000000000554e241a3ff894b85f2b73c90ec3790d0f2f9cb678c653d3fe27cc68a064b3e97ad2c0022dcb3178b8994df632bc795f2b3ce738c146963940989538bb54e39df8e14381a1eaca5c90965a0072f52b208d6dd906f1dd196475240b36baa32cea608ccee9b7d7123f5a6bb6cc9ca0929015d9ddf36722ff7a1a2e8665a2f4abe1b652b797fa0894a9a7c4ed988ad3c0598e805", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000700850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b6fffec850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r4, 0x0, 0x6}, 0x18)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newtfilter={0x34, 0x2c, 0x1, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xfffa, 0x2}, {}, {0x10, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x128, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x48, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0x8c, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x70, 0x6, [@m_connmark={0x40, 0x0, 0x0, 0x0, {{0xd}, {0x4}, {0xd, 0x6, "66396e732cf67237ec"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x2c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x128}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r7 = socket(0x10, 0x803, 0x0)
sendto(r7, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r7, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
pipe(&(0x7f00000000c0))
splice(r6, 0x0, r5, 0x0, 0xf3a, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000700000000000000000000850000"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143, 0x83f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0xa, 0x300)
socket$kcm(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x90)

3.986384935s ago: executing program 1 (id=529):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r0, 0x29, 0x19, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000001ad18ea2786b0000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
syz_io_uring_setup(0x55fb, &(0x7f0000000180)={0x0, 0x2fb3, 0xc6, 0x2, 0xe6}, &(0x7f0000000040), &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x6f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sched_getscheduler(0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="4c0200001000010000000000fedbdf25e0000002000000000000000000000000fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e000000100000000000000000000000000000000330000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000003500000a000400000000000000000048000100736861323536000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000013010100636d61632861657329000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005806"], 0x24c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000200000005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000f00"/16], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='io_uring_register\x00', r5, 0x0, 0x40000}, 0x18)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$EXT4_IOC_GETFSUUID(r5, 0x8008662c, &(0x7f0000000000))
r6 = gettid()
tkill(r6, 0x12)
r7 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r8 = dup(r7)
ioctl$USBDEVFS_CONTROL(r8, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x1c, 0x2, 0x0, 0x0, 0x0})
sched_setscheduler(r6, 0x6, &(0x7f0000000200)=0x2d1)
syz_emit_ethernet(0x6e, &(0x7f0000000180)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000386dd60f4adf700383a00fe880000000000000000000000000001ff020000000000000000"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

1.818853568s ago: executing program 2 (id=568):
mknod(&(0x7f0000000140)='./file0\x00', 0x8001420, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1.818461717s ago: executing program 4 (id=569):
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f0000000140)={[{@dioread_lock}, {@noblock_validity}, {@abort}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x1f5}}, {@grpjquota, 0x2e}, {@barrier}, {@inlinecrypt}, {@jqfmt_vfsv1}, {@grpid}], [{@flag='lazytime'}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@fsuuid={'fsuuid', 0x3d, {[0x35, 0x35, 0x64, 0x39, 0x38, 0x65, 0x36, 0x3], 0x2d, [0x2, 0x35, 0x32, 0x35], 0x2d, [0x64, 0x34, 0x66, 0x33], 0x2d, [0x64, 0x34, 0x32, 0x36], 0x2d, [0x37, 0x64, 0x62, 0x33, 0x3, 0x34, 0x35, 0x38]}}}], 0x2c}, 0x84, 0x4aa, &(0x7f0000000740)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
lsm_set_self_attr(0x2, &(0x7f0000000200)={0x69, 0x8, 0xa3, 0x83, "1b6add92ace72ba891bc0874ac0566ce4b5cc489469ca93c4f8642438b2067da89126f5c32f0e3fa04da3abdc27b8a20685607528e3379655a03a119d70dd8a2fb7b283e6e872ade395f4b9a219a924dfc82dc4559a3e2c63a4219c0d2da30aa95341ad4e660eb5a0cc3372e4926e8687930073237fa57b1190d877588db7e0f99b97e"}, 0xa3, 0x0)

1.696247408s ago: executing program 2 (id=570):
io_setup(0x82, &(0x7f0000000180)=<r0=>0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x0, 0x1}, &(0x7f0000044000)=<r2=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{}, {0x0, 0x9}}, 0x0)
timer_gettime(r2, &(0x7f0000000000))
io_submit(r0, 0x1, &(0x7f0000001d00)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f0000000340)='p', 0x1}])
syz_usb_connect(0x4, 0x85e, &(0x7f00000007c0)={{0x12, 0x1, 0x110, 0x8e, 0x48, 0x2e, 0x8, 0x458, 0x7025, 0xe806, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x84c, 0x3, 0x23, 0x5, 0x0, 0xff, [{{0x9, 0x4, 0x9f, 0x6, 0xa, 0x98, 0x8f, 0xfa, 0x0, [], [{{0x9, 0x5, 0x3, 0x1, 0x200, 0x5, 0x9, 0xf7, [@generic={0xa6, 0x10, "4f7cd46f1c4fbc65acb7c115cb496d37635b584b46f0b82700ed4f54872a201306b1f561476eee5d3b0fff7bb15c16bffda720809a452b8b024e9e71c733a7f28cb3d640c3fdfa2bf939d518137bb81716f643d634e253447f616911a88b97201cd68e1726fa7b0112fe7d5c1ae3ac7df0f08a1701f67dea512d19d9defee0a7cd31dbe79fc24e2e870a39e6325d337e1f5d2b75290167d81186a08d2a372c35a0f1adf8"}, @generic={0xfb, 0x24, "0046fa6823406c9a8c1e87daf884dc709c78eac037075973ccc91bf7561cd16620eb682ac737d95724e4d273caa4e4f7292f770a0173ae5a47b4ebde89ab78451491a6d978f4bb1f2597e0795896d46c8aaa3dde64ebc0ed3283cf5639ff495d2dd0c5f13f9633edfecff0a3eeac21056066ec591dbc8b21e8b3677f7eb24d2aab2041ef054e065a71f5a952d9629e864467dbf662c9ddbab6bfc36e91996f5b824587e43f0f5d343f90415bc6b1e1b6c336027dbd04acee0874aa1c2164e9535739128a9c944bc5a6afc92264cd6858d8563cbb98e9c9f65264d70de0a39f90b4f72cd0c69cc335d577934673bff3484282626510cbbe3b68"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x3ff, 0x4, 0x2, 0x10}}, {{0x9, 0x5, 0x2, 0xc, 0x3ff, 0x60, 0x7, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x9, 0x5}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x97, 0x3}]}}, {{0x9, 0x5, 0xcd4083c2f871a76f, 0x4, 0x200, 0x0, 0x8, 0xd, [@generic={0x72, 0x23, "0186cdc4c717c89919466e6dd42376edbee02e17e695dd77fd5ee313da382f804af27b6787e453be7a95e4060e53a38a1f86cd951f83bad661147e7984fbf6ed1288c7adff316e66d91650f3dec09cab0970b9717e784c193c91f69334940c0531644919b4ee153a63b869633c7defda"}, @uac_iso={0x7, 0x25, 0x1, 0x3, 0xb, 0x8}]}}, {{0x9, 0x5, 0x80, 0x2, 0x10, 0x81, 0x3, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x81, 0xffff}]}}, {{0x9, 0x5, 0xa, 0x0, 0x8, 0x8, 0x7, 0x5}}, {{0x9, 0x5, 0xc, 0x10, 0x8, 0x4, 0xfa, 0xb}}, {{0x9, 0x5, 0x3, 0x10, 0x200, 0x9, 0x6, 0xa7, [@generic={0x3e, 0x1, "22c0010099372543a98c6f556bb97e08abbab288161e5f0512c4c2b7aa3b83178adea9dd8969e4fa65e575fa6c95017d49749fe49a348e2714ec8b8b"}]}}, {{0x9, 0x5, 0x4, 0x0, 0x400, 0x9, 0xf0, 0x1, [@uac_iso={0x7}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x4}]}}, {{0x9, 0x5, 0x9, 0xc, 0x200, 0xa8, 0x7, 0x7, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x9, 0xe}]}}]}}, {{0x9, 0x4, 0x9, 0xdc, 0x5, 0xd1, 0xaa, 0x30, 0xa, [@generic={0x69, 0xb, "d9149b8dc7b9feeba7800107a3aa9e2eb418db1549ed77e48c5a62cf547ea4476b789a7daaa22aa5782d8c42020b9a6e9acc5bf4b2810ffc40ff082298285fb9ebd32fd569fe7fd82f6c692e65f06a1cc46f0b225633d3a0aed7c037799893e31f8631db7f2e26"}], [{{0x9, 0x5, 0x80, 0x10, 0x200, 0x40, 0x3, 0x2, [@generic={0x9f, 0xc, "4160fa1b6721a33e465b56180d623df1050ffecdab2c516dcdfb216a0474e1c0d75a6794c5742a3f23c55c94bf136f5f70c04c5bb68cd31036716fa3e21b6bec52ebed77d60ddade73b3a9e434b8289b7523c37a815f909810b3e105d938aa97d963714f6774a4b5469c3e83706edacc5c03139f686345437739072f41b2beadb0e29f6a0653cb1094993ca94a56c334e707af74abd08fc9e3cbe07b71"}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x6, 0x1}]}}, {{0x9, 0x5, 0x76144b2d1a3c0343, 0x10, 0x10, 0xb, 0x5, 0xa}}, {{0x9, 0x5, 0x1, 0x10, 0x400, 0x3, 0xd, 0xd}}, {{0x9, 0x5, 0x7, 0x1, 0x3ff, 0x9, 0x1, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x4, 0x8}, @generic={0xea, 0x22, "05a267aa1fd2375b3deb26fc18dc6d2c8a4e397ba57b3e4bfe41dc412e90138456946f8f638f36c6e99838b900d4bcb090ca1e0e9df78a9a116189f3d8dd98dbb91baadd29579380f4ddcc3d15a1d7dd454f4dc16c958164c8a3640fc02f53779d2c483eaff042d7cbcff4c047eaf887a92a68519cf5e03467ef96a9ee3f4f8c2c755f2774470c89be394c6612965cc9c74641b1452b73a1380a8d878cf631f83db7521c6e75cee778785c2de72843a9f6bd2cf99c8444082d6bfcd7ddd0a5e19f1b71345172e396e49eec9c843fbacc2b32c8fc3387cab5f9ff8377982a938a4b17718c7497a723"}]}}, {{0x9, 0x5, 0xf, 0x3, 0x200, 0x7}}]}}, {{0x9, 0x4, 0xc9, 0xe, 0x9, 0x6b, 0xd9, 0x70, 0x5, [@hid_hid={0x9, 0x21, 0xfff5, 0x4, 0x1, {0x22, 0xd76}}], [{{0x9, 0x5, 0xa, 0x1, 0x2a1e2c79894a512c, 0x38, 0xa9, 0x8}}, {{0x9, 0x5, 0xc, 0x8, 0x10, 0xe2, 0x2, 0xc4}}, {{0x9, 0x5, 0xd, 0x10, 0x10, 0x2, 0x2, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x81, 0x1, 0x7}, @generic={0x14, 0x21, "c10ac8dcf8074bb7af8b118776b5d872f1cc"}]}}, {{0x9, 0x5, 0x8, 0x25, 0x40, 0x8, 0xf, 0x8}}, {{0x9, 0x5, 0x7, 0x4, 0x10, 0x7, 0x6, 0x7f}}, {{0x9, 0x5, 0x9, 0x0, 0x20, 0x7, 0x5, 0x5, [@generic={0x5c, 0x23, "c0dd66df3c2dbdeaa220fe83f87ac6737c480afcb746c0f4a3a1243ccd792d67e5000e10570d5ea09561e8957fdfbdd261cb7dbc0d29be83374403fbecb03663cf3ef0f6456cd80e85bb1dd68150eb7255b4dc6e1704838d6488"}]}}, {{0x9, 0x5, 0xe, 0x10, 0x8, 0x26, 0x4, 0xbf, [@generic={0x83, 0x7, "77ef648c154dc74ab663e1a52247550c23450c764f1919e7332120470a9748aca8f51df4f0817ba3c79af17e66074ff1a4789e04d33b4e4c050db634e0e5214201e9293b030253f3712dbd1e676d3bf22f562a790d38500610cc2fea784d16a9df123bcda50d83d1971f001baba10fcedab678dfdaa167716c9a42ab9c0f79d2a6"}, @generic={0x4e, 0x11, "e6bd36a656467cf4643195362c41613a4a910e43913700f1dfb22090dee2ec0fa7b46b429885f9de2451aba6ff5ba4182d5bf843d703b6ba28e126e295bef4354de2839f12f6fe78594e9c22"}]}}, {{0x9, 0x5, 0xf, 0x10, 0x3ff, 0xc, 0x6, 0xf, [@generic={0xaf, 0xe, "f070dd984fd0e68a159e6a5b73361a8f7d665e2e3e36ce611f51749ef008b30b297edefc56b63cef4c4e2673730bc90487e42e4ca6ac5644374bb834287c3fedf99eaff366706bdbe3a3fcb5ab44868c5db9a21234ba140d0a993510a315fe390ab525b224eb7d41dda02ee5ab41d3df399aeae5461b84fc38ed54878c33ca8fdcdd024ba8928caa22c3987db835d8144db26db89d1cef58bdf37db7bfdb66a786e330e7407233cb395e57b6b0"}, @generic={0xce, 0x22, "d56ed60b4746348ed9a9815c984e17d6b72db4d18816408e2540e12a4f00e12c08fd9a6da37e4b6466f79fc807011fd3d36558967c590c4753696c7dbe61e7f73a14feeb81a5c9183adc4292747ec26ab6607c34d1d7c5c72740ee65d02eb0f91b4ea3983e5cee93b83a157b2e9dc2fd7c27c4a78b2a8323ac26898c796a51520b92aa0751d1b4d7fb8cbf59433e851d199f37a76410b630cf5197c3e715ff8e62896fad60097d8bf41758ee67d8ba22acaa789a1fe7fd5b5979dfde2dfd7bbe47318ab72dba48cdde63f326"}]}}, {{0x9, 0x5, 0x7, 0x8, 0x40, 0x7f, 0x4, 0xcb}}]}}]}}]}}, &(0x7f0000000100)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x250, 0x5, 0x51, 0x5, 0x10, 0x5}, 0x24e, &(0x7f0000000380)={0x5, 0xf, 0x24e, 0x6, [@generic={0xd0, 0x10, 0x83ac94ac80ca5ba6, "c0828dc75f7ab4d28028119603c351b64cb4d66e5e489bc73896edcda99b6e829efb7ac05099e7e81ac71f7c5f87b528e291aed50d04bc49dab228dbd13269df559be6a9a73167b34330ca7ad41be2c8051c991a4194c076d67661c9315eed0c316b24fff45c5b543fcd8fdcc56a6cdec08811b5c8f4d68af764b0cb95d60e89b64208a18065d075ed9e0e18bb7db3a58395bf4d9616f1f00dc9ca0fbdd8060e64a25ebd2a5431fb377dd8dea02d5396e3ead85591d9dee83448eda95d964b6b40c75abe364cc1a828eecdabab"}, @wireless={0xb, 0x10, 0x1, 0xc, 0x2, 0xff, 0x60, 0x5, 0xa}, @generic={0xb0, 0x10, 0x6, "54e2f0715b90692c2ae2b28a0e0e35fa7ffc96a42a3d1b8f4dc39fb75ed39807569fbbcf9371f445835ab3cdb023224d91526e56bf250e65b0ee615fa93f29fdece4bce9fdac3a3e1b5f58aac17febe78bd33a644db0d348c63881d968ce249b39146725cf6df3bad578b25779ae2985e7ec976f532a4e35a5dea4492053fd907833aa37062b3587905cfe4e781b13375179801e1885dd6a064f36eebbffc45d0f949318b5b455f592e1852c97"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x1, 0x6, 0x0, 0x7fff}, @ptm_cap={0x3}, @generic={0xb1, 0x10, 0x3, "d64fd728379f42a83a0820a46378f488472f9ac62cf261884841d7675fbd88e169d4b8bbfa1f4d84c7635b3575ab15a0cf4a05c76435cc8cc3186def912ffb9b0a866813f3a1f518573cce897a9c9cbdbdfe1161f8f3a8db24c1e9732f0f842dd7b98aed401b985cc82198360a35570063d6632fb51359094648625bd1952a8f925864bcce5a182c4e464b613fa6ba8d5f46d70c17efce8d3e3c82e4d5db9fbcbd3a9c5643fb5052f36f791fcfd4"}]}, 0x2, [{0x4, &(0x7f0000000040)=@lang_id={0x4, 0x3, 0x418}}, {0x4, &(0x7f0000000080)=@lang_id={0x4, 0x3, 0xc07}}]})

