last executing test programs:

3.182167383s ago: executing program 4 (id=908):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ioctl$TIOCGSID(r0, 0x5429, 0x0)
prlimit64(0x0, 0x8, &(0x7f0000000340), &(0x7f0000000580))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
lsetxattr$security_selinux(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000005c0), &(0x7f0000000600)='system_u:object_r:update_modules_exec_t:s0\x00', 0x2b, 0x2)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x4000000)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000580)={0x28, 0x0, 0x0, @host}, 0x10)
connect$vsock_stream(r3, &(0x7f00000004c0)={0x28, 0x0, 0x0, @local}, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r2)
r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r6, r1, 0x0, 0xfffe83)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.278862222s ago: executing program 4 (id=921):
mknodat(0xffffffffffffff9c, 0x0, 0x21c0, 0x103)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0xc1c0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x54, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x938, @mcast2}, @in6={0xa, 0x4e20, 0x4, @loopback, 0xfa9e}, @in6={0xa, 0x4e22, 0x0, @local, 0x2}]}, &(0x7f0000000300)=0x10)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

2.074027642s ago: executing program 4 (id=930):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00'}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x4000844)

1.960987431s ago: executing program 1 (id=932):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
ioctl$TIOCGSID(r0, 0x5429, 0x0)
prlimit64(0x0, 0x8, &(0x7f0000000340), &(0x7f0000000580))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
lsetxattr$security_selinux(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000005c0), &(0x7f0000000600)='system_u:object_r:update_modules_exec_t:s0\x00', 0x2b, 0x2)
pwrite64(r1, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x4000000)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xb2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000580)={0x28, 0x0, 0x0, @host}, 0x10)
connect$vsock_stream(r3, &(0x7f00000004c0)={0x28, 0x0, 0x0, @local}, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r2)
r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r6, r1, 0x0, 0xfffe83)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f0000000380)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.935745181s ago: executing program 4 (id=933):
syz_io_uring_setup(0xe42, &(0x7f0000000140)={0x0, 0x2119, 0x1000}, &(0x7f0000000040), &(0x7f00000001c0))
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000380)={'ip6tnl0\x00', &(0x7f0000000440)={'ip6_vti0\x00', 0x0, 0x29, 0x8, 0xfd, 0x8, 0x39, @dev={0xfe, 0x80, '\x00', 0x40}, @private2, 0x80, 0x7800, 0x8, 0x4}})
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b00000005000000ff0f0000040000003c010b831ea88e84db86ea9f627af84f7917f775799e405c1e63b39a6b9d9e21b514c7ad528f413a407851ea288558ccc47f67a3eb3a73a1879fabc874c94039521d5abbf63bfe81160085f027"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000ac0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000800)={r4, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, &(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x48, &(0x7f0000000600)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000580), &(0x7f0000000680), 0x8, 0x67, 0x8, 0x8, &(0x7f00000006c0)}}, 0xfffffffffffffe94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="5184e96d25ed95b876d8e6da44c36786346372b3f41508ef88b3fb221214a41bbf71970d7f7cf8bd9273956e6d54ba44c4bae50100d867691bf729d1075f492111a20080fdeeb2a50f1602bba4ffbfa67a386054bf5a43efc79b4f8601d9a885215a25dd1e87d7b15f3839402d96e6f148f7518ab04ce04e"], 0x48)
r6 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00'})
socket$nl_route(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f0000000000), 0x4000000000001f2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

1.720722201s ago: executing program 2 (id=936):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0xf0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
syz_io_uring_setup(0xf3d, &(0x7f0000000480)={0x0, 0x1d, 0x10, 0x2, 0x1ee}, &(0x7f0000000340), &(0x7f0000000540))

1.705412291s ago: executing program 0 (id=937):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b000000000000"], 0x29)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000005000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f00000021c0)={0x2, 0x0, @local}, 0x10)

1.679658741s ago: executing program 0 (id=938):
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007000000000000009530ddfdc0c4258615a679ac05cc8c12ad45b1fccd6a33", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32, @ANYBLOB='\x00'/27], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x40400)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0x40a85323, &(0x7f0000000540)={{0x81, 0xc3}, 'port1\x00', 0x40, 0x110000, 0x8, 0x0, 0x9, 0x5, 0x2039, 0x0, 0x2, 0xef})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
syz_emit_ethernet(0x66, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000280)={'batadv0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r7, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="a7ab", @ANYRES16=0x0, @ANYBLOB="08002bbd7000ffdbdf2576000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x80)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x14)
unshare(0x22020600)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/cgroup\x00')
r10 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/cgroup\x00')
setns(r10, 0x0)
close_range(r9, 0xffffffffffffffff, 0x0)

1.672533331s ago: executing program 4 (id=939):
sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, &(0x7f0000000080)={&(0x7f0000000040)})
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x6, 0x13580, 0x0, 0x130}, &(0x7f0000000140), &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_enter(r1, 0x6b4d, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r1, 0x0, 0x3, 0x7, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000700)=ANY=[@ANYBLOB="fc00000010001307ffffffff00000000e0000001000000000000000000000000fc01000000000000000000000000000100000000000000000a0000e000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000030000000000000000000000000000000000000000000000b700000000000000000000080000000001000000000000000000000004000000000000000a00027f0000"], 0xfc}, 0x1, 0xe}, 0x4000050)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000340)={'pim6reg\x00', 0x4020})
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
sigaltstack(&(0x7f0000000400)={0x0, 0x80000003}, 0x0)
pipe(&(0x7f0000000040))
io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))

1.652013051s ago: executing program 2 (id=940):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX=r0, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYRES64=r0], &(0x7f0000000500)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r5 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
ioctl$PIO_UNIMAP(r5, 0x4b67, &(0x7f00000004c0)={0x2, &(0x7f0000000300)=[{0x3, 0x6}, {0x5, 0x3}]})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0x0, 0x0, 0x40000000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00'}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x4000844)

1.544911531s ago: executing program 2 (id=941):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a400020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r2}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)=@ipv6_newrule={0x1c, 0x20, 0x1, 0x0, 0x0, {0xa, 0x80, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10018}}, 0x1c}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@o_path={0x0, r3, 0x4000, r3}, 0x18)
r4 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000180)=ANY=[@ANYBLOB="e0000001000000ac1414aaed06de"], 0x20000)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000f00)={0x48, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x1c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}]}]}]}]}, 0x48}}, 0x0)

1.544214531s ago: executing program 4 (id=942):
syz_clone(0xc0001480, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, 0x0)
r0 = epoll_create1(0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001640)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000400)={0xa})
epoll_pwait(r0, &(0x7f0000000080)=[{}], 0x1, 0x80000000, 0x0, 0x0)
syz_read_part_table(0x59d, &(0x7f0000000000)="$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")
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWOBJ={0x24, 0x12, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x9}, @NFT_OBJECT_COUNTER=@NFTA_OBJ_DATA={0x10, 0x4, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffff9}]}}, @NFT_MSG_DELFLOWTABLE={0x150, 0x18, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFTA_FLOWTABLE_HOOK={0x13c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xa062}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x68, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syzkaller1\x00'}, {0x14, 0x1, 'macsec0\x00'}, {0x14, 0x1, 'veth1_to_team\x00'}, {0x14, 0x1, 'nr0\x00'}, {0x14, 0x1, 'pimreg0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0xb8, 0x3, 0x0, 0x1, [{0x14, 0x1, 'bond0\x00'}, {0x14, 0x1, 'vlan0\x00'}, {0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'veth0_virt_wifi\x00'}, {0x14, 0x1, 'virt_wifi0\x00'}, {0x14, 0x1, 'bridge_slave_0\x00'}, {0x14, 0x1, 'gre0\x00'}, {0x14, 0x1, 'hsr0\x00'}, {0x14, 0x1, 'geneve0\x00'}]}]}]}, @NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x7}}, @NFT_MSG_DELCHAIN={0xc0, 0x5, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HOOK={0x24, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xfa79e1b}, @NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x6cbdfb1f}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x4}]}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffd}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}, @NFTA_CHAIN_USERDATA={0x6e, 0xc, "fc137dcfc1fc9ea96188faacf4519a00fe557cd70355ca8f650e90409bb76fc199274f28bbd7d9c3b7f9cd5018804baba9c400446b4a0a947f7966a6d1c1745d36270af99a2795813a271d76a4cd4cf90241532f5e09edf780f29a8e062c2ad1a5435a54ecfb53746bcf"}]}], {0x14}}, 0x270}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f0000000280)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x1, 0x4fa, &(0x7f0000000dc0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r4, &(0x7f0000000140)='2', 0x1, 0x8000c61)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r8, 0x84, 0x75, &(0x7f0000000140)={0x0, 0x9}, &(0x7f00000002c0)=0x8)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000600)={[{@delalloc}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dax_always}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x100}}, {@bsdgroups}, {@user_xattr}, {@errors_continue}, {@dioread_nolock}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}, {@data_err_ignore}, {@noauto_da_alloc}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
ioperm(0x8, 0x2, 0x747)
ioprio_get$pid(0x2, 0x0)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0x1, 0x10, &(0x7f000005ffe4)={0xa, 0x4e23, 0xfffffbfa, @remote, 0xa}, 0x1c)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.461863191s ago: executing program 2 (id=943):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
semctl$GETZCNT(0xffffffffffffffff, 0x0, 0xf, 0x0) (fail_nth: 1)

1.461283891s ago: executing program 0 (id=944):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x61d2, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000c80)={0x2, 0x0, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r0, &(0x7f0000000040), 0x0, 0x45833af92e4b39ff, 0x0)

1.136585591s ago: executing program 3 (id=946):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x77, 0x141301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020"])
close_range(r0, r1, 0x0)

1.123615411s ago: executing program 1 (id=947):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000000)={0xa, &(0x7f0000000280)=[{0x50fb, 0x18, 0x0, 0x7}, {0x0, 0x3, 0x8, 0x1400}, {0x7fff, 0x9, 0x0, 0xffffffff}, {0x9, 0x8, 0x8, 0x2}, {0x7, 0x2, 0x7, 0x3}, {0x1, 0x2, 0x9, 0x5e}, {0x4, 0x8, 0x6, 0x7}, {0x3ff, 0x1, 0x6, 0xfffff000}, {0x3, 0xff, 0x9, 0x101}, {0x0, 0x5, 0x6, 0x8001}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000180)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = fcntl$dupfd(r1, 0x406, r2)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000500)={0x0}, 0x1, 0x0, 0x0, 0x4004000}, 0x20040000)

1.08099532s ago: executing program 2 (id=948):
openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x401d031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3, &(0x7f0000000000)=0x7, 0x7, 0x0)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x3)
unshare(0x24060400)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000900)='kfree\x00', r0, 0x0, 0x6}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1, 0x40, 0x6, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r1, 0xfffffff9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x7, 0x80000}, {0xe}, {}, {}, {0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x10}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, {}, {0x4, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x1}, {}, {0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x2, 0xfffffffe, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x77}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x4000000}, {0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x400000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4000000, 0x10000000}, {0x0, 0x0, 0x7f, 0x0, 0x0, 0x400000}, {0x0, 0x0, 0x200}, {}, {}, {0x0, 0x800000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x68000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x6}, {}, {}, {0x0, 0xfffffffd, 0x0, 0x4}, {0xfffffffc}, {}, {}, {0xe}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x0, 0x3}, {}, {0x2, 0x0, 0x0, 0x0, 0x0, 0x40}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {}, {0x0, 0x0, 0x0, 0x0, 0xe}, {0x0, 0x870b, 0x0, 0x0, 0x0, 0xfffffffe}, {0x10000000}, {}, {0x0, 0x0, 0x2}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1, 0x1}, {}, {}, {}, {0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x3}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x7, &(0x7f0000000f80)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a31000000002000048014000300"], 0xd4}}, 0x0)

1.049981931s ago: executing program 0 (id=949):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b000000000000"], 0x29)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000005000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f00000021c0)={0x2, 0x0, @local}, 0x10)

1.043432071s ago: executing program 3 (id=950):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b70400008f2000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_io_uring_setup(0xf3d, &(0x7f0000000480)={0x0, 0x1d, 0x10, 0x2, 0x1ee}, &(0x7f0000000340), &(0x7f0000000540))

997.062891ms ago: executing program 1 (id=951):
sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, &(0x7f0000000080)={&(0x7f0000000040)})
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x6, 0x13580, 0x0, 0x130}, &(0x7f0000000140), &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000020017e9c0000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_enter(r1, 0x6b4d, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r1, 0x0, 0x3, 0x7, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000700)=ANY=[@ANYBLOB="fc00000010001307ffffffff00000000e0000001000000000000000000000000fc01000000000000000000000000000100000000000000000a0000e000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000030000000000000000000000000000000000000000000000b700000000000000000000080000000001000000000000000000000004000000000000000a00027f0000"], 0xfc}, 0x1, 0xe}, 0x4000050)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000340)={'pim6reg\x00', 0x4020})
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
sigaltstack(&(0x7f0000000400)={0x0, 0x80000003}, 0x0)
pipe(&(0x7f0000000040))
io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))

955.9721ms ago: executing program 3 (id=952):
sigaltstack(&(0x7f0000000000)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, &(0x7f0000000080)={&(0x7f0000000040)})
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x6, 0x13580, 0x0, 0x130}, &(0x7f0000000140), &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_enter(r1, 0x6b4d, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r1, 0x0, 0x3, 0x7, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000700)=ANY=[@ANYBLOB="fc00000010001307ffffffff00000000e0000001000000000000000000000000fc01000000000000000000000000000100000000000000000a0000e000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000030000000000000000000000000000000000000000000000b700000000000000000000080000000001000000000000000000000004000000000000000a00027f0000"], 0xfc}, 0x1, 0xe}, 0x4000050)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000340)={'pim6reg\x00', 0x4020})
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
sigaltstack(&(0x7f0000000400)={0x0, 0x80000003}, 0x0)
pipe(&(0x7f0000000040))
io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))

931.58121ms ago: executing program 0 (id=953):
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000001, 0x208, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd77, 0x4, @perf_config_ext, 0x0, 0xc8, 0x3, 0x0, 0x0, 0x80400000}, 0x0, 0xf, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x7, &(0x7f0000001600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000040002850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
write$cgroup_subtree(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce8102033200fe08000e7f0061cd915a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x28, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_udp_SIOCINQ(r5, 0x541b, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
arch_prctl$ARCH_SET_CPUID(0x1012, 0x1)

