last executing test programs:

1m46.243440048s ago: executing program 4 (id=1745):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8000000000000000}, 0x18)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000040)={0xa, 0x40000, 0x0, 'queue1\x00', 0x8000})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'})
close_range(r1, 0xffffffffffffffff, 0x0)

1m46.216272557s ago: executing program 4 (id=1746):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000007000000050000000800000005"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000280)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
r4 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc2}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441700322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6de6269613800"}, 0x48, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x4, r4, r3, 0x0, 0x0)
r5 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x4, r5, r3, r4, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r6, 0x0, 0xfffffffffffffffc}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sigaltstack(0x0, 0x0)

1m46.174554207s ago: executing program 4 (id=1747):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0)
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flow={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x844)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m46.152207757s ago: executing program 4 (id=1750):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000600)='./file2\x00', 0x404, &(0x7f0000000240), 0x3, 0x42f, &(0x7f0000000940)="$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")
capset(0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
unshare(0x2040600)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0x503, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)
r1 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fsmount(r1, 0x0, 0x0)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@jqfmt_vfsold}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x80000001, 0xffffffffffffffff}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="060000000400d34b8c0000fc0f00000a00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

1m46.028367107s ago: executing program 4 (id=1753):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r2=>0x0})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4f9, &(0x7f0000000e80)="$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")
open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000180)='./bus\x00', 0x0, 0x1000, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r5)
setgroups(0x1, &(0x7f0000000000)=[r5])
socket$inet6(0xa, 0x2, 0x3a)
r6 = creat(&(0x7f0000000300)='./bus\x00', 0x14)
r7 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
fcntl$setstatus(r7, 0x4, 0x46c00)
dup3(r7, r6, 0x0)
io_setup(0x6, &(0x7f0000000240)=<r8=>0x0)
io_submit(r8, 0x3f0a, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x8, 0x0, 0x0, r6, &(0x7f0000000000), 0x200a00}])
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
faccessat(r10, &(0x7f0000000000)='./file0\x00', 0x5)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000007c0)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
close(r11)
listen(r11, 0x1)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newlink={0x44, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_MCAST_FLOOD={0x5}]}}}]}, 0x44}}, 0x0)
lstat(&(0x7f00000007c0)='./file2\x00', 0x0)

1m45.810652086s ago: executing program 4 (id=1757):
socket(0x10, 0x803, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000200)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@init_itable_val={'init_itable', 0x3d, 0x8}}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000080), &(0x7f00000004c0)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00') (fail_nth: 4)

1m30.754319458s ago: executing program 32 (id=1757):
socket(0x10, 0x803, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000000200)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@init_itable_val={'init_itable', 0x3d, 0x8}}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
lsetxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000080), &(0x7f00000004c0)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00') (fail_nth: 4)

1.535129095s ago: executing program 0 (id=3525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
unlink(0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000015c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r3, 0x407, 0x2000000)
syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000980)='./file1\x00', 0x280809a, &(0x7f0000000f40)=ANY=[], 0xd, 0x2b2, &(0x7f00000006c0)="$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")
r4 = epoll_create1(0x80000)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/wakeup_count', 0x0, 0x80)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f00000000c0)={0xe000001a})
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, r5, &(0x7f0000000000)={0x2000000})

1.527545825s ago: executing program 3 (id=3526):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f0000001e00), 0x3, 0x42f, &(0x7f0000000940)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b7030000000000008500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001"], 0x38}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000800000000005e002200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(r5, &(0x7f0000000300)={&(0x7f0000000080), 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000020000f0000f901000000000002"], 0x1c}}, 0x0)

1.437040724s ago: executing program 0 (id=3529):
socket$kcm(0x10, 0x2, 0x0)
request_key(&(0x7f0000000540)='dns_resolver\x00', &(0x7f0000001ffb)={'syz', 0x0}, &(0x7f0000000580)='*\x00\x00\x00\x00\x00\x000\x00\xa5^y\xa9n\x00\xe3\xa3\x89\x90&)\bT\x91\x14\xba\x190\xb3\x00\x00:\xb2\xbe\x1d\x00', 0xfffffffffffffffe)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x18, 0x0)
preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000380)=""/135, 0x87}], 0x1, 0x154, 0xf5ffffff)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x88420, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x9302ce0ecd0c3027, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000fc0)=ANY=[@ANYRESHEX], 0x27)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0xc, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4002, 0x5, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x4, 0x4, 0x3c8, 0x1f8, 0x110, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2}}, {@mac=@random="3c192477987a"}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x22}, @broadcast, 0x4}}}, {{@arp={@loopback, @private=0xa010102, 0xff, 0xffffff00, 0xd, 0x10, {@mac=@multicast, {[0xff, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0x0, 0xff, 0x0, 0x0, 0xff]}}, 0x8, 0x0, 0x0, 0x8, 0x1, 0x5a, 'macvlan0\x00', 'ipvlan0\x00', {0xff}, {}, 0x0, 0x100}, 0xc0, 0xe8}, @unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff, 0x0, 0x0, 0x0, {@mac=@link_local, {[0xff]}}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x3}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
chdir(0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = getegid()
fsetxattr$system_posix_acl(r5, &(0x7f00000006c0)='system.posix_acl_access\x00', &(0x7f0000000940)=ANY=[@ANYBLOB="02000000010002000000000002000100", @ANYRES32=0xee01, @ANYBLOB="040001000000000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000600", @ANYRES32=0x0, @ANYBLOB='\b\x00\a\x00', @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000600", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=r6, @ANYBLOB="10000700000000002000030000000000"], 0x74, 0x2)

690.762292ms ago: executing program 1 (id=3539):
r0 = socket(0x1d, 0x2, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
dup(r0)

690.464822ms ago: executing program 1 (id=3540):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00'}, 0x10)
nanosleep(&(0x7f0000000280), 0x0)

666.533812ms ago: executing program 1 (id=3542):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c4604030003000000000000000002003e0000000000010300003800000000000000520600000000200003000400000000000000000000000070c0ffffff0b000000070000000600000001010000090000100800000007000000000000003c13583c018000000800000043a6000003000000810000000300000008000000f30000008100000004"], 0x98)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='sched_switch\x00'}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400000010000ec000000000000000000000000a20000000000a03000000000000000004010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000003780000000c0a010200fdffffff000000010000000900020073797a32000000004c000380480000800b000340000000003c000b80200007800e000100636f6e6e6c696d69740000000c00028008000140000000001800018004000200636f6e6e6c696d6974000000040002800900010073797a3000000000"], 0xfc}}, 0x0)

632.763812ms ago: executing program 3 (id=3544):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtfilter={0x9c, 0x2c, 0xd27, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r3, {0xfff3, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x70, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xdb}, @TCA_U32_POLICE={0xffffffffffffff77, 0x6, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x5, 0x7, 0x7, {0xfa, 0x0, 0x6, 0x6, 0x3, 0x4}, {0x3, 0x0, 0x5, 0x9, 0xc, 0xfff}, 0x9, 0xd}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}]}, @TCA_U32_CLASSID={0x8, 0x1, {0xb, 0xd}}]}}]}, 0x9c}}, 0x20000000)

543.375621ms ago: executing program 0 (id=3545):
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x44}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xa2, 0x7}}, './file0\x00'})
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(r1, 0x2284, &(0x7f0000000080))

529.149262ms ago: executing program 1 (id=3546):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000080)=0x100000001, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7d}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0xc)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x6, @ipv4={'\x00', '\xff\xff', @remote}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_128={{0x303, 0x37}, "475566172f000011", "bd14060000000000000092f94413582b", "a4774ec6", "15b188e5e74e13ed"}, 0x28)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)

486.327541ms ago: executing program 3 (id=3548):
open(&(0x7f0000000140)='./file0\x00', 0xec40, 0x12)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)={0x15, 0x65, 0xffff, 0x30ff, 0x8, '9P2000.u'}, 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3}, 0x18)
r4 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

467.371021ms ago: executing program 5 (id=3549):
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRES16], 0x88, 0x2a9, &(0x7f0000000c00)="$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")
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004c80), &(0x7f0000004cc0)=0xc)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000004d00), &(0x7f0000004d40)=0xc)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x1c, 0x0, &(0x7f0000cab000))
statx(0xffffffffffffffff, &(0x7f0000004d80)='./file1\x00', 0x2000, 0x4, 0x0)
fstat(0xffffffffffffffff, &(0x7f0000000bc0))
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00')
fchdir(r2)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000004f40)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x9}}, './file0\x00'})
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f0000000280), 0x0)
getgroups(0x5, &(0x7f0000004f80)=[0xee01, 0xee00, 0x0, 0x0, 0xffffffffffffffff])
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x8004)
socket(0x10, 0x3, 0x0)
setregid(0xffffffffffffffff, 0x0)
getresgid(&(0x7f00000001c0), &(0x7f0000001400)=<r3=>0x0, &(0x7f0000001440))
newfstatat(0xffffffffffffff9c, &(0x7f0000001480)='./file0\x00', &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x100)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001540)={0x0, 0x0, <r5=>0x0}, &(0x7f0000001580)=0xc)
stat(&(0x7f00000015c0)='./file0\x00', &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getgroups(0x9, &(0x7f0000001680)=[0xee00, 0x0, r3, 0xee01, r4, 0x0, 0x0, r5, r6])
lsetxattr$system_posix_acl(&(0x7f0000001040)='./file1\x00', 0x0, &(0x7f0000001480)={{}, {}, [{0x2, 0x6}, {0x2, 0x6}], {0x4, 0x4}, [{0x8, 0x5}, {0x8, 0x1, 0xee01}, {0x8, 0x2}, {}, {0x8, 0x0, 0xee01}, {0x8, 0x6}, {0x8, 0x2}, {0x8, 0x4}, {0x8, 0x1}, {0x8, 0x7, r4}], {0x10, 0x5}}, 0x84, 0x1)
pwrite64(r0, &(0x7f0000000300)="1127", 0x2, 0xa)

458.183491ms ago: executing program 1 (id=3550):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000740)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001980)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000000000006700000008001a"], 0x2c}}, 0x8000)

457.739771ms ago: executing program 0 (id=3551):
r0 = socket(0x1d, 0x2, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
dup(r0)

412.613672ms ago: executing program 1 (id=3553):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, 0x0, 0x0)
sendmsg$inet(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x800)
syz_emit_ethernet(0x4a, &(0x7f0000000380)={@broadcast, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "72b2af", 0x4, 0x2f, 0x0, @dev, @mcast2, {[], {0x0, 0x883e, 0x10, 0x0, @gue={{0x2}}}}}}}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000001d40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r3=>0xffffffffffffffff, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008500"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000007b0008001500000000001e0000000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, 0xffffffffffffffff, 0x0, 0x8615}, 0x18)
timerfd_create(0x9, 0x0)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000480)="00d0954942b108d5185389ebdd8a5036c2fa43f51c5afb9821984d", 0x0, 0x0, 0x0, 0x8}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000005c0)='xprtrdma_post_send\x00', r2, 0x0, 0x400004}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYRESHEX=r3], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r5}, 0x10)
write$selinux_access(0xffffffffffffffff, &(0x7f0000000740)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6c645f736f5f7420704a122f7362696e2f6468636c69656e742030"], 0x41)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r6, &(0x7f00000025c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0xede}, 0x1c, &(0x7f0000000980)=[{&(0x7f0000000340)='P', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r6, 0x1)
setsockopt(r6, 0x84, 0x80, &(0x7f00000002c0)="1af3050000f2bd5b", 0x8)
mincore(&(0x7f0000ccd000/0xb000)=nil, 0xb000, &(0x7f0000001dc0)=""/4096)

381.822691ms ago: executing program 0 (id=3554):
r0 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x29cc, 0x10100}, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r0, 0x567, 0x0, 0x0, 0x0, 0x0)