1.675758918s ago: executing program 4 (id=571):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa, 0xfffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, 0x0, &(0x7f0000001540)=""/155}, 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f0, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, 0x0)

1.590583298s ago: executing program 4 (id=574):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1}})
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x0, 0x6, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x2, 0x80400, 0x2004, 0x800})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x3fa1dc947ffe4b82})

1.590206318s ago: executing program 4 (id=575):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020701200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000008500000073"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000005c0)="3512", 0x2}], 0x1}, 0x4040891)
recvmsg(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002)

1.567193648s ago: executing program 0 (id=577):
socket$nl_generic(0x10, 0x3, 0x10) (async)
getresuid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000b00))
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f0000000d40)={[{@sb={'sb', 0x3d, 0xfffffffffffffff8}}, {@nogrpid}, {@discard}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1}}, {@init_itable, 0x0}, {@noblock_validity}, {@errors_continue}, {@nolazytime}, {@nobh}, {@jqfmt_vfsv0}, {@lazytime}, {@commit={'commit', 0x3d, 0x80010000000000}}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}], [], 0x2c}, 0xfe, 0x50a, &(0x7f00000005c0)="$eJzs3EtvVGUfAPD/OZ1S+kLf9uW9CaJU0dhopLRcFy6AxISNiYnG4LK2hSAFDK0JkMYWYyBxYcInILoz8RO40o1R40L3ErfGhJhuQFZjzsyZetq59OK0pfT3S2b6POf6/M+l57nMTABbVn/2lkTsjIifI6K3ml24QH/1z4O56dE/5qZHkyiX3/g9qSx3f256tLZobb0deWYgjUg/SuJE/W67Jq9dvzAyMTF+JZ8wOJXmqYsj58bPjV8aPn788KHuY0eHj7QlzqxM9/d8cHnv7tNv335t9Mztd777IitvOZ9fjKOqr/K+bdl76ChmylUzC49lwfMrLP+jrqeQTkrZe7pxhWHZsqs2O12dlfu/NzoquareePXDDS0csKayp1RX3dT5Z9lsuShJak+2G2XgMZDEatbKqgntLwuwnmoP+vtzWUt1erS+Hfx4u3cyKi2gLO4H+as6p1Rpwfb3VdtGnWu0//9ExJnZh3eyVzTshwAAaK+vTkbcOlWtd1Rfpbz+kcb/Csv9Mx8b6ouIf0XEroj4d15/+W9EZdn/R8QThXV6ljEK0L8oX1//+ak7TxSrq22T1f9eyce2Ftb/5kve15HneirxdyZnz0+MH8yPyUB0dmX5ofpN17rVOlrtvz+v/32d57P91+qCeTl+Ky3qoBsbmRpZdcCL3LtRObAz9fEnUUpqqYjdEbFnFdvPjtn5Fz/f22x+f6H+eyaLsy7+T5pvvLSKAi1S/jTihepxn41F8Uc+/pdUxicvvjc4ee36y+eL45NDx44OHxncHhPjBwdrV0W973+8+XqerGtGLIh/9uGdwvmv3RpprGgccmWy8/+Phtf//MhlX1I41FcmV76Pm3dvNW3TtIg/1/j635a8WUnXjsvVkampK0MR25LZ+unDf617daR7wfJZ/AP7G8W/0JMRkV3ET0XE0xGxLy/7MxHxbETsbxH/t6eee7dZE3Lp+NdWFv/YMs7//Hh908SJHyIaz+q48M2XdTv+uL8u/s5odv4PV1ID+ZSxkantS8XVqqTFxN8+gAAAALAJ7IuInZGkB/KOpp2RpgcOROyY70GZnHrp7OX3L41VvyPQF51praert9AfOpT3DWf5bK3hQj6bf6jSb1wul8vdWT5rv0/0bGzosOXtKIyqFO//zK8tRy6Ax8KKxtGafaMN2JQW3/93l71m+z+QAayvNnyOBtik3P+wdS37/l+rb8EBG6bR/T8T8WADigKss0b3/1t1Uxr8jB+w6Wn/w9a1+vvfhwFgs/P8hy1pWV+SX0Vi1+kWyySltdlp80QarX8FoC+iNqVWp2m9wV/SiPaUsGPhlNonqla5we7iOY204Xa2RzuOaqRLLlNawQ8xrG8ifTSKUU10LXW605i/2GZqietrXbDKVfjZxv1nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI8/AwAA//8jgcsl") (async)
inotify_init1(0x0) (async, rerun: 32)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xff2e) (async, rerun: 32)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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") (async)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, 0x0, 0x0)
fchdir(0xffffffffffffffff) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000b80)='./file0\x00', 0x2224c48f, &(0x7f0000000640)={[], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000140)="$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") (async)
r1 = open_tree(0xffffffffffffff9c, 0x0, 0x89901) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="0100000004000000040000001200000000000000", @ANYRES32, @ANYBLOB="0200000000000000000000000000000000000000a448b86bb1c1611c289df63ef703981e1e68c00422e304907980a0a079721c5f96ebce9b149a37c15ee3215054eeaaac0f8e62b58fba54b211365818ab691a2cac03dd6c75f24e4e85ee16236d70be0681abda5122b381b158830f330b11a12d16e488f7b96cbf4a7a320a2facdded7986b55895c18407d131b4120bc74685544d94dfddfda574b0cb796c78ede9df993b", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50) (async)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000cc0)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05000000000090c100000000a15cd23a6dee5c36ea37a37a095a98ba044e314c40dba81feee06fa5de0700e0c82c02f65e2107e4a336be41b2938e213862e954f75677fd983c187bc082bd7b0287ca801772148e20dfab63865411d8ae0ee527bce56b1dd330c2a19c", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x10) (async)
fchdir(r1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth1_to_bond\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="46000000100001040000000000000000ce000000", @ANYRES32=0x0, @ANYBLOB="03000000000000001c0012800c0001006d6163766c616e000c000280080001000800000008000500", @ANYRES32=r5, @ANYBLOB], 0x44}}, 0x0) (async)
ioctl$F2FS_IOC_GET_PIN_FILE(r4, 0x8004f50e, &(0x7f0000000b40)) (async)
mkdirat(0xffffffffffffff9c, 0x0, 0x0) (async)
pivot_root(&(0x7f0000000040)='./file0/../file0/../file0\x00', 0x0) (async)
ftruncate(0xffffffffffffffff, 0x100) (async)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850800000e000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) (async)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x9) (async)
r7 = socket$inet6(0xa, 0x3, 0xff)
bind$inet6(r7, &(0x7f0000000880)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c) (async, rerun: 32)
connect$inet6(r7, &(0x7f0000000200)={0xa, 0x0, 0x0, @mcast1}, 0x1c) (rerun: 32)
dup2(r7, r7)

1.418775648s ago: executing program 0 (id=578):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

1.416026698s ago: executing program 0 (id=580):
mknod(&(0x7f0000000140)='./file0\x00', 0x8001420, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1.397883998s ago: executing program 0 (id=581):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
open$dir(&(0x7f0000000040)='./file0\x00', 0x105240, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

1.391752058s ago: executing program 3 (id=582):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10) (async)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000d40)={0x0, 0x0, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8}, 0x20001) (async)
sendmsg$inet(r3, &(0x7f0000000d40)={0x0, 0x0, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x8}, 0x20001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
memfd_secret(0x0) (async)
r5 = memfd_secret(0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000002c0)={'batadv_slave_1\x00', <r6=>0x0})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x1d, 0x16, &(0x7f0000000740)=ANY=[@ANYRESHEX=r4], &(0x7f0000000300)='syzkaller\x00', 0x20008, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback=0xb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r7, r5, 0x2e, 0x4608, @void}, 0x10)
bpf$LINK_DETACH(0x22, &(0x7f0000000080)=r8, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001540)={&(0x7f0000001500)='kmem_cache_free\x00', r4, 0x0, 0x6}, 0x18)
socket(0xa, 0x80805, 0x0) (async)
r9 = socket(0xa, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000180)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000180)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r9, 0x84, 0x25, &(0x7f00000000c0)={0x0, @in={{0x2, 0x0, @private=0xa010101}}}, 0x90)
openat$cgroup_devices(0xffffffffffffffff, 0x0, 0x2, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreqn(r10, 0x0, 0x20, 0x0, &(0x7f0000000080)) (async)
getsockopt$inet_mreqn(r10, 0x0, 0x20, 0x0, &(0x7f0000000080))
syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') (async)
r11 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r12=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r12, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'})
close_range(r1, r11, 0x0)
r13 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)

1.334183389s ago: executing program 0 (id=583):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000080)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000540), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_128={{0x303, 0x37}, "475566172f000011", "bd14060000000000000092f94413582b", "a4774ec6", "15b188e5e74e13ed"}, 0x28)

1.278951568s ago: executing program 3 (id=584):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa, 0xfffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, 0x0, &(0x7f0000001540)=""/155}, 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'gre0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f0, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x89f1, 0x0)

1.278392599s ago: executing program 3 (id=585):
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1}, &(0x7f0000000300), &(0x7f0000000340)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket(0x10, 0x2, 0x0)
r4 = dup2(r3, r3)
sendto$inet6(r4, &(0x7f0000000000)="7800000018001f05b9409b0dffff000d0203be040205060506014007430008000f000000fac8388827a685a168d9a4c6040045653600648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902003a03004a32000400160012000a00000000000000000000080756ede4ccbe5880", 0x78, 0x0, 0x0, 0x0)
r5 = syz_pidfd_open(r0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000000140)={0x0, 0x0, 0x80000}, 0x20)
setns(r5, 0x24020000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x72b80180, 0x0, 0x0, 0x0, 0x0, 0x0)

1.166728759s ago: executing program 3 (id=586):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[@ANYRESHEX=0x0], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r2)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x28, r3, 0x1, 0x800002, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0xfd}]}, 0x28}}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r5}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000001040)={{0x1, 0x1, 0x1018}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000100)='kfree\x00', r6}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r0, 0x0, 0xe40, 0xfffffe6d, &(0x7f0000000100)="5c71f91b05c413550230b4c817a628", 0x0, 0x1, 0x0, 0x302, 0x0, &(0x7f0000000180)='\x00', 0x0}, 0x48)

1.151689369s ago: executing program 0 (id=587):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x2, 0x800000000003}, 0x100000, 0x5dd7, 0x3, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
getresuid(0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffe}, 0x53)
r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f0000000080)=0x14)
ioctl$IMADDTIMER(r1, 0x80044940, &(0x7f00000000c0)=0x32)
close(r1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r2, &(0x7f0000000200), 0xfffffd9d)

1.086604509s ago: executing program 3 (id=588):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x15, 0x4, 0x6, 0x5, 0x8000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @value, @void, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r3, @ANYRESDEC=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
setfsuid(0xee00)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r8}, 0x10)
syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10100, 0xfffffffe}, &(0x7f0000000380), &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1218088, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x6, 0x2c2, &(0x7f00000008c0)="$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")
sched_setscheduler(0x0, 0x2, 0x0)
stat(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
chown(&(0x7f0000000040)='./file1\x00', r9, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})

1.085720099s ago: executing program 2 (id=589):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, 0x0, 0x4008804)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = io_uring_setup(0x30d5, &(0x7f00000000c0))
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f00000002c0)={0x42, 0x5}, 0x10)
sendmsg$tipc(r4, &(0x7f0000002340)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x1, {{0x43, 0x2}}}, 0x10, 0x0}, 0x4040000)
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[], 0x2, 0x7bc, &(0x7f0000000a80)="$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")
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r5, &(0x7f0000000000)='./file0\x00', 0x5)
r6 = accept$phonet_pipe(r5, &(0x7f0000000040), &(0x7f0000000140)=0x10)
connect$phonet_pipe(r6, &(0x7f0000000180)={0x23, 0xf0, 0x5, 0x6}, 0x10)

1.021048739s ago: executing program 2 (id=590):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x6, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

928.741689ms ago: executing program 2 (id=591):
mknod(&(0x7f0000000140)='./file0\x00', 0x8001420, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
mount(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

427.89815ms ago: executing program 2 (id=592):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f00000004c0)=[{0x20, 0x0, 0xc2, 0xfffff028}, {0x6}]}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x16, 0x0, 0x8400, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r1, 0x4b72, &(0x7f00000004c0)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x800414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2c2, &(0x7f0000000c40)="$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")
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000))
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x0, @dev, 0x0, 0x20002, 'sed\x00'}, 0x2c)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r2, 0x5453, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCMBIC(r3, 0x5415, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r0], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7020000140000e0b7030000000000008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r10, r9, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r10}, &(0x7f0000000000), &(0x7f0000000080)=r6}, 0x20)
recvmsg$unix(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xb3}], 0x1}, 0x0)
sendmsg$inet(r8, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000280)='>', 0x1}], 0x1}, 0x80)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
io_setup(0x9, &(0x7f0000000000))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

360.02617ms ago: executing program 4 (id=593):
r0 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000540)='cpu>00\t||')

37.592891ms ago: executing program 3 (id=594):
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x2012, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000e00)={{}, 0x0, 0x0}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
close(0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r4 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r5 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r5, r4, 0x0, 0x80000000)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000300), 0x111, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @rand_addr=' \x01\x00'}, {0xa, 0x0, 0x0, @mcast2={0xff, 0x5}, 0x1}, r6}}, 0x48)
close_range(r3, 0xffffffffffffffff, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xe1a3d44f5a0eddeb)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdir(0x0, 0x86)
prlimit64(0x0, 0xb, 0x0, 0x0)

0s ago: executing program 4 (id=595):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000080)=0x9) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) (async)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) (async)
writev(r4, &(0x7f0000000d00)=[{0x0}], 0x1) (async)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b6affec850000007d0000"], &(0x7f0000000800)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRESOCT=r0, @ANYBLOB="00000000000000000000000014000000b7030000000000008500000083000000bf0900000000000055090100030000070000000000000000bf71000000000000b7020000000000008500000000000000b7000000000000009700000000"], &(0x7f0000000200)='syzkaller\x00', 0x8, 0xffd, &(0x7f0000001e40)=""/4093, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
acct(&(0x7f0000000200)='./file0\x00') (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

kernel console output (not intermixed with test programs):