928.39459ms ago: executing program 1 (id=954):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x4300, &(0x7f0000000380)={0x0, 0x0, 0x10100, 0x0, 0xd0}, &(0x7f0000000280)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_SENDMSG={0x9, 0x18, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1}) (async, rerun: 64)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='*'], 0x118) (async, rerun: 64)
prctl$PR_SET_NAME(0xf, &(0x7f0000001dc0)='+}[@\x00#\xb8\xcd\xcb\xd6:)\x8f\xfa\xff|\x1e\x97\x8e7?3g/2\x1d\x01\x04\x00\x00\x00\x00\x00\x00\xd8/\xb4KUC\x90\xff\xb6\xf3Q\a>, \xe1\x11\n\xa7\xfe\x7fEH}\x01\x99+\xf5\xc7\x99\x83\xb6\xde8]\x89\xff\xe1\xb4B\xf6\xa6\x14Xz:\x86\xe0\x1b\xb4$\xff\x8e\x04O\xd9\x02w\\\xc9<M\xc2|\x06\xe9v\xda^\x95U)\x87t.fu\xd8}P\xc5\xa7v#\xd3F\xe1\xd2\xbfj\xd3\x90f\f:St4\xde\xd9\x00\xd0\xa374\xa1XI\x9a\x01\xaezHM\x01\x00\x87\xb0\xe6\x8c\b\xe56\x02\x16\xf1\xd9\xc8\xa9\xb1P.\a\x9f\x96\x99\xb1?\xe2\xd5\xb7G\x06\xb9\xa0>\xad\xe7\x9d\xf5t\x93\xab\xbf.n\x8d\x7f6OY\x10\x00\xec\xfbt\xec\xe70c\x8e:S\x98\xa1e\xf0T\x8b\xaa\xaf,G\xd0')
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) (async)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) (async)
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bind$rds(0xffffffffffffffff, 0x0, 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x8205, &(0x7f0000000300)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x992}}, {@data_err_abort}, {@minixdf}, {@errors_remount}, {@abort}, {@noblock_validity}, {@resuid}, {@journal_dev={'journal_dev', 0x3d, 0xf35}}, {@jqfmt_vfsv0}]}, 0x1, 0x618, &(0x7f0000000640)="$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") (async)
r7 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC_PROXY(r7, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x4e23, 0x0, @mcast2}, {0xa, 0x0, 0x0, @mcast1}, 0x0, {[0x9c, 0x4]}}, 0x5c)

888.48756ms ago: executing program 3 (id=955):
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)={0x1c, r3, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x32}, {@val={0x8, 0x117, 0x32}, @void, @void}}}, 0x1c}}, 0x4000020)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WIPHY(r5, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010325bd70000000000001000000080007000000000008000300", @ANYRES32=0x0, @ANYBLOB="010400"/12], 0x30}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r5)
getpid()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) (async)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
clock_gettime(0x0, 0x0) (async)
clock_gettime(0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1b, 0x0, 0xaa77, 0x8000, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x68)
socket$inet6(0xa, 0x800, 0x95) (async)
socket$inet6(0xa, 0x800, 0x95)
iopl(0x8) (async)
iopl(0x8)
syz_clone(0xc0001480, 0x0, 0x20, 0x0, 0x0, 0x0)

804.85693ms ago: executing program 1 (id=956):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000400)=@ll={0x11, 0x6, 0x0, 0x1, 0x9d, 0x6, @local}, 0x80, 0x0, 0x0, 0x0, 0x1a}, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x9, &(0x7f0000000380), 0x98)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0xb, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200002000000000000000000000008500000027000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r5, 0x0, 0x30, 0x0, &(0x7f0000000280)="307478e0780039053fbb226fc378397d46864f0a7343bf787e3c07763f00ad60e0504a8c2336d9e18c561c61f60b4049", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x1000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7e150a0b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x10000, 0x5d2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e98263b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2d1, 0x0, 0x0, 0xb2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x7, 0xc3f3, 0x1, 0x0, 0x800, 0x8000009, 0x800, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffe, 0xc, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000000}, {0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}}, 0x0)
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r4, 0x0, {0x2, 0xf0, 0x3}, 0xfd}, 0x18)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xdece, 0x0, 0x10000, 0xfffffffa}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$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")
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYRES16=r7, @ANYBLOB], 0x14}}, 0x4000054)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r8, 0x40305839, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1000})
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r9, &(0x7f00000001c0)=[{&(0x7f0000000080)}], 0x1, 0xe7b, 0x0, 0x0)
r10 = socket$packet(0x11, 0xa, 0x300)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000080000000000000000000040000002bc2aaab0c9ead3b5798ce19e723818805426e467f82f4f8d8d75bc1224a0a0e25e68cd8c4e35b2975beef4883b87f6cb548f64d71ae3d7e4068f1cbe6018e04f34777480f4be4", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x17d2, @void, @value}, 0x94)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r12}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setuid(0x0)
setsockopt$SO_ATTACH_FILTER(r10, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x1, 0xfffff028}, {0x80000006}]}, 0x10)

802.062871ms ago: executing program 2 (id=957):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$inet6(0xa, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002100)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='sched_switch\x00', r3}, 0x18)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
unshare(0x64000600)

734.40279ms ago: executing program 3 (id=958):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) (async)
r2 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r3 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r3, r2, 0x0, 0x80000000)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/image_size', 0x4000, 0xc3)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4, {0x1}}, './file0\x00'}) (async)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000340)={[{@nojournal_checksum}, {}]}, 0x0, 0x4ee, &(0x7f0000000c40)="$eJzs3c9vVF0ZAOD3Tju0XxkoKAs1KogoGsL0B9AQXAgbjSEkRuLKBdR2aJrOME2nRVpZlKV7E0lc6Z/gzoUJKxfu3OnODS5MUImGmrgYc+9c2qHt0PrRdmDmeZLbe885w7znzHDOmXtgegLoW+ciYj0ijkXE/YgYzfOT/IibrSN93OtXT2Y2Xj2ZSaLZvPuPJCtP86Ltz6SO5885HBE/+G7Ej5OdcRurawvT1WplKU+PLdcWxxqra5fnC3nO5NTE1Pj1K9cmD6ytZ2u/efmd+ds//N1vv/Tij+vf/GlardLPTmRl7e04SK2mF6PUljcYEbcPI1iXDOZ/f/j4pL3tMxFxPuv/ozGQvZsAQC9rNkejOdqeBgB6XXr/X4qkUM7XAkpRKJTLrTW8MzFSqNYby5dG6ysPZyNbwzoVxcKD+WplPF8rPBXFJE1PZNdb6clt6SsRcToifj70SZYuz9Srs9384AMAfez4tvn/30Ot+R8A6HHD3a4AAHDkzP8A0H/M/wDQf/6P+d+3AwGgR7j/B4D+Y/4HgP6z5/z/9GjqAQAcie/fuZMezY3891/PPlpd+Vbp0eXZSmOhXFuZKc/UlxbLc/X6XLVSnmk293q+ar2+OHF1M9lYXbtXq688XL43X5ueq9yrFA+5PQDA3k6fff7nJCLWb3ySHdG2l4O5GnpbodsVALpmoNsVALrG93mgf+3jHt8yAPS4XbbofUvH/yL0zOav8LG6+Pld1v/zzm7ih95m/R/616db///2gdcDOHrW/6F/NZuJPf8BoM9Y4wfe69//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoE+VsiMplLO9wNfTn4VyOeJERJyKYvJgvloZj4iTEfGnoeJQmp7odqUBgPdU+FuS7/91cfRCaXvpseQ/Q9k5In7yy7u/eDy9vLw0keb/czN/+VmeP3msGw0AANrd3JnVmqfzc9uN/OtXT2beHEdZxZe3WpuLpnE38qNVMhiD2Xk4ihEx8q8kT7ekn1cGDiD++tOI+NxW+x+3RShlayCtnU+3x09jnziE+Fuv//b4hbfiF7Ky9FzMXovPHkBdoN88v9UaJ/O+l3axvP8V4lx23r3/D2cj1Pt7M/5t7Bj/Cpvj38CO+EnW589tpt9dk5dXf/+9HZnN0VbZ04gvDO4WP9mMn3QYfy/ss41/+eKXz3cqa/4q4mLsHr+llg2zY8u1xbHG6trl+dr0XGWu8nBycmpiavz6lWuTY9kadevnH3aL8fcbl052ip+2f6RD/OE92v+1fbb/1/+9/6OvvCP+N766+/t/5h3x0znx6/uMPz1ys+P23Wn82Q7t3+v9v7TP+C/+uja7z4cCAEegsbq2MF2tVpb2uEg/a+71GBcf50WsR3wA1XDxQV10e2QCDttWp+92TQAAAAAAAAAAAAAAgE4aq2sLQ3G4XyfqdhsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoXf8LAAD//xDLzvs=") (async)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r5, &(0x7f00000026c0)={&(0x7f0000002140)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000024c0)=[@ip_retopts={{0x24, 0x0, 0x7, {[@rr={0x7, 0x13, 0x13, [@private=0xa010101, @remote, @multicast1, @loopback]}]}}}], 0x28}, 0x804) (async)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) (async)
sendmsg$AUDIT_SIGNAL_INFO(r4, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x10, 0x3f2, 0x300, 0x70bd26, 0x25dfdbfc, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)

302.98196ms ago: executing program 1 (id=959):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000400)=@ll={0x11, 0x6, 0x0, 0x1, 0x9d, 0x6, @local}, 0x80, 0x0, 0x0, 0x0, 0x1a}, 0x0)
r1 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r1, 0x84, 0x9, &(0x7f0000000380), 0x98)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x1000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7e150a0b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x10000, 0x5d2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e98263b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2d1, 0x0, 0x0, 0xb2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x7, 0xc3f3, 0x1, 0x0, 0x800, 0x9, 0x800, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0xb2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000000}, {0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}}, 0x0) (fail_nth: 1)
bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r4, 0x0, {0x2, 0xf0, 0x3}, 0xfd}, 0x18)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xdece, 0x0, 0x10000, 0xfffffffa}, 0x10)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$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")
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYRES16=r6, @ANYBLOB], 0x14}}, 0x4000054)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r7, 0x40305839, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1000})
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r8, &(0x7f00000001c0)=[{&(0x7f0000000080)}], 0x1, 0xe7b, 0x0, 0x0)
r9 = socket$packet(0x11, 0xa, 0x300)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r11}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setuid(0x0)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x1, 0xfffff028}, {0x80000006}]}, 0x10)
write(r0, &(0x7f0000000000)="1c0000001a005f1114f9f40700090100000000000001000100000000", 0x1c)

29.77236ms ago: executing program 3 (id=960):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x61d2, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000c80)={0x2, 0x0, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmmsg(r0, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000040), 0x0, 0x45833af92e4b39ff, 0x0)

0s ago: executing program 0 (id=961):
r0 = openat$random(0xffffffffffffff9c, &(0x7f00000007c0), 0x202, 0x0)
write$binfmt_script(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