349.254921ms ago: executing program 0 (id=3556):
socket$kcm(0x10, 0x2, 0x0)
request_key(&(0x7f0000000540)='dns_resolver\x00', &(0x7f0000001ffb)={'syz', 0x0}, &(0x7f0000000580)='*\x00\x00\x00\x00\x00\x000\x00\xa5^y\xa9n\x00\xe3\xa3\x89\x90&)\bT\x91\x14\xba\x190\xb3\x00\x00:\xb2\xbe\x1d\x00', 0xfffffffffffffffe)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x18, 0x0)
preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000380)=""/135, 0x87}], 0x1, 0x154, 0xf5ffffff)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x88420, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x9302ce0ecd0c3027, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x3, 0x300)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000fc0)=ANY=[@ANYRESHEX], 0x27)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x2, 0x6, 0x578, 0xd0, 0x388, 0xd0, 0x2b8, 0x2b8, 0x4a8, 0x4a8, 0x4f8, 0x4a8, 0x4a8, 0x6, 0x0, {[{{@ipv6={@mcast2, @private1, [], [], 'macvlan1\x00', 'erspan0\x00'}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@uncond, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@empty, @ipv4=@loopback=0x7f000000, 0x0, 0xe}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @remote, [], [], '\x00', 'bond_slave_0\x00', {}, {}, 0x0, 0x0, 0x7}, 0x0, 0xd0, 0xf8, 0x48000000, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28}}, {{@ipv6={@empty, @private2, [], [], 'veth1_to_bridge\x00', 'veth0_to_batadv\x00'}, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xf8, 0x120, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@eui64={{0x28}}]}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5d8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0xc, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4002, 0x5, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x8000000, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x4, 0x4, 0x3c8, 0x1f8, 0x110, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2}}, {@mac=@random="3c192477987a"}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @empty, @dev={0xac, 0x14, 0x14, 0x22}, @broadcast, 0x4}}}, {{@arp={@loopback, @private=0xa010102, 0xff, 0xffffff00, 0xd, 0x10, {@mac=@multicast, {[0xff, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0x0, 0xff, 0x0, 0x0, 0xff]}}, 0x8, 0x0, 0x0, 0x8, 0x1, 0x5a, 'macvlan0\x00', 'ipvlan0\x00', {0xff}, {}, 0x0, 0x100}, 0xc0, 0xe8}, @unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xff, 0x0, 0x0, 0x0, {@mac=@link_local, {[0xff]}}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x3}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
chdir(0x0)
close_range(r5, 0xffffffffffffffff, 0x0)
r6 = getegid()
fsetxattr$system_posix_acl(r5, &(0x7f00000006c0)='system.posix_acl_access\x00', &(0x7f0000000940)=ANY=[@ANYBLOB="02000000010002000000000002000100", @ANYRES32=0xee01, @ANYBLOB="040001000000000008000200", @ANYRES32=0x0, @ANYBLOB="08000200", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="08000600", @ANYRES32=0x0, @ANYBLOB='\b\x00\a\x00', @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000600", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=r6, @ANYBLOB="10000700000000002000030000000000"], 0x74, 0x2)

348.560381ms ago: executing program 3 (id=3557):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0xe, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r2 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
close(r2)
fcntl$setstatus(r2, 0x4, 0x2c00)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r3, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000400000000000008000000180001801400020073797a5f74756e0000000000000000001c0002800400010014000380"], 0x48}, 0x1, 0x0, 0x0, 0x20004084}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000280)={'vxcan1\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_DEBUG_GET(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x8c, r4, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x8c}}, 0x40000)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xa4, 0x1, 0x0, 0x0, 0x0, 0x5, 0x42000, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xe4, 0x6}, 0x100000, 0x0, 0x0, 0x6, 0x6, 0x4, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
write$selinux_access(0xffffffffffffffff, 0x0, 0x56)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r6}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lstat(&(0x7f0000001440)='./file0\x00', &(0x7f0000001480))

262.785701ms ago: executing program 3 (id=3559):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtfilter={0x9c, 0x2c, 0xd27, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r3, {0xfff3, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x70, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xdb}, @TCA_U32_POLICE={0xffffffffffffff77, 0x6, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x5, 0x7, 0x7, {0xfa, 0x0, 0x6, 0x6, 0x3, 0x4}, {0x3, 0x0, 0x5, 0x9, 0xc, 0xfff}, 0x9, 0xd}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}]}, @TCA_U32_CLASSID={0x8, 0x1, {0xb, 0xd}}]}}]}, 0x9c}}, 0x20000000)

258.392721ms ago: executing program 3 (id=3561):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f00000001c0)=@raw=[@call={0x85, 0x0, 0x0, 0x89}, @exit], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="df", 0xf4240}], 0x1, 0x800001, 0x0, 0x0)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x6db6e559)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140))
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@uname={'uname', 0x3d, '\xd0\xae\xde\xc1\xaa \xff\xd8\x1d\x1b\xf8\x93)!|\xb0X\xa3\x96\xed\xa2\xab@\xa2m\x93\xdd\b<\x00t\xdc\xabl\xab!\xae\x16\xc4\xcd\xf9{\xdc5_;A\xd2{eC\x014\\\xb3\xc4\xce\xc3yS2-\x01\xbe\xaarW\x96O\xd3\x0f\xe2\xd7/\x17\x1d\xa7.8\x9f8-\xea<\x8d\x91\x90j\xea\xd5\xd5\xae\xcc\xc0\x97\xef\x10\x92\xea\x98|+\x00\x00\x00\x00\x00\x00\x00\x00'}}]}})
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x4010, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)

211.834621ms ago: executing program 2 (id=3563):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000740)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001980)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010700000000000000006700000008001a"], 0x2c}}, 0x8000)

193.486391ms ago: executing program 5 (id=3564):
r0 = socket(0x1d, 0x2, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r2}, 0x10)
dup(r0)

167.782931ms ago: executing program 2 (id=3565):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x800}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @random="1a0e2c5ffd4d", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x11, 0x0, 0x0, 0x0, {[@fastopen={0x22, 0x9, "2afba20b5397d7"}, @generic={0x13, 0x3, 'a'}, @fastopen={0x22, 0x5, "c0423e"}]}}}}}}}, 0x0)

138.066371ms ago: executing program 5 (id=3566):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYRESOCT=r1], 0x48)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa319, 0x0, @perf_bp={0x0, 0xa}, 0x40, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000700)=ANY=[@ANYBLOB="340000001000270400"/20, @ANYRES32=r4, @ANYBLOB="92010000b082020008000a00", @ANYBLOB="0c002b8008000300c6"], 0x34}}, 0x0)

137.52231ms ago: executing program 2 (id=3567):
socket$packet(0x11, 0x2, 0x300)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x6, @mcast2, 0x6}, 0x1c)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(r1, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0)
read(r0, &(0x7f00000001c0)=""/4117, 0x1015)

105.76295ms ago: executing program 5 (id=3568):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b00000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtfilter={0x9c, 0x2c, 0xd27, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r5, {0xfff3, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x70, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xdb}, @TCA_U32_POLICE={0xffffffffffffff77, 0x6, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x5, 0x7, 0x7, {0xfa, 0x0, 0x6, 0x6, 0x3, 0x4}, {0x3, 0x0, 0x5, 0x9, 0xc, 0xfff}, 0x9, 0xd}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}]}, @TCA_U32_CLASSID={0x8, 0x1, {0xb, 0xd}}]}}]}, 0x9c}}, 0x20000000)

101.298971ms ago: executing program 2 (id=3569):
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a000000010100"], 0x48)

32.37705ms ago: executing program 2 (id=3570):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000140)=@usbdevfs_connect={0x7fffffff})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000180), 0xb)
copy_file_range(r1, &(0x7f0000000080), r0, &(0x7f0000000100), 0xfffffffffffffff8, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'wg1\x00', 0x100})

31.90629ms ago: executing program 5 (id=3571):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_open_procfs(0x0, &(0x7f0000000c80)='map_files\x00')
getdents(r0, &(0x7f00000001c0)=""/35, 0x23)

321.04µs ago: executing program 5 (id=3572):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
r1 = socket(0x10, 0x803, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtfilter={0x9c, 0x2c, 0xd27, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r4, {0xfff3, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x70, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0xdb}, @TCA_U32_POLICE={0xffffffffffffff77, 0x6, [@TCA_POLICE_AVRATE={0x8}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x6}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x1, 0x5, 0x7, 0x7, {0xfa, 0x0, 0x6, 0x6, 0x3, 0x4}, {0x3, 0x0, 0x5, 0x9, 0xc, 0xfff}, 0x9, 0xd}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x1}]}, @TCA_U32_CLASSID={0x8, 0x1, {0xb, 0xd}}]}}]}, 0x9c}}, 0x20000000)

0s ago: executing program 2 (id=3573):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39ddc4)

kernel console output (not intermixed with test programs):