[   23.695555][   T29] audit: type=1400 audit(1733848256.354:81): avc:  denied  { read } for  pid=2981 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
Warning: Permanently added '10.128.0.14' (ED25519) to the list of known hosts.
[   30.613716][   T29] audit: type=1400 audit(1733848263.274:82): avc:  denied  { mounton } for  pid=3288 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   30.614993][ T3288] cgroup: Unknown subsys name 'net'
[   30.636433][   T29] audit: type=1400 audit(1733848263.274:83): avc:  denied  { mount } for  pid=3288 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   30.663832][   T29] audit: type=1400 audit(1733848263.304:84): avc:  denied  { unmount } for  pid=3288 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   30.840773][ T3288] cgroup: Unknown subsys name 'cpuset'
[   30.846936][ T3288] cgroup: Unknown subsys name 'rlimit'
[   30.957095][   T29] audit: type=1400 audit(1733848263.614:85): avc:  denied  { setattr } for  pid=3288 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   30.982724][   T29] audit: type=1400 audit(1733848263.614:86): avc:  denied  { create } for  pid=3288 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   30.991994][ T3291] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   31.003224][   T29] audit: type=1400 audit(1733848263.614:87): avc:  denied  { write } for  pid=3288 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   31.032147][   T29] audit: type=1400 audit(1733848263.614:88): avc:  denied  { read } for  pid=3288 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   31.052426][   T29] audit: type=1400 audit(1733848263.624:89): avc:  denied  { mounton } for  pid=3288 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   31.077296][   T29] audit: type=1400 audit(1733848263.624:90): avc:  denied  { mount } for  pid=3288 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   31.100638][   T29] audit: type=1400 audit(1733848263.674:91): avc:  denied  { relabelto } for  pid=3291 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   31.130404][ T3288] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   33.031150][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   33.144593][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.151817][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.159317][ T3306] bridge_slave_0: entered allmulticast mode
[   33.166137][ T3306] bridge_slave_0: entered promiscuous mode
[   33.175006][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.182112][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.189264][ T3306] bridge_slave_1: entered allmulticast mode
[   33.195671][ T3306] bridge_slave_1: entered promiscuous mode
[   33.201984][ T3299] chnl_net:caif_netlink_parms(): no params data found
[   33.210997][ T3301] chnl_net:caif_netlink_parms(): no params data found
[   33.251606][ T3298] chnl_net:caif_netlink_parms(): no params data found
[   33.265532][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   33.277884][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   33.343045][ T3306] team0: Port device team_slave_0 added
[   33.356220][ T3307] chnl_net:caif_netlink_parms(): no params data found
[   33.370638][ T3306] team0: Port device team_slave_1 added
[   33.399175][ T3299] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.406401][ T3299] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.413640][ T3299] bridge_slave_0: entered allmulticast mode
[   33.420349][ T3299] bridge_slave_0: entered promiscuous mode
[   33.429230][ T3299] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.436403][ T3299] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.443680][ T3299] bridge_slave_1: entered allmulticast mode
[   33.450108][ T3299] bridge_slave_1: entered promiscuous mode
[   33.465526][ T3301] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.472644][ T3301] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.479771][ T3301] bridge_slave_0: entered allmulticast mode
[   33.486234][ T3301] bridge_slave_0: entered promiscuous mode
[   33.507178][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.514263][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.540209][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   33.551277][ T3301] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.558641][ T3301] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.565921][ T3301] bridge_slave_1: entered allmulticast mode
[   33.572539][ T3301] bridge_slave_1: entered promiscuous mode
[   33.600168][ T3298] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.607326][ T3298] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.614542][ T3298] bridge_slave_0: entered allmulticast mode
[   33.620992][ T3298] bridge_slave_0: entered promiscuous mode
[   33.627499][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.634506][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.660484][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.678925][ T3299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   33.688250][ T3298] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.695499][ T3298] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.702713][ T3298] bridge_slave_1: entered allmulticast mode
[   33.709314][ T3298] bridge_slave_1: entered promiscuous mode
[   33.724304][ T3301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   33.736322][ T3299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   33.756533][ T3301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   33.781207][ T3299] team0: Port device team_slave_0 added
[   33.792699][ T3298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   33.806336][ T3307] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.813560][ T3307] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.820716][ T3307] bridge_slave_0: entered allmulticast mode
[   33.827270][ T3307] bridge_slave_0: entered promiscuous mode
[   33.834131][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.841210][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.848311][ T3307] bridge_slave_1: entered allmulticast mode
[   33.854875][ T3307] bridge_slave_1: entered promiscuous mode
[   33.861510][ T3299] team0: Port device team_slave_1 added
[   33.877028][ T3298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   33.902013][ T3306] hsr_slave_0: entered promiscuous mode
[   33.908095][ T3306] hsr_slave_1: entered promiscuous mode
[   33.918868][ T3301] team0: Port device team_slave_0 added
[   33.925379][ T3301] team0: Port device team_slave_1 added
[   33.936277][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   33.957166][ T3298] team0: Port device team_slave_0 added
[   33.967353][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.974469][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.000463][ T3299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.012227][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.031185][ T3298] team0: Port device team_slave_1 added
[   34.041754][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.048714][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.074648][ T3299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.090847][ T3307] team0: Port device team_slave_0 added
[   34.109221][ T3301] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.116273][ T3301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.142236][ T3301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.166895][ T3307] team0: Port device team_slave_1 added
[   34.172991][ T3298] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.179978][ T3298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.205951][ T3298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.217317][ T3298] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.224403][ T3298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.250473][ T3298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.261396][ T3301] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.268356][ T3301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.294321][ T3301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.333118][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.340156][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.366168][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.381929][ T3299] hsr_slave_0: entered promiscuous mode
[   34.387995][ T3299] hsr_slave_1: entered promiscuous mode
[   34.394100][ T3299] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   34.401716][ T3299] Cannot create hsr debugfs directory
[   34.412700][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.419665][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.445625][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.477853][ T3301] hsr_slave_0: entered promiscuous mode
[   34.484699][ T3301] hsr_slave_1: entered promiscuous mode
[   34.490869][ T3301] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   34.498420][ T3301] Cannot create hsr debugfs directory
[   34.514414][ T3298] hsr_slave_0: entered promiscuous mode
[   34.520513][ T3298] hsr_slave_1: entered promiscuous mode
[   34.526455][ T3298] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   34.534076][ T3298] Cannot create hsr debugfs directory
[   34.576715][ T3307] hsr_slave_0: entered promiscuous mode
[   34.583012][ T3307] hsr_slave_1: entered promiscuous mode
[   34.588852][ T3307] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   34.596737][ T3307] Cannot create hsr debugfs directory
[   34.732265][ T3306] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   34.747988][ T3306] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   34.761383][ T3306] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   34.774560][ T3306] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   34.791456][ T3301] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   34.801746][ T3301] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   34.810759][ T3301] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   34.819696][ T3301] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   34.872585][ T3298] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   34.883090][ T3298] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   34.892007][ T3307] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   34.901508][ T3307] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   34.911002][ T3307] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   34.919594][ T3307] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   34.928378][ T3298] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   34.939105][ T3298] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   34.971987][ T3299] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   34.980553][ T3299] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   34.989729][ T3299] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   35.007779][ T3299] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   35.018865][ T3301] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.045559][ T3301] 8021q: adding VLAN 0 to HW filter on device team0
[   35.063582][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.072873][   T55] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.080015][   T55] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.097578][   T55] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.104849][   T55] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.128825][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   35.141561][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.148657][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.157756][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.164957][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.188171][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.219398][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   35.235966][   T55] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.243121][   T55] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.264363][ T3299] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.273480][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.280564][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.303276][ T3298] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.313894][ T3299] 8021q: adding VLAN 0 to HW filter on device team0
[   35.334220][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.341375][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.356769][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.363837][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.385226][ T3301] 8021q: adding VLAN 0 to HW filter on device batadv0
[   35.396455][ T3298] 8021q: adding VLAN 0 to HW filter on device team0
[   35.409942][ T1971] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.417118][ T1971] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.428994][ T1971] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.436102][ T1971] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.461626][ T3298] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   35.472124][ T3298] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   35.526688][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   35.564768][ T3298] 8021q: adding VLAN 0 to HW filter on device batadv0
[   35.588488][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   35.682929][ T3301] veth0_vlan: entered promiscuous mode
[   35.693944][ T3306] veth0_vlan: entered promiscuous mode
[   35.722503][ T3301] veth1_vlan: entered promiscuous mode
[   35.732389][ T3306] veth1_vlan: entered promiscuous mode
[   35.765425][ T3299] 8021q: adding VLAN 0 to HW filter on device batadv0
[   35.774033][ T3307] veth0_vlan: entered promiscuous mode
[   35.791559][ T3307] veth1_vlan: entered promiscuous mode
[   35.798278][ T3301] veth0_macvtap: entered promiscuous mode
[   35.806007][ T3306] veth0_macvtap: entered promiscuous mode
[   35.818268][ T3301] veth1_macvtap: entered promiscuous mode
[   35.825819][ T3306] veth1_macvtap: entered promiscuous mode
[   35.855892][ T3301] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.864214][ T3298] veth0_vlan: entered promiscuous mode
[   35.875649][ T3301] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.885434][ T3307] veth0_macvtap: entered promiscuous mode
[   35.891931][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   35.902591][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.913275][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.924911][ T3301] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.933803][ T3301] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.942578][ T3301] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.951296][ T3301] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.962342][ T3307] veth1_macvtap: entered promiscuous mode
[   35.969381][ T3298] veth1_vlan: entered promiscuous mode
[   35.975839][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   35.986356][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   35.997531][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.006584][ T3306] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.015450][ T3306] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.024215][ T3306] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.033083][ T3306] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.064950][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.075492][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.085530][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.096124][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.106678][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.115288][ T3299] veth0_vlan: entered promiscuous mode
[   36.127647][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.135969][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   36.135987][   T29] audit: type=1400 audit(1733848268.794:110): avc:  denied  { mounton } for  pid=3301 comm="syz-executor" path="/root/syzkaller.KhV8Yr/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   36.138217][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.144264][   T29] audit: type=1400 audit(1733848268.794:111): avc:  denied  { mount } for  pid=3301 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   36.168512][ T3307] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.178453][   T29] audit: type=1400 audit(1733848268.794:112): avc:  denied  { mounton } for  pid=3301 comm="syz-executor" path="/root/syzkaller.KhV8Yr/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   36.200357][ T3307] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.206664][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.210863][   T29] audit: type=1400 audit(1733848268.794:113): avc:  denied  { mount } for  pid=3301 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   36.242820][ T3299] veth1_vlan: entered promiscuous mode
[   36.246025][   T29] audit: type=1400 audit(1733848268.794:114): avc:  denied  { mounton } for  pid=3301 comm="syz-executor" path="/root/syzkaller.KhV8Yr/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   36.275480][ T3299] veth0_macvtap: entered promiscuous mode