967690][ T4204] loop0: detected capacity change from 0 to 2048
[   52.044504][ T4215] netlink: 4 bytes leftover after parsing attributes in process `syz.4.214'.
[   52.080014][ T4204] Alternate GPT is invalid, using primary GPT.
[   52.086516][ T4204]  loop0: p2 p3 p7
[   52.154153][ T4197] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[   52.181028][ T4221] loop3: detected capacity change from 0 to 2048
[   52.268764][ T4221] Alternate GPT is invalid, using primary GPT.
[   52.275093][ T4221]  loop3: p2 p3 p7
[   52.283642][ T4224] loop2: detected capacity change from 0 to 164
[   52.310857][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   52.328858][ T3288] udevd[3288]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   52.339816][ T4224] ISOFS: unable to read i-node block
[   52.345356][ T4224] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   52.387849][ T2998] Alternate GPT is invalid, using primary GPT.
[   52.394244][ T2998]  loop3: p2 p3 p7
[   52.402180][ T4224] netlink: 'syz.2.218': attribute type 13 has an invalid length.
[   52.489644][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   52.504657][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   52.506125][ T3475] udevd[3475]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   52.571010][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   52.583062][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   52.598723][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   52.687925][ T4210] loop3: detected capacity change from 0 to 1024
[   52.716034][ T4210] journal_path: Non-blockdev passed as './file1'
[   52.722493][ T4210] EXT4-fs: error: could not find journal device path
[   52.762270][ T4249] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   52.771736][ T4249] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   52.825167][ T4251] SELinux: security_context_str_to_sid (J) failed with errno=-22
[   53.018552][ T4268] loop1: detected capacity change from 0 to 1024
[   53.050513][ T4268] EXT4-fs: Ignoring removed nobh option
[   53.056161][ T4268] EXT4-fs: Ignoring removed nomblk_io_submit option
[   53.063294][ T4268] /dev/loop1: Can't open blockdev
[   53.139625][   T29] kauditd_printk_skb: 574 callbacks suppressed
[   53.139719][   T29] audit: type=1326 audit(1736372453.169:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.169671][   T29] audit: type=1326 audit(1736372453.169:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.193238][   T29] audit: type=1326 audit(1736372453.169:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.216801][   T29] audit: type=1326 audit(1736372453.169:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.240220][   T29] audit: type=1326 audit(1736372453.169:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.263625][   T29] audit: type=1326 audit(1736372453.169:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.287185][   T29] audit: type=1326 audit(1736372453.169:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.310622][   T29] audit: type=1326 audit(1736372453.169:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   53.313470][ T4275] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.334284][   T29] audit: type=1326 audit(1736372453.169:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f463a0c4690 code=0x7ffc0000
[   53.354275][ T4270] loop3: detected capacity change from 0 to 2048
[   53.365897][   T29] audit: type=1326 audit(1736372453.169:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4274 comm="syz.1.238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f463a0c4690 code=0x7ffc0000
[   53.396366][ T4275] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.417246][ T4279] 9pnet_fd: Insufficient options for proto=fd
[   53.445956][ T4282] loop0: detected capacity change from 0 to 128
[   53.455421][ T4282] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.470116][ T4282] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   53.493555][ T4270] Alternate GPT is invalid, using primary GPT.
[   53.508449][ T4270]  loop3: p2 p3 p7
[   53.541180][ T2998] Alternate GPT is invalid, using primary GPT.
[   53.547656][ T2998]  loop3: p2 p3 p7
[   53.571495][ T4270] loop3: detected capacity change from 0 to 1024
[   53.584281][ T4270] journal_path: Non-blockdev passed as './file1'
[   53.590900][ T4270] EXT4-fs: error: could not find journal device path
[   53.620869][ T4292] loop4: detected capacity change from 0 to 128
[   53.631767][ T4292] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   53.645206][ T4292] ext4 filesystem being mounted at /44/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   53.879731][ T4300] wireguard0: entered promiscuous mode
[   53.885295][ T4300] wireguard0: entered allmulticast mode
[   53.987076][ T4305] wireguard0: entered promiscuous mode
[   53.992630][ T4305] wireguard0: entered allmulticast mode
[   54.007542][ T4308] __nla_validate_parse: 1 callbacks suppressed
[   54.007572][ T4308] netlink: 12 bytes leftover after parsing attributes in process `syz.3.249'.
[   54.105392][ T4322] netlink: 'syz.3.254': attribute type 1 has an invalid length.
[   54.167855][ T4326] loop3: detected capacity change from 0 to 512
[   54.188482][ T4326] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.207513][ T4326] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.240484][ T3295] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.274108][ T4330] loop1: detected capacity change from 0 to 2048
[   54.305846][ T3298] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   54.332369][ T4330] Alternate GPT is invalid, using primary GPT.
[   54.339036][ T4330]  loop1: p2 p3 p7
[   54.393917][ T4330] loop1: detected capacity change from 0 to 1024
[   54.401883][ T4330] journal_path: Non-blockdev passed as './file1'
[   54.408327][ T4330] EXT4-fs: error: could not find journal device path
[   54.437586][ T4336] loop3: detected capacity change from 0 to 2048
[   54.458779][ T4336] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.487486][ T3301] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   54.495503][ T4340] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.507054][ T4340] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.520610][ T4336] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.018626][ T4367] netlink: 'syz.2.269': attribute type 1 has an invalid length.
[   55.018943][ T4369] netlink: 12 bytes leftover after parsing attributes in process `syz.1.270'.
[   55.089362][ T4375] loop2: detected capacity change from 0 to 512
[   55.098113][ T4374] loop1: detected capacity change from 0 to 1764
[   55.108057][ T4374] ISOFS: unable to read i-node block
[   55.113378][ T4374] isofs_fill_super: get root inode failed
[   55.165783][ T4375] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.185081][ T4375] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.322218][ T4375] syz.2.269 (4375) used greatest stack depth: 10312 bytes left
[   55.406222][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.535885][ T4388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.588820][ T4388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.692983][ T3357] IPVS: starting estimator thread 0...
[   55.787054][ T4397] IPVS: using max 2448 ests per chain, 122400 per kthread
[   55.790257][ T4405] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.808778][ T4405] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.890762][ T4403] loop2: detected capacity change from 0 to 2048
[   55.975715][ T4410] netlink: 12 bytes leftover after parsing attributes in process `syz.0.283'.
[   55.977562][ T4403] Alternate GPT is invalid, using primary GPT.
[   55.991400][ T4403]  loop2: p2 p3 p7
[   56.079588][ T4414] loop4: detected capacity change from 0 to 1764
[   56.087197][ T4414] ISOFS: unable to read i-node block
[   56.092541][ T4414] isofs_fill_super: get root inode failed
[   56.259839][ T4427] loop3: detected capacity change from 0 to 128
[   56.283760][ T4430] netlink: 'syz.4.286': attribute type 21 has an invalid length.
[   56.292427][ T4430] netlink: 132 bytes leftover after parsing attributes in process `syz.4.286'.
[   56.304373][ T4431] wireguard0: entered promiscuous mode
[   56.310110][ T4431] wireguard0: entered allmulticast mode
[   56.317357][ T4427] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   56.332893][ T4427] ext4 filesystem being mounted at /65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   56.355050][ T4436] loop4: detected capacity change from 0 to 1024
[   56.383603][ T4436] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   56.393787][ T4436] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   56.404215][ T4436] EXT4-fs (loop4): invalid journal inode
[   56.410134][ T4436] EXT4-fs (loop4): can't get journal size
[   56.410249][ T4438] wireguard0: entered promiscuous mode
[   56.421411][ T4438] wireguard0: entered allmulticast mode
[   56.427583][ T4436] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   56.539222][ T4436] netlink: 72 bytes leftover after parsing attributes in process `syz.4.290'.
[   56.597068][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.673212][ T4452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.691714][ T4452] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.701122][ T4450] loop2: detected capacity change from 0 to 1764
[   56.720545][ T4450] ISOFS: unable to read i-node block
[   56.725893][ T4450] isofs_fill_super: get root inode failed
[   56.938472][ T4470] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.947134][ T4470] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.997352][ T4477] loop4: detected capacity change from 0 to 1024
[   57.012513][ T4477] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   57.022488][ T4477] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   57.033246][ T4477] EXT4-fs (loop4): invalid journal inode
[   57.039187][ T4477] EXT4-fs (loop4): can't get journal size
[   57.046035][ T4477] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   57.110586][ T3295] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   57.155157][ T4480] loop3: detected capacity change from 0 to 128
[   57.166254][ T4477] netlink: 72 bytes leftover after parsing attributes in process `syz.4.304'.
[   57.177230][ T4480] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   57.190689][ T4480] ext4 filesystem being mounted at /66/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   57.228224][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.380774][ T4493] FAULT_INJECTION: forcing a failure.
[   57.380774][ T4493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.394104][ T4493] CPU: 0 UID: 0 PID: 4493 Comm: syz.1.309 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   57.404907][ T4493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.414973][ T4493] Call Trace:
[   57.418269][ T4493]  <TASK>
[   57.421220][ T4493]  dump_stack_lvl+0xf2/0x150
[   57.425901][ T4493]  dump_stack+0x15/0x1a
[   57.430099][ T4493]  should_fail_ex+0x223/0x230
[   57.434866][ T4493]  should_fail+0xb/0x10
[   57.439097][ T4493]  should_fail_usercopy+0x1a/0x20
[   57.444196][ T4493]  _copy_from_iter+0xd5/0xd00
[   57.449033][ T4493]  ? __build_skb_around+0x196/0x1f0
[   57.454261][ T4493]  ? __virt_addr_valid+0x1ed/0x250
[   57.459401][ T4493]  ? __check_object_size+0x364/0x520
[   57.464757][ T4493]  pppol2tp_sendmsg+0x303/0x440
[   57.469640][ T4493]  ? __pfx_pppol2tp_sendmsg+0x10/0x10
[   57.475030][ T4493]  __sock_sendmsg+0x140/0x180
[   57.479792][ T4493]  sock_write_iter+0x15e/0x1a0
[   57.484694][ T4493]  do_iter_readv_writev+0x394/0x450
[   57.489921][ T4493]  vfs_writev+0x2d4/0x880
[   57.494312][ T4493]  ? proc_fail_nth_write+0x12a/0x150
[   57.499693][ T4493]  do_writev+0xf4/0x220
[   57.503866][ T4493]  __x64_sys_writev+0x45/0x50
[   57.508575][ T4493]  x64_sys_call+0x1fab/0x2dc0
[   57.513278][ T4493]  do_syscall_64+0xc9/0x1c0
[   57.517870][ T4493]  ? clear_bhb_loop+0x55/0xb0
[   57.522566][ T4493]  ? clear_bhb_loop+0x55/0xb0
[   57.527319][ T4493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.533347][ T4493] RIP: 0033:0x7f463a0c5d29
[   57.537784][ T4493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.557454][ T4493] RSP: 002b:00007f4638737038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   57.566011][ T4493] RAX: ffffffffffffffda RBX: 00007f463a2b5fa0 RCX: 00007f463a0c5d29
[   57.574048][ T4493] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000006
[   57.582038][ T4493] RBP: 00007f4638737090 R08: 0000000000000000 R09: 0000000000000000
[   57.590023][ T4493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.598008][ T4493] R13: 0000000000000000 R14: 00007f463a2b5fa0 R15: 00007ffe70c67928
[   57.606101][ T4493]  </TASK>
[   57.626351][ T4497] loop4: detected capacity change from 0 to 2048
[   57.687878][ T4501] loop1: detected capacity change from 0 to 2048
[   57.705705][ T4496] loop0: detected capacity change from 0 to 1764
[   57.713553][ T4502] netlink: 4 bytes leftover after parsing attributes in process `syz.2.311'.
[   57.733654][ T4496] ISOFS: unable to read i-node block
[   57.739022][ T4496] isofs_fill_super: get root inode failed
[   57.752402][ T4497] Alternate GPT is invalid, using primary GPT.
[   57.756430][ T4501] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.758774][ T4497]  loop4: p2 p3 p7
[   57.803239][ T4497] loop4: detected capacity change from 0 to 1024
[   57.814908][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   57.829489][ T3475] udevd[3475]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[   57.866773][ T4497] journal_path: Non-blockdev passed as './file1'
[   57.873342][ T4497] EXT4-fs: error: could not find journal device path
[   57.893594][ T4501] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.999625][ T4515] loop0: detected capacity change from 0 to 1024
[   58.016852][ T4515] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   58.028055][ T3295] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   58.037236][ T4515] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   58.056852][ T4515] EXT4-fs (loop0): invalid journal inode
[   58.074348][ T4515] EXT4-fs (loop0): can't get journal size
[   58.091637][ T4515] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   58.147137][   T29] kauditd_printk_skb: 709 callbacks suppressed
[   58.147151][   T29] audit: type=1326 audit(1736372458.179:2613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   58.176838][   T29] audit: type=1326 audit(1736372458.179:2614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   58.176881][   T29] audit: type=1326 audit(1736372458.179:2615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   58.176911][   T29] audit: type=1326 audit(1736372458.179:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   58.177024][   T29] audit: type=1326 audit(1736372458.179:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   58.177090][   T29] audit: type=1326 audit(1736372458.179:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb88ed87c47 code=0x7ffc0000
[   58.177122][   T29] audit: type=1326 audit(1736372458.179:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fb88ed87bbc code=0x7ffc0000
[   58.177153][   T29] audit: type=1326 audit(1736372458.189:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fb88ed87af4 code=0x7ffc0000
[   58.177181][   T29] audit: type=1326 audit(1736372458.189:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb88ed8498a code=0x7ffc0000
[   58.181381][   T29] audit: type=1326 audit(1736372458.189:2622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4529 comm="syz.3.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   58.231682][ T4530] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   58.417017][ T4530] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   58.464085][ T4531] netlink: 72 bytes leftover after parsing attributes in process `syz.0.316'.
[   58.548582][ T4542] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.323'.
[   58.583921][ T4544] loop4: detected capacity change from 0 to 1764
[   58.632356][ T4544] ISOFS: unable to read i-node block
[   58.637746][ T4544] isofs_fill_super: get root inode failed
[   58.705448][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.819100][ T4551] netlink: 4 bytes leftover after parsing attributes in process `syz.2.325'.
[   58.857751][ T4556] syz.0.328[4556] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.857815][ T4556] syz.0.328[4556] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.874940][ T4556] syz.0.328[4556] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   58.906808][ T4556] loop0: detected capacity change from 0 to 256
[   59.061183][ T4571] netlink: 12 bytes leftover after parsing attributes in process `syz.2.332'.
[   59.082189][ T4576] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.092774][ T4576] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.361963][ T4599] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'.
[   59.373386][ T4596] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.387944][ T4596] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.420077][ T4601] netlink: 96 bytes leftover after parsing attributes in process `syz.3.344'.
[   59.430255][ T4601] netlink: 8 bytes leftover after parsing attributes in process `syz.3.344'.
[   59.446349][ T4601] bond1: entered promiscuous mode