 ? clear_bhb_loop+0x55/0xb0
[  198.192094][T11150]  ? clear_bhb_loop+0x55/0xb0
[  198.196782][T11150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.202684][T11150] RIP: 0033:0x7f1ed23f5d29
[  198.207179][T11150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.226832][T11150] RSP: 002b:00007f1ed0a61038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  198.235330][T11150] RAX: ffffffffffffffda RBX: 00007f1ed25e5fa0 RCX: 00007f1ed23f5d29
[  198.243315][T11150] RDX: 0000000020000000 RSI: 0000000000000002 RDI: 0000000000000016
[  198.251439][T11150] RBP: 00007f1ed0a61090 R08: 0000000000000000 R09: 0000000000000000
[  198.259413][T11150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.267396][T11150] R13: 0000000000000001 R14: 00007f1ed25e5fa0 R15: 00007ffd201e5788
[  198.275462][T11150]  </TASK>
[  198.278909][T11150] syz.5.2923: vmalloc error: size 4096, vm_struct allocation failed, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  198.295272][T11150] CPU: 0 UID: 0 PID: 11150 Comm: syz.5.2923 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  198.306169][T11150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  198.316386][T11150] Call Trace:
[  198.319661][T11150]  <TASK>
[  198.322673][T11150]  dump_stack_lvl+0xf2/0x150
[  198.327286][T11150]  dump_stack+0x15/0x1a
[  198.331472][T11150]  warn_alloc+0x145/0x1b0
[  198.335812][T11150]  ? __get_vm_area_node+0xfb/0x1c0
[  198.340977][T11150]  __vmalloc_node_range_noprof+0x2a5/0xe80
[  198.346834][T11150]  ? __mod_memcg_lruvec_state+0x141/0x290
[  198.352577][T11150]  ? should_fail_ex+0x31/0x230
[  198.357357][T11150]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  198.362910][T11150]  __vmalloc_noprof+0x5e/0x70
[  198.367686][T11150]  ? bpf_prog_alloc_no_stats+0x49/0x380
[  198.373260][T11150]  bpf_prog_alloc_no_stats+0x49/0x380
[  198.378652][T11150]  ? bpf_prog_alloc+0x28/0x150
[  198.383445][T11150]  bpf_prog_alloc+0x3a/0x150
[  198.388047][T11150]  bpf_prog_create_from_user+0x73/0x240
[  198.393623][T11150]  ? __pfx_seccomp_check_filter+0x10/0x10
[  198.399363][T11150]  do_seccomp+0x648/0xa60
[  198.403706][T11150]  ? cap_task_prctl+0x234/0x5b0
[  198.408575][T11150]  prctl_set_seccomp+0x4d/0x70
[  198.413447][T11150]  __se_sys_prctl+0xb8a/0x2130
[  198.418224][T11150]  ? _parse_integer_limit+0x167/0x180
[  198.423604][T11150]  ? _parse_integer+0x27/0x30
[  198.428386][T11150]  ? kstrtoull+0x110/0x140
[  198.432811][T11150]  ? kstrtouint+0x77/0xc0
[  198.437219][T11150]  ? kstrtouint_from_user+0xb0/0xe0
[  198.442435][T11150]  ? 0xffffffff81000000
[  198.446592][T11150]  ? selinux_file_permission+0x22a/0x360
[  198.452240][T11150]  ? __rcu_read_unlock+0x4e/0x70
[  198.457207][T11150]  ? get_pid_task+0x8e/0xc0
[  198.461765][T11150]  ? proc_fail_nth_write+0x12a/0x150
[  198.467069][T11150]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  198.472790][T11150]  ? vfs_write+0x596/0x920
[  198.477219][T11150]  ? putname+0xcf/0xf0
[  198.481351][T11150]  ? __fget_files+0x17c/0x1c0
[  198.486050][T11150]  ? fput+0x1c4/0x200
[  198.490039][T11150]  ? ksys_write+0x176/0x1b0
[  198.494573][T11150]  __x64_sys_prctl+0x67/0x80
[  198.499175][T11150]  x64_sys_call+0xff7/0x2dc0
[  198.503792][T11150]  do_syscall_64+0xc9/0x1c0
[  198.508432][T11150]  ? clear_bhb_loop+0x55/0xb0
[  198.513162][T11150]  ? clear_bhb_loop+0x55/0xb0
[  198.517865][T11150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.523764][T11150] RIP: 0033:0x7f1ed23f5d29
[  198.528181][T11150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.547885][T11150] RSP: 002b:00007f1ed0a61038 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[  198.556314][T11150] RAX: ffffffffffffffda RBX: 00007f1ed25e5fa0 RCX: 00007f1ed23f5d29
[  198.564351][T11150] RDX: 0000000020000000 RSI: 0000000000000002 RDI: 0000000000000016
[  198.572422][T11150] RBP: 00007f1ed0a61090 R08: 0000000000000000 R09: 0000000000000000
[  198.580396][T11150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.588460][T11150] R13: 0000000000000001 R14: 00007f1ed25e5fa0 R15: 00007ffd201e5788
[  198.596443][T11150]  </TASK>
[  198.599705][T11150] Mem-Info:
[  198.602823][T11150] active_anon:14131 inactive_anon:0 isolated_anon:0
[  198.602823][T11150]  active_file:6930 inactive_file:12311 isolated_file:0
[  198.602823][T11150]  unevictable:0 dirty:248 writeback:0
[  198.602823][T11150]  slab_reclaimable:3108 slab_unreclaimable:18580
[  198.602823][T11150]  mapped:34940 shmem:6064 pagetables:914
[  198.602823][T11150]  sec_pagetables:0 bounce:0
[  198.602823][T11150]  kernel_misc_reclaimable:0
[  198.602823][T11150]  free:1879527 free_pcp:8138 free_cma:0
[  198.648302][T11150] Node 0 active_anon:56524kB inactive_anon:0kB active_file:27720kB inactive_file:49244kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:139760kB dirty:992kB writeback:0kB shmem:24256kB writeback_tmp:0kB kernel_stack:3360kB pagetables:3656kB sec_pagetables:0kB all_unreclaimable? no
[  198.676345][T11150] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  198.703335][T11150] lowmem_reserve[]: 0 2866 7844 0
[  198.708475][T11150] Node 0 DMA32 free:2950376kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953908kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:3532kB free_cma:0kB
[  198.737227][T11150] lowmem_reserve[]: 0 0 4978 0
[  198.742052][T11150] Node 0 Normal free:4552372kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:56524kB inactive_anon:0kB active_file:27720kB inactive_file:49244kB unevictable:0kB writepending:992kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:29028kB local_pcp:6740kB free_cma:0kB
[  198.772197][T11150] lowmem_reserve[]: 0 0 0 0
[  198.776863][T11150] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  198.777527][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  198.789714][T11150] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 4*16kB (M) 6*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950376kB
[  198.812846][T11150] Node 0 Normal: 43*4kB (U) 33*8kB (UE) 4*16kB (U) 0*32kB 1*64kB (E) 115*128kB (UME) 79*256kB (UME) 106*512kB (UM) 98*1024kB (UME) 54*2048kB (UME) 1038*4096kB (UM) = 4552372kB
[  198.830406][T11150] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  198.839752][T11150] 25276 total pagecache pages
[  198.844475][T11150] 0 pages in swap cache
[  198.848658][T11150] Free swap  = 124508kB
[  198.852803][T11150] Total swap = 124996kB
[  198.856978][T11150] 2097051 pages RAM
[  198.860803][T11150] 0 pages HighMem/MovableOnly
[  198.865543][T11150] 80182 pages reserved
[  198.910022][   T29] kauditd_printk_skb: 444 callbacks suppressed
[  198.910041][   T29] audit: type=1326 audit(1737134809.044:8140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11129 comm="syz.1.2915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  198.939433][T11160] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.939764][   T29] audit: type=1326 audit(1737134809.074:8141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  198.948236][T11160] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.971584][   T29] audit: type=1326 audit(1737134809.084:8142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  199.002808][   T29] audit: type=1326 audit(1737134809.084:8143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  199.026308][   T29] audit: type=1326 audit(1737134809.084:8144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  199.049698][   T29] audit: type=1326 audit(1737134809.084:8145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  199.073197][   T29] audit: type=1326 audit(1737134809.084:8146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  199.096672][   T29] audit: type=1326 audit(1737134809.084:8147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11144 comm="syz.3.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f1c6a645d29 code=0x7ffc0000
[  199.121193][   T29] audit: type=1326 audit(1737134809.154:8148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  199.144774][   T29] audit: type=1326 audit(1737134809.154:8149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  199.601482][T11178] rdma_op ffff888108614180 conn xmit_rdma 0000000000000000
[  199.651928][T11176] loop5: detected capacity change from 0 to 8192
[  199.656051][T11182] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  199.758952][T11190] lo: entered promiscuous mode
[  199.807462][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  199.847726][T11190] netlink: 'syz.2.2936': attribute type 4 has an invalid length.
[  199.860592][T11199] FAULT_INJECTION: forcing a failure.
[  199.860592][T11199] name failslab, interval 1, probability 0, space 0, times 0
[  199.873305][T11199] CPU: 0 UID: 0 PID: 11199 Comm: syz.3.2938 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  199.884099][T11199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  199.894161][T11199] Call Trace:
[  199.897460][T11199]  <TASK>
[  199.900394][T11199]  dump_stack_lvl+0xf2/0x150
[  199.905059][T11199]  dump_stack+0x15/0x1a
[  199.909244][T11199]  should_fail_ex+0x223/0x230
[  199.913928][T11199]  should_failslab+0x8f/0xb0
[  199.918605][T11199]  kmem_cache_alloc_noprof+0x52/0x320
[  199.924028][T11199]  ? security_inode_alloc+0x37/0x100
[  199.929375][T11199]  security_inode_alloc+0x37/0x100
[  199.934624][T11199]  inode_init_always_gfp+0x4a2/0x4f0
[  199.939929][T11199]  ? __pfx_sock_alloc_inode+0x10/0x10
[  199.945348][T11199]  alloc_inode+0x82/0x160
[  199.949699][T11199]  new_inode_pseudo+0x15/0x20
[  199.954404][T11199]  __sock_create+0x12b/0x5a0
[  199.959048][T11199]  __sys_socket+0xae/0x240
[  199.963493][T11199]  __x64_sys_socket+0x3f/0x50
[  199.968231][T11199]  x64_sys_call+0x2cf2/0x2dc0
[  199.972980][T11199]  do_syscall_64+0xc9/0x1c0
[  199.977493][T11199]  ? clear_bhb_loop+0x55/0xb0
[  199.982233][T11199]  ? clear_bhb_loop+0x55/0xb0
[  199.986918][T11199]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.992830][T11199] RIP: 0033:0x7f1c6a647c47
[  199.997246][T11199] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.016996][T11199] RSP: 002b:00007f1c68cb5fa8 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[  200.025415][T11199] RAX: ffffffffffffffda RBX: 00007f1c6a835fa0 RCX: 00007f1c6a647c47
[  200.033452][T11199] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[  200.041428][T11199] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[  200.049539][T11199] R10: 0000000020000080 R11: 0000000000000286 R12: 0000000000000001
[  200.057547][T11199] R13: 0000000000000000 R14: 00007f1c6a835fa0 R15: 00007ffdc7ceaf08
[  200.065538][T11199]  </TASK>
[  200.068917][T11199] socket: no more sockets
[  200.107981][T11189] lo: left promiscuous mode
[  200.135435][T11206] rdma_op ffff888136973d80 conn xmit_rdma 0000000000000000
[  200.191278][T11206] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.204361][T11210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:24) already exists on: dummy0
[  200.214224][T11210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.216071][T11212] rdma_op ffff888136973980 conn xmit_rdma 0000000000000000
[  200.224082][T11210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:24) already exists on: dummy0
[  200.224100][T11210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.224113][T11210] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:24) already exists on: dummy0
[  200.224129][T11210] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.281341][T11210] dummy0: entered promiscuous mode
[  200.287262][T11210] dummy0: left promiscuous mode
[  200.309661][T11212] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.348090][T11206] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.411341][T11206] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.461550][T11206] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.532303][T11223] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  200.558844][T11206] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.582971][T11206] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.608305][T11206] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.617044][T11231] loop5: detected capacity change from 0 to 512
[  200.624034][T11231] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  200.636065][T11231] EXT4-fs (loop5): 1 truncate cleaned up
[  200.641319][T11233] rdma_op ffff888108f4e980 conn xmit_rdma 0000000000000000
[  200.642172][T11231] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.651057][T11206] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.672767][T11233] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.693999][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.754675][T11233] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.847514][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  200.878904][T11233] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.916662][T11251] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2958'.
[  200.968203][T11252] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  201.064195][T11233] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.160375][T11233] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  201.196563][T11233] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  201.244593][T11233] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  201.302528][T11233] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  201.375506][T11262] FAULT_INJECTION: forcing a failure.
[  201.375506][T11262] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  201.388712][T11262] CPU: 1 UID: 0 PID: 11262 Comm: syz.3.2964 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  201.399501][T11262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  201.409641][T11262] Call Trace:
[  201.412954][T11262]  <TASK>
[  201.415892][T11262]  dump_stack_lvl+0xf2/0x150
[  201.420584][T11262]  dump_stack+0x15/0x1a
[  201.424832][T11262]  should_fail_ex+0x223/0x230
[  201.429527][T11262]  should_fail+0xb/0x10
[  201.433813][T11262]  should_fail_usercopy+0x1a/0x20
[  201.438871][T11262]  _copy_from_iter+0xd5/0xd00
[  201.443563][T11262]  ? kmalloc_reserve+0x16e/0x190
[  201.448521][T11262]  ? __build_skb_around+0x196/0x1f0
[  201.453726][T11262]  ? __alloc_skb+0x21f/0x310
[  201.458377][T11262]  ? __virt_addr_valid+0x1ed/0x250
[  201.463521][T11262]  ? __check_object_size+0x364/0x520
[  201.468837][T11262]  netlink_sendmsg+0x460/0x6e0
[  201.473625][T11262]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.478973][T11262]  __sock_sendmsg+0x140/0x180
[  201.483685][T11262]  ____sys_sendmsg+0x312/0x410
[  201.488521][T11262]  __sys_sendmsg+0x19d/0x230
[  201.493197][T11262]  __x64_sys_sendmsg+0x46/0x50
[  201.498055][T11262]  x64_sys_call+0x2734/0x2dc0
[  201.502802][T11262]  do_syscall_64+0xc9/0x1c0
[  201.507315][T11262]  ? clear_bhb_loop+0x55/0xb0
[  201.512057][T11262]  ? clear_bhb_loop+0x55/0xb0
[  201.516817][T11262]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.522721][T11262] RIP: 0033:0x7f1c6a645d29
[  201.527153][T11262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.546771][T11262] RSP: 002b:00007f1c68cb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  201.555218][T11262] RAX: ffffffffffffffda RBX: 00007f1c6a835fa0 RCX: 00007f1c6a645d29
[  201.563199][T11262] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  201.571203][T11262] RBP: 00007f1c68cb7090 R08: 0000000000000000 R09: 0000000000000000
[  201.579182][T11262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.587162][T11262] R13: 0000000000000000 R14: 00007f1c6a835fa0 R15: 00007ffdc7ceaf08
[  201.595222][T11262]  </TASK>
[  201.690352][T11266] loop5: detected capacity change from 0 to 256
[  201.888955][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  202.232841][T11287] loop5: detected capacity change from 0 to 2048
[  202.260521][T11287] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.285093][T11287] FAULT_INJECTION: forcing a failure.
[  202.285093][T11287] name failslab, interval 1, probability 0, space 0, times 0
[  202.297880][T11287] CPU: 1 UID: 0 PID: 11287 Comm: syz.5.2973 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  202.308743][T11287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  202.318830][T11287] Call Trace:
[  202.322195][T11287]  <TASK>
[  202.325133][T11287]  dump_stack_lvl+0xf2/0x150
[  202.329801][T11287]  dump_stack+0x15/0x1a
[  202.333978][T11287]  should_fail_ex+0x223/0x230
[  202.338793][T11287]  should_failslab+0x8f/0xb0
[  202.343413][T11287]  kmem_cache_alloc_noprof+0x52/0x320
[  202.348808][T11287]  ? ext4_init_io_end+0x31/0xb0
[  202.353677][T11287]  ext4_init_io_end+0x31/0xb0
[  202.358486][T11287]  ext4_do_writepages+0x6c5/0x2130
[  202.363649][T11287]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  202.369120][T11287]  ? stack_map_pop_elem+0x174/0x1f0
[  202.374341][T11287]  ? bpf_trace_run3+0x12b/0x1d0
[  202.379249][T11287]  ? ext4_es_free_extent+0x27c/0x2b0
[  202.384565][T11287]  ? ext4_es_free_extent+0x27c/0x2b0
[  202.389870][T11287]  ? __traceiter_kmem_cache_free+0x33/0x50
[  202.395801][T11287]  ? kmem_cache_free+0xdc/0x2d0
[  202.400671][T11287]  ? percpu_counter_add_batch+0xc6/0x140
[  202.406319][T11287]  ext4_writepages+0x159/0x2e0
[  202.411222][T11287]  ? __pfx_ext4_writepages+0x10/0x10
[  202.416528][T11287]  do_writepages+0x1d8/0x480
[  202.421176][T11287]  ? xas_load+0x3ae/0x3d0