[   36.280561][   T29] audit: type=1400 audit(1733848268.794:115): avc:  denied  { mounton } for  pid=3301 comm="syz-executor" path="/root/syzkaller.KhV8Yr/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4573 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   36.312753][ T3299] veth1_macvtap: entered promiscuous mode
[   36.312966][   T29] audit: type=1400 audit(1733848268.794:116): avc:  denied  { unmount } for  pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   36.344948][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.364066][   T29] audit: type=1400 audit(1733848269.024:117): avc:  denied  { mounton } for  pid=3301 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   36.365673][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.409424][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.419892][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.429721][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.440206][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.451268][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.458804][ T3298] veth0_macvtap: entered promiscuous mode
[   36.466370][ T3298] veth1_macvtap: entered promiscuous mode
[   36.467619][ T3301] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   36.497446][ T3307] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.506840][ T3307] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.515663][ T3307] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.524496][ T3307] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.535644][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.546317][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.556225][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.566680][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.576515][ T3299] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.587093][ T3299] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.600556][   T29] audit: type=1400 audit(1733848269.244:118): avc:  denied  { read write } for  pid=3301 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   36.620000][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.624751][   T29] audit: type=1400 audit(1733848269.244:119): avc:  denied  { open } for  pid=3301 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   36.665007][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.675545][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.685407][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.695910][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.705846][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.716322][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.726212][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   36.736662][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.747418][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.757789][ T3299] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.766638][ T3299] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.775423][ T3299] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.784315][ T3299] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.798150][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.808738][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.818768][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.829341][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.839295][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.850023][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.859863][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   36.870296][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   36.881692][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.901366][ T3298] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.910152][ T3298] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.918938][ T3298] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.927781][ T3298] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.964517][ T3460] capability: warning: `syz.2.8' uses deprecated v2 capabilities in a way that may be insecure
[   37.341077][ T3496] loop3: detected capacity change from 0 to 1024
[   37.361287][ T3495] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(13)
[   37.367985][ T3495] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   37.375633][ T3495] vhci_hcd vhci_hcd.0: Device attached
[   37.430120][ T3496] EXT4-fs: Mount option(s) incompatible with ext3
[   37.440875][ T3501] vhci_hcd: connection closed
[   37.450500][   T11] vhci_hcd: stop threads
[   37.459491][   T11] vhci_hcd: release socket
[   37.464045][   T11] vhci_hcd: disconnect device
[   37.637636][ T3517] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(13)
[   37.644477][ T3517] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   37.652107][ T3517] vhci_hcd vhci_hcd.0: Device attached
[   37.675716][ T3518] vhci_hcd: connection closed
[   37.676327][   T28] vhci_hcd: stop threads
[   37.685342][   T28] vhci_hcd: release socket
[   37.689819][   T28] vhci_hcd: disconnect device
[   38.027647][ T3532] FAULT_INJECTION: forcing a failure.
[   38.027647][ T3532] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   38.041168][ T3532] CPU: 0 UID: 0 PID: 3532 Comm: syz.2.25 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   38.051773][ T3532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   38.061889][ T3532] Call Trace:
[   38.065184][ T3532]  <TASK>
[   38.068146][ T3532]  dump_stack_lvl+0xf2/0x150
[   38.073142][ T3532]  dump_stack+0x15/0x1a
[   38.077367][ T3532]  should_fail_ex+0x223/0x230
[   38.082154][ T3532]  should_fail_alloc_page+0xfd/0x110
[   38.087543][ T3532]  __alloc_pages_noprof+0x109/0x340
[   38.092777][ T3532]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   38.098208][ T3532]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   38.103706][ T3532]  handle_mm_fault+0xdd7/0x2ac0
[   38.108773][ T3532]  exc_page_fault+0x3b9/0x650
[   38.113484][ T3532]  asm_exc_page_fault+0x26/0x30
[   38.118491][ T3532] RIP: 0033:0x7fb8148a1b63
[   38.123016][ T3532] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   38.142760][ T3532] RSP: 002b:00007fb8130354c0 EFLAGS: 00010206
[   38.148849][ T3532] RAX: 0000000000008000 RBX: 00007fb813035560 RCX: 00007fb80ac16000
[   38.156907][ T3532] RDX: 00007fb813035700 RSI: 0000000000000007 RDI: 00007fb813035600
[   38.164909][ T3532] RBP: 00000000000000dd R08: 000000000000000b R09: 00000000000007d2
[   38.172924][ T3532] R10: 00000000000007e0 R11: 00007fb813035560 R12: 0000000000000001
[   38.180928][ T3532] R13: 00007fb814a68720 R14: 0000000000000050 R15: 00007fb813035600
[   38.188929][ T3532]  </TASK>
[   38.192471][ T3532] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   38.202918][ T3532] loop2: detected capacity change from 0 to 512
[   38.218113][ T3532] EXT4-fs (loop2): filesystem is read-only
[   38.225357][ T3532] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   38.244294][ T3532] EXT4-fs (loop2): filesystem is read-only
[   38.250253][ T3532] EXT4-fs (loop2): orphan cleanup on readonly fs
[   38.259479][ T3532] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.25: bg 0: block 64: padding at end of block bitmap is not set
[   38.294954][ T3532] EXT4-fs (loop2): Remounting filesystem read-only
[   38.301606][ T3532] EXT4-fs (loop2): 1 orphan inode deleted
[   38.307648][ T3532] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   38.319854][ T3532] SELinux: (dev loop2, type ext4) getxattr errno 5
[   38.326924][ T3532] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.502367][ T3540] loop3: detected capacity change from 0 to 512
[   38.525649][ T3540] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   38.538879][ T3540] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   38.583446][ T3540] EXT4-fs (loop3): 1 orphan inode deleted
[   38.589348][ T3540] EXT4-fs (loop3): 1 truncate cleaned up
[   38.603097][ T3548] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   38.612136][ T3548] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   38.621164][ T3548] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   38.629942][ T3548] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   38.640288][ T3540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.663600][ T3548] vxlan0: entered promiscuous mode
[   38.668781][ T3548] vxlan0: entered allmulticast mode
[   38.678030][ T3548] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   38.687016][ T3548] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   38.695969][ T3548] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   38.704962][ T3548] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   38.710700][ T3540] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.3.29: path /4/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[   38.747294][ T3540] EXT4-fs (loop3): Remounting filesystem read-only
[   38.778229][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.014766][ T3574] loop2: detected capacity change from 0 to 2048
[   39.041959][ T3574] EXT4-fs: quotafile must be on filesystem root
[   39.173215][ T3584] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   39.206067][ T3584] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   39.571666][ T3596] loop0: detected capacity change from 0 to 1024
[   39.618824][ T3596] =======================================================
[   39.618824][ T3596] WARNING: The mand mount option has been deprecated and
[   39.618824][ T3596]          and is ignored by this kernel. Remove the mand
[   39.618824][ T3596]          option from the mount to silence this warning.
[   39.618824][ T3596] =======================================================
[   39.881764][ T3596] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   39.921914][ T3596] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.46: Invalid block bitmap block 0 in block_group 0
[   39.935528][ T3596] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.46: Failed to acquire dquot type 0
[   39.947366][ T3596] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.46: Freeing blocks not in datazone - block = 0, count = 4096
[   39.953467][ T3603] loop1: detected capacity change from 0 to 512
[   39.962525][ T3596] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.46: Invalid inode bitmap blk 0 in block_group 0
[   39.979611][ T3596] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[   39.988434][   T11] EXT4-fs error (device loop0): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 0
[   39.990006][ T3596] EXT4-fs (loop0): 1 orphan inode deleted
[   40.010329][ T3596] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.025445][ T3603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.038071][ T3603] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.067684][ T3596] syz.0.46 (3596) used greatest stack depth: 9368 bytes left
[   40.077438][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.115809][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.143038][ T3608] FAULT_INJECTION: forcing a failure.
[   40.143038][ T3608] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   40.156420][ T3608] CPU: 0 UID: 0 PID: 3608 Comm: syz.2.50 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   40.167218][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   40.177328][ T3608] Call Trace:
[   40.180653][ T3608]  <TASK>
[   40.183608][ T3608]  dump_stack_lvl+0xf2/0x150
[   40.188313][ T3608]  dump_stack+0x15/0x1a
[   40.192552][ T3608]  should_fail_ex+0x223/0x230
[   40.197288][ T3608]  should_fail_alloc_page+0xfd/0x110
[   40.202727][ T3608]  __alloc_pages_noprof+0x109/0x340
[   40.208411][ T3608]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   40.213817][ T3608]  folio_alloc_mpol_noprof+0x36/0x70
[   40.219198][ T3608]  __read_swap_cache_async+0x152/0x480
[   40.224789][ T3608]  swap_cluster_readahead+0x279/0x3f0
[   40.230181][ T3608]  shmem_swapin_folio+0x714/0xbe0
[   40.235223][ T3608]  shmem_get_folio_gfp+0x26e/0xd90
[   40.240427][ T3608]  shmem_fault+0xfa/0x250
[   40.244796][ T3608]  __do_fault+0xb6/0x200
[   40.249062][ T3608]  handle_mm_fault+0xc7d/0x2ac0
[   40.254008][ T3608]  exc_page_fault+0x296/0x650
[   40.258711][ T3608]  asm_exc_page_fault+0x26/0x30
[   40.263588][ T3608] RIP: 0010:rep_movs_alternative+0x15/0x70
[   40.269547][ T3608] Code: cc 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 83 f9 40 73 40 83 f9 08 73 21 85 c9 74 0f 8a 06 <88> 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84
[   40.289179][ T3608] RSP: 0018:ffffc900018abdc8 EFLAGS: 00050202
[   40.295257][ T3608] RAX: ffff88811783ed00 RBX: 0000000020044004 RCX: 0000000000000004
[   40.303238][ T3608] RDX: 0000000000000000 RSI: ffffc900018abe64 RDI: 0000000020044000
[   40.311224][ T3608] RBP: 0000000000000001 R08: 0000000080000000 R09: 0000000000000000
[   40.319211][ T3608] R10: 0001c900018abe64 R11: 0001c900018abe67 R12: 0000000000000004
[   40.327201][ T3608] R13: 00007ffffffff000 R14: 0000000020044000 R15: ffffc900018abe64
[   40.335191][ T3608]  _copy_to_user+0x7c/0xa0
[   40.339868][ T3608]  do_timer_create+0x777/0x980
[   40.344651][ T3608]  __x64_sys_timer_create+0xbb/0xf0
[   40.349895][ T3608]  ? fpregs_assert_state_consistent+0x83/0xa0
[   40.356031][ T3608]  x64_sys_call+0x275c/0x2dc0
[   40.360716][ T3608]  do_syscall_64+0xc9/0x1c0
[   40.365344][ T3608]  ? clear_bhb_loop+0x55/0xb0
[   40.370028][ T3608]  ? clear_bhb_loop+0x55/0xb0
[   40.374776][ T3608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.380695][ T3608] RIP: 0033:0x7fb8149dff19
[   40.385153][ T3608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.404772][ T3608] RSP: 002b:00007fb813036058 EFLAGS: 00000246 ORIG_RAX: 00000000000000de
[   40.413197][ T3608] RAX: ffffffffffffffda RBX: 00007fb814ba6080 RCX: 00007fb8149dff19
[   40.421201][ T3608] RDX: 0000000020044000 RSI: 0000000000000000 RDI: 00000000efffffff
[   40.429193][ T3608] RBP: 00007fb8130360a0 R08: 0000000000000000 R09: 0000000000000000
[   40.437337][ T3608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.445311][ T3608] R13: 0000000000000000 R14: 00007fb814ba6080 R15: 00007ffd36a349d8
[   40.453393][ T3608]  </TASK>
[   40.597594][ T3613] syz.0.51 uses obsolete (PF_INET,SOCK_PACKET)
[   40.799846][ T3642] loop1: detected capacity change from 0 to 256
[   40.837766][ T3644] loop0: detected capacity change from 0 to 512
[   40.930496][ T3644] ext4: Bad value for 'min_batch_time'
[   41.234171][ T3644] netlink: 4 bytes leftover after parsing attributes in process `syz.0.61'.
[   41.264744][   T29] kauditd_printk_skb: 251 callbacks suppressed
[   41.264761][   T29] audit: type=1400 audit(1733848273.554:368): avc:  denied  { create } for  pid=3636 comm="syz.2.58" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   41.314385][ T3649] loop1: detected capacity change from 0 to 512
[   41.452779][   T29] audit: type=1400 audit(1733848273.954:369): avc:  denied  { listen } for  pid=3641 comm="syz.1.60" path="/17/file0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   41.474145][   T29] audit: type=1400 audit(1733848273.964:370): avc:  denied  { accept } for  pid=3641 comm="syz.1.60" path="/17/file0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   41.495457][   T29] audit: type=1400 audit(1733848273.984:371): avc:  denied  { write } for  pid=3641 comm="syz.1.60" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   41.826631][   T29] audit: type=1326 audit(1733848274.414:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3647 comm="syz.4.63" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aa1eaff19 code=0x7ffc0000
[   41.849875][   T29] audit: type=1326 audit(1733848274.414:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3647 comm="syz.4.63" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aa1eaff19 code=0x7ffc0000
[   41.873057][   T29] audit: type=1326 audit(1733848274.414:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3647 comm="syz.4.63" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4aa1eaff19 code=0x7ffc0000
[   41.896212][   T29] audit: type=1326 audit(1733848274.414:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3647 comm="syz.4.63" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aa1eaff19 code=0x7ffc0000
[   41.919532][   T29] audit: type=1326 audit(1733848274.414:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3647 comm="syz.4.63" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4aa1eaff19 code=0x7ffc0000
[   41.942770][   T29] audit: type=1326 audit(1733848274.414:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3647 comm="syz.4.63" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4aa1eaff19 code=0x7ffc0000
[   41.982273][ T3661] loop4: detected capacity change from 0 to 128
[   41.996588][ T3665] loop1: detected capacity change from 0 to 128
[   42.059396][ T3670] tipc: Started in network mode
[   42.064600][ T3670] tipc: Node identity 82b80be23168, cluster identity 4711
[   42.072255][ T3670] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   42.086222][ T3672] loop2: detected capacity change from 0 to 1024
[   42.100636][ T3672] EXT4-fs: Ignoring removed orlov option
[   42.110264][ T3670] ªªªªªª: renamed from syzkaller0
[   42.120650][ T3670] tipc: Disabling bearer <eth:syzkaller0>
[   42.138727][ T3670] loop3: detected capacity change from 0 to 2048