[   59.451467][ T4601] bond1: entered allmulticast mode
[   59.456714][ T4601] 8021q: adding VLAN 0 to HW filter on device bond1
[   59.498041][ T4601] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   59.633321][ T4607] netlink: 12 bytes leftover after parsing attributes in process `syz.1.346'.
[   59.693479][ T4610] loop3: detected capacity change from 0 to 2048
[   59.795430][ T4612] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   59.832053][ T4612] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   59.963086][ T4629] syz.4.352[4629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.963202][ T4629] syz.4.352[4629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   59.997085][ T4629] syz.4.352[4629] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   60.149638][ T4639] netlink: 4 bytes leftover after parsing attributes in process `syz.2.354'.
[   60.189606][ T4641] wireguard1: entered promiscuous mode
[   60.195133][ T4641] wireguard1: entered allmulticast mode
[   60.258711][ T4648] netlink: 96 bytes leftover after parsing attributes in process `syz.3.358'.
[   60.299041][ T4648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.358'.
[   60.343408][ T4648] bond2: entered promiscuous mode
[   60.348539][ T4648] bond2: entered allmulticast mode
[   60.366936][ T4648] 8021q: adding VLAN 0 to HW filter on device bond2
[   60.441340][ T4648] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   60.500546][ T4656] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   60.517943][ T4656] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.587449][ T4662] loop2: detected capacity change from 0 to 128
[   60.609068][ T4662] ext4 filesystem being mounted at /81/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   60.907784][ T4675] FAULT_INJECTION: forcing a failure.
[   60.907784][ T4675] name failslab, interval 1, probability 0, space 0, times 0
[   60.920488][ T4675] CPU: 1 UID: 0 PID: 4675 Comm: syz.4.367 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   60.931105][ T4675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.941249][ T4675] Call Trace:
[   60.944571][ T4675]  <TASK>
[   60.947524][ T4675]  dump_stack_lvl+0xf2/0x150
[   60.952225][ T4675]  dump_stack+0x15/0x1a
[   60.956428][ T4675]  should_fail_ex+0x223/0x230
[   60.961123][ T4675]  should_failslab+0x8f/0xb0
[   60.965733][ T4675]  kmem_cache_alloc_node_noprof+0x59/0x320
[   60.971567][ T4675]  ? __alloc_skb+0x10b/0x310
[   60.976198][ T4675]  __alloc_skb+0x10b/0x310
[   60.980631][ T4675]  tipc_msg_build+0xc6/0x820
[   60.985293][ T4675]  ? __rcu_read_unlock+0x4e/0x70
[   60.990252][ T4675]  ? tipc_node_find+0xf0/0x1d0
[   60.995102][ T4675]  __tipc_sendmsg+0x14f7/0x1c40
[   60.999988][ T4675]  ? __pfx_woken_wake_function+0x10/0x10
[   61.005654][ T4675]  ? lock_sock_nested+0x10f/0x140
[   61.010711][ T4675]  ? __pfx_tipc_sendmsg+0x10/0x10
[   61.015787][ T4675]  tipc_sendmsg+0x3e/0x60
[   61.020139][ T4675]  __sock_sendmsg+0x140/0x180
[   61.024855][ T4675]  ____sys_sendmsg+0x312/0x410
[   61.029642][ T4675]  __sys_sendmsg+0x19d/0x230
[   61.034268][ T4675]  __x64_sys_sendmsg+0x46/0x50
[   61.039059][ T4675]  x64_sys_call+0x2734/0x2dc0
[   61.043758][ T4675]  do_syscall_64+0xc9/0x1c0
[   61.048284][ T4675]  ? clear_bhb_loop+0x55/0xb0
[   61.052981][ T4675]  ? clear_bhb_loop+0x55/0xb0
[   61.057718][ T4675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.063642][ T4675] RIP: 0033:0x7f4a5c075d29
[   61.068085][ T4675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.087715][ T4675] RSP: 002b:00007f4a5a6e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.096159][ T4675] RAX: ffffffffffffffda RBX: 00007f4a5c265fa0 RCX: 00007f4a5c075d29
[   61.104145][ T4675] RDX: 0000000000000000 RSI: 0000000020004440 RDI: 0000000000000006
[   61.112127][ T4675] RBP: 00007f4a5a6e7090 R08: 0000000000000000 R09: 0000000000000000
[   61.120244][ T4675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.128261][ T4675] R13: 0000000000000000 R14: 00007f4a5c265fa0 R15: 00007ffca5fc3548
[   61.136258][ T4675]  </TASK>
[   61.294800][ T4680] loop4: detected capacity change from 0 to 732
[   61.691760][ T4702] netlink: 28 bytes leftover after parsing attributes in process `syz.2.378'.
[   61.700776][ T4702] netlink: 28 bytes leftover after parsing attributes in process `syz.2.378'.
[   61.751442][ T4707] wireguard1: entered promiscuous mode
[   61.757505][ T4707] wireguard1: entered allmulticast mode
[   62.255204][ T4722] bridge1: entered promiscuous mode
[   62.586164][ T4742] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.600662][ T4742] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   64.142896][ T4767] wireguard0: entered promiscuous mode
[   64.148476][ T4767] wireguard0: entered allmulticast mode
[   64.485197][ T4783] wireguard0: entered promiscuous mode
[   64.490894][ T4783] wireguard0: entered allmulticast mode
[   64.841531][   T29] kauditd_printk_skb: 621 callbacks suppressed
[   64.841573][   T29] audit: type=1326 audit(1736372464.879:3244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   64.892760][   T29] audit: type=1326 audit(1736372464.909:3245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   64.916748][   T29] audit: type=1326 audit(1736372464.909:3246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   64.940137][   T29] audit: type=1326 audit(1736372464.909:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   64.963666][   T29] audit: type=1326 audit(1736372464.909:3248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   64.987360][   T29] audit: type=1326 audit(1736372464.909:3249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   65.010795][   T29] audit: type=1326 audit(1736372464.909:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   65.034227][   T29] audit: type=1326 audit(1736372464.909:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   65.057680][   T29] audit: type=1326 audit(1736372464.909:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   65.081109][   T29] audit: type=1326 audit(1736372464.909:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.4.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   65.096422][ T4800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   65.162262][ T4800] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   65.204445][ T4813] loop2: detected capacity change from 0 to 732
[   65.358376][ T4828] __nla_validate_parse: 2 callbacks suppressed
[   65.358391][ T4828] netlink: 96 bytes leftover after parsing attributes in process `syz.0.421'.
[   65.403446][ T4828] netlink: 8 bytes leftover after parsing attributes in process `syz.0.421'.
[   65.474973][ T4828] bond1: entered promiscuous mode
[   65.480296][ T4828] bond1: entered allmulticast mode
[   65.502321][ T4835] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   65.521586][ T4828] 8021q: adding VLAN 0 to HW filter on device bond1
[   65.576970][ T4832] loop2: detected capacity change from 0 to 2048
[   65.628217][ T4832] Alternate GPT is invalid, using primary GPT.
[   65.634648][ T4832]  loop2: p2 p3 p7
[   65.778588][ T4842] loop0: detected capacity change from 0 to 128
[   65.842976][ T4842] ext4 filesystem being mounted at /74/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   65.930827][ T4845] loop3: detected capacity change from 0 to 2048
[   66.244128][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   66.365014][ T4871] netlink: 96 bytes leftover after parsing attributes in process `syz.4.435'.
[   66.402598][ T4871] netlink: 8 bytes leftover after parsing attributes in process `syz.4.435'.
[   66.429475][ T4871] bond1: entered promiscuous mode
[   66.434586][ T4871] bond1: entered allmulticast mode
[   66.445110][ T4871] 8021q: adding VLAN 0 to HW filter on device bond1
[   66.464158][ T4875] netlink: 'syz.3.436': attribute type 10 has an invalid length.
[   66.472008][ T4875] netlink: 14548 bytes leftover after parsing attributes in process `syz.3.436'.
[   66.508107][ T4871] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   66.828393][ T4898] netlink: 8 bytes leftover after parsing attributes in process `syz.2.443'.
[   66.864408][ T4891] netlink: 4 bytes leftover after parsing attributes in process `syz.0.441'.
[   67.153231][ T4911] loop1: detected capacity change from 0 to 764
[   67.320265][ T4911] Symlink component flag not implemented
[   67.344350][ T4911] Symlink component flag not implemented (129)
[   67.389306][ T4911] rock: directory entry would overflow storage
[   67.395705][ T4911] rock: sig=0x4f50, size=4, remaining=3
[   67.401389][ T4911] iso9660: Corrupted directory entry in block 6 of inode 1792
[   67.657315][ T4923] IPv6: NLM_F_CREATE should be specified when creating new route
[   69.846467][ T5059] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   69.968240][ T5067] netlink: 'syz.0.470': attribute type 2 has an invalid length.
[   70.136936][   T29] kauditd_printk_skb: 252 callbacks suppressed
[   70.136952][   T29] audit: type=1326 audit(1736372470.169:3506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.173948][   T29] audit: type=1326 audit(1736372470.179:3507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.197649][   T29] audit: type=1326 audit(1736372470.179:3508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.209365][ T5083] loop1: detected capacity change from 0 to 2048
[   70.221023][   T29] audit: type=1326 audit(1736372470.179:3509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.250866][   T29] audit: type=1326 audit(1736372470.179:3510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.274356][   T29] audit: type=1326 audit(1736372470.179:3511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.297826][   T29] audit: type=1326 audit(1736372470.179:3512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.321320][   T29] audit: type=1326 audit(1736372470.179:3513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.344785][   T29] audit: type=1326 audit(1736372470.179:3514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.368140][   T29] audit: type=1326 audit(1736372470.179:3515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5082 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   70.392850][ T5083] EXT4-fs mount: 8 callbacks suppressed
[   70.392867][ T5083] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.447181][ T5092] FAULT_INJECTION: forcing a failure.
[   70.447181][ T5092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.460321][ T5092] CPU: 1 UID: 0 PID: 5092 Comm: syz.4.478 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   70.471005][ T5092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.481083][ T5092] Call Trace:
[   70.484523][ T5092]  <TASK>
[   70.487460][ T5092]  dump_stack_lvl+0xf2/0x150
[   70.492083][ T5092]  dump_stack+0x15/0x1a
[   70.496261][ T5092]  should_fail_ex+0x223/0x230
[   70.501009][ T5092]  should_fail+0xb/0x10
[   70.505181][ T5092]  should_fail_usercopy+0x1a/0x20
[   70.510234][ T5092]  _copy_from_user+0x1e/0xb0
[   70.514850][ T5092]  io_submit_one+0x54/0x1230
[   70.519555][ T5092]  ? __rcu_read_unlock+0x4e/0x70
[   70.524614][ T5092]  __se_sys_io_submit+0xf5/0x280
[   70.529577][ T5092]  __x64_sys_io_submit+0x43/0x50
[   70.534571][ T5092]  x64_sys_call+0x2c20/0x2dc0
[   70.539263][ T5092]  do_syscall_64+0xc9/0x1c0
[   70.543804][ T5092]  ? clear_bhb_loop+0x55/0xb0
[   70.548492][ T5092]  ? clear_bhb_loop+0x55/0xb0
[   70.553230][ T5092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.559280][ T5092] RIP: 0033:0x7f4a5c075d29
[   70.563714][ T5092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.583342][ T5092] RSP: 002b:00007f4a5a6e7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   70.591842][ T5092] RAX: ffffffffffffffda RBX: 00007f4a5c265fa0 RCX: 00007f4a5c075d29
[   70.599911][ T5092] RDX: 0000000020000340 RSI: 0000000000000001 RDI: 00007f4a5cd9e000
[   70.607887][ T5092] RBP: 00007f4a5a6e7090 R08: 0000000000000000 R09: 0000000000000000
[   70.615965][ T5092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.623944][ T5092] R13: 0000000000000000 R14: 00007f4a5c265fa0 R15: 00007ffca5fc3548
[   70.632007][ T5092]  </TASK>
[   70.637200][ T5090] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.656841][ T5090] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.708410][ T5083] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.784174][ T5107] loop1: detected capacity change from 0 to 1024
[   70.804583][ T5107] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   70.817982][ T5107] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   70.830028][ T5107] EXT4-fs (loop1): invalid journal inode
[   70.835790][ T5107] EXT4-fs (loop1): can't get journal size
[   70.845130][ T5107] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.887208][ T5110] loop0: detected capacity change from 0 to 128
[   70.911403][ T5099] loop3: detected capacity change from 0 to 2048
[   70.938894][ T5110] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   70.982486][ T5099] Alternate GPT is invalid, using primary GPT.
[   70.989149][ T5099]  loop3: p2 p3 p7
[   71.041183][ T5110] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   71.180721][ T5119] netlink: 72 bytes leftover after parsing attributes in process `syz.1.484'.
[   71.283846][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.285319][ T5099] loop3: detected capacity change from 0 to 1024
[   71.304339][ T5099] journal_path: Non-blockdev passed as './file1'
[   71.310877][ T5099] EXT4-fs: error: could not find journal device path
[   71.691784][ T5125] wireguard0: entered promiscuous mode
[   71.697415][ T5125] wireguard0: entered allmulticast mode
[   71.763601][ T3298] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   71.863758][ T5136] syz.3.494[5136] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.863877][ T5136] syz.3.494[5136] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.877781][ T5138] loop0: detected capacity change from 0 to 128
[   71.896391][ T5136] syz.3.494[5136] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.919929][ T5138] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   71.933902][ T5139] loop2: detected capacity change from 0 to 2048
[   71.946262][ T5136] lo speed is unknown, defaulting to 1000
[   71.967297][ T5138] ext4 filesystem being mounted at /90/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   72.047007][ T5136] lo speed is unknown, defaulting to 1000
[   72.065102][ T5136] lo speed is unknown, defaulting to 1000
[   72.073044][ T5136] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   72.081215][ T5136] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   72.121043][ T5136] lo speed is unknown, defaulting to 1000
[   72.146420][ T5139] Alternate GPT is invalid, using primary GPT.
[   72.152966][ T5139]  loop2: p2 p3 p7
[   72.160162][ T5136] lo speed is unknown, defaulting to 1000
[   72.199890][ T5136] lo speed is unknown, defaulting to 1000
[   72.235992][ T5136] lo speed is unknown, defaulting to 1000
[   72.255033][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[   72.257504][ T5136] lo speed is unknown, defaulting to 1000
[   72.274519][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   72.279080][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[   72.299953][ T5157] syz.1.499[5157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.300034][ T5157] syz.1.499[5157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.305011][ T5136] lo speed is unknown, defaulting to 1000
[   72.311528][ T5157] syz.1.499[5157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.325792][ T5131] loop2: detected capacity change from 0 to 1024
[   72.451337][ T5159] lo speed is unknown, defaulting to 1000
[   72.477628][ T5153] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.496240][ T5153] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.666421][ T5167] loop1: detected capacity change from 0 to 732
[   72.748084][ T3298] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   72.791084][ T5179] loop2: detected capacity change from 0 to 128
[   72.861033][ T5179] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   72.942821][ T5179] ext4 filesystem being mounted at /113/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.024678][ T5190] lo speed is unknown, defaulting to 1000
[   73.027802][ T5194] netlink: 'syz.1.515': attribute type 10 has an invalid length.
[   73.038306][ T5194] netlink: 'syz.1.515': attribute type 19 has an invalid length.
[   73.046114][ T5194] netlink: 156 bytes leftover after parsing attributes in process `syz.1.515'.
[   73.087246][ T5195] loop0: detected capacity change from 0 to 2048
[   73.151742][ T5195] Alternate GPT is invalid, using primary GPT.
[   73.158260][ T5195]  loop0: p2 p3 p7
[   73.164411][ T5197] FAULT_INJECTION: forcing a failure.
[   73.164411][ T5197] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.177570][ T5197] CPU: 0 UID: 0 PID: 5197 Comm: syz.4.516 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   73.188256][ T5197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.198354][ T5197] Call Trace:
[   73.201710][ T5197]  <TASK>
[   73.204905][ T5197]  dump_stack_lvl+0xf2/0x150
[   73.209610][ T5197]  dump_stack+0x15/0x1a
[   73.213811][ T5197]  should_fail_ex+0x223/0x230
[   73.218503][ T5197]  should_fail+0xb/0x10
[   73.222722][ T5197]  should_fail_usercopy+0x1a/0x20