[  202.425510][T11287]  ? cgroup_rstat_updated+0x9f/0x570
[  202.430810][T11287]  ? _raw_spin_unlock+0x26/0x50
[  202.435720][T11287]  ? wbc_attach_and_unlock_inode+0x8f/0x2d0
[  202.441639][T11287]  filemap_write_and_wait_range+0x146/0x360
[  202.447584][T11287]  ? __mod_memcg_lruvec_state+0x141/0x290
[  202.453396][T11287]  kiocb_write_and_wait+0x73/0x100
[  202.458566][T11287]  __iomap_dio_rw+0x50c/0x1110
[  202.463451][T11287]  ? next_uptodate_folio+0x809/0x890
[  202.468767][T11287]  iomap_dio_rw+0x40/0x90
[  202.473176][T11287]  ext4_file_read_iter+0x214/0x290
[  202.478398][T11287]  aio_read+0x1e0/0x2e0
[  202.482652][T11287]  io_submit_one+0xade/0x1230
[  202.487359][T11287]  __se_sys_io_submit+0xf5/0x280
[  202.492394][T11287]  __x64_sys_io_submit+0x43/0x50
[  202.497427][T11287]  x64_sys_call+0x2c20/0x2dc0
[  202.502155][T11287]  do_syscall_64+0xc9/0x1c0
[  202.506672][T11287]  ? clear_bhb_loop+0x55/0xb0
[  202.511411][T11287]  ? clear_bhb_loop+0x55/0xb0
[  202.516151][T11287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.522140][T11287] RIP: 0033:0x7f1ed23f5d29
[  202.526675][T11287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.546291][T11287] RSP: 002b:00007f1ed0a61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  202.554713][T11287] RAX: ffffffffffffffda RBX: 00007f1ed25e5fa0 RCX: 00007f1ed23f5d29
[  202.562863][T11287] RDX: 0000000020001d00 RSI: 0000000000000002 RDI: 00007f1ed0a28000
[  202.570839][T11287] RBP: 00007f1ed0a61090 R08: 0000000000000000 R09: 0000000000000000
[  202.578813][T11287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.586847][T11287] R13: 0000000000000000 R14: 00007f1ed25e5fa0 R15: 00007ffd201e5788
[  202.594844][T11287]  </TASK>
[  202.626637][T11294] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2975'.
[  202.641808][T11294] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2975'.
[  202.651328][T11296] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2976'.
[  202.660593][T11296] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2976'.
[  202.705619][T11298] loop3: detected capacity change from 0 to 256
[  202.801939][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.831647][T11304] FAULT_INJECTION: forcing a failure.
[  202.831647][T11304] name failslab, interval 1, probability 0, space 0, times 0
[  202.844453][T11304] CPU: 1 UID: 0 PID: 11304 Comm: syz.5.2979 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  202.855600][T11304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  202.865662][T11304] Call Trace:
[  202.868945][T11304]  <TASK>
[  202.871948][T11304]  dump_stack_lvl+0xf2/0x150
[  202.876566][T11304]  dump_stack+0x15/0x1a
[  202.880747][T11304]  should_fail_ex+0x223/0x230
[  202.885471][T11304]  ? alloc_pipe_info+0xb0/0x360
[  202.890382][T11304]  should_failslab+0x8f/0xb0
[  202.895011][T11304]  __kmalloc_cache_noprof+0x4e/0x320
[  202.900326][T11304]  alloc_pipe_info+0xb0/0x360
[  202.905061][T11304]  splice_direct_to_actor+0x60f/0x670
[  202.910456][T11304]  ? __pfx_direct_splice_actor+0x10/0x10
[  202.916156][T11304]  ? 0xffffffff81000000
[  202.920370][T11304]  ? selinux_file_permission+0x22a/0x360
[  202.926030][T11304]  ? __rcu_read_unlock+0x4e/0x70
[  202.930986][T11304]  ? avc_policy_seqno+0x15/0x20
[  202.935964][T11304]  ? selinux_file_permission+0x22a/0x360
[  202.941613][T11304]  do_splice_direct+0xd7/0x150
[  202.946434][T11304]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  202.952430][T11304]  do_sendfile+0x398/0x660
[  202.956868][T11304]  __x64_sys_sendfile64+0x110/0x150
[  202.962166][T11304]  x64_sys_call+0xfbd/0x2dc0
[  202.966768][T11304]  do_syscall_64+0xc9/0x1c0
[  202.971330][T11304]  ? clear_bhb_loop+0x55/0xb0
[  202.976070][T11304]  ? clear_bhb_loop+0x55/0xb0
[  202.980800][T11304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.986798][T11304] RIP: 0033:0x7f1ed23f5d29
[  202.991218][T11304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.010835][T11304] RSP: 002b:00007f1ed0a61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  203.019309][T11304] RAX: ffffffffffffffda RBX: 00007f1ed25e5fa0 RCX: 00007f1ed23f5d29
[  203.027309][T11304] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000008
[  203.035286][T11304] RBP: 00007f1ed0a61090 R08: 0000000000000000 R09: 0000000000000000
[  203.043295][T11304] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  203.051274][T11304] R13: 0000000000000000 R14: 00007f1ed25e5fa0 R15: 00007ffd201e5788
[  203.059331][T11304]  </TASK>
[  203.062474][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  203.124604][T11306] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2981'.
[  203.155781][T11314] syz.1.2984[11314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.155904][T11314] syz.1.2984[11314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.169606][T11316] loop3: detected capacity change from 0 to 512
[  203.177640][T11314] syz.1.2984[11314] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  203.187227][T11316] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  203.205489][T11314] sd 0:0:1:0: device reset
[  203.225359][T11316] EXT4-fs (loop3): 1 truncate cleaned up
[  203.232235][T11316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.264045][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.301115][T11328] FAULT_INJECTION: forcing a failure.
[  203.301115][T11328] name failslab, interval 1, probability 0, space 0, times 0
[  203.313958][T11328] CPU: 1 UID: 0 PID: 11328 Comm: syz.3.2987 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  203.324779][T11328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  203.334856][T11328] Call Trace:
[  203.338203][T11328]  <TASK>
[  203.341199][T11328]  dump_stack_lvl+0xf2/0x150
[  203.345858][T11328]  dump_stack+0x15/0x1a
[  203.350075][T11328]  should_fail_ex+0x223/0x230
[  203.354836][T11328]  should_failslab+0x8f/0xb0
[  203.359534][T11328]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  203.365317][T11328]  ? __d_alloc+0x3d/0x340
[  203.369660][T11328]  __d_alloc+0x3d/0x340
[  203.373822][T11328]  ? security_inode_permission+0x4e/0xc0
[  203.379468][T11328]  d_alloc+0x2e/0x100
[  203.383548][T11328]  vfs_tmpfile+0xf1/0x4d0
[  203.387896][T11328]  do_tmpfile+0xa9/0x190
[  203.392151][T11328]  path_openat+0x1c4c/0x1fa0
[  203.396867][T11328]  ? _parse_integer_limit+0x167/0x180
[  203.402315][T11328]  ? kstrtoull+0x110/0x140
[  203.406750][T11328]  ? kstrtouint+0x77/0xc0
[  203.411155][T11328]  ? kstrtouint_from_user+0xb0/0xe0
[  203.416364][T11328]  do_filp_open+0x107/0x230
[  203.420981][T11328]  do_sys_openat2+0xab/0x120
[  203.425581][T11328]  __x64_sys_open+0xe6/0x110
[  203.430188][T11328]  x64_sys_call+0x13e1/0x2dc0
[  203.434874][T11328]  do_syscall_64+0xc9/0x1c0
[  203.439446][T11328]  ? clear_bhb_loop+0x55/0xb0
[  203.444133][T11328]  ? clear_bhb_loop+0x55/0xb0
[  203.448822][T11328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.454768][T11328] RIP: 0033:0x7f1c6a645d29
[  203.459195][T11328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.478810][T11328] RSP: 002b:00007f1c68cb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  203.487238][T11328] RAX: ffffffffffffffda RBX: 00007f1c6a835fa0 RCX: 00007f1c6a645d29
[  203.495283][T11328] RDX: 0000000000000008 RSI: 0000000000418601 RDI: 0000000020000040
[  203.503318][T11328] RBP: 00007f1c68cb7090 R08: 0000000000000000 R09: 0000000000000000
[  203.511308][T11328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.519292][T11328] R13: 0000000000000000 R14: 00007f1c6a835fa0 R15: 00007ffdc7ceaf08
[  203.527332][T11328]  </TASK>
[  203.536727][T11212] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.556260][T11332] loop3: detected capacity change from 0 to 256
[  203.580642][T11212] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.620866][T11212] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.634393][T11336] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2993'.
[  203.643771][T11336] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2993'.
[  203.657292][T11110] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  203.671641][T11110] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  203.681169][T11110] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  203.703741][T11212] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.715290][T11110] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  203.794102][T11212] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.821004][T11343] loop1: detected capacity change from 0 to 512
[  203.825336][T11212] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.832830][T11343] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  203.847875][T11343] EXT4-fs (loop1): 1 truncate cleaned up
[  203.848106][T11212] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.853865][T11343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.886134][T11110] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.924566][T11110] 8021q: adding VLAN 0 to HW filter on device team0
[  203.950679][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.957788][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.984046][T11110] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  203.994545][T11110] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  204.041186][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.055601][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.062714][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.137471][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  204.180863][   T29] kauditd_printk_skb: 312 callbacks suppressed
[  204.180877][   T29] audit: type=1326 audit(1737134814.354:8462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.216710][T11352] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  204.248817][   T29] audit: type=1326 audit(1737134814.384:8463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.272495][   T29] audit: type=1326 audit(1737134814.384:8464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.282957][T11355] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2998'.
[  204.296067][   T29] audit: type=1326 audit(1737134814.384:8465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.296107][   T29] audit: type=1326 audit(1737134814.384:8466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.309401][T11355] bridge_slave_1: left allmulticast mode
[  204.328486][   T29] audit: type=1326 audit(1737134814.384:8467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.328523][   T29] audit: type=1326 audit(1737134814.384:8468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.328557][   T29] audit: type=1326 audit(1737134814.384:8469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.352005][T11355] bridge_slave_1: left promiscuous mode
[  204.357678][   T29] audit: type=1326 audit(1737134814.384:8470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.381221][T11355] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.404714][   T29] audit: type=1326 audit(1737134814.384:8471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11350 comm="syz.5.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  204.458383][T11351] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  204.499471][T11355] bridge_slave_0: left allmulticast mode
[  204.505164][T11355] bridge_slave_0: left promiscuous mode
[  204.511082][T11355] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.538558][T11360] tmpfs: Unknown parameter 'n'
[  204.615575][T11110] 8021q: adding VLAN 0 to HW filter on device batadv0
[  204.633225][T11368] FAULT_INJECTION: forcing a failure.
[  204.633225][T11368] name failslab, interval 1, probability 0, space 0, times 0
[  204.645942][T11368] CPU: 0 UID: 0 PID: 11368 Comm: syz.5.3003 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  204.656880][T11368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  204.660385][T11370] netlink: 2 bytes leftover after parsing attributes in process `syz.3.3004'.
[  204.666995][T11368] Call Trace:
[  204.667007][T11368]  <TASK>
[  204.667015][T11368]  dump_stack_lvl+0xf2/0x150
[  204.676407][T11370] netlink: 2 bytes leftover after parsing attributes in process `syz.3.3004'.
[  204.679157][T11368]  dump_stack+0x15/0x1a
[  204.699795][T11368]  should_fail_ex+0x223/0x230
[  204.704585][T11368]  should_failslab+0x8f/0xb0
[  204.709320][T11368]  kmem_cache_alloc_noprof+0x52/0x320
[  204.714708][T11368]  ? skb_clone+0x154/0x1f0
[  204.719226][T11368]  skb_clone+0x154/0x1f0
[  204.723486][T11368]  nfnetlink_rcv+0x2de/0x15d0
[  204.728314][T11368]  ? kmem_cache_free+0xdc/0x2d0
[  204.733196][T11368]  ? nlmon_xmit+0x51/0x60
[  204.737591][T11368]  ? __kfree_skb+0x102/0x150
[  204.742197][T11368]  ? consume_skb+0x49/0x160
[  204.746709][T11368]  ? nlmon_xmit+0x51/0x60
[  204.751048][T11368]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  204.756466][T11368]  ? __dev_queue_xmit+0xb6e/0x2090
[  204.761657][T11368]  ? ref_tracker_free+0x3a5/0x410
[  204.766770][T11368]  ? __dev_queue_xmit+0x186/0x2090
[  204.771922][T11368]  netlink_unicast+0x599/0x670
[  204.776714][T11368]  netlink_sendmsg+0x5cc/0x6e0
[  204.781498][T11368]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.786799][T11368]  __sock_sendmsg+0x140/0x180
[  204.791587][T11368]  ____sys_sendmsg+0x312/0x410
[  204.796368][T11368]  __sys_sendmsg+0x19d/0x230
[  204.801125][T11368]  __x64_sys_sendmsg+0x46/0x50
[  204.805914][T11368]  x64_sys_call+0x2734/0x2dc0
[  204.810602][T11368]  do_syscall_64+0xc9/0x1c0
[  204.815187][T11368]  ? clear_bhb_loop+0x55/0xb0
[  204.819877][T11368]  ? clear_bhb_loop+0x55/0xb0
[  204.824614][T11368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.830516][T11368] RIP: 0033:0x7f1ed23f5d29
[  204.835013][T11368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.854710][T11368] RSP: 002b:00007f1ed0a61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  204.863186][T11368] RAX: ffffffffffffffda RBX: 00007f1ed25e5fa0 RCX: 00007f1ed23f5d29
[  204.871219][T11368] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  204.879247][T11368] RBP: 00007f1ed0a61090 R08: 0000000000000000 R09: 0000000000000000
[  204.887226][T11368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.895206][T11368] R13: 0000000000000000 R14: 00007f1ed25e5fa0 R15: 00007ffd201e5788
[  204.903210][T11368]  </TASK>
[  204.950586][T11376] syz.2.3005[11376] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.950754][T11376] syz.2.3005[11376] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.964139][T11376] syz.2.3005[11376] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.980868][T11379] rdma_op ffff888118a30180 conn xmit_rdma 0000000000000000
[  204.993770][T11376] sd 0:0:1:0: device reset
[  205.020121][T11379] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.061870][T11110] veth0_vlan: entered promiscuous mode
[  205.070336][T11110] veth1_vlan: entered promiscuous mode
[  205.092541][T11379] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.106202][T11110] veth0_macvtap: entered promiscuous mode
[  205.123514][T11110] veth1_macvtap: entered promiscuous mode
[  205.141188][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.151818][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.161708][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.172180][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  205.179271][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.189156][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.192688][T11393] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  205.199584][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.199612][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.199630][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.199649][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  205.199735][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.200756][T11110] batman_adv: batadv0: Interface activated: batadv_slave_0
[  205.269662][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.280154][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.290074][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.300571][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.310515][T11110] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  205.320969][T11110] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.331712][T11110] batman_adv: batadv0: Interface activated: batadv_slave_1
[  205.344066][T11379] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.357138][T11110] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.365972][T11110] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.374900][T11110] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.383714][T11110] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.408942][T11379] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.446854][T11398] pim6reg1: entered promiscuous mode
[  205.452286][T11398] pim6reg1: entered allmulticast mode
[  205.484378][T11379] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.495839][T11379] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.506888][T11379] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.522523][T11379] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.575393][T11403] loop5: detected capacity change from 0 to 512
[  205.582689][T11403] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  205.593825][T11403] EXT4-fs (loop5): 1 truncate cleaned up