[   42.146105][ T3672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.168698][ T3672] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   42.211722][ T3670] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.257564][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.302755][ T3690] loop1: detected capacity change from 0 to 128
[   42.353200][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.386502][ T3694] infiniband syz1: set active
[   42.391302][ T3694] infiniband syz1: added bond_slave_1
[   42.417395][ T3694] RDS/IB: syz1: added
[   42.421635][ T3694] smc: adding ib device syz1 with port count 1
[   42.430009][ T3694] smc:    ib device syz1 port 1 has pnetid 
[   42.600710][ T3712] loop0: detected capacity change from 0 to 1024
[   42.607843][ T3712] EXT4-fs: Ignoring removed orlov option
[   42.632433][ T3712] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.708690][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.106912][ T3765] loop2: detected capacity change from 0 to 128
[   43.328074][ T3779] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   43.391695][ T3788] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3788 comm=syz.4.113
[   43.438553][ T3795] netlink: 'syz.1.115': attribute type 10 has an invalid length.
[   43.446393][ T3795] netlink: 40 bytes leftover after parsing attributes in process `syz.1.115'.
[   43.459936][ T3795] team0: Port device geneve1 added
[   43.562531][ T3811] loop4: detected capacity change from 0 to 128
[   43.578618][ T3813] loop3: detected capacity change from 0 to 2048
[   43.585973][ T3813] ext4: Unknown parameter 'permit_directio'
[   43.668365][ T3816] loop4: detected capacity change from 0 to 128
[   43.676100][ T3816] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[   43.683462][ T3818] loop3: detected capacity change from 0 to 256
[   43.698301][ T3816] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   43.706242][ T3816] FAT-fs (loop4): Filesystem has been set read-only
[   43.714519][ T3816] syz.4.123: attempt to access beyond end of device
[   43.714519][ T3816] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   43.728373][ T3816] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   43.735011][ T3818] FAT-fs (loop3): Directory bread(block 64) failed
[   43.736361][ T3816] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   43.746142][ T3818] FAT-fs (loop3): Directory bread(block 65) failed
[   43.753854][ T3816] syz.4.123: attempt to access beyond end of device
[   43.753854][ T3816] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[   43.791416][ T3818] FAT-fs (loop3): Directory bread(block 66) failed
[   43.817224][ T3818] FAT-fs (loop3): Directory bread(block 67) failed
[   43.826836][ T3818] FAT-fs (loop3): Directory bread(block 68) failed
[   43.833584][ T3818] FAT-fs (loop3): Directory bread(block 69) failed
[   43.840368][ T3818] FAT-fs (loop3): Directory bread(block 70) failed
[   43.846961][ T3818] FAT-fs (loop3): Directory bread(block 71) failed
[   43.854805][ T3818] FAT-fs (loop3): Directory bread(block 72) failed
[   43.879722][ T3818] FAT-fs (loop3): Directory bread(block 73) failed
[   43.944036][ T3832] FAULT_INJECTION: forcing a failure.
[   43.944036][ T3832] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   43.957297][ T3832] CPU: 0 UID: 0 PID: 3832 Comm: syz.0.130 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   43.967916][ T3832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   43.977994][ T3832] Call Trace:
[   43.981293][ T3832]  <TASK>
[   43.984250][ T3832]  dump_stack_lvl+0xf2/0x150
[   43.988886][ T3832]  dump_stack+0x15/0x1a
[   43.993095][ T3832]  should_fail_ex+0x223/0x230
[   43.997812][ T3832]  should_fail+0xb/0x10
[   44.002028][ T3832]  should_fail_usercopy+0x1a/0x20
[   44.007125][ T3832]  _copy_from_user+0x1e/0xb0
[   44.011794][ T3832]  kstrtouint_from_user+0x76/0xe0
[   44.016862][ T3832]  ? 0xffffffff81000000
[   44.021079][ T3832]  ? selinux_file_permission+0x22a/0x360
[   44.026743][ T3832]  proc_fail_nth_write+0x4f/0x150
[   44.031793][ T3832]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   44.037544][ T3832]  vfs_write+0x281/0x920
[   44.041847][ T3832]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   44.047416][ T3832]  ? __fget_files+0x17c/0x1c0
[   44.052123][ T3832]  ksys_write+0xe8/0x1b0
[   44.056467][ T3832]  __x64_sys_write+0x42/0x50
[   44.061081][ T3832]  x64_sys_call+0x287e/0x2dc0
[   44.065839][ T3832]  do_syscall_64+0xc9/0x1c0
[   44.070349][ T3832]  ? clear_bhb_loop+0x55/0xb0
[   44.075050][ T3832]  ? clear_bhb_loop+0x55/0xb0
[   44.079735][ T3832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.085711][ T3832] RIP: 0033:0x7f73aebde9cf
[   44.090208][ T3832] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   44.109895][ T3832] RSP: 002b:00007f73ad257050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   44.118318][ T3832] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f73aebde9cf
[   44.126379][ T3832] RDX: 0000000000000001 RSI: 00007f73ad2570b0 RDI: 0000000000000006
[   44.134379][ T3832] RBP: 00007f73ad2570a0 R08: 0000000000000000 R09: 0000000000000000
[   44.142439][ T3832] R10: 0000000020001180 R11: 0000000000000293 R12: 0000000000000002
[   44.150424][ T3832] R13: 0000000000000000 R14: 00007f73aeda5fa0 R15: 00007ffdb64d9d28
[   44.158525][ T3832]  </TASK>
[   44.305002][   T11] kworker/u8:0: attempt to access beyond end of device
[   44.305002][   T11] loop3: rw=1, sector=1800, nr_sectors = 4 limit=256
[   44.343942][ T3848] loop0: detected capacity change from 0 to 128
[   44.483818][ T3864] netlink: 204 bytes leftover after parsing attributes in process `syz.4.138'.
[   44.517440][ T3864] sit0: entered promiscuous mode
[   44.545305][ T3872] loop4: detected capacity change from 0 to 1024
[   44.608494][ T3872] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.636074][ T3879] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   44.644698][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.656787][ T3877] Zero length message leads to an empty skb
[   44.668093][ T3879] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   44.942052][ T3915] veth0_to_team: entered promiscuous mode
[   44.947938][ T3915] veth0_to_team: entered allmulticast mode
[   45.341631][ T3947] FAULT_INJECTION: forcing a failure.
[   45.341631][ T3947] name failslab, interval 1, probability 0, space 0, times 0
[   45.354438][ T3947] CPU: 1 UID: 0 PID: 3947 Comm: syz.2.161 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   45.365189][ T3947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   45.375333][ T3947] Call Trace:
[   45.378618][ T3947]  <TASK>
[   45.381739][ T3947]  dump_stack_lvl+0xf2/0x150
[   45.386445][ T3947]  dump_stack+0x15/0x1a
[   45.390640][ T3947]  should_fail_ex+0x223/0x230
[   45.395498][ T3947]  should_failslab+0x8f/0xb0
[   45.400213][ T3947]  kmem_cache_alloc_noprof+0x52/0x320
[   45.405599][ T3947]  ? security_file_alloc+0x32/0x100
[   45.410815][ T3947]  security_file_alloc+0x32/0x100
[   45.415876][ T3947]  init_file+0x5b/0x1b0
[   45.420121][ T3947]  alloc_empty_file+0xea/0x200
[   45.424996][ T3947]  path_openat+0x6a/0x1fa0
[   45.429536][ T3947]  ? _parse_integer_limit+0x167/0x180
[   45.434920][ T3947]  ? _parse_integer+0x27/0x30
[   45.439719][ T3947]  ? kstrtoull+0x110/0x140
[   45.444193][ T3947]  ? kstrtouint+0x77/0xc0
[   45.448539][ T3947]  ? kstrtouint_from_user+0xb0/0xe0
[   45.453790][ T3947]  do_filp_open+0x107/0x230
[   45.458581][ T3947]  do_sys_openat2+0xab/0x120
[   45.463320][ T3947]  __x64_sys_creat+0x66/0x90
[   45.467952][ T3947]  x64_sys_call+0x1084/0x2dc0
[   45.472679][ T3947]  do_syscall_64+0xc9/0x1c0
[   45.477245][ T3947]  ? clear_bhb_loop+0x55/0xb0
[   45.481976][ T3947]  ? clear_bhb_loop+0x55/0xb0
[   45.486666][ T3947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.492633][ T3947] RIP: 0033:0x7fb8149dff19
[   45.497057][ T3947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.516837][ T3947] RSP: 002b:00007fb813057058 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   45.525301][ T3947] RAX: ffffffffffffffda RBX: 00007fb814ba5fa0 RCX: 00007fb8149dff19
[   45.533381][ T3947] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000020002200
[   45.541440][ T3947] RBP: 00007fb8130570a0 R08: 0000000000000000 R09: 0000000000000000
[   45.549418][ T3947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.557476][ T3947] R13: 0000000000000000 R14: 00007fb814ba5fa0 R15: 00007ffd36a349d8
[   45.565460][ T3947]  </TASK>
[   45.682157][ T3953] veth0_to_team: entered promiscuous mode
[   45.687974][ T3953] veth0_to_team: entered allmulticast mode
[   45.818007][ T3972] FAULT_INJECTION: forcing a failure.
[   45.818007][ T3972] name failslab, interval 1, probability 0, space 0, times 0
[   45.819644][ T3973] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   45.830710][ T3972] CPU: 1 UID: 0 PID: 3972 Comm: syz.1.172 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   45.852945][ T3972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   45.863138][ T3972] Call Trace:
[   45.866441][ T3972]  <TASK>
[   45.869390][ T3972]  dump_stack_lvl+0xf2/0x150
[   45.874025][ T3972]  dump_stack+0x15/0x1a
[   45.878656][ T3972]  should_fail_ex+0x223/0x230
[   45.883715][ T3972]  should_failslab+0x8f/0xb0
[   45.888371][ T3972]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   45.897235][ T3972]  ? should_failslab+0x8f/0xb0
[   45.902020][ T3972]  ? __request_module+0x1d5/0x3e0
[   45.907072][ T3972]  kstrdup+0x38/0x80
[   45.910991][ T3972]  __request_module+0x1d5/0x3e0
[   45.915900][ T3972]  ? nf_conntrack_helper_try_module_get+0xae/0x430
[   45.922430][ T3972]  nf_conntrack_helper_try_module_get+0x236/0x430
[   45.929049][ T3972]  nf_ct_add_helper+0x39/0xf0
[   45.933753][ T3972]  tcf_ct_init+0xdda/0xe60
[   45.938195][ T3972]  tcf_action_init_1+0x339/0x490
[   45.943237][ T3972]  tcf_action_init+0x1cc/0x610
[   45.948162][ T3972]  tc_ctl_action+0x292/0x840
[   45.952813][ T3972]  ? __pfx_tc_ctl_action+0x10/0x10
[   45.957947][ T3972]  rtnetlink_rcv_msg+0x6aa/0x710
[   45.962972][ T3972]  ? ref_tracker_free+0x3a5/0x410
[   45.968019][ T3972]  ? __dev_queue_xmit+0x186/0x2090
[   45.973234][ T3972]  netlink_rcv_skb+0x12c/0x230
[   45.978123][ T3972]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   45.983669][ T3972]  rtnetlink_rcv+0x1c/0x30
[   45.988094][ T3972]  netlink_unicast+0x599/0x670
[   45.993104][ T3972]  netlink_sendmsg+0x5cc/0x6e0
[   45.997969][ T3972]  ? __pfx_netlink_sendmsg+0x10/0x10
[   46.003404][ T3972]  __sock_sendmsg+0x140/0x180
[   46.008170][ T3972]  ____sys_sendmsg+0x312/0x410
[   46.012979][ T3972]  __sys_sendmsg+0x19d/0x230
[   46.017595][ T3972]  __x64_sys_sendmsg+0x46/0x50
[   46.022371][ T3972]  x64_sys_call+0x2734/0x2dc0
[   46.027130][ T3972]  do_syscall_64+0xc9/0x1c0
[   46.031641][ T3972]  ? clear_bhb_loop+0x55/0xb0
[   46.036331][ T3972]  ? clear_bhb_loop+0x55/0xb0
[   46.041045][ T3972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.047028][ T3972] RIP: 0033:0x7f4e11bdff19
[   46.051449][ T3972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.071095][ T3972] RSP: 002b:00007f4e10257058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   46.079679][ T3972] RAX: ffffffffffffffda RBX: 00007f4e11da5fa0 RCX: 00007f4e11bdff19
[   46.087849][ T3972] RDX: 0000000010000000 RSI: 0000000020000080 RDI: 0000000000000003
[   46.095838][ T3972] RBP: 00007f4e102570a0 R08: 0000000000000000 R09: 0000000000000000
[   46.103836][ T3972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   46.111862][ T3972] R13: 0000000000000000 R14: 00007f4e11da5fa0 R15: 00007ffe7f6bb708
[   46.119913][ T3972]  </TASK>
[   46.227578][ T3990] veth0_to_team: entered promiscuous mode
[   46.233418][ T3990] veth0_to_team: entered allmulticast mode
[   46.234341][ T3992] netlink: 92 bytes leftover after parsing attributes in process `syz.1.181'.
[   46.247409][    C1] hrtimer: interrupt took 62858 ns
[   46.306855][ T3996] netlink: 20 bytes leftover after parsing attributes in process `syz.1.182'.
[   46.317826][ T3984] batadv1: entered promiscuous mode
[   46.324982][ T3984] 8021q: adding VLAN 0 to HW filter on device batadv1
[   46.332944][ T3996] x_tables: ip_tables: udp match: only valid for protocol 17
[   46.418116][   T29] kauditd_printk_skb: 300 callbacks suppressed
[   46.418137][   T29] audit: type=1326 audit(1733848279.074:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3988 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   46.447830][   T29] audit: type=1326 audit(1733848279.074:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3988 comm="syz.3.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   46.488697][   T29] audit: type=1326 audit(1733848279.144:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.564635][   T29] audit: type=1326 audit(1733848279.174:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.588048][   T29] audit: type=1326 audit(1733848279.174:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.611278][   T29] audit: type=1326 audit(1733848279.174:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.634557][   T29] audit: type=1326 audit(1733848279.174:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.657837][   T29] audit: type=1326 audit(1733848279.194:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.681091][   T29] audit: type=1326 audit(1733848279.194:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.704520][   T29] audit: type=1326 audit(1733848279.194:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3986 comm="syz.0.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   46.926932][ T4024] netlink: 92 bytes leftover after parsing attributes in process `syz.0.193'.
[   46.941513][ T4026] loop4: detected capacity change from 0 to 512
[   46.971244][ T4026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.984553][ T4026] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   47.006516][ T4029] loop0: detected capacity change from 0 to 512
[   47.021870][ T4029] EXT4-fs (loop0): orphan cleanup on readonly fs
[   47.040018][ T4029] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   47.055110][ T4031] netlink: 8 bytes leftover after parsing attributes in process `^('.
[   47.064232][ T4031] netlink: 4 bytes leftover after parsing attributes in process `^('.
[   47.069836][ T4029] EXT4-fs (loop0): Cannot turn on quotas: error -117
[   47.090010][ T4029] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #13: comm syz.0.194: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   47.109341][ T4029] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.194: couldn't read orphan inode 13 (err -117)
[   47.117748][ T4026] netlink: 12 bytes leftover after parsing attributes in process `syz.4.192'.
[   47.124425][ T4029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0b00-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.187355][ T4029] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   47.236824][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0b00-0000-000000000000.
[   47.372702][ T4054] loop0: detected capacity change from 0 to 128
[   47.501541][ T4065] loop2: detected capacity change from 0 to 256
[   47.527472][ T4065] FAT-fs (loop2): Directory bread(block 64) failed
[   47.534427][ T4065] FAT-fs (loop2): Directory bread(block 65) failed
[   47.541110][ T4065] FAT-fs (loop2): Directory bread(block 66) failed
[   47.547837][ T4065] FAT-fs (loop2): Directory bread(block 67) failed
[   47.554612][ T4065] FAT-fs (loop2): Directory bread(block 68) failed
[   47.562128][ T4065] FAT-fs (loop2): Directory bread(block 69) failed
[   47.568841][ T4065] FAT-fs (loop2): Directory bread(block 70) failed
[   47.575604][ T4065] FAT-fs (loop2): Directory bread(block 71) failed
[   47.589908][ T4065] FAT-fs (loop2): Directory bread(block 72) failed
[   47.597628][ T4065] FAT-fs (loop2): Directory bread(block 73) failed
[   47.710826][ T4075] loop0: detected capacity change from 0 to 8192
[   47.762780][ T4075] loop0: detected capacity change from 0 to 1024
[   47.791164][ T4075] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[   47.817095][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.830630][ T4075] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   47.858702][   T97] kworker/u8:5: attempt to access beyond end of device
[   47.858702][   T97] loop2: rw=1, sector=1800, nr_sectors = 4 limit=256
[   47.875069][ T4075] EXT4-fs (loop0): mount failed
[   47.941306][ T4097] mmap: syz.2.210 (4097) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   47.951069][ T4099] netlink: 8 bytes leftover after parsing attributes in process `syz.1.207'.
[   47.962074][ T4099] netlink: 4 bytes leftover after parsing attributes in process `syz.1.207'.
[   47.970928][ T4099] netlink: 'syz.1.207': attribute type 14 has an invalid length.
[   48.019467][ T4105] loop2: detected capacity change from 0 to 256
[   48.035331][ T4105] FAT-fs (loop2): Directory bread(block 64) failed
[   48.038196][ T4107] loop1: detected capacity change from 0 to 128
[   48.053098][ T4105] FAT-fs (loop2): Directory bread(block 65) failed
[   48.059678][ T4105] FAT-fs (loop2): Directory bread(block 66) failed
[   48.080908][ T4105] FAT-fs (loop2): Directory bread(block 67) failed
[   48.087714][ T4105] FAT-fs (loop2): Directory bread(block 68) failed
[   48.087742][ T4105] FAT-fs (loop2): Directory bread(block 69) failed
[   48.087771][ T4105] FAT-fs (loop2): Directory bread(block 70) failed