[   73.227775][ T5197]  _copy_from_user+0x1e/0xb0
[   73.232413][ T5197]  copy_msghdr_from_user+0x54/0x2a0
[   73.237667][ T5197]  ? __fget_files+0x17c/0x1c0
[   73.242370][ T5197]  __sys_sendmsg+0x13e/0x230
[   73.247033][ T5197]  __x64_sys_sendmsg+0x46/0x50
[   73.251839][ T5197]  x64_sys_call+0x2734/0x2dc0
[   73.256564][ T5197]  do_syscall_64+0xc9/0x1c0
[   73.261225][ T5197]  ? clear_bhb_loop+0x55/0xb0
[   73.265920][ T5197]  ? clear_bhb_loop+0x55/0xb0
[   73.270677][ T5197]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.276642][ T5197] RIP: 0033:0x7f4a5c075d29
[   73.281071][ T5197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.300862][ T5197] RSP: 002b:00007f4a5a6e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.309341][ T5197] RAX: ffffffffffffffda RBX: 00007f4a5c265fa0 RCX: 00007f4a5c075d29
[   73.317317][ T5197] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[   73.325291][ T5197] RBP: 00007f4a5a6e7090 R08: 0000000000000000 R09: 0000000000000000
[   73.333298][ T5197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.341368][ T5197] R13: 0000000000000000 R14: 00007f4a5c265fa0 R15: 00007ffca5fc3548
[   73.349423][ T5197]  </TASK>
[   73.394144][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   73.408475][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   73.559408][ T5190] loop0: detected capacity change from 0 to 1024
[   73.577919][ T5190] journal_path: Non-blockdev passed as './file1'
[   73.584363][ T5190] EXT4-fs: error: could not find journal device path
[   73.637351][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.686039][ T5214] loop1: detected capacity change from 0 to 732
[   73.814780][ T5225] netlink: 'syz.3.527': attribute type 10 has an invalid length.
[   73.818631][ T5223] loop4: detected capacity change from 0 to 128
[   73.822659][ T5225] netlink: 'syz.3.527': attribute type 19 has an invalid length.
[   73.836588][ T5225] netlink: 156 bytes leftover after parsing attributes in process `syz.3.527'.
[   73.880597][ T5226] netlink: 96 bytes leftover after parsing attributes in process `syz.2.528'.
[   73.906464][ T5223] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.908014][ T5226] netlink: 8 bytes leftover after parsing attributes in process `syz.2.528'.
[   73.929261][ T5223] ext4 filesystem being mounted at /117/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.959644][ T5226] bond1: entered promiscuous mode
[   73.966251][ T5226] bond1: entered allmulticast mode
[   74.039585][ T5226] 8021q: adding VLAN 0 to HW filter on device bond1
[   74.079938][ T5233] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   74.213113][ T5243] lo speed is unknown, defaulting to 1000
[   74.682755][ T3301] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   74.737726][ T5261] loop2: detected capacity change from 0 to 732
[   74.746451][ T5253] netlink: 4 bytes leftover after parsing attributes in process `syz.1.537'.
[   74.798716][ T5264] netlink: 'syz.4.541': attribute type 10 has an invalid length.
[   74.806497][ T5264] netlink: 'syz.4.541': attribute type 19 has an invalid length.
[   74.814317][ T5264] netlink: 156 bytes leftover after parsing attributes in process `syz.4.541'.
[   74.939097][ T5277] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   74.979404][ T5280] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.991077][ T5280] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.000428][ T5281] netlink: 4 bytes leftover after parsing attributes in process `syz.1.543'.
[   75.160463][ T5289] netlink: 4 bytes leftover after parsing attributes in process `syz.0.550'.
[   75.160949][   T29] kauditd_printk_skb: 452 callbacks suppressed
[   75.161022][   T29] audit: type=1326 audit(1736372475.199:3968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.199023][   T29] audit: type=1326 audit(1736372475.199:3969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.222403][   T29] audit: type=1326 audit(1736372475.199:3970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.245778][   T29] audit: type=1326 audit(1736372475.199:3971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.269144][   T29] audit: type=1326 audit(1736372475.199:3972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.292498][   T29] audit: type=1326 audit(1736372475.199:3973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.315829][   T29] audit: type=1326 audit(1736372475.219:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.339257][   T29] audit: type=1326 audit(1736372475.219:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.362526][   T29] audit: type=1326 audit(1736372475.219:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.386043][   T29] audit: type=1326 audit(1736372475.219:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5287 comm="syz.0.550" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f1b225d29 code=0x7ffc0000
[   75.498392][ T5302] netlink: 'syz.4.555': attribute type 10 has an invalid length.
[   75.506179][ T5302] netlink: 'syz.4.555': attribute type 19 has an invalid length.
[   75.513949][ T5302] netlink: 156 bytes leftover after parsing attributes in process `syz.4.555'.
[   75.794151][ T5323] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.813296][ T5323] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.814202][ T5310] lo speed is unknown, defaulting to 1000
[   75.977629][ T5336] netlink: 'syz.2.568': attribute type 10 has an invalid length.
[   75.985548][ T5336] netlink: 'syz.2.568': attribute type 19 has an invalid length.
[   76.030214][ T5338] wireguard0: entered promiscuous mode
[   76.035790][ T5338] wireguard0: entered allmulticast mode
[   76.065156][ T5340] bond2: entered promiscuous mode
[   76.070285][ T5340] bond2: entered allmulticast mode
[   76.079973][ T5340] 8021q: adding VLAN 0 to HW filter on device bond2
[   76.131463][ T5340] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   76.285182][ T5353] lo speed is unknown, defaulting to 1000
[   76.372015][ T5358] __nla_validate_parse: 5 callbacks suppressed
[   76.372033][ T5358] netlink: 4 bytes leftover after parsing attributes in process `syz.0.573'.
[   76.422013][ T5353] loop1: detected capacity change from 0 to 2048
[   76.445240][ T5363] loop4: detected capacity change from 0 to 128
[   76.462652][ T5353] Alternate GPT is invalid, using primary GPT.
[   76.469191][ T5353]  loop1: p2 p3 p7
[   76.476844][ T5363] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   76.507595][ T5363] ext4 filesystem being mounted at /126/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   76.563676][ T2998] Alternate GPT is invalid, using primary GPT.
[   76.570178][ T2998]  loop1: p2 p3 p7
[   76.648721][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   76.683814][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   76.707357][ T3301] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   76.713282][ T5353] loop1: detected capacity change from 0 to 1024
[   76.724387][ T5353] journal_path: Non-blockdev passed as './file1'
[   76.730912][ T5353] EXT4-fs: error: could not find journal device path
[   76.762602][ T5377] loop0: detected capacity change from 0 to 732
[   76.790710][ T5380] loop2: detected capacity change from 0 to 1024
[   76.830265][ T5380] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   76.840261][ T5380] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   76.852755][ T5380] EXT4-fs (loop2): invalid journal inode
[   76.858680][ T5380] EXT4-fs (loop2): can't get journal size
[   76.865190][ T5380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   77.012813][ T5389] lo speed is unknown, defaulting to 1000
[   77.582519][ T5391] loop3: detected capacity change from 0 to 512
[   77.684010][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   77.700814][ T5394] udevd[5394]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   77.721118][ T5391] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.733868][ T5391] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.814134][ T5380] netlink: 72 bytes leftover after parsing attributes in process `syz.2.584'.
[   77.907005][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.957747][ T3295] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.957955][ T5407] 9pnet_fd: Insufficient options for proto=fd
[   78.030637][ T5410] 9pnet_fd: Insufficient options for proto=fd
[   78.127710][ T5418] netlink: 4 bytes leftover after parsing attributes in process `syz.0.590'.
[   78.190895][ T5425] lo speed is unknown, defaulting to 1000
[   78.204369][ T5427] lo speed is unknown, defaulting to 1000
[   78.327131][ T5433] lo speed is unknown, defaulting to 1000
[   78.724733][ T5425] FAULT_INJECTION: forcing a failure.
[   78.724733][ T5425] name failslab, interval 1, probability 0, space 0, times 0
[   78.737508][ T5425] CPU: 1 UID: 0 PID: 5425 Comm: syz.1.596 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   78.748117][ T5425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.758285][ T5425] Call Trace:
[   78.761587][ T5425]  <TASK>
[   78.764551][ T5425]  dump_stack_lvl+0xf2/0x150
[   78.769314][ T5425]  dump_stack+0x15/0x1a
[   78.773774][ T5425]  should_fail_ex+0x223/0x230
[   78.778496][ T5425]  should_failslab+0x8f/0xb0
[   78.783185][ T5425]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   78.788936][ T5425]  ? shmem_alloc_inode+0x34/0x50
[   78.793980][ T5425]  shmem_alloc_inode+0x34/0x50
[   78.798862][ T5425]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   78.804412][ T5425]  alloc_inode+0x3c/0x160
[   78.808862][ T5425]  new_inode+0x1e/0x100
[   78.813073][ T5425]  shmem_get_inode+0x24e/0x730
[   78.817867][ T5425]  __shmem_file_setup+0x127/0x1f0
[   78.822937][ T5425]  shmem_file_setup+0x3b/0x50
[   78.827648][ T5425]  __se_sys_memfd_create+0x31d/0x5c0
[   78.832997][ T5425]  __x64_sys_memfd_create+0x31/0x40
[   78.838241][ T5425]  x64_sys_call+0x2d4c/0x2dc0
[   78.842949][ T5425]  do_syscall_64+0xc9/0x1c0
[   78.847507][ T5425]  ? clear_bhb_loop+0x55/0xb0
[   78.852210][ T5425]  ? clear_bhb_loop+0x55/0xb0
[   78.856948][ T5425]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.862887][ T5425] RIP: 0033:0x7f463a0c5d29
[   78.867324][ T5425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.869701][ T5434] lo speed is unknown, defaulting to 1000
[   78.886989][ T5425] RSP: 002b:00007f4638736e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   78.887061][ T5425] RAX: ffffffffffffffda RBX: 0000000000000477 RCX: 00007f463a0c5d29
[   78.887078][ T5425] RDX: 00007f4638736ef0 RSI: 0000000000000000 RDI: 00007f463a142469
[   78.887093][ T5425] RBP: 0000000020000780 R08: 00007f4638736bb7 R09: 00007f4638736e40
[   78.887109][ T5425] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000340
[   78.933370][ T5425] R13: 00007f4638736ef0 R14: 00007f4638736eb0 R15: 00000000200000c0
[   78.941439][ T5425]  </TASK>
[   79.012754][ T5436] lo speed is unknown, defaulting to 1000
[   79.154691][ T5447] loop4: detected capacity change from 0 to 1024
[   79.181137][ T5446] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   79.191269][ T5447] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   79.201046][ T5447] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   79.221999][ T5450] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.240595][ T5447] EXT4-fs (loop4): invalid journal inode
[   79.246505][ T5447] EXT4-fs (loop4): can't get journal size
[   79.259836][ T5450] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.271697][ T5447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.389386][ T5447] netlink: 72 bytes leftover after parsing attributes in process `syz.4.602'.
[   79.443278][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.464841][ T5463] netlink: 4 bytes leftover after parsing attributes in process `syz.1.609'.
[   79.480708][ T5457] loop2: detected capacity change from 0 to 2048
[   79.591685][ T5457] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.808469][ T5457] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.851089][ T5478] wireguard0: entered promiscuous mode
[   79.856622][ T5478] wireguard0: entered allmulticast mode
[   79.931428][ T5483] FAULT_INJECTION: forcing a failure.
[   79.931428][ T5483] name failslab, interval 1, probability 0, space 0, times 0
[   79.944115][ T5483] CPU: 1 UID: 0 PID: 5483 Comm: syz.4.616 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   79.954807][ T5483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   79.964999][ T5483] Call Trace:
[   79.968293][ T5483]  <TASK>
[   79.971250][ T5483]  dump_stack_lvl+0xf2/0x150
[   79.976003][ T5483]  dump_stack+0x15/0x1a
[   79.980240][ T5483]  should_fail_ex+0x223/0x230
[   79.984937][ T5483]  should_failslab+0x8f/0xb0
[   79.989612][ T5483]  kmem_cache_alloc_noprof+0x52/0x320
[   79.995008][ T5483]  ? sctp_get_port_local+0x410/0xa90
[   80.000352][ T5483]  sctp_get_port_local+0x410/0xa90
[   80.005564][ T5483]  sctp_do_bind+0x3a1/0x4c0
[   80.010116][ T5483]  sctp_connect_new_asoc+0x15b/0x3b0
[   80.015451][ T5483]  sctp_sendmsg+0xf05/0x1920
[   80.020118][ T5483]  ? __pfx_sctp_sendmsg+0x10/0x10
[   80.025252][ T5483]  inet_sendmsg+0xc5/0xd0
[   80.029682][ T5483]  __sock_sendmsg+0x102/0x180
[   80.034491][ T5483]  __sys_sendto+0x1a8/0x230
[   80.039038][ T5483]  __x64_sys_sendto+0x78/0x90
[   80.043743][ T5483]  x64_sys_call+0x29fa/0x2dc0
[   80.048446][ T5483]  do_syscall_64+0xc9/0x1c0
[   80.053044][ T5483]  ? clear_bhb_loop+0x55/0xb0
[   80.057742][ T5483]  ? clear_bhb_loop+0x55/0xb0
[   80.062794][ T5483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.068794][ T5483] RIP: 0033:0x7f4a5c075d29
[   80.073316][ T5483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.093028][ T5483] RSP: 002b:00007f4a5a6e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   80.101527][ T5483] RAX: ffffffffffffffda RBX: 00007f4a5c265fa0 RCX: 00007f4a5c075d29
[   80.109711][ T5483] RDX: 0000000000034000 RSI: 0000000020000500 RDI: 0000000000000003
[   80.117726][ T5483] RBP: 00007f4a5a6e7090 R08: 0000000020000140 R09: 000000000000001c
[   80.125766][ T5483] R10: 000000002000c851 R11: 0000000000000246 R12: 0000000000000001
[   80.133749][ T5483] R13: 0000000000000000 R14: 00007f4a5c265fa0 R15: 00007ffca5fc3548
[   80.141740][ T5483]  </TASK>
[   80.224538][ T5487] loop1: detected capacity change from 0 to 1024
[   80.237322][ T5487] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   80.263885][ T5487] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   80.263970][ T5487] EXT4-fs (loop1): invalid journal inode
[   80.264058][ T5487] EXT4-fs (loop1): can't get journal size
[   80.285336][ T5491] lo speed is unknown, defaulting to 1000
[   80.299284][ T5487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.446770][ T5503] wireguard0: entered promiscuous mode
[   80.452437][ T5503] wireguard0: entered allmulticast mode
[   80.460106][ T5487] netlink: 72 bytes leftover after parsing attributes in process `syz.1.620'.
[   80.516311][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.543251][ T5485] lo speed is unknown, defaulting to 1000
[   80.566609][   T29] kauditd_printk_skb: 357 callbacks suppressed
[   80.566624][   T29] audit: type=1326 audit(1736372480.599:4335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.601672][   T29] audit: type=1326 audit(1736372480.629:4336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.625106][   T29] audit: type=1326 audit(1736372480.629:4337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.648473][   T29] audit: type=1326 audit(1736372480.629:4338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.672099][   T29] audit: type=1326 audit(1736372480.629:4339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.695537][   T29] audit: type=1326 audit(1736372480.629:4340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.718946][   T29] audit: type=1326 audit(1736372480.629:4341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.742440][   T29] audit: type=1326 audit(1736372480.629:4342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.765955][   T29] audit: type=1326 audit(1736372480.629:4343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.789242][   T29] audit: type=1326 audit(1736372480.629:4344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="syz.1.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   80.835321][ T5518] wireguard0: entered promiscuous mode
[   80.840875][ T5518] wireguard0: entered allmulticast mode
[   80.977295][ T5526] netlink: 'syz.2.633': attribute type 10 has an invalid length.
[   80.985073][ T5526] netlink: 'syz.2.633': attribute type 19 has an invalid length.
[   80.992977][ T5526] netlink: 14536 bytes leftover after parsing attributes in process `syz.2.633'.
[   81.039136][ T5529] syz.0.634[5529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.039249][ T5529] syz.0.634[5529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.050737][ T5529] syz.0.634[5529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.078427][ T5527] team0 (unregistering): Port device team_slave_0 removed
[   81.115267][ T5534] loop2: detected capacity change from 0 to 1024
[   81.118570][ T5527] team0 (unregistering): Port device team_slave_1 removed
[   81.145050][ T5534] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   81.154934][ T5534] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   81.166338][ T5534] EXT4-fs (loop2): invalid journal inode