[  205.599985][T11403] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.628447][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.890783][T11410] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  205.899015][T11410] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  205.907211][T11410] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  205.915507][T11410] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  205.923859][T11410] vxlan0: entered promiscuous mode
[  205.929050][T11410] vxlan0: entered allmulticast mode
[  205.935675][T11410] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  205.944136][T11410] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  205.952596][T11410] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  205.960974][T11410] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  206.179625][T11419] FAULT_INJECTION: forcing a failure.
[  206.179625][T11419] name failslab, interval 1, probability 0, space 0, times 0
[  206.192359][T11419] CPU: 1 UID: 0 PID: 11419 Comm: syz.3.3018 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  206.200389][T11422] loop2: detected capacity change from 0 to 512
[  206.203167][T11419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  206.203185][T11419] Call Trace:
[  206.203193][T11419]  <TASK>
[  206.203201][T11419]  dump_stack_lvl+0xf2/0x150
[  206.230342][T11419]  dump_stack+0x15/0x1a
[  206.234596][T11419]  should_fail_ex+0x223/0x230
[  206.239292][T11419]  should_failslab+0x8f/0xb0
[  206.243986][T11419]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  206.250336][T11419]  ? sidtab_sid2str_get+0xb8/0x140
[  206.255469][T11419]  kmemdup_noprof+0x2a/0x60
[  206.260071][T11419]  sidtab_sid2str_get+0xb8/0x140
[  206.265028][T11419]  security_sid_to_context_core+0x1eb/0x2f0
[  206.270968][T11419]  security_sid_to_context+0x27/0x30
[  206.276338][T11419]  selinux_lsmprop_to_secctx+0x2c/0x40
[  206.281845][T11419]  security_lsmprop_to_secctx+0x4a/0x90
[  206.287503][T11419]  audit_log_task_context+0x93/0x1c0
[  206.292883][T11419]  audit_log_task+0xf9/0x1c0
[  206.297490][T11419]  audit_seccomp+0x68/0x130
[  206.302144][T11419]  __seccomp_filter+0x6fa/0x1180
[  206.307141][T11419]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  206.312793][T11419]  ? vfs_write+0x596/0x920
[  206.317295][T11419]  __secure_computing+0x9f/0x1c0
[  206.322253][T11419]  syscall_trace_enter+0xd1/0x1f0
[  206.327297][T11419]  ? fpregs_assert_state_consistent+0x83/0xa0
[  206.333384][T11419]  do_syscall_64+0xaa/0x1c0
[  206.337966][T11419]  ? clear_bhb_loop+0x55/0xb0
[  206.342672][T11419]  ? clear_bhb_loop+0x55/0xb0
[  206.347368][T11419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.353338][T11419] RIP: 0033:0x7f1c6a645d29
[  206.357759][T11419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.377377][T11419] RSP: 002b:00007f1c68cb7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  206.385800][T11419] RAX: ffffffffffffffda RBX: 00007f1c6a835fa0 RCX: 00007f1c6a645d29
[  206.393826][T11419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[  206.401801][T11419] RBP: 00007f1c68cb7090 R08: 0000000000000000 R09: 0000000000000000
[  206.409777][T11419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.417763][T11419] R13: 0000000000000000 R14: 00007f1c6a835fa0 R15: 00007ffdc7ceaf08
[  206.425774][T11419]  </TASK>
[  206.428880][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  206.453295][T11422] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.467912][T11422] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.493932][T11427] loop3: detected capacity change from 0 to 128
[  206.532822][T11427] FAT-fs (loop3): FAT read failed (blocknr 234)
[  206.577783][T11427] sd 0:0:1:0: device reset
[  206.616795][T11435] loop3: detected capacity change from 0 to 512
[  206.643739][T11435] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  206.655043][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.666939][T11435] EXT4-fs (loop3): 1 truncate cleaned up
[  206.675251][T11435] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.717108][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.756662][T11444] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  206.784780][T11449] loop2: detected capacity change from 0 to 256
[  206.876901][T11453] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3031'.
[  206.893178][T11453] netlink: 100 bytes leftover after parsing attributes in process `syz.2.3031'.
[  207.006473][T11460] bond1: entered promiscuous mode
[  207.011881][T11460] bond1: entered allmulticast mode
[  207.018013][T11460] 8021q: adding VLAN 0 to HW filter on device bond1
[  207.034613][T11460] bond1 (unregistering): Released all slaves
[  207.055079][T11466] syz.1.3036[11466] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.055123][T11466] syz.1.3036[11466] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.066925][T11466] syz.1.3036[11466] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.238266][T11484] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  207.427242][T11493] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3048'.
[  207.487543][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  207.518645][T11495] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  207.906993][T11518] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  208.131078][T11520] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3059'.
[  208.174201][T11520] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3059'.
[  208.285389][T11531] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.294813][T11531] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.324753][T11529] loop2: detected capacity change from 0 to 8192
[  208.392963][T11535] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3065'.
[  208.527480][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  208.670260][T11546] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  208.892166][T11556] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  209.186365][T11560] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  209.215256][   T29] kauditd_printk_skb: 229 callbacks suppressed
[  209.215283][   T29] audit: type=1326 audit(1737134819.384:8700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11559 comm="syz.2.3073" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x0
[  209.490219][T11564] loop3: detected capacity change from 0 to 512
[  209.496902][T11564] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  209.512566][T11564] EXT4-fs (loop3): 1 truncate cleaned up
[  209.519444][T11564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.547863][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.577801][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  209.591183][T11570] syz.0.3077[11570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.591241][T11570] syz.0.3077[11570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.605075][T11570] syz.0.3077[11570] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.642863][   T29] audit: type=1400 audit(1737134819.814:8701): avc:  denied  { write } for  pid=11572 comm="syz.3.3076" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  209.682804][T11575] ip6gre1: entered allmulticast mode
[  209.685323][T11577] loop0: detected capacity change from 0 to 512
[  209.723732][T11577] EXT4-fs (loop0): 1 orphan inode deleted
[  209.731806][T11577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.744950][T11577] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.760684][   T29] audit: type=1326 audit(1737134819.934:8702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11576 comm="syz.0.3079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  209.787754][T11573] netlink: 'syz.3.3076': attribute type 10 has an invalid length.
[  209.798436][   T29] audit: type=1326 audit(1737134819.974:8703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11576 comm="syz.0.3079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  209.842760][T11110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.848012][   T29] audit: type=1326 audit(1737134819.994:8704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.3080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  209.875479][   T29] audit: type=1326 audit(1737134819.994:8705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.3080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  209.899276][   T29] audit: type=1326 audit(1737134819.994:8706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.3080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  209.906955][T11585] loop1: detected capacity change from 0 to 8192
[  209.922827][   T29] audit: type=1326 audit(1737134819.994:8707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.3080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  209.922864][   T29] audit: type=1326 audit(1737134819.994:8708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.3080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  209.922946][   T29] audit: type=1326 audit(1737134819.994:8709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11580 comm="syz.1.3080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9dbaeb5d29 code=0x7ffc0000
[  210.082229][T11595] loop3: detected capacity change from 0 to 512
[  210.108031][T11595] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  210.139758][T11595] EXT4-fs (loop3): 1 truncate cleaned up
[  210.169889][T11595] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.220500][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.251588][T11604] loop0: detected capacity change from 0 to 512
[  210.258789][T11604] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  210.270776][T11604] EXT4-fs (loop0): 1 truncate cleaned up
[  210.294607][T11604] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.326866][T11110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.395302][T11607] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  210.425731][T11612] loop5: detected capacity change from 0 to 512
[  210.451172][T11612] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  210.476983][T11616] loop3: detected capacity change from 0 to 256
[  210.483793][T11612] ext4 filesystem being mounted at /209/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.509626][T11618] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3094'.
[  210.519406][T11618] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3094'.
[  210.537064][T11612] xt_hashlimit: max too large, truncated to 1048576
[  210.599652][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  210.608819][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  210.659760][T11623] loop0: detected capacity change from 0 to 256
[  210.738669][T11628] rdma_op ffff88810e954980 conn xmit_rdma 0000000000000000
[  210.758952][T11628] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.796037][T11634] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3101'.
[  210.800506][T11632] loop5: detected capacity change from 0 to 2048
[  210.821269][T11628] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.836261][T11632] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.880662][T11628] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.947046][T11642] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  210.962186][T11648] loop2: detected capacity change from 0 to 512
[  210.982640][T11648] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  211.015539][T11648] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.029943][T11648] xt_hashlimit: max too large, truncated to 1048576
[  211.053544][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  211.064724][T11628] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  211.075732][   T11] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  211.091140][T11652] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3108'.
[  211.091494][   T11] EXT4-fs (loop5): Remounting filesystem read-only
[  211.102898][T11652] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3108'.
[  211.134965][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.154888][T11628] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  211.176109][T11628] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.196394][T11628] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  211.222995][T11628] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.239796][T11662] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3110'.
[  211.321489][T11678] loop0: detected capacity change from 0 to 512
[  211.336753][T11680] loop5: detected capacity change from 0 to 256
[  211.361751][T11678] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  211.374437][T11678] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.388436][T11678] xt_hashlimit: max too large, truncated to 1048576
[  211.415939][T11110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  211.443161][T11689] 9pnet_fd: Insufficient options for proto=fd
[  211.483531][T11690] loop3: detected capacity change from 0 to 512
[  211.495494][T11690] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  211.499319][T11692] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3125'.
[  211.521768][T11690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.534391][T11690] ext4 filesystem being mounted at /583/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.547468][T11690] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.611314][T11700] loop3: detected capacity change from 0 to 512
[  211.640853][T11700] EXT4-fs (loop3): 1 orphan inode deleted
[  211.647170][T11700] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.659723][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  211.660195][   T11] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 1
[  211.667197][T11700] ext4 filesystem being mounted at /584/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.723173][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.749995][T11710] 9pnet_fd: Insufficient options for proto=fd
[  211.810269][T11718] loop0: detected capacity change from 0 to 256
[  211.887180][T11722] FAULT_INJECTION: forcing a failure.
[  211.887180][T11722] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  211.900462][T11722] CPU: 0 UID: 0 PID: 11722 Comm: syz.3.3137 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  211.911251][T11722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  211.921324][T11722] Call Trace:
[  211.924692][T11722]  <TASK>
[  211.927664][T11722]  dump_stack_lvl+0xf2/0x150
[  211.932308][T11722]  dump_stack+0x15/0x1a
[  211.936516][T11722]  should_fail_ex+0x223/0x230
[  211.941236][T11722]  should_fail+0xb/0x10
[  211.945471][T11722]  should_fail_usercopy+0x1a/0x20
[  211.950600][T11722]  _copy_from_user+0x1e/0xb0
[  211.955268][T11722]  __sys_bpf+0x14e/0x7a0
[  211.959550][T11722]  __x64_sys_bpf+0x43/0x50
[  211.964010][T11722]  x64_sys_call+0x2914/0x2dc0
[  211.968744][T11722]  do_syscall_64+0xc9/0x1c0
[  211.973298][T11722]  ? clear_bhb_loop+0x55/0xb0
[  211.978001][T11722]  ? clear_bhb_loop+0x55/0xb0
[  211.982708][T11722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.988640][T11722] RIP: 0033:0x7f1c6a645d29
[  211.993080][T11722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.012776][T11722] RSP: 002b:00007f1c68cb7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  212.021213][T11722] RAX: ffffffffffffffda RBX: 00007f1c6a835fa0 RCX: 00007f1c6a645d29
[  212.029253][T11722] RDX: 0000000000000050 RSI: 0000000020000080 RDI: 000000000000000a
[  212.037311][T11722] RBP: 00007f1c68cb7090 R08: 0000000000000000 R09: 0000000000000000
[  212.045345][T11722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.053330][T11722] R13: 0000000000000000 R14: 00007f1c6a835fa0 R15: 00007ffdc7ceaf08
[  212.061337][T11722]  </TASK>
[  212.141492][T11729] ip6gre2: entered allmulticast mode
[  212.280755][T11731] 9pnet_fd: Insufficient options for proto=fd
[  212.294425][T11746] loop2: detected capacity change from 0 to 512
[  212.311036][T11746] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  212.355954][T11746] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.3146: iget: bad i_size value: -6917529027641081756
[  212.390642][T11755] loop3: detected capacity change from 0 to 256
[  212.401697][T11750] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  212.421277][T11746] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.3146: couldn't read orphan inode 17 (err -117)
[  212.465668][T11746] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.517371][T11746] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3146: bg 0: block 65: padding at end of block bitmap is not set
[  212.542491][T11746] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3146: Failed to acquire dquot type 0
[  212.610586][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.628336][T11761] loop3: detected capacity change from 0 to 512
[  212.668100][T11763] rdma_op ffff88810844a580 conn xmit_rdma 0000000000000000