[   48.087792][ T4105] FAT-fs (loop2): Directory bread(block 71) failed
[   48.087817][ T4105] FAT-fs (loop2): Directory bread(block 72) failed
[   48.087837][ T4105] FAT-fs (loop2): Directory bread(block 73) failed
[   48.247960][ T4120] loop4: detected capacity change from 0 to 1024
[   48.256042][ T4120] EXT4-fs (loop4): bad geometry: block count 9223372032559809024 exceeds size of device (512 blocks)
[   48.530320][   T35] usb usb8-port2: attempt power cycle
[   48.769574][ T4138] loop4: detected capacity change from 0 to 128
[   48.965379][ T3394] kworker/u8:7: attempt to access beyond end of device
[   48.965379][ T3394] loop2: rw=1, sector=1736, nr_sectors = 32 limit=256
[   48.987651][ T3394] kworker/u8:7: attempt to access beyond end of device
[   48.987651][ T3394] loop2: rw=1, sector=1800, nr_sectors = 96 limit=256
[   49.267633][ T4177] loop1: detected capacity change from 0 to 512
[   49.276396][ T4177] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   49.327332][ T4177] EXT4-fs (loop1): 1 truncate cleaned up
[   49.335261][ T4177] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.391396][ T4177] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.811469][ T4193] netlink: 'syz.2.241': attribute type 2 has an invalid length.
[   49.819234][ T4193] netlink: 'syz.2.241': attribute type 1 has an invalid length.
[   49.833127][ T4193] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.842085][ T4193] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.981526][ T4193] syz.2.241[4193] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.981714][ T4193] syz.2.241[4193] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.997287][ T4193] netlink: 28 bytes leftover after parsing attributes in process `syz.2.241'.
[   50.131948][ T4193] netlink: 'syz.2.241': attribute type 3 has an invalid length.
[   50.319613][ T4207] FAULT_INJECTION: forcing a failure.
[   50.319613][ T4207] name failslab, interval 1, probability 0, space 0, times 0
[   50.332440][ T4207] CPU: 0 UID: 0 PID: 4207 Comm: syz.0.246 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   50.343104][ T4207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   50.353164][ T4207] Call Trace:
[   50.356438][ T4207]  <TASK>
[   50.359371][ T4207]  dump_stack_lvl+0xf2/0x150
[   50.364009][ T4207]  dump_stack+0x15/0x1a
[   50.368196][ T4207]  should_fail_ex+0x223/0x230
[   50.372983][ T4207]  should_failslab+0x8f/0xb0
[   50.377683][ T4207]  __kmalloc_node_noprof+0xad/0x410
[   50.382980][ T4207]  ? __list_del_entry_valid_or_report+0x5f/0xf0
[   50.389351][ T4207]  ? __kvmalloc_node_noprof+0x72/0x170
[   50.394859][ T4207]  __kvmalloc_node_noprof+0x72/0x170
[   50.400181][ T4207]  bpf_test_run_xdp_live+0xf7/0x1040
[   50.405473][ T4207]  ? __pfx_autoremove_wake_function+0x10/0x10
[   50.411579][ T4207]  ? 0xffffffffa0003b40
[   50.415740][ T4207]  ? synchronize_rcu+0x46/0x320
[   50.420774][ T4207]  ? 0xffffffffa0003b40
[   50.424980][ T4207]  ? bpf_dispatcher_change_prog+0x747/0x840
[   50.431050][ T4207]  ? 0xffffffffa0003b40
[   50.435242][ T4207]  ? 0xffffffffa0001fa0
[   50.439477][ T4207]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   50.445425][ T4207]  bpf_prog_test_run_xdp+0x51d/0x8b0
[   50.450825][ T4207]  ? __rcu_read_unlock+0x4e/0x70
[   50.455899][ T4207]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   50.460662][   T35] usb usb8-port2: unable to enumerate USB device
[   50.461722][ T4207]  bpf_prog_test_run+0x20f/0x3a0
[   50.473010][ T4207]  __sys_bpf+0x400/0x7a0
[   50.477291][ T4207]  __x64_sys_bpf+0x43/0x50
[   50.481746][ T4207]  x64_sys_call+0x2914/0x2dc0
[   50.486458][ T4207]  do_syscall_64+0xc9/0x1c0
[   50.490994][ T4207]  ? clear_bhb_loop+0x55/0xb0
[   50.495736][ T4207]  ? clear_bhb_loop+0x55/0xb0
[   50.500474][ T4207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.506407][ T4207] RIP: 0033:0x7f73aebdff19
[   50.510917][ T4207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.530585][ T4207] RSP: 002b:00007f73ad257058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   50.539084][ T4207] RAX: ffffffffffffffda RBX: 00007f73aeda5fa0 RCX: 00007f73aebdff19
[   50.547179][ T4207] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   50.555515][ T4207] RBP: 00007f73ad2570a0 R08: 0000000000000000 R09: 0000000000000000
[   50.563586][ T4207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.571571][ T4207] R13: 0000000000000000 R14: 00007f73aeda5fa0 R15: 00007ffdb64d9d28
[   50.579635][ T4207]  </TASK>
[   50.681497][ T4220] netlink: 72 bytes leftover after parsing attributes in process `syz.1.250'.
[   50.893547][ T4242] loop3: detected capacity change from 0 to 512
[   50.985548][ T4249] netlink: 72 bytes leftover after parsing attributes in process `syz.1.263'.
[   51.014474][ T4242] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.028596][ T4242] ext4 filesystem being mounted at /40/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.042921][ T4242] syz.3.261[4242] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.042986][ T4242] syz.3.261[4242] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.054897][ T4242] syz.3.261[4242] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   51.096666][ T4242] syzkaller0: entered promiscuous mode
[   51.113698][ T4242] syzkaller0: entered allmulticast mode
[   51.248735][ T4262] veth0_to_team: entered promiscuous mode
[   51.254676][ T4262] veth0_to_team: entered allmulticast mode
[   51.261247][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.322587][ T4270] FAULT_INJECTION: forcing a failure.
[   51.322587][ T4270] name failslab, interval 1, probability 0, space 0, times 0
[   51.335583][ T4270] CPU: 1 UID: 0 PID: 4270 Comm: syz.2.270 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   51.346238][ T4270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   51.356319][ T4270] Call Trace:
[   51.359641][ T4270]  <TASK>
[   51.362596][ T4270]  dump_stack_lvl+0xf2/0x150
[   51.367242][ T4270]  dump_stack+0x15/0x1a
[   51.371437][ T4270]  should_fail_ex+0x223/0x230
[   51.376156][ T4270]  should_failslab+0x8f/0xb0
[   51.380804][ T4270]  kmem_cache_alloc_noprof+0x52/0x320
[   51.386204][ T4270]  ? copy_sighand+0x52/0x1b0
[   51.390822][ T4270]  copy_sighand+0x52/0x1b0
[   51.395318][ T4270]  copy_process+0xd0d/0x1f90
[   51.399947][ T4270]  kernel_clone+0x167/0x5e0
[   51.404473][ T4270]  ? vfs_write+0x596/0x920
[   51.409016][ T4270]  __x64_sys_clone+0xe8/0x120
[   51.413881][ T4270]  x64_sys_call+0x2d7e/0x2dc0
[   51.418595][ T4270]  do_syscall_64+0xc9/0x1c0
[   51.423128][ T4270]  ? clear_bhb_loop+0x55/0xb0
[   51.427872][ T4270]  ? clear_bhb_loop+0x55/0xb0
[   51.432579][ T4270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.438602][ T4270] RIP: 0033:0x7fb8149dff19
[   51.443086][ T4270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.462856][ T4270] RSP: 002b:00007fb813057008 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   51.471441][ T4270] RAX: ffffffffffffffda RBX: 00007fb814ba5fa0 RCX: 00007fb8149dff19
[   51.479439][ T4270] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000638c1000
[   51.487427][ T4270] RBP: 00007fb8130570a0 R08: 0000000000000000 R09: 0000000000000000
[   51.495421][ T4270] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   51.503411][ T4270] R13: 0000000000000000 R14: 00007fb814ba5fa0 R15: 00007ffd36a349d8
[   51.511409][ T4270]  </TASK>
[   51.541732][ T4277] process 'syz.1.274' launched './file0' with NULL argv: empty string added
[   51.552786][   T29] kauditd_printk_skb: 190 callbacks suppressed
[   51.552805][   T29] audit: type=1326 audit(1733848284.214:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.589920][   T29] audit: type=1326 audit(1733848284.214:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.613320][   T29] audit: type=1326 audit(1733848284.244:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.636710][   T29] audit: type=1326 audit(1733848284.244:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.660182][   T29] audit: type=1326 audit(1733848284.244:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.683757][   T29] audit: type=1326 audit(1733848284.254:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.752338][   T29] audit: type=1326 audit(1733848284.294:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.775730][   T29] audit: type=1326 audit(1733848284.294:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4266 comm="syz.3.269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9a4d6ff19 code=0x7ffc0000
[   51.937120][ T4306] loop1: detected capacity change from 0 to 256
[   51.951272][ T4306] FAT-fs (loop1): Directory bread(block 64) failed
[   51.957989][ T4306] FAT-fs (loop1): Directory bread(block 65) failed
[   51.964626][ T4306] FAT-fs (loop1): Directory bread(block 66) failed
[   51.987859][ T4306] FAT-fs (loop1): Directory bread(block 67) failed
[   52.001049][ T4306] FAT-fs (loop1): Directory bread(block 68) failed
[   52.014695][ T4306] FAT-fs (loop1): Directory bread(block 69) failed
[   52.057270][ T4306] FAT-fs (loop1): Directory bread(block 70) failed
[   52.064262][ T4306] FAT-fs (loop1): Directory bread(block 71) failed
[   52.071259][ T4306] FAT-fs (loop1): Directory bread(block 72) failed
[   52.077798][ T4306] FAT-fs (loop1): Directory bread(block 73) failed
[   52.269898][   T29] audit: type=1400 audit(1733848284.934:885): avc:  denied  { write } for  pid=4288 comm="syz.2.278" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   52.488944][   T29] audit: type=1400 audit(1733848285.144:886): avc:  denied  { watch } for  pid=4314 comm="syz.2.286" path="/52" dev="tmpfs" ino=294 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   52.512943][ T4315] FAULT_INJECTION: forcing a failure.
[   52.512943][ T4315] name failslab, interval 1, probability 0, space 0, times 0
[   52.525633][ T4315] CPU: 1 UID: 0 PID: 4315 Comm: syz.2.286 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   52.536918][ T4315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   52.546993][ T4315] Call Trace:
[   52.550292][ T4315]  <TASK>
[   52.553289][ T4315]  dump_stack_lvl+0xf2/0x150
[   52.557929][ T4315]  dump_stack+0x15/0x1a
[   52.562178][ T4315]  should_fail_ex+0x223/0x230
[   52.566948][ T4315]  should_failslab+0x8f/0xb0
[   52.571575][ T4315]  kmem_cache_alloc_noprof+0x52/0x320
[   52.576975][ T4315]  ? getname_flags+0x81/0x3b0
[   52.581713][ T4315]  getname_flags+0x81/0x3b0
[   52.586280][ T4315]  getname+0x17/0x20
[   52.590198][ T4315]  __x64_sys_execve+0x40/0x70
[   52.594900][ T4315]  x64_sys_call+0x1333/0x2dc0
[   52.599827][ T4315]  do_syscall_64+0xc9/0x1c0
[   52.604484][ T4315]  ? clear_bhb_loop+0x55/0xb0
[   52.609180][ T4315]  ? clear_bhb_loop+0x55/0xb0
[   52.613890][ T4315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.619872][ T4315] RIP: 0033:0x7fb8149dff19
[   52.624299][ T4315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.643940][ T4315] RSP: 002b:00007fb813057058 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   52.652474][ T4315] RAX: ffffffffffffffda RBX: 00007fb814ba5fa0 RCX: 00007fb8149dff19
[   52.660543][ T4315] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180
[   52.668540][ T4315] RBP: 00007fb8130570a0 R08: 0000000000000000 R09: 0000000000000000
[   52.676533][ T4315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.684537][ T4315] R13: 0000000000000000 R14: 00007fb814ba5fa0 R15: 00007ffd36a349d8
[   52.692540][ T4315]  </TASK>
[   52.820058][    T9] usb usb8-port2: attempt power cycle
[   52.990242][   T28] kworker/u8:1: attempt to access beyond end of device
[   52.990242][   T28] loop1: rw=1, sector=1800, nr_sectors = 100 limit=256
[   53.211676][ T4343] loop4: detected capacity change from 0 to 164
[   53.220119][ T4340] loop3: detected capacity change from 0 to 512
[   53.253241][ T4347] loop4: detected capacity change from 0 to 128
[   53.259071][ T4340] EXT4-fs (loop3): orphan cleanup on readonly fs
[   53.273733][ T4347] syz.4.299: attempt to access beyond end of device
[   53.273733][ T4347] loop4: rw=2049, sector=145, nr_sectors = 3 limit=128
[   53.291670][ T4340] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   53.323198][ T4340] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   53.340477][ T4340] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #13: comm syz.3.296: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   53.393259][ T4340] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.296: couldn't read orphan inode 13 (err -117)
[   53.424622][ T4340] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   53.441068][ T4340] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.296: deleted inode referenced: 12
[   53.453238][ T4340] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.296: deleted inode referenced: 12
[   53.481220][ T4340] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.296: deleted inode referenced: 12
[   53.528621][ T4354] loop4: detected capacity change from 0 to 8192
[   53.692959][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.775376][ T4364] loop4: detected capacity change from 0 to 1024
[   53.788749][ T4364] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.803382][ T4364] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   53.817872][ T4364] EXT4-fs (loop4): orphan cleanup on readonly fs
[   53.830210][ T4364] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   53.845031][ T4364] EXT4-fs (loop4): Remounting filesystem read-only
[   53.852820][ T4364] EXT4-fs (loop4): 1 orphan inode deleted
[   53.863282][ T4364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   53.875490][ T4364] SELinux: (dev loop4, type ext4) getxattr errno 5
[   53.884781][ T4364] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.971206][ T4374] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.304'.
[   54.076173][ T4379] loop4: detected capacity change from 0 to 128
[   54.091602][ T4379] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   54.203955][   T28] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   54.291932][ T4389] loop2: detected capacity change from 0 to 128
[   54.323506][ T4385] loop4: detected capacity change from 0 to 512
[   54.349243][ T4385] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   54.372749][ T4385] EXT4-fs (loop4): 1 orphan inode deleted
[   54.378525][ T4385] EXT4-fs (loop4): 1 truncate cleaned up
[   54.410429][ T4394] bond1: entered promiscuous mode
[   54.415539][ T4394] bond1: entered allmulticast mode
[   54.421255][ T4385] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.445317][ T4394] 8021q: adding VLAN 0 to HW filter on device bond1
[   54.458350][ T4394] bond1 (unregistering): Released all slaves
[   54.470462][ T4397] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   54.512316][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.641919][ T4407] netlink: 'syz.1.320': attribute type 1 has an invalid length.
[   54.643268][ T4408] netlink: 28 bytes leftover after parsing attributes in process `syz.2.318'.
[   54.649621][ T4407] netlink: 112 bytes leftover after parsing attributes in process `syz.1.320'.
[   54.668868][    T9] usb usb8-port2: unable to enumerate USB device
[   54.723097][ T4382] bridge_slave_0: left allmulticast mode
[   54.728854][ T4382] bridge_slave_0: left promiscuous mode
[   54.734578][ T4382] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.747920][ T4382] bridge_slave_1: left allmulticast mode
[   54.753730][ T4382] bridge_slave_1: left promiscuous mode
[   54.759438][ T4382] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.772477][ T4382] bond0: (slave bond_slave_0): Releasing backup interface
[   54.784805][ T4382] bond0: (slave bond_slave_1): Releasing backup interface
[   54.798451][ T4382] team0: Port device team_slave_0 removed
[   54.808699][ T4382] team0: Port device team_slave_1 removed
[   54.816380][ T4382] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   54.823980][ T4382] batman_adv: batadv0: Removing interface: batadv_slave_0
[   54.834271][ T4382] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   54.841838][ T4382] batman_adv: batadv0: Removing interface: batadv_slave_1
[   55.044088][ T4421] netlink: 36 bytes leftover after parsing attributes in process `syz.1.325'.
[   55.161830][ T4430] netlink: 8 bytes leftover after parsing attributes in process `syz.3.329'.
[   55.442884][ T4448] netlink: 36 bytes leftover after parsing attributes in process `syz.1.336'.
[   55.479595][ T4451] loop2: detected capacity change from 0 to 1024
[   55.502849][ T4451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.538289][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.573569][ T4465] FAULT_INJECTION: forcing a failure.
[   55.573569][ T4465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.586709][ T4465] CPU: 1 UID: 0 PID: 4465 Comm: syz.2.341 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   55.597472][ T4465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.607585][ T4465] Call Trace:
[   55.610927][ T4465]  <TASK>
[   55.613874][ T4465]  dump_stack_lvl+0xf2/0x150
[   55.618591][ T4465]  dump_stack+0x15/0x1a
[   55.622784][ T4465]  should_fail_ex+0x223/0x230
[   55.627504][ T4465]  should_fail+0xb/0x10
[   55.631820][ T4465]  should_fail_usercopy+0x1a/0x20
[   55.636882][ T4465]  _copy_to_user+0x20/0xa0
[   55.641399][ T4465]  rng_dev_read+0x3cf/0x6f0