[   81.172206][ T5536] loop0: detected capacity change from 0 to 128
[   81.180833][ T5534] EXT4-fs (loop2): can't get journal size
[   81.190056][ T5534] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   81.302872][ T5534] netlink: 72 bytes leftover after parsing attributes in process `syz.2.636'.
[   81.322219][ T5542] lo speed is unknown, defaulting to 1000
[   81.358398][ T5536] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   81.387462][ T5536] ext4 filesystem being mounted at /114/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   81.439436][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.565738][ T5542] loop3: detected capacity change from 0 to 2048
[   81.656988][ T5542] Alternate GPT is invalid, using primary GPT.
[   81.663398][ T5542]  loop3: p2 p3 p7
[   81.692690][ T5554] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.717054][ T5554] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.832311][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   81.844337][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   81.860682][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory
[   81.872100][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[   81.936264][ T5563] netlink: 4 bytes leftover after parsing attributes in process `syz.2.645'.
[   81.974352][ T5563] hsr_slave_1 (unregistering): left promiscuous mode
[   81.994842][ T5564] netlink: 'syz.2.645': attribute type 3 has an invalid length.
[   82.008068][ T3298] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.104511][ T5566] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.138532][ T5566] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.180257][ T5569] lo speed is unknown, defaulting to 1000
[   82.257935][ T5574] loop2: detected capacity change from 0 to 732
[   82.412944][ T5578] lo speed is unknown, defaulting to 1000
[   82.789996][ T5593] netlink: 24 bytes leftover after parsing attributes in process `syz.4.657'.
[   82.920331][ T5601] wireguard0: entered promiscuous mode
[   82.925949][ T5601] wireguard0: entered allmulticast mode
[   83.104811][ T5614] syz.3.660[5614] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.104916][ T5614] syz.3.660[5614] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.124022][ T5614] syz.3.660[5614] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.196297][ T5625] FAULT_INJECTION: forcing a failure.
[   83.196297][ T5625] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   83.220989][ T5625] CPU: 0 UID: 0 PID: 5625 Comm: syz.1.663 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   83.231714][ T5625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.241786][ T5625] Call Trace:
[   83.245191][ T5625]  <TASK>
[   83.248129][ T5625]  dump_stack_lvl+0xf2/0x150
[   83.252783][ T5625]  dump_stack+0x15/0x1a
[   83.256978][ T5625]  should_fail_ex+0x223/0x230
[   83.261674][ T5625]  should_fail_alloc_page+0xfd/0x110
[   83.267024][ T5625]  __alloc_pages_noprof+0x109/0x340
[   83.272258][ T5625]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   83.277743][ T5625]  alloc_pages_noprof+0xe1/0x100
[   83.282722][ T5625]  __pmd_alloc+0x4b/0x430
[   83.287066][ T5625]  ? mntput+0x49/0x70
[   83.291065][ T5625]  handle_mm_fault+0x1a77/0x2ac0
[   83.296099][ T5625]  exc_page_fault+0x296/0x650
[   83.300825][ T5625]  asm_exc_page_fault+0x26/0x30
[   83.305691][ T5625] RIP: 0010:strncpy_from_user+0xa8/0x210
[   83.311349][ T5625] Code: 66 ff 49 83 fe 07 0f 86 88 00 00 00 31 c0 48 89 04 24 4c 89 6c 24 08 4c 89 e8 4c 89 7c 24 10 4c 89 fd 4c 89 74 24 18 4d 89 f4 <4c> 8b 38 49 89 c5 48 b8 ff fe fe fe fe fe fe fe 49 8d 1c 07 4d 89
[   83.330975][ T5625] RSP: 0018:ffffc90001993e18 EFLAGS: 00050246
[   83.337137][ T5625] RAX: 0000000020000040 RBX: 0000000020000040 RCX: ffff88811ac21080
[   83.345118][ T5625] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000007
[   83.353115][ T5625] RBP: ffffc90001993e80 R08: ffffffff81ccb930 R09: ffffffff81687834
[   83.361093][ T5625] R10: 0000000000000003 R11: ffff88811ac21080 R12: 0000000000000020
[   83.369144][ T5625] R13: 0000000020000040 R14: 0000000000000020 R15: ffffc90001993e80
[   83.377208][ T5625]  ? __check_object_size+0x74/0x520
[   83.382461][ T5625]  ? strncpy_from_user+0x80/0x210
[   83.387670][ T5625]  ? strncpy_from_user+0x80/0x210
[   83.392707][ T5625]  __se_sys_add_key+0x81/0x320
[   83.397572][ T5625]  ? fput+0x1c4/0x200
[   83.401618][ T5625]  __x64_sys_add_key+0x67/0x80
[   83.406438][ T5625]  x64_sys_call+0x2964/0x2dc0
[   83.411123][ T5625]  do_syscall_64+0xc9/0x1c0
[   83.415633][ T5625]  ? clear_bhb_loop+0x55/0xb0
[   83.420400][ T5625]  ? clear_bhb_loop+0x55/0xb0
[   83.425088][ T5625]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.431053][ T5625] RIP: 0033:0x7f463a0c5d29
[   83.435477][ T5625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.455092][ T5625] RSP: 002b:00007f4638737038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[   83.463570][ T5625] RAX: ffffffffffffffda RBX: 00007f463a2b5fa0 RCX: 00007f463a0c5d29
[   83.471627][ T5625] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040
[   83.479603][ T5625] RBP: 00007f4638737090 R08: fffffffffffffffe R09: 0000000000000000
[   83.487580][ T5625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.495558][ T5625] R13: 0000000000000000 R14: 00007f463a2b5fa0 R15: 00007ffe70c67928
[   83.503572][ T5625]  </TASK>
[   83.510252][ T5626] syz.0.662[5626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.510351][ T5626] syz.0.662[5626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.533868][ T5626] syz.0.662[5626] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   83.633664][ T5629] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.684567][ T5629] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.738623][ T5651] loop2: detected capacity change from 0 to 1024
[   83.757638][ T5651] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   83.784385][ T5651] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   83.806984][ T5651] EXT4-fs (loop2): invalid journal inode
[   83.812781][ T5651] EXT4-fs (loop2): can't get journal size
[   83.830744][ T5651] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   83.831713][ T5653] loop0: detected capacity change from 0 to 8192
[   83.897082][ T5653]  loop0: p1 p3
[   83.900719][ T5653] loop0: p1 start 51379968 is beyond EOD, truncated
[   83.907389][ T5653] loop0: p3 size 100663552 extends beyond EOD, truncated
[   83.916959][ T5658] wireguard1: entered promiscuous mode
[   83.922462][ T5658] wireguard1: entered allmulticast mode
[   84.066425][ T5664] syz.1.675[5664] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.073849][ T5651] netlink: 72 bytes leftover after parsing attributes in process `syz.2.671'.
[   84.147398][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.248695][ T5676] lo speed is unknown, defaulting to 1000
[   84.322620][ T5684] netlink: 96 bytes leftover after parsing attributes in process `syz.2.686'.
[   84.359038][ T5684] netlink: 8 bytes leftover after parsing attributes in process `syz.2.686'.
[   84.374340][ T5684] bond2: entered promiscuous mode
[   84.379545][ T5684] bond2: entered allmulticast mode
[   84.385083][ T5684] 8021q: adding VLAN 0 to HW filter on device bond2
[   84.419707][ T5692] wireguard0: entered promiscuous mode
[   84.425283][ T5692] wireguard0: entered allmulticast mode
[   84.438240][ T5684] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   84.509446][ T5706] netlink: 96 bytes leftover after parsing attributes in process `syz.1.693'.
[   84.521565][ T5706] netlink: 8 bytes leftover after parsing attributes in process `syz.1.693'.
[   84.536485][ T5706] bond1: entered promiscuous mode
[   84.541663][ T5706] bond1: entered allmulticast mode
[   84.547336][ T5706] 8021q: adding VLAN 0 to HW filter on device bond1
[   84.577748][ T5708] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   84.586372][ T5708] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.610605][ T5712] lo speed is unknown, defaulting to 1000
[   84.628149][ T5706] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   84.779312][ T5721] 9pnet: Could not find request transport: fd0x0000000000000007
[   84.907193][ T5739] wireguard0: entered promiscuous mode
[   84.912764][ T5739] wireguard0: entered allmulticast mode
[   85.101381][ T5755] loop0: detected capacity change from 0 to 2048
[   85.124073][ T5755] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.161791][ T5755] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.240383][ T5774] 9pnet_fd: Insufficient options for proto=fd
[   85.377010][ T5787] wireguard0: entered promiscuous mode
[   85.382550][ T5787] wireguard0: entered allmulticast mode
[   85.564673][ T5794] loop3: detected capacity change from 0 to 2048
[   85.573260][   T29] kauditd_printk_skb: 730 callbacks suppressed
[   85.573278][   T29] audit: type=1326 audit(1736372714.605:5073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb88ed8498a code=0x7ffc0000
[   85.602882][   T29] audit: type=1326 audit(1736372714.605:5074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb88ed8498a code=0x7ffc0000
[   85.626185][   T29] audit: type=1326 audit(1736372714.605:5075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fb88ed84597 code=0x7ffc0000
[   85.649611][   T29] audit: type=1326 audit(1736372714.605:5076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fb88ed874ca code=0x7ffc0000
[   86.296756][ T5798] lo speed is unknown, defaulting to 1000
[   86.367613][ T5795] lo speed is unknown, defaulting to 1000
[   86.428875][ T5794] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.556217][   T29] audit: type=1326 audit(1736372715.585:5077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb88ed84690 code=0x7ffc0000
[   86.579681][   T29] audit: type=1326 audit(1736372715.585:5078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fb88ed84a77 code=0x7ffc0000
[   86.603024][   T29] audit: type=1326 audit(1736372715.585:5079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb88ed84690 code=0x7ffc0000
[   86.626614][   T29] audit: type=1326 audit(1736372715.585:5080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   86.652193][   T29] audit: type=1326 audit(1736372715.585:5081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5793 comm="syz.3.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb88ed85d29 code=0x7ffc0000
[   86.676029][   T29] audit: type=1400 audit(1736372715.665:5082): avc:  denied  { sqpoll } for  pid=5802 comm="syz.4.731" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   86.744859][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.755268][ T5808] FAULT_INJECTION: forcing a failure.
[   86.755268][ T5808] name failslab, interval 1, probability 0, space 0, times 0
[   86.768014][ T5808] CPU: 0 UID: 0 PID: 5808 Comm: syz.2.733 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   86.778707][ T5808] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   86.788777][ T5808] Call Trace:
[   86.792066][ T5808]  <TASK>
[   86.795013][ T5808]  dump_stack_lvl+0xf2/0x150
[   86.799629][ T5808]  dump_stack+0x15/0x1a
[   86.803839][ T5808]  should_fail_ex+0x223/0x230
[   86.808531][ T5808]  should_failslab+0x8f/0xb0
[   86.813153][ T5808]  kmem_cache_alloc_node_noprof+0x59/0x320
[   86.818970][ T5808]  ? __alloc_skb+0x10b/0x310
[   86.823583][ T5808]  __alloc_skb+0x10b/0x310
[   86.828011][ T5808]  netlink_dump+0x157/0x7e0
[   86.832527][ T5808]  ? nlmon_xmit+0x51/0x60
[   86.836924][ T5808]  __netlink_dump_start+0x433/0x520
[   86.842139][ T5808]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[   86.847445][ T5808]  rtnetlink_rcv_msg+0x5a2/0x710
[   86.852518][ T5808]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[   86.858004][ T5808]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[   86.863355][ T5808]  netlink_rcv_skb+0x12c/0x230
[   86.868406][ T5808]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   86.873889][ T5808]  rtnetlink_rcv+0x1c/0x30
[   86.878346][ T5808]  netlink_unicast+0x599/0x670
[   86.883143][ T5808]  netlink_sendmsg+0x5cc/0x6e0
[   86.887946][ T5808]  ? __pfx_netlink_sendmsg+0x10/0x10
[   86.893249][ T5808]  __sock_sendmsg+0x140/0x180
[   86.897949][ T5808]  sock_write_iter+0x15e/0x1a0
[   86.902736][ T5808]  vfs_write+0x77f/0x920
[   86.906996][ T5808]  ? __pfx_sock_write_iter+0x10/0x10
[   86.912341][ T5808]  ksys_write+0xe8/0x1b0
[   86.916803][ T5808]  __x64_sys_write+0x42/0x50
[   86.921410][ T5808]  x64_sys_call+0x287e/0x2dc0
[   86.926208][ T5808]  do_syscall_64+0xc9/0x1c0
[   86.930740][ T5808]  ? clear_bhb_loop+0x55/0xb0
[   86.935566][ T5808]  ? clear_bhb_loop+0x55/0xb0
[   86.940317][ T5808]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.946272][ T5808] RIP: 0033:0x7f862aeb5d29
[   86.950701][ T5808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.970368][ T5808] RSP: 002b:00007f8629527038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   86.978894][ T5808] RAX: ffffffffffffffda RBX: 00007f862b0a5fa0 RCX: 00007f862aeb5d29
[   86.986884][ T5808] RDX: 0000000000000024 RSI: 00000000200000c0 RDI: 0000000000000006
[   86.994882][ T5808] RBP: 00007f8629527090 R08: 0000000000000000 R09: 0000000000000000
[   87.002972][ T5808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.010957][ T5808] R13: 0000000000000000 R14: 00007f862b0a5fa0 R15: 00007ffcdb0fe838
[   87.019006][ T5808]  </TASK>
[   87.035585][ T5815] loop0: detected capacity change from 0 to 128
[   87.064944][ T5815] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   87.077500][ T5815] ext4 filesystem being mounted at /133/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   87.125424][ T5819] 9pnet_fd: Insufficient options for proto=fd
[   87.175408][ T5820] lo speed is unknown, defaulting to 1000
[   87.648649][ T3298] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   87.749833][ T5831] bpf_get_probe_write_proto: 14 callbacks suppressed
[   87.749849][ T5831] syz.3.740[5831] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.756663][ T5831] syz.3.740[5831] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.768150][ T5831] syz.3.740[5831] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.615197][ T5842] syz.0.743[5842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.633233][ T5842] syz.0.743[5842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.650151][ T5837] lo speed is unknown, defaulting to 1000
[   88.672111][ T5842] syz.0.743[5842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.674678][ T5845] netlink: 4 bytes leftover after parsing attributes in process `syz.4.745'.
[   88.703375][ T5836] lo speed is unknown, defaulting to 1000
[   88.795141][ T5846] lo speed is unknown, defaulting to 1000
[   88.810998][ T5851] 9pnet_fd: Insufficient options for proto=fd
[   88.831132][ T5845] hsr_slave_1 (unregistering): left promiscuous mode
[   88.857126][ T5857] syz.1.750[5857] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.857233][ T5857] syz.1.750[5857] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.868874][ T5857] syz.1.750[5857] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.899798][ T5859] loop2: detected capacity change from 0 to 732
[   89.008740][ T5866] syz.3.754[5866] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.021784][ T5855] netlink: 4 bytes leftover after parsing attributes in process `syz.0.749'.
[   89.081478][ T5868] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   89.092357][ T5868] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   89.118291][ T5877] netlink: 4 bytes leftover after parsing attributes in process `syz.4.752'.
[   89.289142][ T5879] netlink: 4 bytes leftover after parsing attributes in process `syz.1.757'.
[   89.408319][ T5888] lo speed is unknown, defaulting to 1000
[   89.596225][ T5890] lo speed is unknown, defaulting to 1000
[   89.805908][ T5890] loop1: detected capacity change from 0 to 2048
[   89.844052][ T5903] netlink: 4 bytes leftover after parsing attributes in process `syz.2.766'.
[   89.872217][ T5890] Alternate GPT is invalid, using primary GPT.
[   89.878704][ T5890]  loop1: p2 p3 p7
[   89.887789][ T5906] netlink: 4 bytes leftover after parsing attributes in process `syz.3.768'.
[   89.934080][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   89.939271][ T5890] loop1: detected capacity change from 0 to 1024
[   89.952074][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory
[   89.967220][ T5890] journal_path: Non-blockdev passed as './file1'
[   89.973625][ T5890] EXT4-fs: error: could not find journal device path
[   90.131592][ T5929] loop2: detected capacity change from 0 to 128
[   90.140982][ T5931] netlink: 12 bytes leftover after parsing attributes in process `syz.3.774'.
[   90.163341][ T5925] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.174498][ T5925] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.483393][ T5949] netlink: 4 bytes leftover after parsing attributes in process `syz.4.784'.
[   90.483801][ T5952] loop1: detected capacity change from 0 to 2048
[   90.509294][ T5952] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.538636][ T5952] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.539229][ T5958] loop4: detected capacity change from 0 to 2048
[   90.566118][ T5958] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.582768][   T29] kauditd_printk_skb: 595 callbacks suppressed