[  212.680773][T11761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  212.693320][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  212.701714][T11763] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.720614][T11761] ext4 filesystem being mounted at /591/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.770971][T11763] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.786272][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  212.858644][T11763] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.932877][T11763] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.064534][T11771] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  213.109397][T11763] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.144228][T11763] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.167347][T11763] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.203766][T11763] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.312321][T11782] __nla_validate_parse: 5 callbacks suppressed
[  213.312339][T11782] netlink: 164 bytes leftover after parsing attributes in process `syz.0.3159'.
[  213.312781][T11782] SELinux:  policydb version 280 does not match my version range 15-33
[  213.312852][T11782] SELinux: failed to load policy
[  213.378596][T11789] loop0: detected capacity change from 0 to 512
[  213.387779][T11789] EXT4-fs: journaled quota format not specified
[  213.441238][T11793] sd 0:0:1:0: device reset
[  213.487044][T11799] rdma_op ffff88810e957980 conn xmit_rdma 0000000000000000
[  213.515923][T11799] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.539502][T11803] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3166'.
[  213.548594][T11803] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3166'.
[  213.562171][T11801] loop5: detected capacity change from 0 to 2048
[  213.570725][T11799] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.594551][T11801] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.621715][T11799] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.665120][T11816] ip6gre1: entered allmulticast mode
[  213.672539][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.719652][T11799] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.729488][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  213.742895][T11816] netlink: 'syz.2.3169': attribute type 10 has an invalid length.
[  213.756914][T11815] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3170'.
[  213.791591][T11822] loop5: detected capacity change from 0 to 1024
[  213.799774][T11822] EXT4-fs: Ignoring removed orlov option
[  213.817829][T11822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.877714][T11829] sd 0:0:1:0: device reset
[  213.927563][T11833] loop1: detected capacity change from 0 to 512
[  213.930384][T11835] loop2: detected capacity change from 0 to 512
[  213.955363][T11835] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  213.976388][T11833] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  213.991360][T11835] EXT4-fs (loop2): 1 truncate cleaned up
[  213.997680][T11833] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.003033][T11835] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.031065][T11833] xt_hashlimit: max too large, truncated to 1048576
[  214.056251][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  214.071150][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.185915][T11853] loop2: detected capacity change from 0 to 512
[  214.213552][T11853] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  214.226404][T11853] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.260036][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  214.360735][   T29] kauditd_printk_skb: 384 callbacks suppressed
[  214.360750][   T29] audit: type=1326 audit(1737134824.534:9091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.392164][T11863] sd 0:0:1:0: device reset
[  214.401534][   T29] audit: type=1326 audit(1737134824.564:9092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.425381][   T29] audit: type=1326 audit(1737134824.564:9093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.449073][   T29] audit: type=1326 audit(1737134824.564:9094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.472541][   T29] audit: type=1326 audit(1737134824.564:9095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.496080][   T29] audit: type=1326 audit(1737134824.564:9096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.498589][T11865] loop0: detected capacity change from 0 to 2048
[  214.519496][   T29] audit: type=1326 audit(1737134824.564:9097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.549448][   T29] audit: type=1326 audit(1737134824.564:9098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.572876][   T29] audit: type=1326 audit(1737134824.564:9099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.596454][   T29] audit: type=1326 audit(1737134824.564:9100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11864 comm="syz.0.3189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  214.631383][T11867] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  214.645373][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.661701][T11865] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.679316][T11871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.687314][T11873] loop5: detected capacity change from 0 to 512
[  214.689145][T11871] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.714212][T11873] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  214.725553][T11110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.726670][T11873] EXT4-fs (loop5): 1 truncate cleaned up
[  214.740803][T11873] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.767460][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  214.778277][T11876] wireguard0: entered promiscuous mode
[  214.784965][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.824225][T11881] netlink: 'syz.5.3195': attribute type 12 has an invalid length.
[  214.832172][T11881] netlink: 'syz.5.3195': attribute type 29 has an invalid length.
[  214.840052][T11881] netlink: 148 bytes leftover after parsing attributes in process `syz.5.3195'.
[  214.849175][T11881] netlink: 51 bytes leftover after parsing attributes in process `syz.5.3195'.
[  214.859229][T11881] syz.5.3195[11881] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  214.859415][T11881] syz.5.3195[11881] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  214.870934][T11881] syz.5.3195[11881] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  214.984706][T11887] loop1: detected capacity change from 0 to 512
[  215.011733][T11887] EXT4-fs (loop1): 1 orphan inode deleted
[  215.018013][T11887] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.030765][   T50] EXT4-fs error (device loop1): ext4_release_dquot:6961: comm kworker/u8:3: Failed to release dquot type 1
[  215.030842][T11887] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.064637][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.088968][T11891] syz.1.3199[11891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.089030][T11891] syz.1.3199[11891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.100580][T11891] syz.1.3199[11891] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.205078][T11897] FAULT_INJECTION: forcing a failure.
[  215.205078][T11897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  215.229709][T11897] CPU: 1 UID: 0 PID: 11897 Comm: syz.1.3202 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  215.240555][T11897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  215.245749][T11899] loop2: detected capacity change from 0 to 512
[  215.250619][T11897] Call Trace:
[  215.250630][T11897]  <TASK>
[  215.250639][T11897]  dump_stack_lvl+0xf2/0x150
[  215.267857][T11897]  dump_stack+0x15/0x1a
[  215.272092][T11897]  should_fail_ex+0x223/0x230
[  215.276962][T11897]  should_fail+0xb/0x10
[  215.281252][T11897]  should_fail_usercopy+0x1a/0x20
[  215.286362][T11897]  _copy_from_user+0x1e/0xb0
[  215.290976][T11897]  copy_msghdr_from_user+0x54/0x2a0
[  215.296230][T11897]  ? __fget_files+0x17c/0x1c0
[  215.300985][T11897]  __sys_sendmsg+0x13e/0x230
[  215.305604][T11897]  __x64_sys_sendmsg+0x46/0x50
[  215.310445][T11897]  x64_sys_call+0x2734/0x2dc0
[  215.315163][T11897]  do_syscall_64+0xc9/0x1c0
[  215.319682][T11897]  ? clear_bhb_loop+0x55/0xb0
[  215.324387][T11897]  ? clear_bhb_loop+0x55/0xb0
[  215.329071][T11897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.334972][T11897] RIP: 0033:0x7f9dbaeb5d29
[  215.339406][T11897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  215.359163][T11897] RSP: 002b:00007f9db9521038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  215.367588][T11897] RAX: ffffffffffffffda RBX: 00007f9dbb0a5fa0 RCX: 00007f9dbaeb5d29
[  215.375632][T11897] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000006
[  215.383680][T11897] RBP: 00007f9db9521090 R08: 0000000000000000 R09: 0000000000000000
[  215.391657][T11897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  215.399631][T11897] R13: 0000000000000000 R14: 00007f9dbb0a5fa0 R15: 00007ffd09c9fc28
[  215.407646][T11897]  </TASK>
[  215.420193][T11899] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.441512][T11903] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3204'.
[  215.450913][T11903] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3204'.
[  215.532822][T11910] ip6gre2: entered allmulticast mode
[  215.583143][T11913] netlink: 'syz.2.3205': attribute type 10 has an invalid length.
[  215.649509][T11916] loop0: detected capacity change from 0 to 512
[  215.671632][T11916] EXT4-fs (loop0): 1 orphan inode deleted
[  215.687017][T11916] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.697849][   T11] EXT4-fs error (device loop0): ext4_release_dquot:6961: comm kworker/u8:0: Failed to release dquot type 1
[  215.717515][T11799] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.729103][T11799] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.744059][T11799] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.760824][T11799] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  215.762638][T11922] loop5: detected capacity change from 0 to 2048
[  215.789941][T11924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  215.800903][T11924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  215.808718][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  215.846557][T11926] rdma_op ffff8881154c0580 conn xmit_rdma 0000000000000000
[  215.849663][T11922] FAULT_INJECTION: forcing a failure.
[  215.849663][T11922] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  215.867201][T11922] CPU: 1 UID: 0 PID: 11922 Comm: syz.5.3211 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  215.878069][T11922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  215.888157][T11922] Call Trace:
[  215.891434][T11922]  <TASK>
[  215.894378][T11922]  dump_stack_lvl+0xf2/0x150
[  215.898995][T11922]  dump_stack+0x15/0x1a
[  215.903189][T11922]  should_fail_ex+0x223/0x230
[  215.907909][T11922]  should_fail_alloc_page+0xfd/0x110
[  215.913267][T11922]  __alloc_pages_noprof+0x109/0x340
[  215.918723][T11922]  alloc_pages_mpol_noprof+0xb8/0x260
[  215.924125][T11922]  folio_alloc_noprof+0xee/0x130
[  215.929083][T11922]  filemap_alloc_folio_noprof+0x69/0x220
[  215.934754][T11922]  __filemap_get_folio+0x298/0x5b0
[  215.939873][T11922]  ext4_block_zero_page_range+0x98/0x590
[  215.945523][T11922]  ext4_zero_partial_blocks+0xe3/0x190
[  215.951002][T11922]  ext4_punch_hole+0x44e/0x7e0
[  215.955778][T11922]  ext4_fallocate+0x1f1/0x1170
[  215.960629][T11922]  vfs_fallocate+0x368/0x3b0
[  215.965240][T11922]  __x64_sys_fallocate+0x78/0xc0
[  215.970283][T11922]  x64_sys_call+0x43c/0x2dc0
[  215.974895][T11922]  do_syscall_64+0xc9/0x1c0
[  215.979406][T11922]  ? clear_bhb_loop+0x55/0xb0
[  215.984086][T11922]  ? clear_bhb_loop+0x55/0xb0
[  215.988804][T11922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.994749][T11922] RIP: 0033:0x7f1ed23f5d29
[  215.999309][T11922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.018997][T11922] RSP: 002b:00007f1ed0a61038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  216.027851][T11922] RAX: ffffffffffffffda RBX: 00007f1ed25e5fa0 RCX: 00007f1ed23f5d29
[  216.035892][T11922] RDX: 0000000000000200 RSI: 0000000000000003 RDI: 0000000000000006
[  216.043865][T11922] RBP: 00007f1ed0a61090 R08: 0000000000000000 R09: 0000000000000000
[  216.051856][T11922] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000001
[  216.059835][T11922] R13: 0000000000000000 R14: 00007f1ed25e5fa0 R15: 00007ffd201e5788
[  216.067873][T11922]  </TASK>
[  216.073672][T11926] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.131303][T11932] loop0: detected capacity change from 0 to 512
[  216.137171][T11934] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  216.155696][T11926] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.169036][T11932] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  216.211308][T11939] loop0: detected capacity change from 0 to 256
[  216.221883][T11926] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.260781][T11926] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.290347][T11944] syz.0.3219[11944] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.290484][T11944] syz.0.3219[11944] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.302056][T11944] syz.0.3219[11944] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  216.333754][T11946] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3220'.
[  216.354198][T11946] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3220'.
[  216.440604][T11950] loop0: detected capacity change from 0 to 512
[  216.469528][T11950] EXT4-fs (loop0): 1 orphan inode deleted
[  216.475683][T11950] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  216.505262][T11954] loop3: detected capacity change from 0 to 256
[  216.649421][T11963] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  216.857490][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  216.867129][T11965] chnl_net:caif_netlink_parms(): no params data found
[  216.904179][T11965] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.911312][T11965] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.918739][T11965] bridge_slave_0: entered allmulticast mode
[  216.925100][T11965] bridge_slave_0: entered promiscuous mode
[  216.931888][T11965] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.938997][T11965] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.946293][T11965] bridge_slave_1: entered allmulticast mode
[  216.952985][T11965] bridge_slave_1: entered promiscuous mode
[  216.972281][T11965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  216.988624][T11965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  217.010011][T11982] syz.5.3230[11982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  217.015650][T11965] team0: Port device team_slave_0 added
[  217.039742][T11965] team0: Port device team_slave_1 added
[  217.055581][T11965] batman_adv: batadv0: Adding interface: batadv_slave_0
[  217.062587][T11965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  217.088659][T11965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  217.100456][T11965] batman_adv: batadv0: Adding interface: batadv_slave_1
[  217.107449][T11965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  217.133510][T11965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  217.134203][T11987] loop1: detected capacity change from 0 to 512
[  217.154299][T11987] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  217.170670][T11987] EXT4-fs (loop1): 1 truncate cleaned up
[  217.179749][T11965] hsr_slave_0: entered promiscuous mode
[  217.186091][T11965] hsr_slave_1: entered promiscuous mode
[  217.192358][T11965] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  217.200028][T11965] Cannot create hsr debugfs directory
[  217.273834][T11994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  217.283988][T11965] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.285494][T11994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  217.328936][T11965] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.378791][T11965] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.438681][T11965] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.520063][T12002] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  217.833631][T12006] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  217.887897][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  217.984237][T12014] loop5: detected capacity change from 0 to 512
[  217.991054][T12014] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  218.002073][T12014] EXT4-fs (loop5): 1 truncate cleaned up
[  218.364726][T12036] __nla_validate_parse: 4 callbacks suppressed
[  218.364740][T12036] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3250'.
[  218.380041][T12036] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3250'.
[  218.559936][T12048] loop0: detected capacity change from 0 to 256
[  218.683348][T12050] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  218.834488][T12068] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  218.927478][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  219.002889][T11926] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  219.014484][T11926] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  219.051339][T12072] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  219.060183][T12072] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  219.099045][T11926] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.148928][T11926] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.490269][T12077] loop0: detected capacity change from 0 to 2048