[   55.645971][ T4465]  vfs_readv+0x3e2/0x660
[   55.650229][ T4465]  ? __pfx_rng_dev_read+0x10/0x10
[   55.655290][ T4465]  __x64_sys_preadv+0xf4/0x1c0
[   55.660152][ T4465]  x64_sys_call+0x2680/0x2dc0
[   55.664939][ T4465]  do_syscall_64+0xc9/0x1c0
[   55.669468][ T4465]  ? clear_bhb_loop+0x55/0xb0
[   55.674187][ T4465]  ? clear_bhb_loop+0x55/0xb0
[   55.679058][ T4465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.684978][ T4465] RIP: 0033:0x7fb8149dff19
[   55.689461][ T4465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.709084][ T4465] RSP: 002b:00007fb813057058 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   55.717510][ T4465] RAX: ffffffffffffffda RBX: 00007fb814ba5fa0 RCX: 00007fb8149dff19
[   55.725643][ T4465] RDX: 0000000000000001 RSI: 0000000020000240 RDI: 0000000000000006
[   55.733657][ T4465] RBP: 00007fb8130570a0 R08: 0000000000000000 R09: 0000000000000000
[   55.741637][ T4465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   55.749615][ T4465] R13: 0000000000000000 R14: 00007fb814ba5fa0 R15: 00007ffd36a349d8
[   55.757672][ T4465]  </TASK>
[   55.888067][ T4479] netlink: 36 bytes leftover after parsing attributes in process `syz.0.349'.
[   55.947452][ T4477] loop2: detected capacity change from 0 to 1024
[   55.973806][ T4477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.001861][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.065219][ T4489] loop2: detected capacity change from 0 to 512
[   56.093963][ T4489] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   56.168876][ T4498] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   56.177650][ T4489] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   56.273739][ T4489] EXT4-fs (loop2): 1 truncate cleaned up
[   56.280036][ T4489] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.505295][ T4518] FAULT_INJECTION: forcing a failure.
[   56.505295][ T4518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.518430][ T4518] CPU: 1 UID: 0 PID: 4518 Comm: syz.0.362 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   56.529051][ T4518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.539123][ T4518] Call Trace:
[   56.542500][ T4518]  <TASK>
[   56.545607][ T4518]  dump_stack_lvl+0xf2/0x150
[   56.550243][ T4518]  dump_stack+0x15/0x1a
[   56.554419][ T4518]  should_fail_ex+0x223/0x230
[   56.559139][ T4518]  should_fail+0xb/0x10
[   56.563319][ T4518]  should_fail_usercopy+0x1a/0x20
[   56.568403][ T4518]  strncpy_from_user+0x25/0x210
[   56.573379][ T4518]  strncpy_from_user_nofault+0x66/0xe0
[   56.578859][ T4518]  bpf_probe_read_user_str+0x2a/0x70
[   56.584196][ T4518]  bpf_prog_99b56f93a3ca5fea+0x4b/0x4d
[   56.589660][ T4518]  bpf_trace_run5+0x120/0x1e0
[   56.594365][ T4518]  __bpf_trace_signal_generate+0x3a/0x50
[   56.600015][ T4518]  ? __pfx___bpf_trace_signal_generate+0x10/0x10
[   56.606421][ T4518]  __traceiter_signal_generate+0x71/0xb0
[   56.612073][ T4518]  __send_signal_locked+0x723/0x780
[   56.617287][ T4518]  send_signal_locked+0x28f/0x3a0
[   56.622462][ T4518]  do_send_sig_info+0x9f/0xf0
[   56.627154][ T4518]  group_send_sig_info+0x6d/0x90
[   56.632126][ T4518]  bpf_send_signal_common+0x20b/0x2e0
[   56.637588][ T4518]  bpf_send_signal+0x1d/0x30
[   56.642263][ T4518]  bpf_prog_8cc4ff36b5985b6a+0x1e/0x20
[   56.647764][ T4518]  bpf_trace_run2+0x104/0x1d0
[   56.652520][ T4518]  __bpf_trace_sys_exit+0x10/0x30
[   56.657567][ T4518]  syscall_exit_work+0x17f/0x1e0
[   56.662525][ T4518]  syscall_exit_to_user_mode+0xe6/0x120
[   56.668096][ T4518]  do_syscall_64+0xd6/0x1c0
[   56.672608][ T4518]  ? clear_bhb_loop+0x55/0xb0
[   56.677355][ T4518]  ? clear_bhb_loop+0x55/0xb0
[   56.682040][ T4518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.688026][ T4518] RIP: 0033:0x7f73aebde9cf
[   56.692462][ T4518] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   56.712219][ T4518] RSP: 002b:00007f73ad257050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   56.720722][ T4518] RAX: 0000000000000001 RBX: 0000000000000007 RCX: 00007f73aebde9cf
[   56.728724][ T4518] RDX: 0000000000000001 RSI: 00007f73ad2570a0 RDI: 0000000000000007
[   56.736709][ T4518] RBP: 00007f73ad2570a0 R08: 0000000000000000 R09: 00007f73ad256e17
[   56.744837][ T4518] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[   56.752833][ T4518] R13: 0000000000000000 R14: 00007f73aeda5fa0 R15: 00007ffdb64d9d28
[   56.760897][ T4518]  </TASK>
[   56.890326][   T29] kauditd_printk_skb: 329 callbacks suppressed
[   56.890345][   T29] audit: type=1326 audit(1733848289.454:1212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4511 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f4e11bdff19 code=0x7ffc0000
[   56.919944][   T29] audit: type=1326 audit(1733848289.484:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4511 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e11bdff19 code=0x7ffc0000
[   56.943408][   T29] audit: type=1326 audit(1733848289.484:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4511 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e11bdff19 code=0x7ffc0000
[   56.966745][   T29] audit: type=1326 audit(1733848289.544:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4511 comm="syz.1.361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f4e11bdff19 code=0x7ffc0000
[   57.004912][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.022892][ T4519] loop1: detected capacity change from 0 to 1024
[   57.030857][ T4519] ext4: Bad value for 'resuid'
[   57.035706][ T4519] ext4: Bad value for 'resuid'
[   57.075129][ T4515] netlink: 40 bytes leftover after parsing attributes in process `syz.1.361'.
[   57.098228][ T4519] loop1: detected capacity change from 0 to 512
[   57.123515][ T4519] /dev/loop1: Can't open blockdev
[   57.271248][ T4536] random: crng reseeded on system resumption
[   57.338108][   T29] audit: type=1400 audit(1733848289.934:1216): avc:  denied  { write } for  pid=4535 comm="syz.1.367" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   57.361359][   T29] audit: type=1400 audit(1733848289.934:1217): avc:  denied  { open } for  pid=4535 comm="syz.1.367" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[   57.409590][ T4543] loop4: detected capacity change from 0 to 128
[   57.416687][ T4539] loop1: detected capacity change from 0 to 2048
[   57.490409][   T29] audit: type=1326 audit(1733848290.154:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   57.526944][   T29] audit: type=1326 audit(1733848290.154:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   57.550478][   T29] audit: type=1326 audit(1733848519.156:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   57.573845][   T29] audit: type=1326 audit(1733848519.166:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.0.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   57.590525][ T3376] usb usb8-port2: attempt power cycle
[   57.610426][ T4539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.648326][ T4558] pimreg: entered allmulticast mode
[   57.651505][ T4558] pimreg: left allmulticast mode
[   57.822273][ T4558] loop2: detected capacity change from 0 to 512
[   57.837915][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.881995][ T4558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.910319][ T4558] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.182762][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.378501][ T4583] loop1: detected capacity change from 0 to 764
[   58.398155][ T4582] Symlink component flag not implemented
[   58.404845][ T4582] Symlink component flag not implemented (101)
[   58.416030][ T4582] netlink: 8 bytes leftover after parsing attributes in process `syz.1.384'.
[   58.673620][ T4603] netlink: 40 bytes leftover after parsing attributes in process `syz.1.388'.
[   58.744932][ T4608] loop3: detected capacity change from 0 to 512
[   58.752556][ T4608] EXT4-fs error (device loop3): ext4_get_journal_inode:5809: inode #32: comm syz.3.393: iget: special inode unallocated
[   58.797061][ T4608] EXT4-fs (loop3): Remounting filesystem read-only
[   58.803746][ T4608] EXT4-fs (loop3): no journal found
[   58.808995][ T4608] EXT4-fs (loop3): can't get journal size
[   58.832255][ T4608] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   58.912270][ T4608] EXT4-fs (loop3): failed to initialize system zone (-117)
[   58.941019][ T4608] EXT4-fs (loop3): mount failed
[   59.041294][ T4629] syz.0.401 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   59.075411][ T4634] FAULT_INJECTION: forcing a failure.
[   59.075411][ T4634] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.088532][ T4634] CPU: 1 UID: 0 PID: 4634 Comm: syz.2.403 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   59.099153][ T4634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.109697][ T4634] Call Trace:
[   59.112992][ T4634]  <TASK>
[   59.115941][ T4634]  dump_stack_lvl+0xf2/0x150
[   59.120602][ T4634]  dump_stack+0x15/0x1a
[   59.122106][ T4629] loop0: detected capacity change from 0 to 4096
[   59.124857][ T4634]  should_fail_ex+0x223/0x230
[   59.124892][ T4634]  should_fail+0xb/0x10
[   59.124920][ T4634]  should_fail_usercopy+0x1a/0x20
[   59.145627][ T4634]  _copy_from_user+0x1e/0xb0
[   59.150245][ T4634]  bpf_test_init+0x105/0x170
[   59.154864][ T4634]  bpf_prog_test_run_flow_dissector+0x126/0x350
[   59.161187][ T4634]  ? __pfx_bpf_prog_test_run_flow_dissector+0x10/0x10
[   59.167983][ T4634]  bpf_prog_test_run+0x20f/0x3a0
[   59.172961][ T4634]  __sys_bpf+0x400/0x7a0
[   59.177257][ T4634]  __x64_sys_bpf+0x43/0x50
[   59.181813][ T4634]  x64_sys_call+0x2914/0x2dc0
[   59.186581][ T4634]  do_syscall_64+0xc9/0x1c0
[   59.191093][ T4634]  ? clear_bhb_loop+0x55/0xb0
[   59.195776][ T4634]  ? clear_bhb_loop+0x55/0xb0
[   59.200513][ T4634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.206459][ T4634] RIP: 0033:0x7fb8149dff19
[   59.210920][ T4634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.231134][ T4634] RSP: 002b:00007fb813057058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   59.239563][ T4634] RAX: ffffffffffffffda RBX: 00007fb814ba5fa0 RCX: 00007fb8149dff19
[   59.247539][ T4634] RDX: 0000000000000050 RSI: 0000000020000000 RDI: 000000000000000a
[   59.255607][ T4634] RBP: 00007fb8130570a0 R08: 0000000000000000 R09: 0000000000000000
[   59.263583][ T4634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.271577][ T4634] R13: 0000000000000000 R14: 00007fb814ba5fa0 R15: 00007ffd36a349d8
[   59.279648][ T4634]  </TASK>
[   59.320725][ T4629] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.371422][ T4643] 9pnet_fd: Insufficient options for proto=fd
[   59.426722][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.491312][ T3376] usb usb8-port2: unable to enumerate USB device
[   59.537177][ T4659] Driver unsupported XDP return value 0 on prog  (id 421) dev N/A, expect packet loss!
[   59.539618][ T4657] FAULT_INJECTION: forcing a failure.
[   59.539618][ T4657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.560073][ T4657] CPU: 0 UID: 0 PID: 4657 Comm: syz.2.412 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   59.560104][ T4657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.560118][ T4657] Call Trace:
[   59.560126][ T4657]  <TASK>
[   59.560135][ T4657]  dump_stack_lvl+0xf2/0x150
[   59.560249][ T4657]  dump_stack+0x15/0x1a
[   59.560289][ T4657]  should_fail_ex+0x223/0x230
[   59.560319][ T4657]  should_fail+0xb/0x10
[   59.560407][ T4657]  should_fail_usercopy+0x1a/0x20
[   59.560439][ T4657]  _copy_to_user+0x20/0xa0
[   59.560507][ T4657]  simple_read_from_buffer+0xa0/0x110
[   59.560546][ T4657]  proc_fail_nth_read+0xf9/0x140
[   59.560583][ T4657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   59.560668][ T4657]  vfs_read+0x1a2/0x700
[   59.560698][ T4657]  ? rep_movs_alternative+0x22/0x70
[   59.560726][ T4657]  ? _copy_from_user+0x3d/0xb0
[   59.560820][ T4657]  ? autofs_dev_ioctl+0xed/0x660
[   59.560861][ T4657]  ksys_read+0xe8/0x1b0
[   59.560959][ T4657]  __x64_sys_read+0x42/0x50
[   59.560990][ T4657]  x64_sys_call+0x2874/0x2dc0
[   59.561056][ T4657]  do_syscall_64+0xc9/0x1c0
[   59.561126][ T4657]  ? clear_bhb_loop+0x55/0xb0
[   59.561152][ T4657]  ? clear_bhb_loop+0x55/0xb0
[   59.561231][ T4657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.561285][ T4657] RIP: 0033:0x7fb8149de92c
[   59.561307][ T4657] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   59.561337][ T4657] RSP: 002b:00007fb813057050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   59.561360][ T4657] RAX: ffffffffffffffda RBX: 00007fb814ba5fa0 RCX: 00007fb8149de92c
[   59.561376][ T4657] RDX: 000000000000000f RSI: 00007fb8130570b0 RDI: 0000000000000004
[   59.561433][ T4657] RBP: 00007fb8130570a0 R08: 0000000000000000 R09: 0000000000000000
[   59.561450][ T4657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.561514][ T4657] R13: 0000000000000000 R14: 00007fb814ba5fa0 R15: 00007ffd36a349d8
[   59.561538][ T4657]  </TASK>
[   59.683183][ T4675] loop2: detected capacity change from 0 to 512
[   59.693541][ T4675] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   59.694682][ T4675] EXT4-fs (loop2): 1 truncate cleaned up
[   59.695101][ T4675] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.695806][ T4675] netlink: 60 bytes leftover after parsing attributes in process `syz.2.418'.
[   59.875532][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.003531][ T4672] syz.0.417[4672] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.003618][ T4672] syz.0.417[4672] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.045509][ T4672] syz.0.417[4672] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.297981][ T4710] loop4: detected capacity change from 0 to 1024
[   60.350999][ T4710] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.383552][ T4709] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.426: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   60.406372][ T4709] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.426: Failed to acquire dquot type 0
[   60.510756][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.636429][ T4733] netlink: 'syz.1.433': attribute type 3 has an invalid length.
[   60.876420][ T4755] SELinux: syz.2.434 (4755) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[   61.051970][ T4773] loop0: detected capacity change from 0 to 1024
[   61.127017][ T4773] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.183585][ T4777] FAULT_INJECTION: forcing a failure.
[   61.183585][ T4777] name failslab, interval 1, probability 0, space 0, times 0
[   61.196295][ T4777] CPU: 1 UID: 0 PID: 4777 Comm: syz.1.442 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   61.206946][ T4777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.217019][ T4777] Call Trace:
[   61.220307][ T4777]  <TASK>
[   61.223254][ T4777]  dump_stack_lvl+0xf2/0x150
[   61.227882][ T4777]  dump_stack+0x15/0x1a
[   61.232363][ T4777]  should_fail_ex+0x223/0x230
[   61.237062][ T4777]  should_failslab+0x8f/0xb0
[   61.241679][ T4777]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   61.248073][ T4777]  ? sidtab_sid2str_get+0xb8/0x140
[   61.253233][ T4777]  kmemdup_noprof+0x2a/0x60
[   61.257896][ T4777]  sidtab_sid2str_get+0xb8/0x140
[   61.262906][ T4777]  security_sid_to_context_core+0x1eb/0x2f0
[   61.268910][ T4777]  security_sid_to_context+0x27/0x30
[   61.274217][ T4777]  avc_audit_post_callback+0x9d/0x530
[   61.279627][ T4777]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   61.285635][ T4777]  common_lsm_audit+0x90f/0x1010
[   61.290660][ T4777]  slow_avc_audit+0xf9/0x140
[   61.295290][ T4777]  avc_has_perm+0x129/0x160
[   61.299894][ T4777]  selinux_socket_create+0xfe/0x180
[   61.305120][ T4777]  security_socket_create+0x4f/0x90
[   61.310392][ T4777]  __sock_create+0xe2/0x5a0
[   61.314945][ T4777]  __sys_socketpair+0x17c/0x430
[   61.319905][ T4777]  __x64_sys_socketpair+0x52/0x60
[   61.325023][ T4777]  x64_sys_call+0x1cad/0x2dc0
[   61.329731][ T4777]  do_syscall_64+0xc9/0x1c0
[   61.334281][ T4777]  ? clear_bhb_loop+0x55/0xb0
[   61.338980][ T4777]  ? clear_bhb_loop+0x55/0xb0
[   61.343694][ T4777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.349623][ T4777] RIP: 0033:0x7f4e11bdff19
[   61.354057][ T4777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.373696][ T4777] RSP: 002b:00007f4e10257058 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[   61.382132][ T4777] RAX: ffffffffffffffda RBX: 00007f4e11da5fa0 RCX: 00007f4e11bdff19
[   61.390174][ T4777] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[   61.398167][ T4777] RBP: 00007f4e102570a0 R08: 0000000000000000 R09: 0000000000000000
[   61.406249][ T4777] R10: 0000000020000940 R11: 0000000000000246 R12: 0000000000000001
[   61.414246][ T4777] R13: 0000000000000000 R14: 00007f4e11da5fa0 R15: 00007ffe7f6bb708
[   61.422270][ T4777]  </TASK>
[   61.667675][ T4802] syzkaller1: entered allmulticast mode
[   61.828585][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.875742][   T29] kauditd_printk_skb: 306 callbacks suppressed