[   90.582786][   T29] audit: type=1326 audit(1736372719.615:5678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a5c074690 code=0x7ffc0000
[   90.612403][   T29] audit: type=1326 audit(1736372719.615:5679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f4a5c074a77 code=0x7ffc0000
[   90.641986][   T29] audit: type=1326 audit(1736372719.615:5680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4a5c074690 code=0x7ffc0000
[   90.665575][   T29] audit: type=1326 audit(1736372719.615:5681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.688986][   T29] audit: type=1326 audit(1736372719.615:5682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.712436][   T29] audit: type=1326 audit(1736372719.645:5683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.735876][   T29] audit: type=1326 audit(1736372719.645:5684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.759309][   T29] audit: type=1326 audit(1736372719.645:5685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.782700][   T29] audit: type=1326 audit(1736372719.645:5686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.806150][   T29] audit: type=1326 audit(1736372719.645:5687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5957 comm="syz.4.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a5c075d29 code=0x7ffc0000
[   90.830866][ T5958] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.875426][ T5971] loop0: detected capacity change from 0 to 1024
[   90.901706][ T5971] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   90.912688][ T5971] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   90.930989][ T5971] EXT4-fs (loop0): invalid journal inode
[   90.942671][ T5971] EXT4-fs (loop0): can't get journal size
[   90.951134][ T5971] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   91.041013][ T5982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.796'.
[   91.049578][ T5990] loop3: detected capacity change from 0 to 128
[   91.067063][ T5990] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   91.087495][ T5990] ext4 filesystem being mounted at /152/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   91.154678][ T5971] netlink: 72 bytes leftover after parsing attributes in process `syz.0.792'.
[   91.156472][ T5995] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.174320][ T5995] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.217642][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.250797][ T6000] loop0: detected capacity change from 0 to 2048
[   91.268478][ T6000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.293694][ T6000] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.434562][ T6013] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.480504][ T6013] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.497710][ T6016] FAULT_INJECTION: forcing a failure.
[   91.497710][ T6016] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   91.510951][ T6016] CPU: 0 UID: 0 PID: 6016 Comm: syz.1.807 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   91.522031][ T6016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.532176][ T6016] Call Trace:
[   91.535588][ T6016]  <TASK>
[   91.538532][ T6016]  dump_stack_lvl+0xf2/0x150
[   91.543173][ T6016]  dump_stack+0x15/0x1a
[   91.547373][ T6016]  should_fail_ex+0x223/0x230
[   91.552154][ T6016]  should_fail+0xb/0x10
[   91.556370][ T6016]  should_fail_usercopy+0x1a/0x20
[   91.561470][ T6016]  strncpy_from_user+0x25/0x210
[   91.566373][ T6016]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   91.572045][ T6016]  ? getname_flags+0x81/0x3b0
[   91.576792][ T6016]  getname_flags+0xb0/0x3b0
[   91.581365][ T6016]  __x64_sys_link+0x33/0x70
[   91.585933][ T6016]  x64_sys_call+0x2d1a/0x2dc0
[   91.590746][ T6016]  do_syscall_64+0xc9/0x1c0
[   91.595311][ T6016]  ? clear_bhb_loop+0x55/0xb0
[   91.600009][ T6016]  ? clear_bhb_loop+0x55/0xb0
[   91.604717][ T6016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.610643][ T6016] RIP: 0033:0x7f463a0c5d29
[   91.615070][ T6016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.634983][ T6016] RSP: 002b:00007f4638737038 EFLAGS: 00000246 ORIG_RAX: 0000000000000056
[   91.643432][ T6016] RAX: ffffffffffffffda RBX: 00007f463a2b5fa0 RCX: 00007f463a0c5d29
[   91.651435][ T6016] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000020000380
[   91.659576][ T6016] RBP: 00007f4638737090 R08: 0000000000000000 R09: 0000000000000000
[   91.667567][ T6016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.675675][ T6016] R13: 0000000000000000 R14: 00007f463a2b5fa0 R15: 00007ffe70c67928
[   91.683766][ T6016]  </TASK>
[   91.701701][ T6013] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.760745][ T6013] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.824495][ T6013] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.861707][ T6013] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.913751][ T6013] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.917935][ T3295] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   91.927905][ T6013] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.932532][ T6029] loop1: detected capacity change from 0 to 1024
[   91.950403][ T6029] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   91.979288][ T6029] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   92.002383][ T6029] EXT4-fs (loop1): invalid journal inode
[   92.008200][ T6029] EXT4-fs (loop1): can't get journal size
[   92.032947][ T6029] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   92.243242][ T6060] FAULT_INJECTION: forcing a failure.
[   92.243242][ T6060] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.256569][ T6060] CPU: 0 UID: 0 PID: 6060 Comm: syz.0.824 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   92.267181][ T6060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   92.277297][ T6060] Call Trace:
[   92.280662][ T6060]  <TASK>
[   92.283620][ T6060]  dump_stack_lvl+0xf2/0x150
[   92.288366][ T6060]  dump_stack+0x15/0x1a
[   92.292555][ T6060]  should_fail_ex+0x223/0x230
[   92.297350][ T6060]  should_fail+0xb/0x10
[   92.301529][ T6060]  should_fail_usercopy+0x1a/0x20
[   92.306574][ T6060]  _copy_from_user+0x1e/0xb0
[   92.309525][ T6058] loop2: detected capacity change from 0 to 164
[   92.311184][ T6060]  __sys_bpf+0x14e/0x7a0
[   92.321700][ T6060]  __x64_sys_bpf+0x43/0x50
[   92.326158][ T6060]  x64_sys_call+0x2914/0x2dc0
[   92.330853][ T6060]  do_syscall_64+0xc9/0x1c0
[   92.335381][ T6060]  ? clear_bhb_loop+0x55/0xb0
[   92.340079][ T6060]  ? clear_bhb_loop+0x55/0xb0
[   92.344926][ T6060]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.350923][ T6060] RIP: 0033:0x7f3f1b225d29
[   92.355411][ T6060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.375060][ T6060] RSP: 002b:00007f3f19897038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   92.383498][ T6060] RAX: ffffffffffffffda RBX: 00007f3f1b415fa0 RCX: 00007f3f1b225d29
[   92.391485][ T6060] RDX: 0000000000000050 RSI: 0000000020000900 RDI: 000000000000000a
[   92.399527][ T6060] RBP: 00007f3f19897090 R08: 0000000000000000 R09: 0000000000000000
[   92.407519][ T6060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.415553][ T6060] R13: 0000000000000000 R14: 00007f3f1b415fa0 R15: 00007ffd6f94f208
[   92.423543][ T6060]  </TASK>
[   92.431445][ T6058] syz.2.823: attempt to access beyond end of device
[   92.431445][ T6058] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   92.466679][ T6058] syz.2.823: attempt to access beyond end of device
[   92.466679][ T6058] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   92.492072][ T6058] syz.2.823: attempt to access beyond end of device
[   92.492072][ T6058] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[   92.517987][ T6064] iso9660: Corrupted directory entry in block 4 of inode 1792
[   92.587974][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.643701][ T6071] bond3: entered promiscuous mode
[   92.648821][ T6071] bond3: entered allmulticast mode
[   92.666981][ T6071] 8021q: adding VLAN 0 to HW filter on device bond3
[   92.693355][ T6073] bond2: entered promiscuous mode
[   92.698517][ T6073] bond2: entered allmulticast mode
[   92.708149][ T6071] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   92.715580][ T6073] 8021q: adding VLAN 0 to HW filter on device bond2
[   92.997456][ T6082] loop2: detected capacity change from 0 to 1024
[   93.006647][ T6082] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   93.035156][ T6082] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   93.043799][ T6082] EXT4-fs (loop2): orphan cleanup on readonly fs
[   93.067690][ T6082] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   93.079036][ T6082] EXT4-fs (loop2): Remounting filesystem read-only
[   93.085627][ T6082] EXT4-fs (loop2): 1 orphan inode deleted
[   93.092731][ T6082] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   93.105075][ T6082] SELinux: (dev loop2, type ext4) getxattr errno 5
[   93.112785][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.220871][ T6082] syz.2.829 (6082) used greatest stack depth: 10048 bytes left
[   93.401308][ T6106] loop1: detected capacity change from 0 to 1024
[   93.428409][ T6106] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (1764!=20869)
[   93.506103][ T6108] lo speed is unknown, defaulting to 1000
[   93.596730][ T6102] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.606711][ T6106] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   93.632536][ T6106] EXT4-fs (loop1): invalid journal inode
[   93.672970][ T6102] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.701407][ T6106] EXT4-fs (loop1): can't get journal size
[   93.713223][ T6106] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.963358][ T6106] __nla_validate_parse: 7 callbacks suppressed
[   93.963379][ T6106] netlink: 72 bytes leftover after parsing attributes in process `syz.1.837'.
[   94.036981][ T6113] loop3: detected capacity change from 0 to 1024
[   94.069685][ T6115] netlink: 96 bytes leftover after parsing attributes in process `syz.0.839'.
[   94.104955][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.169090][ T6115] netlink: 8 bytes leftover after parsing attributes in process `syz.0.839'.
[   94.196247][ T6113] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.238133][ T6115] bond3: entered promiscuous mode
[   94.243355][ T6115] bond3: entered allmulticast mode
[   94.253104][ T6124] bpf_get_probe_write_proto: 20 callbacks suppressed
[   94.253123][ T6124] syz.1.840[6124] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.257838][ T6122] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   94.260652][ T6124] syz.1.840[6124] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.298813][ T6115] 8021q: adding VLAN 0 to HW filter on device bond3
[   94.321724][ T6124] syz.1.840[6124] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   94.324189][ T3295] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.396431][ T6126] loop2: detected capacity change from 0 to 732
[   94.425489][ T6128] lo speed is unknown, defaulting to 1000
[   94.436487][ T6130] FAULT_INJECTION: forcing a failure.
[   94.436487][ T6130] name failslab, interval 1, probability 0, space 0, times 0
[   94.449286][ T6130] CPU: 0 UID: 0 PID: 6130 Comm: syz.3.843 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   94.459922][ T6130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   94.470092][ T6130] Call Trace:
[   94.473467][ T6130]  <TASK>
[   94.476424][ T6130]  dump_stack_lvl+0xf2/0x150
[   94.481059][ T6130]  dump_stack+0x15/0x1a
[   94.485278][ T6130]  should_fail_ex+0x223/0x230
[   94.490046][ T6130]  should_failslab+0x8f/0xb0
[   94.494683][ T6130]  kmem_cache_alloc_node_noprof+0x59/0x320
[   94.500525][ T6130]  ? __alloc_skb+0x10b/0x310
[   94.505187][ T6130]  __alloc_skb+0x10b/0x310
[   94.509627][ T6130]  tipc_buf_acquire+0x2c/0xb0
[   94.514850][ T6130]  tipc_msg_build+0x3c8/0x820
[   94.519599][ T6130]  tipc_send_group_bcast+0x5b9/0x6c0
[   94.524942][ T6130]  ? __pfx_woken_wake_function+0x10/0x10
[   94.530747][ T6130]  __tipc_sendmsg+0x1a9/0x1c40
[   94.535547][ T6130]  ? selinux_socket_sendmsg+0x185/0x1c0
[   94.541278][ T6130]  ? _raw_spin_unlock_bh+0x36/0x40
[   94.546488][ T6130]  ? lock_sock_nested+0x10f/0x140
[   94.551568][ T6130]  ? __pfx_tipc_sendmsg+0x10/0x10
[   94.556712][ T6130]  tipc_sendmsg+0x3e/0x60
[   94.561073][ T6130]  __sock_sendmsg+0x140/0x180
[   94.565876][ T6130]  ____sys_sendmsg+0x312/0x410
[   94.570659][ T6130]  __sys_sendmmsg+0x227/0x4b0
[   94.575379][ T6130]  __x64_sys_sendmmsg+0x57/0x70
[   94.580249][ T6130]  x64_sys_call+0x29aa/0x2dc0
[   94.584937][ T6130]  do_syscall_64+0xc9/0x1c0
[   94.589546][ T6130]  ? clear_bhb_loop+0x55/0xb0
[   94.594233][ T6130]  ? clear_bhb_loop+0x55/0xb0
[   94.598921][ T6130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.604906][ T6130] RIP: 0033:0x7fb88ed85d29
[   94.609328][ T6130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.629063][ T6130] RSP: 002b:00007fb88d3f1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   94.637625][ T6130] RAX: ffffffffffffffda RBX: 00007fb88ef75fa0 RCX: 00007fb88ed85d29
[   94.645601][ T6130] RDX: 0400000000000181 RSI: 00000000200030c0 RDI: 0000000000000003
[   94.653647][ T6130] RBP: 00007fb88d3f1090 R08: 0000000000000000 R09: 0000000000000000
[   94.661651][ T6130] R10: 9200000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.669814][ T6130] R13: 0000000000000000 R14: 00007fb88ef75fa0 R15: 00007fffe7b4a2a8
[   94.677799][ T6130]  </TASK>
[   94.783544][ T6135] FAULT_INJECTION: forcing a failure.
[   94.783544][ T6135] name failslab, interval 1, probability 0, space 0, times 0
[   94.796442][ T6135] CPU: 1 UID: 0 PID: 6135 Comm: syz.1.846 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   94.807183][ T6135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   94.817289][ T6135] Call Trace:
[   94.820597][ T6135]  <TASK>
[   94.823630][ T6135]  dump_stack_lvl+0xf2/0x150
[   94.828444][ T6135]  dump_stack+0x15/0x1a
[   94.832693][ T6135]  should_fail_ex+0x223/0x230
[   94.837410][ T6135]  should_failslab+0x8f/0xb0
[   94.842039][ T6135]  kmem_cache_alloc_noprof+0x52/0x320
[   94.847430][ T6135]  ? audit_log_start+0x34c/0x6b0
[   94.852404][ T6135]  audit_log_start+0x34c/0x6b0
[   94.857219][ T6135]  audit_seccomp+0x4b/0x130
[   94.861757][ T6135]  __seccomp_filter+0x6fa/0x1180
[   94.866785][ T6135]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   94.872484][ T6135]  ? vfs_write+0x596/0x920
[   94.877067][ T6135]  ? putname+0xcf/0xf0
[   94.881171][ T6135]  __secure_computing+0x9f/0x1c0
[   94.886208][ T6135]  syscall_trace_enter+0xd1/0x1f0
[   94.891353][ T6135]  ? fpregs_assert_state_consistent+0x83/0xa0
[   94.897460][ T6135]  do_syscall_64+0xaa/0x1c0
[   94.902069][ T6135]  ? clear_bhb_loop+0x55/0xb0
[   94.906812][ T6135]  ? clear_bhb_loop+0x55/0xb0
[   94.911570][ T6135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.917558][ T6135] RIP: 0033:0x7f463a0c5d29
[   94.922274][ T6135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.941904][ T6135] RSP: 002b:00007f4638737038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.950389][ T6135] RAX: ffffffffffffffda RBX: 00007f463a2b5fa0 RCX: 00007f463a0c5d29
[   94.958661][ T6135] RDX: 0000000004000844 RSI: 00000000200012c0 RDI: 0000000000000004
[   94.966783][ T6135] RBP: 00007f4638737090 R08: 0000000000000000 R09: 0000000000000000
[   94.974771][ T6135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   94.982748][ T6135] R13: 0000000000000000 R14: 00007f463a2b5fa0 R15: 00007ffe70c67928
[   94.990743][ T6135]  </TASK>
[   95.055235][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.848'.
[   95.075987][ T6143] netlink: 4 bytes leftover after parsing attributes in process `syz.1.849'.
[   95.096639][ T6139] hsr_slave_1 (unregistering): left promiscuous mode
[   95.296729][ T6159] lo speed is unknown, defaulting to 1000
[   95.486252][ T6166] netlink: 96 bytes leftover after parsing attributes in process `syz.2.858'.
[   95.558653][ T6173] lo speed is unknown, defaulting to 1000
[   95.728565][ T6166] netlink: 8 bytes leftover after parsing attributes in process `syz.2.858'.
[   95.838317][ T6176] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   95.878070][ T6166] bond4: entered promiscuous mode
[   95.883178][ T6166] bond4: entered allmulticast mode
[   95.888511][ T6166] 8021q: adding VLAN 0 to HW filter on device bond4
[   96.069803][   T29] kauditd_printk_skb: 515 callbacks suppressed
[   96.069820][   T29] audit: type=1326 audit(1736372725.105:6197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.113425][   T29] audit: type=1326 audit(1736372725.145:6198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.116609][ T6192] loop3: detected capacity change from 0 to 512
[   96.136891][   T29] audit: type=1326 audit(1736372725.145:6199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.166586][   T29] audit: type=1326 audit(1736372725.145:6200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.190011][   T29] audit: type=1326 audit(1736372725.145:6201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.207777][ T6192] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[   96.213340][   T29] audit: type=1326 audit(1736372725.145:6202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.221709][ T6192] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.868: invalid indirect mapped block 2683928664 (level 1)