[  219.508565][T12077] EXT4-fs (loop0): failed to initialize system zone (-117)
[  219.515939][T12077] EXT4-fs (loop0): mount failed
[  219.599905][T12091] FAULT_INJECTION: forcing a failure.
[  219.599905][T12091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.613030][T12091] CPU: 1 UID: 0 PID: 12091 Comm: syz.0.3270 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  219.623896][T12091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  219.633964][T12091] Call Trace:
[  219.637250][T12091]  <TASK>
[  219.640197][T12091]  dump_stack_lvl+0xf2/0x150
[  219.644897][T12091]  dump_stack+0x15/0x1a
[  219.649085][T12091]  should_fail_ex+0x223/0x230
[  219.653781][T12091]  should_fail+0xb/0x10
[  219.658012][T12091]  should_fail_usercopy+0x1a/0x20
[  219.663090][T12091]  _copy_from_user+0x1e/0xb0
[  219.667698][T12091]  copy_msghdr_from_user+0x54/0x2a0
[  219.672964][T12091]  ? __fget_files+0x17c/0x1c0
[  219.677722][T12091]  __sys_sendmsg+0x13e/0x230
[  219.682357][T12091]  __x64_sys_sendmsg+0x46/0x50
[  219.687208][T12091]  x64_sys_call+0x2734/0x2dc0
[  219.691896][T12091]  do_syscall_64+0xc9/0x1c0
[  219.696411][T12091]  ? clear_bhb_loop+0x55/0xb0
[  219.701139][T12091]  ? clear_bhb_loop+0x55/0xb0
[  219.705831][T12091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.711812][T12091] RIP: 0033:0x7fcd97fb5d29
[  219.716287][T12091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.736377][T12091] RSP: 002b:00007fcd96627038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  219.744798][T12091] RAX: ffffffffffffffda RBX: 00007fcd981a5fa0 RCX: 00007fcd97fb5d29
[  219.752776][T12091] RDX: 0000000000000000 RSI: 0000000020001600 RDI: 0000000000000003
[  219.760787][T12091] RBP: 00007fcd96627090 R08: 0000000000000000 R09: 0000000000000000
[  219.768770][T12091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.776756][T12091] R13: 0000000000000000 R14: 00007fcd981a5fa0 R15: 00007ffec1575548
[  219.784826][T12091]  </TASK>
[  219.790457][   T29] kauditd_printk_skb: 569 callbacks suppressed
[  219.790474][   T29] audit: type=1326 audit(1737134829.794:9666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.820591][   T29] audit: type=1326 audit(1737134829.794:9667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.844438][   T29] audit: type=1326 audit(1737134829.794:9668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.868006][   T29] audit: type=1326 audit(1737134829.794:9669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.891549][   T29] audit: type=1326 audit(1737134829.794:9670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.915110][   T29] audit: type=1326 audit(1737134829.794:9671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.938560][   T29] audit: type=1326 audit(1737134829.794:9672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.962196][   T29] audit: type=1326 audit(1737134829.794:9673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  219.985875][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  219.992910][   T29] audit: type=1326 audit(1737134829.794:9674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  220.016371][   T29] audit: type=1326 audit(1737134829.794:9675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12092 comm="syz.5.3271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ed23f5d29 code=0x7ffc0000
[  220.105554][T12113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3280'.
[  220.116053][T12113] Æ: renamed from batadv_slave_1 (while UP)
[  220.125451][T12113] batman_adv: batadv0: Interface deactivated: Æ
[  220.131958][T12113] batman_adv: batadv0: Removing interface: Æ
[  220.139944][T12113] A link change request failed with some changes committed already. Interface Æ may have been left with an inconsistent configuration, please check.
[  220.224942][T12126] loop1: detected capacity change from 0 to 512
[  220.241056][T12130] bpf_get_probe_write_proto: 5 callbacks suppressed
[  220.241071][T12130] syz.5.3287[12130] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.249394][T12130] syz.5.3287[12130] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.262501][T12130] syz.5.3287[12130] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.286477][T12126] ext4 filesystem being mounted at /103/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.340969][T12140] syz.5.3291[12140] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.341053][T12140] syz.5.3291[12140] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.356482][T12140] syz.5.3291[12140] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.371699][T12140] netlink: 'syz.5.3291': attribute type 3 has an invalid length.
[  220.391255][T12140] netlink: 'syz.5.3291': attribute type 3 has an invalid length.
[  220.407157][T12140] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3291'.
[  220.427525][T12149] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3293'.
[  220.436855][T12149] Æ: renamed from batadv_slave_1 (while UP)
[  220.443525][T12148] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  220.470634][T12149] batman_adv: batadv0: Interface deactivated: Æ
[  220.477089][T12149] batman_adv: batadv0: Removing interface: Æ
[  220.484003][T12149] A link change request failed with some changes committed already. Interface Æ may have been left with an inconsistent configuration, please check.
[  220.504355][T12154] sd 0:0:1:0: device reset
[  220.552786][T12160] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  220.590532][T12164] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3301'.
[  220.623580][T12169] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  220.760053][T12177] syz.5.3306[12177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.760155][T12177] syz.5.3306[12177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.771723][T12177] syz.5.3306[12177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  220.803851][T12179] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3307'.
[  220.839489][T12179] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3307'.
[  220.902802][T12181] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3308'.
[  220.959761][T12187] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  221.007489][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  221.132969][T11965] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  221.141653][T11965] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  221.150424][T11965] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  221.159267][T11965] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  221.202716][T11965] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.215719][T11965] 8021q: adding VLAN 0 to HW filter on device team0
[  221.226290][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.233417][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.245563][ T1785] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.252706][ T1785] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.273440][T11965] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  221.283865][T11965] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  221.357347][T11965] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.412824][T12209] random: crng reseeded on system resumption
[  221.439382][T11965] veth0_vlan: entered promiscuous mode
[  221.447928][T11965] veth1_vlan: entered promiscuous mode
[  221.471528][T11965] veth0_macvtap: entered promiscuous mode
[  221.482073][T11965] veth1_macvtap: entered promiscuous mode
[  221.509380][T12213] rdma_op ffff8881033b3180 conn xmit_rdma 0000000000000000
[  221.509937][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.527456][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.537346][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.547958][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.557853][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.568415][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.578342][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.588781][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.598646][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.609090][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.618930][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.629446][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.640264][T11965] batman_adv: batadv0: Interface activated: batadv_slave_0
[  221.653275][T12213] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.667675][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.678164][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.688140][T11965] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.698582][T11965] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.709454][T11965] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.722257][T11965] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.731287][T11965] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.740247][T11965] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.749046][T11965] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.781291][T12213] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.813395][T12219] loop3: detected capacity change from 0 to 512
[  221.824255][T12213] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.836669][T12219] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  221.852875][T12219] EXT4-fs (loop3): 1 truncate cleaned up
[  221.855249][T12222] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3319'.
[  221.882354][T12213] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.933642][T12226] loop3: detected capacity change from 0 to 256
[  221.936839][T12213] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.943565][T12228] loop5: detected capacity change from 0 to 256
[  221.953450][T12213] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.971353][T12213] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.993188][T12213] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.007867][T12230] random: crng reseeded on system resumption
[  222.047501][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  222.076220][T12232] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  222.131753][T12236] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  222.243766][T12243] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  222.289362][T12251] loop5: detected capacity change from 0 to 512
[  222.296225][T12251] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  222.307252][T12251] EXT4-fs (loop5): 1 truncate cleaned up
[  222.422272][T12264] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  222.478175][T12273] loop0: detected capacity change from 0 to 256
[  222.523592][T12277] loop5: detected capacity change from 0 to 512
[  222.536187][T12277] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  222.555413][T12277] EXT4-fs (loop5): 1 truncate cleaned up
[  222.560469][T12282] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  222.721418][T12308] loop1: detected capacity change from 0 to 512
[  222.729677][T12308] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  222.745471][T12312] SELinux:  policydb version 280 does not match my version range 15-33
[  222.758355][T12312] SELinux: failed to load policy
[  222.764071][T12308] EXT4-fs (loop1): 1 truncate cleaned up
[  222.792384][T12317] loop5: detected capacity change from 0 to 512
[  222.823664][T12317] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.087454][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  223.098523][T12329] loop5: detected capacity change from 0 to 256
[  223.248557][T12333] loop3: detected capacity change from 0 to 512
[  223.256409][T12333] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  223.292346][T12333] EXT4-fs (loop3): 1 truncate cleaned up
[  223.342659][T12336] syz.5.3355[12336] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.344047][T12336] sd 0:0:1:0: device reset
[  223.379676][T12340] __nla_validate_parse: 5 callbacks suppressed
[  223.379722][T12340] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3357'.
[  223.397279][T12340] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3357'.
[  223.458646][T12348] rdma_op ffff888104173580 conn xmit_rdma 0000000000000000
[  223.470002][T12348] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.612784][T12355] sd 0:0:1:0: device reset
[  223.642777][T12357] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  223.904184][T12370] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  224.137486][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  224.351945][T12375] loop0: detected capacity change from 0 to 512
[  224.365350][T12375] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  224.384286][T12375] EXT4-fs (loop0): 1 truncate cleaned up
[  224.389738][T12380] loop5: detected capacity change from 0 to 512
[  224.390544][T12375] EXT4-fs mount: 28 callbacks suppressed
[  224.390560][T12375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.416807][T12380] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  224.429556][T12380] EXT4-fs (loop5): 1 truncate cleaned up
[  224.435658][T12380] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.448640][T11110] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.554052][T12384] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  224.977305][T12393] loop1: detected capacity change from 0 to 256
[  224.998678][T12395] netlink: 'syz.2.3379': attribute type 3 has an invalid length.
[  225.006466][T12395] netlink: 'syz.2.3379': attribute type 3 has an invalid length.
[  225.014512][T12395] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3379'.
[  225.099949][   T29] kauditd_printk_skb: 504 callbacks suppressed
[  225.099967][   T29] audit: type=1326 audit(1737134835.274:10180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.129818][   T29] audit: type=1326 audit(1737134835.274:10181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.153418][   T29] audit: type=1326 audit(1737134835.274:10182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.177080][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  225.184217][   T29] audit: type=1326 audit(1737134835.274:10183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.207782][   T29] audit: type=1326 audit(1737134835.274:10184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.244795][   T29] audit: type=1326 audit(1737134835.274:10185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.268579][   T29] audit: type=1326 audit(1737134835.274:10186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.292180][   T29] audit: type=1326 audit(1737134835.274:10187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.315812][   T29] audit: type=1326 audit(1737134835.274:10188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.339748][   T29] audit: type=1326 audit(1737134835.274:10189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12396 comm="syz.2.3380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7ff1e4125d29 code=0x7ffc0000
[  225.364546][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.475439][T12415] netlink: 'syz.1.3389': attribute type 3 has an invalid length.
[  225.483304][T12415] netlink: 'syz.1.3389': attribute type 3 has an invalid length.
[  225.491777][T12415] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3389'.
[  225.495749][T12417] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  225.544947][T12420] bpf_get_probe_write_proto: 14 callbacks suppressed
[  225.544962][T12420] syz.1.3390[12420] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  225.553953][T12420] syz.1.3390[12420] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  225.565886][T12420] syz.1.3390[12420] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  225.601618][T12423] loop1: detected capacity change from 0 to 256
[  225.933497][T12440] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  225.983183][T12443] ip6gre3: entered allmulticast mode
[  225.993377][T12445] syz.1.3401[12445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  225.993490][T12445] syz.1.3401[12445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.005104][T12445] syz.1.3401[12445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.019253][T12445] netlink: 'syz.1.3401': attribute type 3 has an invalid length.
[  226.038508][T12445] netlink: 'syz.1.3401': attribute type 3 has an invalid length.
[  226.051581][T12445] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3401'.
[  226.115088][T12449] loop1: detected capacity change from 0 to 512
[  226.132903][T12449] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  226.144203][T12449] EXT4-fs (loop1): 1 truncate cleaned up
[  226.151060][T12449] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.189028][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.208160][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  226.272767][T12348] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.285525][T12459] rdma_op ffff8881033b0580 conn xmit_rdma 0000000000000000