[   61.875759][   T29] audit: type=1400 audit(1733848523.563:1526): avc:  denied  { create } for  pid=4817 comm="syz.1.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.950315][   T29] audit: type=1400 audit(1733848523.563:1527): avc:  denied  { setopt } for  pid=4817 comm="syz.1.452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.970374][   T29] audit: type=1400 audit(1733848523.594:1528): avc:  denied  { write } for  pid=4815 comm="syz.3.450" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   61.990125][   T29] audit: type=1400 audit(1733848523.614:1529): avc:  denied  { create } for  pid=4823 comm="syz.0.451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.009484][   T29] audit: type=1400 audit(1733848523.614:1530): avc:  denied  { connect } for  pid=4823 comm="syz.0.451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.029170][   T29] audit: type=1400 audit(1733848523.624:1531): avc:  denied  { ioctl } for  pid=4823 comm="syz.0.451" path="socket:[8744]" dev="sockfs" ino=8744 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   62.063145][   T29] audit: type=1400 audit(1733848523.745:1532): avc:  denied  { name_bind } for  pid=4823 comm="syz.0.451" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   62.084796][   T29] audit: type=1400 audit(1733848523.745:1533): avc:  denied  { create } for  pid=4823 comm="syz.0.451" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   62.104368][   T29] audit: type=1400 audit(1733848523.745:1534): avc:  denied  { write } for  pid=4823 comm="syz.0.451" path="socket:[8019]" dev="sockfs" ino=8019 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   62.180002][   T29] audit: type=1400 audit(1733848523.855:1535): avc:  denied  { create } for  pid=4829 comm="syz.3.453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   62.422251][ T4847] loop0: detected capacity change from 0 to 512
[   62.451814][ T4847] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.460: Failed to acquire dquot type 1
[   62.473203][ T4851] netlink: 92 bytes leftover after parsing attributes in process `syz.2.462'.
[   62.486221][ T4847] EXT4-fs (loop0): 1 truncate cleaned up
[   62.499573][ T4847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.518322][ T4847] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.556098][ T4847] netlink: 8 bytes leftover after parsing attributes in process `syz.0.460'.
[   62.592921][ T4859] xt_hashlimit: max too large, truncated to 1048576
[   62.597959][ T4847] batadv0: entered promiscuous mode
[   62.606894][ T4859] Cannot find set identified by id 0 to match
[   62.615125][ T4847] macsec1: entered promiscuous mode
[   62.620600][ T4847] macsec1: entered allmulticast mode
[   62.625908][ T4847] batadv0: entered allmulticast mode
[   62.767195][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.964171][ T4877] loop3: detected capacity change from 0 to 128
[   63.147769][ T4891] netlink: 4 bytes leftover after parsing attributes in process `syz.1.478'.
[   63.149274][ T4889] loop3: detected capacity change from 0 to 1024
[   63.204816][ T4889] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   63.237302][ T4889] JBD2: no valid journal superblock found
[   63.243257][ T4889] EXT4-fs (loop3): Could not load journal inode
[   63.476760][ T4913] loop3: detected capacity change from 0 to 128
[   63.494358][ T4913] ext4: Unknown parameter './file1'
[   63.756052][ T4923] syz.3.489[4923] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.756162][ T4923] syz.3.489[4923] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.779078][ T4923] syz.3.489[4923] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   63.885011][ T4932] loop3: detected capacity change from 0 to 2048
[   63.923488][ T4932] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   63.983666][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.022838][ T3376] IPVS: starting estimator thread 0...
[   64.028596][ T4944] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[   64.060942][ T4955] loop4: detected capacity change from 0 to 512
[   64.081873][ T4955] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.082511][ T4959] loop3: detected capacity change from 0 to 164
[   64.104340][ T4959] iso9660: Unknown parameter '0xffffffffffffffff0x0000000000000000Amap'
[   64.115888][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.126398][ T4951] IPVS: using max 2112 ests per chain, 105600 per kthread
[   64.281382][ T4973] block device autoloading is deprecated and will be removed.
[   64.289376][ T4973] syz.4.505: attempt to access beyond end of device
[   64.289376][ T4973] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   64.304993][ T4973] netlink: 28 bytes leftover after parsing attributes in process `syz.4.505'.
[   64.313949][ T4973] netlink: 'syz.4.505': attribute type 7 has an invalid length.
[   64.321721][ T4973] netlink: 'syz.4.505': attribute type 8 has an invalid length.
[   64.329647][ T4973] netlink: 4 bytes leftover after parsing attributes in process `syz.4.505'.
[   64.341708][ T4973] ip6gretap0: entered promiscuous mode
[   64.348265][ T4973] batadv_slave_1: entered promiscuous mode
[   64.411270][ T4984] loop4: detected capacity change from 0 to 512
[   64.418183][ T4984] EXT4-fs: Ignoring removed oldalloc option
[   64.428402][ T4984] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.510: Parent and EA inode have the same ino 15
[   64.447517][ T4984] EXT4-fs (loop4): Remounting filesystem read-only
[   64.454265][ T4984] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5)
[   64.465208][ T4984] EXT4-fs (loop4): 1 orphan inode deleted
[   64.474755][ T4984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.488912][ T4984] SELinux: (dev loop4, type ext4) getxattr errno 5
[   64.496003][ T4984] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.548760][    C1] sd 0:0:1:0: [sda] tag#3405 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[   64.559210][    C1] sd 0:0:1:0: [sda] tag#3405 CDB: Write(6) 0a 00 00 03 00 00 00 00 00 00 00 00
[   64.639583][ T5001] loop4: detected capacity change from 0 to 256
[   64.845043][ T5011] vlan2: entered allmulticast mode
[   64.872136][ T5013] loop0: detected capacity change from 0 to 2048
[   64.876865][ T5015] loop4: detected capacity change from 0 to 1024
[   64.890258][ T5015] EXT4-fs: Ignoring removed oldalloc option
[   64.897180][ T5015] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   64.910417][ T5013] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.935882][ T5015] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.994137][ T5023] netlink: 'syz.2.524': attribute type 1 has an invalid length.
[   65.025519][ T5023] bond2: entered allmulticast mode
[   65.031767][ T5023] 8021q: adding VLAN 0 to HW filter on device bond2
[   65.039759][ T5023] bond1: (slave bond2): making interface the new active one
[   65.047418][ T5023] bond1: (slave bond2): Enslaving as an active interface with an up link
[   65.067487][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.102254][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.193904][ T5033] netlink: 28 bytes leftover after parsing attributes in process `syz.2.524'.
[   65.206595][ T5035] loop0: detected capacity change from 0 to 256
[   65.220098][ T5033] 8021q: adding VLAN 0 to HW filter on device bond1
[   65.231093][ T5035] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   65.285570][ T5040] bridge0: port 3(vlan2) entered blocking state
[   65.292267][ T5040] bridge0: port 3(vlan2) entered disabled state
[   65.300077][ T5040] vlan2: entered allmulticast mode
[   65.306608][ T5040] vlan2: left allmulticast mode
[   65.492815][ T5060] loop0: detected capacity change from 0 to 256
[   65.502038][ T5060] FAULT_INJECTION: forcing a failure.
[   65.502038][ T5060] name failslab, interval 1, probability 0, space 0, times 0
[   65.514746][ T5060] CPU: 1 UID: 0 PID: 5060 Comm: syz.0.538 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   65.525370][ T5060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.535443][ T5060] Call Trace:
[   65.538727][ T5060]  <TASK>
[   65.541664][ T5060]  dump_stack_lvl+0xf2/0x150
[   65.546387][ T5060]  dump_stack+0x15/0x1a
[   65.550632][ T5060]  should_fail_ex+0x223/0x230
[   65.555335][ T5060]  should_failslab+0x8f/0xb0
[   65.560014][ T5060]  kmem_cache_alloc_noprof+0x52/0x320
[   65.565470][ T5060]  ? security_file_alloc+0x32/0x100
[   65.570766][ T5060]  security_file_alloc+0x32/0x100
[   65.575803][ T5060]  init_file+0x5b/0x1b0
[   65.579971][ T5060]  alloc_empty_file+0xea/0x200
[   65.584748][ T5060]  path_openat+0x6a/0x1fa0
[   65.589191][ T5060]  ? exc_page_fault+0x32e/0x650
[   65.594099][ T5060]  ? kstrtouint_from_user+0xb0/0xe0
[   65.599401][ T5060]  do_filp_open+0x107/0x230
[   65.604005][ T5060]  do_sys_openat2+0xab/0x120
[   65.608620][ T5060]  __x64_sys_creat+0x66/0x90
[   65.613223][ T5060]  x64_sys_call+0x1084/0x2dc0
[   65.617983][ T5060]  do_syscall_64+0xc9/0x1c0
[   65.622509][ T5060]  ? clear_bhb_loop+0x55/0xb0
[   65.627285][ T5060]  ? clear_bhb_loop+0x55/0xb0
[   65.631981][ T5060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.637913][ T5060] RIP: 0033:0x7f73aebdff19
[   65.642347][ T5060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.662150][ T5060] RSP: 002b:00007f73ad257058 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   65.670586][ T5060] RAX: ffffffffffffffda RBX: 00007f73aeda5fa0 RCX: 00007f73aebdff19
[   65.678650][ T5060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000300
[   65.686640][ T5060] RBP: 00007f73ad2570a0 R08: 0000000000000000 R09: 0000000000000000
[   65.694692][ T5060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.702673][ T5060] R13: 0000000000000000 R14: 00007f73aeda5fa0 R15: 00007ffdb64d9d28
[   65.710699][ T5060]  </TASK>
[   65.872371][ T5076] loop4: detected capacity change from 0 to 128
[   65.927097][ T5085] netlink: 16 bytes leftover after parsing attributes in process `syz.0.547'.
[   66.423116][ T5113] ref_ctr increment failed for inode: 0x285 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff8881173424c0
[   66.466843][ T5113] loop2: detected capacity change from 0 to 512
[   66.495319][ T5113] EXT4-fs (loop2): orphan cleanup on readonly fs
[   66.506979][ T5113] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.557: Failed to acquire dquot type 1
[   66.562814][ T5113] EXT4-fs (loop2): 1 truncate cleaned up
[   66.577165][ T5113] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   66.660270][ T5113] uprobe: syz.2.557:5113 failed to unregister, leaking uprobe
[   66.766384][   T29] kauditd_printk_skb: 532 callbacks suppressed
[   66.766398][   T29] audit: type=1400 audit(1733849296.591:2064): avc:  denied  { ioctl } for  pid=5122 comm="syz.0.562" path="socket:[9616]" dev="sockfs" ino=9616 ioctlcmd=0x48d3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   66.812344][ T5123] loop0: detected capacity change from 0 to 1764
[   66.833128][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.850881][ T5123] SELinux: security_context_str_to_sid (root) failed with errno=-22
[   67.025408][   T29] audit: type=1400 audit(1733849296.864:2065): avc:  denied  { read } for  pid=5124 comm="syz.2.563" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   67.049570][   T29] audit: type=1400 audit(1733849296.864:2066): avc:  denied  { open } for  pid=5124 comm="syz.2.563" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   67.127634][ T5128] netlink: 'syz.2.563': attribute type 30 has an invalid length.
[   67.155605][   T29] audit: type=1400 audit(1733849296.906:2067): avc:  denied  { ioctl } for  pid=5124 comm="+}[@" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   67.160961][ T3376] usb usb8-port2: attempt power cycle
[   67.185977][ T5128] loop2: detected capacity change from 0 to 2048
[   67.218668][ T5128] EXT4-fs: inline encryption not supported
[   67.229062][ T5133] loop4: detected capacity change from 0 to 512
[   67.240761][ T5133] EXT4-fs: Ignoring removed nobh option
[   67.246422][ T5133] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.257008][ T5135] binfmt_misc: register: failed to install interpreter file ./file0
[   67.266495][ T5128] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.280245][ T5127] EXT4-fs error (device loop2): ext4_ext_precache:631: inode #2: comm +}[@: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[   67.280658][ T5133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.309236][ T5127] EXT4-fs (loop2): Remounting filesystem read-only
[   67.326662][   T29] audit: type=1400 audit(1733849297.169:2068): avc:  denied  { read write } for  pid=5132 comm="syz.4.565" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   67.349590][   T29] audit: type=1400 audit(1733849297.169:2069): avc:  denied  { open } for  pid=5132 comm="syz.4.565" path="/104/file1/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   67.403365][   T29] audit: type=1326 audit(1733849297.253:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   67.426903][   T29] audit: type=1326 audit(1733849297.253:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   67.450282][   T29] audit: type=1326 audit(1733849297.253:2072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   67.473760][   T29] audit: type=1326 audit(1733849297.253:2073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73aebdff19 code=0x7ffc0000
[   67.503832][ T5152] loop4: detected capacity change from 0 to 512
[   67.510807][ T5152] EXT4-fs: inline encryption not supported
[   67.516735][ T5152] ext4: Unknown parameter 'func'
[   67.606899][ T5163] netlink: 80 bytes leftover after parsing attributes in process `syz.0.573'.
[   67.655329][ T5161] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   67.664326][ T5161] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   67.673234][ T5161] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   67.682139][ T5161] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   67.691049][ T5161] vxlan0: entered promiscuous mode
[   67.696367][ T5161] vxlan0: entered allmulticast mode
[   67.704327][ T5161] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   67.713317][ T5161] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   67.722299][ T5161] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   67.731274][ T5161] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   67.840546][ T5185] syz.3.582[5185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.840997][ T5185] syz.3.582[5185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.854427][ T5185] syz.3.582[5185] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.463859][ T5216] loop3: detected capacity change from 0 to 256
[   69.072052][ T5220] loop2: detected capacity change from 0 to 128
[   69.096655][ T5220] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   69.149473][ T5220] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   69.230882][ T5228] ==================================================================
[   69.233464][ T5224] loop3: detected capacity change from 0 to 512
[   69.239013][ T5228] BUG: KCSAN: data-race in mas_replace_node / mtree_range_walk
[   69.252810][ T5228] 
[   69.255143][ T5228] write to 0xffff88811c091c00 of 8 bytes by task 5226 on cpu 1:
[   69.262783][ T5228]  mas_replace_node+0x1b8/0x430
[   69.267745][ T5228]  mas_wr_store_entry+0x1fbf/0x2d10
[   69.273005][ T5228]  mas_store_prealloc+0x6bf/0x960
[   69.278053][ T5228]  vma_complete+0x3a7/0x760
[   69.282564][ T5228]  __split_vma+0x5d6/0x6a0
[   69.286992][ T5228]  vma_modify+0xd3/0x1e0
[   69.291247][ T5228]  vma_modify_flags+0xf1/0x120
[   69.296017][ T5228]  mprotect_fixup+0x31a/0x5e0
[   69.300703][ T5228]  do_mprotect_pkey+0x653/0x960
[   69.305581][ T5228]  __x64_sys_mprotect+0x48/0x60
[   69.310446][ T5228]  x64_sys_call+0x2770/0x2dc0
[   69.315159][ T5228]  do_syscall_64+0xc9/0x1c0
[   69.319668][ T5228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.325594][ T5228] 
[   69.327921][ T5228] read to 0xffff88811c091c00 of 8 bytes by task 5228 on cpu 0:
[   69.335467][ T5228]  mtree_range_walk+0x33d/0x460
[   69.340339][ T5228]  mas_walk+0x16e/0x320
[   69.344511][ T5228]  lock_vma_under_rcu+0x95/0x260
[   69.349454][ T5228]  exc_page_fault+0x150/0x650
[   69.354143][ T5228]  asm_exc_page_fault+0x26/0x30
[   69.359014][ T5228] 
[   69.361337][ T5228] value changed: 0xffff88812d0d5c0e -> 0xffff88811c091c00
[   69.368447][ T5228] 
[   69.370780][ T5228] Reported by Kernel Concurrency Sanitizer on:
[   69.376926][ T5228] CPU: 0 UID: 0 PID: 5228 Comm: syz.4.595 Not tainted 6.13.0-rc2-syzkaller-00018-g7cb1b4663150 #0
[   69.387531][ T5228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   69.397595][ T5228] ==================================================================
[   69.443750][ T5224] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.594: bg 0: block 248: padding at end of block bitmap is not set
[   69.458406][ T5224] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.594: Failed to acquire dquot type 1
[   69.471068][ T5224] EXT4-fs (loop3): 1 truncate cleaned up
[   69.477306][ T5224] EXT4-fs mount: 2 callbacks suppressed
[   69.477322][ T5224] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.497262][ T5224] ext4 filesystem being mounted at /109/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   69.562690][ T5224] syz.3.594 (5224) used greatest stack depth: 9296 bytes left
[   69.572453][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.581903][   T28] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:1: Failed to release dquot type 1
[   69.803330][ T3376] usb usb8-port2: unable to enumerate USB device