[   96.244838][   T29] audit: type=1326 audit(1736372725.145:6203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.259133][ T6192] EXT4-fs (loop3): Remounting filesystem read-only
[   96.282230][   T29] audit: type=1326 audit(1736372725.145:6204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.290041][ T6192] EXT4-fs (loop3): 1 truncate cleaned up
[   96.312565][   T29] audit: type=1326 audit(1736372725.145:6205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.318667][ T6192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.341840][   T29] audit: type=1326 audit(1736372725.145:6206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6182 comm="syz.1.864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[   96.426719][ T6192] SELinux: (dev loop3, type ext4) getxattr errno 5
[   96.434686][ T6192] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.474245][ T6202] FAULT_INJECTION: forcing a failure.
[   96.474245][ T6202] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.487847][ T6202] CPU: 1 UID: 0 PID: 6202 Comm: syz.2.871 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   96.498467][ T6202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.508550][ T6202] Call Trace:
[   96.511843][ T6202]  <TASK>
[   96.514828][ T6202]  dump_stack_lvl+0xf2/0x150
[   96.519461][ T6202]  dump_stack+0x15/0x1a
[   96.523728][ T6202]  should_fail_ex+0x223/0x230
[   96.528489][ T6202]  should_fail+0xb/0x10
[   96.532660][ T6202]  should_fail_usercopy+0x1a/0x20
[   96.537879][ T6202]  _copy_from_user+0x1e/0xb0
[   96.542512][ T6202]  copy_msghdr_from_user+0x54/0x2a0
[   96.547731][ T6202]  ? __fget_files+0x17c/0x1c0
[   96.552507][ T6202]  __sys_sendmsg+0x13e/0x230
[   96.557220][ T6202]  __x64_sys_sendmsg+0x46/0x50
[   96.561996][ T6202]  x64_sys_call+0x2734/0x2dc0
[   96.566689][ T6202]  do_syscall_64+0xc9/0x1c0
[   96.571248][ T6202]  ? clear_bhb_loop+0x55/0xb0
[   96.575937][ T6202]  ? clear_bhb_loop+0x55/0xb0
[   96.580624][ T6202]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.586583][ T6202] RIP: 0033:0x7f862aeb5d29
[   96.591009][ T6202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.610684][ T6202] RSP: 002b:00007f8629527038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.619108][ T6202] RAX: ffffffffffffffda RBX: 00007f862b0a5fa0 RCX: 00007f862aeb5d29
[   96.627120][ T6202] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000009
[   96.635103][ T6202] RBP: 00007f8629527090 R08: 0000000000000000 R09: 0000000000000000
[   96.643187][ T6202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.651187][ T6202] R13: 0000000000000000 R14: 00007f862b0a5fa0 R15: 00007ffcdb0fe838
[   96.659243][ T6202]  </TASK>
[   96.922693][ T6217] netlink: 96 bytes leftover after parsing attributes in process `syz.2.877'.
[   96.947742][ T6217] netlink: 8 bytes leftover after parsing attributes in process `syz.2.877'.
[   96.966822][ T6217] bond5: entered promiscuous mode
[   96.972054][ T6217] bond5: entered allmulticast mode
[   96.987704][ T6217] 8021q: adding VLAN 0 to HW filter on device bond5
[   97.022683][ T6228] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   97.029969][ T6217] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   97.045855][ T6230] loop3: detected capacity change from 0 to 2048
[   97.128079][ T6237] lo speed is unknown, defaulting to 1000
[   97.147797][ T6230] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.195804][ T6230] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.287228][ T6242] netlink: 4 bytes leftover after parsing attributes in process `syz.1.886'.
[   97.532190][ T6263] lo speed is unknown, defaulting to 1000
[   97.650685][ T6273] lo speed is unknown, defaulting to 1000
[   97.807079][ T6289] FAULT_INJECTION: forcing a failure.
[   97.807079][ T6289] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.820378][ T6289] CPU: 1 UID: 0 PID: 6289 Comm: syz.1.903 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   97.830996][ T6289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   97.841147][ T6289] Call Trace:
[   97.844444][ T6289]  <TASK>
[   97.847420][ T6289]  dump_stack_lvl+0xf2/0x150
[   97.852059][ T6289]  dump_stack+0x15/0x1a
[   97.856312][ T6289]  should_fail_ex+0x223/0x230
[   97.861030][ T6289]  should_fail+0xb/0x10
[   97.865245][ T6289]  should_fail_usercopy+0x1a/0x20
[   97.870336][ T6289]  _copy_from_user+0x1e/0xb0
[   97.875006][ T6289]  copy_msghdr_from_user+0x54/0x2a0
[   97.880523][ T6289]  ? __fget_files+0x17c/0x1c0
[   97.885316][ T6289]  __sys_sendmsg+0x13e/0x230
[   97.889948][ T6289]  __x64_sys_sendmsg+0x46/0x50
[   97.894828][ T6289]  x64_sys_call+0x2734/0x2dc0
[   97.899548][ T6289]  do_syscall_64+0xc9/0x1c0
[   97.904079][ T6289]  ? clear_bhb_loop+0x55/0xb0
[   97.908837][ T6289]  ? clear_bhb_loop+0x55/0xb0
[   97.913530][ T6289]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.919459][ T6289] RIP: 0033:0x7f463a0c5d29
[   97.923883][ T6289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.943840][ T6289] RSP: 002b:00007f4638737038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   97.952425][ T6289] RAX: ffffffffffffffda RBX: 00007f463a2b5fa0 RCX: 00007f463a0c5d29
[   97.960443][ T6289] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[   97.968422][ T6289] RBP: 00007f4638737090 R08: 0000000000000000 R09: 0000000000000000
[   97.976550][ T6289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.984529][ T6289] R13: 0000000000000000 R14: 00007f463a2b5fa0 R15: 00007ffe70c67928
[   97.992513][ T6289]  </TASK>
[   98.201850][ T6307] loop4: detected capacity change from 0 to 128
[   98.228089][ T6307] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   98.245416][ T6309] loop0: detected capacity change from 0 to 2048
[   98.247382][ T6307] ext4 filesystem being mounted at /187/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   98.458102][ T6309] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.529432][ T6309] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.613860][ T6328] hsr_slave_1 (unregistering): left promiscuous mode
[   98.629899][ T6330] lo speed is unknown, defaulting to 1000
[   99.048481][ T3301] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   99.127113][ T6350] loop2: detected capacity change from 0 to 732
[   99.131856][ T6343] __nla_validate_parse: 2 callbacks suppressed
[   99.131875][ T6343] netlink: 12 bytes leftover after parsing attributes in process `syz.0.925'.
[   99.338625][ T6368] loop1: detected capacity change from 0 to 128
[   99.464291][ T6376] netlink: 8 bytes leftover after parsing attributes in process `syz.4.933'.
[   99.474524][ T6365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.929'.
[   99.487758][ T6368] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   99.498506][ T6376] IPVS: Error joining to the multicast group
[   99.511096][ T6368] ext4 filesystem being mounted at /193/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   99.562870][ T6382] netlink: 4 bytes leftover after parsing attributes in process `syz.0.934'.
[   99.668620][ T6406] netlink: 12 bytes leftover after parsing attributes in process `syz.4.939'.
[   99.719346][ T6432] netlink: 4 bytes leftover after parsing attributes in process `syz.0.938'.
[   99.821787][ T6449] lo speed is unknown, defaulting to 1000
[   99.868434][ T6456] FAULT_INJECTION: forcing a failure.
[   99.868434][ T6456] name failslab, interval 1, probability 0, space 0, times 0
[   99.881199][ T6456] CPU: 0 UID: 0 PID: 6456 Comm: syz.2.943 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[   99.891913][ T6456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   99.901989][ T6456] Call Trace:
[   99.905273][ T6456]  <TASK>
[   99.908210][ T6456]  dump_stack_lvl+0xf2/0x150
[   99.912830][ T6456]  dump_stack+0x15/0x1a
[   99.917169][ T6456]  should_fail_ex+0x223/0x230
[   99.921868][ T6456]  should_failslab+0x8f/0xb0
[   99.926487][ T6456]  kmem_cache_alloc_noprof+0x52/0x320
[   99.932149][ T6456]  ? audit_log_start+0x34c/0x6b0
[   99.937111][ T6456]  audit_log_start+0x34c/0x6b0
[   99.941895][ T6456]  audit_seccomp+0x4b/0x130
[   99.946457][ T6456]  __seccomp_filter+0x6fa/0x1180
[   99.951518][ T6456]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   99.957176][ T6456]  ? vfs_write+0x596/0x920
[   99.961702][ T6456]  __secure_computing+0x9f/0x1c0
[   99.966660][ T6456]  syscall_trace_enter+0xd1/0x1f0
[   99.971762][ T6456]  ? fpregs_assert_state_consistent+0x83/0xa0
[   99.977899][ T6456]  do_syscall_64+0xaa/0x1c0
[   99.982409][ T6456]  ? clear_bhb_loop+0x55/0xb0
[   99.987097][ T6456]  ? clear_bhb_loop+0x55/0xb0
[   99.991877][ T6456]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.997822][ T6456] RIP: 0033:0x7f862aeb5d29
[  100.002239][ T6456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.021855][ T6456] RSP: 002b:00007f8629527038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[  100.030308][ T6456] RAX: ffffffffffffffda RBX: 00007f862b0a5fa0 RCX: 00007f862aeb5d29
[  100.038731][ T6456] RDX: 000000000000000f RSI: 0000000000000000 RDI: ffffffffffffffff
[  100.046866][ T6456] RBP: 00007f8629527090 R08: 0000000000000000 R09: 0000000000000000
[  100.055071][ T6456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.063053][ T6456] R13: 0000000000000000 R14: 00007f862b0a5fa0 R15: 00007ffcdb0fe838
[  100.071042][ T6456]  </TASK>
[  100.195576][ T3297] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  100.299421][ T6474] netlink: 12 bytes leftover after parsing attributes in process `syz.1.951'.
[  100.300754][ T6476] syz.3.950[6476] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.308637][ T6476] syz.3.950[6476] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.320773][ T6476] syz.3.950[6476] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.343135][ T6472] loop2: detected capacity change from 0 to 2048
[  100.366182][ T6457] loop4: detected capacity change from 0 to 2048
[  100.375820][ T6480] netlink: 12 bytes leftover after parsing attributes in process `syz.3.952'.
[  100.409782][ T6472] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.430931][ T6457] Alternate GPT is invalid, using primary GPT.
[  100.437533][ T6457]  loop4: p2 p3 p7
[  100.451194][ T6492] netlink: 12 bytes leftover after parsing attributes in process `syz.3.955'.
[  100.472886][ T6472] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.479413][ T2998] Alternate GPT is invalid, using primary GPT.
[  100.488274][ T2998]  loop4: p2 p3 p7
[  100.489817][ T6495] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  100.503552][ T6495] loop1: detected capacity change from 0 to 512
[  100.523901][ T6495] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  100.611735][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[  100.626501][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  100.646197][ T6495] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.657832][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  100.666505][ T6457] loop4: detected capacity change from 0 to 1024
[  100.671851][ T6495] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.676510][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[  100.693178][ T6457] journal_path: Non-blockdev passed as './file1'
[  100.700173][ T6510] loop3: detected capacity change from 0 to 512
[  100.701610][ T6457] EXT4-fs: error: could not find journal device path
[  100.774869][ T6513] lo speed is unknown, defaulting to 1000
[  100.985785][ T6510] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  101.029636][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.038043][ T6510] EXT4-fs (loop3): mount failed
[  101.046803][ T4237] udevd[4237]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  101.049107][ T3286] udevd[3286]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[  101.098601][ T6518] FAULT_INJECTION: forcing a failure.
[  101.098601][ T6518] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.111839][ T6518] CPU: 0 UID: 0 PID: 6518 Comm: syz.1.959 Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  101.122672][ T6518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  101.132807][ T6518] Call Trace:
[  101.136090][ T6518]  <TASK>
[  101.139289][ T6518]  dump_stack_lvl+0xf2/0x150
[  101.143944][ T6518]  dump_stack+0x15/0x1a
[  101.148156][ T6518]  should_fail_ex+0x223/0x230
[  101.152853][ T6518]  should_fail+0xb/0x10
[  101.157017][ T6518]  should_fail_usercopy+0x1a/0x20
[  101.162170][ T6518]  _copy_from_user+0x1e/0xb0
[  101.166857][ T6518]  copy_msghdr_from_user+0x54/0x2a0
[  101.172101][ T6518]  ? __fget_files+0x17c/0x1c0
[  101.176862][ T6518]  __sys_sendmsg+0x13e/0x230
[  101.181505][ T6518]  __x64_sys_sendmsg+0x46/0x50
[  101.186369][ T6518]  x64_sys_call+0x2734/0x2dc0
[  101.191074][ T6518]  do_syscall_64+0xc9/0x1c0
[  101.195690][ T6518]  ? clear_bhb_loop+0x55/0xb0
[  101.200480][ T6518]  ? clear_bhb_loop+0x55/0xb0
[  101.205260][ T6518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.211253][ T6518] RIP: 0033:0x7f463a0c5d29
[  101.215677][ T6518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.235298][ T6518] RSP: 002b:00007f4638737038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.243720][ T6518] RAX: ffffffffffffffda RBX: 00007f463a2b5fa0 RCX: 00007f463a0c5d29
[  101.251738][ T6518] RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000000005
[  101.259759][ T6518] RBP: 00007f4638737090 R08: 0000000000000000 R09: 0000000000000000
[  101.267736][ T6518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.275788][ T6518] R13: 0000000000000000 R14: 00007f463a2b5fa0 R15: 00007ffe70c67928
[  101.283795][ T6518]  </TASK>
[  101.294830][ T6522] loop1: detected capacity change from 0 to 512
[  101.318313][ T4237] ==================================================================
[  101.326443][ T4237] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_mknod
[  101.333593][ T4237] 
[  101.335966][ T4237] write to 0xffff88810478e6bc of 4 bytes by task 3550 on cpu 1:
[  101.343612][ T4237]  shmem_mknod+0x136/0x180
[  101.348051][ T4237]  shmem_create+0x34/0x40
[  101.352392][ T4237]  path_openat+0xe92/0x1fa0
[  101.356907][ T4237]  do_filp_open+0x107/0x230
[  101.361428][ T4237]  do_sys_openat2+0xab/0x120
[  101.366027][ T4237]  __x64_sys_openat+0xf3/0x120
[  101.370797][ T4237]  x64_sys_call+0x2b30/0x2dc0
[  101.375480][ T4237]  do_syscall_64+0xc9/0x1c0
[  101.379993][ T4237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.385910][ T4237] 
[  101.388232][ T4237] read to 0xffff88810478e6bc of 4 bytes by task 4237 on cpu 0:
[  101.395778][ T4237]  fill_mg_cmtime+0x58/0x280
[  101.400372][ T4237]  generic_fillattr+0x241/0x330
[  101.405228][ T4237]  shmem_getattr+0x17b/0x200
[  101.409837][ T4237]  vfs_statx_path+0x171/0x2d0
[  101.414532][ T4237]  vfs_statx+0xe1/0x170
[  101.418692][ T4237]  __se_sys_newfstatat+0xdc/0x300
[  101.423726][ T4237]  __x64_sys_newfstatat+0x55/0x70
[  101.428767][ T4237]  x64_sys_call+0x236d/0x2dc0
[  101.433454][ T4237]  do_syscall_64+0xc9/0x1c0
[  101.437980][ T4237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.443897][ T4237] 
[  101.446221][ T4237] value changed: 0x155dc67f -> 0x1584f666
[  101.451942][ T4237] 
[  101.454263][ T4237] Reported by Kernel Concurrency Sanitizer on:
[  101.460412][ T4237] CPU: 0 UID: 0 PID: 4237 Comm: udevd Not tainted 6.13.0-rc6-syzkaller-00046-g0b7958fa05d5 #0
[  101.470659][ T4237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  101.480727][ T4237] ==================================================================
[  101.540825][   T29] kauditd_printk_skb: 694 callbacks suppressed
[  101.540843][   T29] audit: type=1400 audit(1736372730.355:6898): avc:  denied  { write } for  pid=6523 comm="syz.0.961" name="random" dev="devtmpfs" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  101.580671][ T6522] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  101.612374][ T6522] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.625121][ T6522] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.637946][   T29] audit: type=1400 audit(1736372730.675:6899): avc:  denied  { ioctl } for  pid=6517 comm="syz.1.959" path="/198/file1/file1" dev="loop1" ino=15 ioctlcmd=0x5839 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  101.662795][   T29] audit: type=1326 audit(1736372730.675:6900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.686233][   T29] audit: type=1326 audit(1736372730.675:6901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.709630][   T29] audit: type=1326 audit(1736372730.675:6902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.733093][   T29] audit: type=1326 audit(1736372730.675:6903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.756335][   T29] audit: type=1326 audit(1736372730.675:6904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.779702][   T29] audit: type=1326 audit(1736372730.675:6905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.802912][   T29] audit: type=1326 audit(1736372730.675:6906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.826374][   T29] audit: type=1326 audit(1736372730.675:6907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6517 comm="syz.1.959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f463a0c5d29 code=0x7ffc0000
[  101.853718][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.860942][ T6530] lo speed is unknown, defaulting to 1000