[  226.318588][T12459] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.365525][T12348] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.380262][T12471] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  226.390086][T12459] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.441220][T12348] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.489013][T12459] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.535698][T12348] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.553512][T12348] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.566968][T12459] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.588702][T12348] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.615132][T12502] ip6gre1: entered allmulticast mode
[  226.669378][T12348] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.723599][T12510] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  226.754767][T12459] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.766051][T12515] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  226.780459][T12459] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.791973][T12459] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.803708][T12459] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.906931][T12524] loop3: detected capacity change from 0 to 512
[  226.915366][T12528] loop5: detected capacity change from 0 to 512
[  226.916647][T12526] FAULT_INJECTION: forcing a failure.
[  226.916647][T12526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  226.929661][T12528] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  226.934728][T12526] CPU: 0 UID: 0 PID: 12526 Comm: syz.1.3432 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  226.955320][T12526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  226.965394][T12526] Call Trace:
[  226.968681][T12526]  <TASK>
[  226.971723][T12526]  dump_stack_lvl+0xf2/0x150
[  226.976354][T12526]  dump_stack+0x15/0x1a
[  226.980645][T12526]  should_fail_ex+0x223/0x230
[  226.985446][T12526]  should_fail+0xb/0x10
[  226.989672][T12526]  should_fail_usercopy+0x1a/0x20
[  226.994737][T12526]  _copy_from_user+0x1e/0xb0
[  226.999398][T12526]  move_addr_to_kernel+0x82/0x120
[  227.004460][T12526]  __sys_sendto+0x12e/0x230
[  227.009062][T12526]  __x64_sys_sendto+0x78/0x90
[  227.013811][T12526]  x64_sys_call+0x29fa/0x2dc0
[  227.018536][T12526]  do_syscall_64+0xc9/0x1c0
[  227.023067][T12526]  ? clear_bhb_loop+0x55/0xb0
[  227.027754][T12526]  ? clear_bhb_loop+0x55/0xb0
[  227.032591][T12526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.038537][T12526] RIP: 0033:0x7f9dbaeb5d29
[  227.042988][T12526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.062623][T12526] RSP: 002b:00007f9db9521038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  227.071044][T12526] RAX: ffffffffffffffda RBX: 00007f9dbb0a5fa0 RCX: 00007f9dbaeb5d29
[  227.079057][T12526] RDX: 000000000000000e RSI: 00000000200002c0 RDI: 0000000000000003
[  227.087032][T12526] RBP: 00007f9db9521090 R08: 0000000020000040 R09: 0000000000000014
[  227.095096][T12526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.103123][T12526] R13: 0000000000000000 R14: 00007f9dbb0a5fa0 R15: 00007ffd09c9fc28
[  227.111108][T12526]  </TASK>
[  227.128743][T12528] EXT4-fs (loop5): 1 truncate cleaned up
[  227.137218][T12528] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.154725][T12533] loop1: detected capacity change from 0 to 512
[  227.174231][T12524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  227.190132][T12524] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.210775][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.221634][T12533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  227.234425][T12533] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.247485][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  227.288848][T11965] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  227.307614][T12540] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3436'.
[  227.316622][T12540] netlink: 2 bytes leftover after parsing attributes in process `syz.5.3436'.
[  227.331716][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  227.416731][T12548] sd 0:0:1:0: device reset
[  227.438561][T12544] loop1: detected capacity change from 0 to 8192
[  227.494924][T12550] loop3: detected capacity change from 0 to 8192
[  227.544831][T12560] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  227.579054][T12564] loop2: detected capacity change from 0 to 256
[  227.644004][T12571] loop0: detected capacity change from 0 to 256
[  227.770209][T12579] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3449'.
[  227.779599][T12579] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3449'.
[  227.840289][T12582] loop0: detected capacity change from 0 to 256
[  227.875527][T12584] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  228.287496][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  228.415004][T12602] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3460'.
[  228.451758][T12602] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3460'.
[  228.692042][T12610] loop0: detected capacity change from 0 to 8192
[  228.796111][T12624] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3471'.
[  228.805421][T12624] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3471'.
[  228.823040][T12625] rdma_op ffff888104173d80 conn xmit_rdma 0000000000000000
[  228.846209][T12625] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.962769][T12625] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.976997][T12636] ip6gre4: entered allmulticast mode
[  229.041926][T12625] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.112962][T12640] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3476'.
[  229.124351][T12625] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.139892][T12640] Æ: renamed from batadv_slave_1 (while UP)
[  229.150175][T12640] batman_adv: batadv0: Interface deactivated: Æ
[  229.156527][T12640] batman_adv: batadv0: Removing interface: Æ
[  229.163351][T12640] A link change request failed with some changes committed already. Interface Æ may have been left with an inconsistent configuration, please check.
[  229.337447][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  229.401472][T12648] syz.5.3480[12648] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.401547][T12648] syz.5.3480[12648] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.434599][T12648] syz.5.3480[12648] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.458957][T12648] netlink: 'syz.5.3480': attribute type 3 has an invalid length.
[  229.478194][T12648] netlink: 'syz.5.3480': attribute type 3 has an invalid length.
[  229.489577][T12648] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3480'.
[  229.520438][T12650] loop2: detected capacity change from 0 to 512
[  229.533550][T12650] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  229.546261][T12650] EXT4-fs (loop2): 1 truncate cleaned up
[  229.552512][T12650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.610153][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.680131][T12666] sd 0:0:1:0: device reset
[  229.696703][T12662] loop5: detected capacity change from 0 to 8192
[  229.818451][T12675] loop0: detected capacity change from 0 to 256
[  229.836458][T12680] loop1: detected capacity change from 0 to 512
[  229.843692][T12680] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  229.861238][T12680] EXT4-fs (loop1): 1 truncate cleaned up
[  229.869436][T12680] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.941600][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.953639][T12687] loop0: detected capacity change from 0 to 256
[  230.176795][T12700] loop1: detected capacity change from 0 to 8192
[  230.251637][T12708] loop0: detected capacity change from 0 to 256
[  230.262914][T12706] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3504'.
[  230.352013][T12710] loop1: detected capacity change from 0 to 512
[  230.363078][T12710] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  230.373070][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  230.381451][T12710] EXT4-fs (loop1): 1 truncate cleaned up
[  230.389793][T12710] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.421761][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.510092][T12625] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.521019][T12720] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3509'.
[  230.534512][   T29] kauditd_printk_skb: 410 callbacks suppressed
[  230.534529][   T29] audit: type=1326 audit(1737134840.704:10600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.547851][T12719] loop1: detected capacity change from 0 to 256
[  230.576333][T12625] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.584628][   T29] audit: type=1326 audit(1737134840.744:10601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.604465][T12625] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.608339][   T29] audit: type=1326 audit(1737134840.744:10602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.640180][   T29] audit: type=1326 audit(1737134840.744:10603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.663854][   T29] audit: type=1326 audit(1737134840.744:10604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.687760][   T29] audit: type=1326 audit(1737134840.744:10605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.711586][   T29] audit: type=1326 audit(1737134840.744:10606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.735258][   T29] audit: type=1326 audit(1737134840.744:10607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.758916][   T29] audit: type=1326 audit(1737134840.744:10608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.782493][   T29] audit: type=1326 audit(1737134840.744:10609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12715 comm="syz.0.3508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd97fb5d29 code=0x7ffc0000
[  230.817722][T12625] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.911062][T12727] syz.1.3512[12727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  230.911187][T12727] syz.1.3512[12727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  230.931319][T12727] syz.1.3512[12727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  230.980134][T12733] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3515'.
[  231.004585][T12727] netlink: 'syz.1.3512': attribute type 3 has an invalid length.
[  231.012422][T12727] netlink: 'syz.1.3512': attribute type 3 has an invalid length.
[  231.027635][T12727] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3512'.
[  231.060913][T12739] loop2: detected capacity change from 0 to 512
[  231.084289][T12739] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  231.100587][T12739] EXT4-fs (loop2): 1 truncate cleaned up
[  231.114044][T12739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.157174][T10852] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.185671][T12747] Æ: renamed from batadv_slave_1 (while UP)
[  231.195354][T12749] sd 0:0:1:0: device reset
[  231.218461][T12747] batman_adv: batadv0: Interface deactivated: Æ
[  231.224844][T12747] batman_adv: batadv0: Removing interface: Æ
[  231.237583][T12747] A link change request failed with some changes committed already. Interface Æ may have been left with an inconsistent configuration, please check.
[  231.241067][T12751] syz.2.3522[12751] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.253001][T12751] syz.2.3522[12751] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.270196][T12751] syz.2.3522[12751] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.366772][T12755] loop3: detected capacity change from 0 to 512
[  231.387887][T12758] loop0: detected capacity change from 0 to 256
[  231.407434][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  231.416473][T12755] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  231.447467][T12755] EXT4-fs (loop3): 1 truncate cleaned up
[  231.453819][T12755] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.466593][T12769] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  231.475270][T12769] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  231.977736][T12775] loop1: detected capacity change from 0 to 512
[  231.984733][T12775] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  231.996075][T12775] EXT4-fs (loop1): 1 truncate cleaned up
[  232.002053][T12775] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.034124][T12778] sd 0:0:1:0: device reset
[  232.039992][T10620] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.144487][T12790] syz.2.3538[12790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  232.144620][T12790] syz.2.3538[12790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  232.158015][T12790] syz.2.3538[12790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  232.241164][T11965] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.246985][T12798] syz.2.3541[12798] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  232.264292][T12797] netlink: 'syz.1.3542': attribute type 3 has an invalid length.
[  232.283603][T12797] netlink: 'syz.1.3542': attribute type 3 has an invalid length.
[  232.296028][T12803] loop5: detected capacity change from 0 to 512
[  232.304014][T12798] netlink: 'syz.2.3541': attribute type 3 has an invalid length.
[  232.311824][T12798] netlink: 'syz.2.3541': attribute type 3 has an invalid length.
[  232.319754][T12803] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  232.350746][T12803] EXT4-fs (loop5): 1 truncate cleaned up
[  232.366952][T12805] sd 0:0:1:0: device reset
[  232.376386][T12803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.443994][ T8785] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.453027][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  232.534015][T12826] loop5: detected capacity change from 0 to 256
[  232.662643][T12844] loop3: detected capacity change from 0 to 8192
[  232.856534][T12870] ==================================================================
[  232.864658][T12870] BUG: KCSAN: data-race in mark_buffer_dirty_inode / mark_buffer_dirty_inode
[  232.873471][T12870] 
[  232.875814][T12870] write to 0xffff88811ac00400 of 8 bytes by task 12844 on cpu 0:
[  232.883553][T12870]  mark_buffer_dirty_inode+0x18d/0x1c0
[  232.889055][T12870]  fat16_ent_put+0x4f/0x60
[  232.893509][T12870]  fat_ent_write+0x66/0xe0
[  232.897964][T12870]  fat_chain_add+0x15f/0x400
[  232.902572][T12870]  fat_get_block+0x46b/0x5e0
[  232.907183][T12870]  __block_write_begin_int+0x417/0xfa0
[  232.912673][T12870]  cont_write_begin+0x546/0x860
[  232.917557][T12870]  fat_write_begin+0x51/0xe0
[  232.922178][T12870]  cont_write_begin+0x18b/0x860
[  232.927053][T12870]  fat_write_begin+0x51/0xe0
[  232.931658][T12870]  generic_perform_write+0x1a8/0x4a0
[  232.936978][T12870]  __generic_file_write_iter+0xa1/0x120
[  232.942561][T12870]  generic_file_write_iter+0x77/0x1c0
[  232.947973][T12870]  do_iter_readv_writev+0x394/0x450
[  232.953210][T12870]  vfs_writev+0x2d4/0x880
[  232.957565][T12870]  __se_sys_pwritev2+0x100/0x1c0
[  232.962532][T12870]  __x64_sys_pwritev2+0x78/0x90
[  232.967412][T12870]  x64_sys_call+0x2afe/0x2dc0
[  232.972114][T12870]  do_syscall_64+0xc9/0x1c0
[  232.976656][T12870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.982577][T12870] 
[  232.984908][T12870] read to 0xffff88811ac00400 of 8 bytes by task 12870 on cpu 1:
[  232.992569][T12870]  mark_buffer_dirty_inode+0x96/0x1c0
[  232.997985][T12870]  fat16_ent_put+0x4f/0x60
[  233.002445][T12870]  fat_alloc_clusters+0x4c9/0xa80
[  233.007502][T12870]  fat_get_block+0x25c/0x5e0
[  233.012132][T12870]  __block_write_begin_int+0x417/0xfa0
[  233.017655][T12870]  cont_write_begin+0x546/0x860
[  233.022528][T12870]  fat_write_begin+0x51/0xe0
[  233.027132][T12870]  generic_perform_write+0x1a8/0x4a0
[  233.032455][T12870]  __generic_file_write_iter+0xa1/0x120
[  233.038058][T12870]  generic_file_write_iter+0x77/0x1c0
[  233.043456][T12870]  vfs_write+0x77f/0x920
[  233.047716][T12870]  ksys_write+0xe8/0x1b0
[  233.051994][T12870]  __x64_sys_write+0x42/0x50
[  233.056597][T12870]  x64_sys_call+0x287e/0x2dc0
[  233.061273][T12870]  do_syscall_64+0xc9/0x1c0
[  233.065775][T12870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.071755][T12870] 
[  233.074069][T12870] value changed: 0x0000000000000000 -> 0xffff888106723508
[  233.081167][T12870] 
[  233.083495][T12870] Reported by Kernel Concurrency Sanitizer on:
[  233.089635][T12870] CPU: 1 UID: 0 PID: 12870 Comm: syz.3.3561 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0
[  233.100391][T12870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  233.110458][T12870] ==================================================================
[  233.487489][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  234.528444][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  235.567475][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  236.607481][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  237.647489][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  238.687493][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  239.737452][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  240.767506][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  241.807479][    C1] IPVS: sed: UDP 224.0.0.2:0 - no destination available
[  242.847542][    C0] IPVS: sed: UDP 224.0.0.2:0 - no destination available