last executing test programs:

2.87334421s ago: executing program 0 (id=886):
r0 = syz_genetlink_get_family_id$smc(&(0x7f00000005c0), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'pim6reg0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="270e000000170000000004"], 0x14}, 0x1, 0x40030000000000, 0x0, 0x40000}, 0x0)

2.509822249s ago: executing program 1 (id=888):
r0 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000080000000000000069d082c9a783d4d8ee754e4829f7782eb83252c8677b959d856bf4", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="54ab15e0d11800000000008000ffffffff000000f818110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008", @ANYRES32=r2, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @broadcast}, 0x2}}, 0x2e)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @broadcast}, 0x2, 0x9800}}, 0x2e)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffa}]})
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$poke(0x5, r8, &(0x7f0000000000), 0x8)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r9}, 0x10)
close(r0)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000003c0))
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, &(0x7f0000000000)={{0x87, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'wrr\x00', 0x4, 0x81, 0x5}, {@multicast1, 0x4e23, 0x10000, 0x1cb, 0x12d5c, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r7, 0x0, 0x485, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/mcfilter\x00')
r10 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r10, &(0x7f00000000c0)=[{&(0x7f0000000140)="de", 0x1}], 0x1, 0x0, 0x0)

2.424346389s ago: executing program 0 (id=889):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x25, &(0x7f00000003c0)=0xb4e, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'bond0\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x2, [{}, {0xfffffffe, 0x80003}]}})
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x10001, 0x0, 0x0, 0x41100, 0x28, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
msync(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4)

2.397794678s ago: executing program 4 (id=890):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x20)
connect$l2tp6(r0, &(0x7f0000000040)={0xa, 0x0, 0x7, @private1, 0x6, 0x1}, 0x20)

2.366037288s ago: executing program 1 (id=892):
r0 = open(&(0x7f0000000000)='./bus\x00', 0x44542, 0x82)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r1, @ANYRESOCT=r0], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x10)
ftruncate(r0, 0xee72)
socket(0x11, 0x800000003, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b708000038ba9a7e7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1000407, &(0x7f00000002c0)={[{@orlov}, {@norecovery}, {@orlov}, {@oldalloc}]}, 0x0, 0x5eb, &(0x7f0000000dc0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
pipe2$9p(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r7 = dup(r6)
write$P9_RLERRORu(r7, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$binfmt_elf64(r7, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r5, @ANYBLOB=',wfdno=', @ANYRESHEX=r7])

2.252031858s ago: executing program 4 (id=894):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000002700)=@raw={'raw\x00', 0x8, 0x3, 0x218, 0x0, 0x8, 0xfa04, 0x0, 0x6c02, 0x180, 0x194, 0x194, 0x180, 0x194, 0x3, 0x0, {[{{@ip={@empty=0x1e00, @broadcast, 0x0, 0x0, 'veth0_to_hsr\x00', 'veth0_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0xa0, 0xc8, 0x0, {0x0, 0x74020000}, [@common=@inet=@tcp={{0x30}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ip={@multicast2, @dev, 0x0, 0x0, '\x00', 'tunl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x278)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x27, 0x3, 0x9)
mlock(&(0x7f00001f0000/0x2000)=nil, 0x2000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$IP_VS_SO_GET_TIMEOUT(r5, 0x0, 0x486, &(0x7f0000000700), &(0x7f00000008c0)=0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r7}, 0x10)
sendmsg$netlink(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
r8 = fcntl$dupfd(r0, 0x0, r0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r8, 0xc0505350, &(0x7f0000000200)={{0xc0}, {0x2, 0x8}, 0x2, 0x1, 0x3})
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x100080a, &(0x7f0000000f80)=ANY=[@ANYRES64, @ANYBLOB="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", @ANYRES16=r2], 0x1, 0x66b, &(0x7f0000000900)="$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")
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000580), r4)
sendmsg$IPVS_CMD_DEL_DAEMON(r3, &(0x7f00000006c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40000000}, 0xfffffffffffffe23, &(0x7f00000005c0)={&(0x7f0000000780)={0x9c, r9, 0x2, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x89}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xc9}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4fb}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x76}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x4d}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@loopback}, @IPVS_SVC_ATTR_TIMEOUT={0x0, 0x8, 0xfffffffe}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x16}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40011}, 0x20048010)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=@ipv6_newroute={0x1c, 0x18, 0x1ef, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}}, 0x1c}, 0x1, 0x11}, 0x0)
r10 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r10, &(0x7f0000000080)={0x24, @short={0x2, 0x0, 0xaaa1}}, 0x14)
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000500)=ANY=[], 0x202400)
chmod(&(0x7f0000000000)='./file0\x00', 0x101)

2.227136158s ago: executing program 0 (id=895):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"/1664], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000640)=ANY=[@ANYBLOB="18020000faffffff0000000000000000850000002c000000850000000700000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000002480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x7, 0x9)
read(r4, &(0x7f0000032440)=""/102364, 0x18fdc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.176457768s ago: executing program 3 (id=896):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r2 = dup(r1)
ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f00000003c0)={0x23, 0x3, 0x12, 0x4, 0x0, 0x8000, 0x0})
name_to_handle_at(r2, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)=@FILEID_INO32_GEN={0x8, 0x1, {0xbf, 0x8}}, &(0x7f00000001c0), 0x200)

2.115696368s ago: executing program 2 (id=897):
r0 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000080000000000000069d082c9a783d4d8ee754e4829f7782eb83252c8677b959d856bf4", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="54ab15e0d11800000000008000ffffffff000000f818110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008", @ANYRES32=r2, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @broadcast}, 0x2}}, 0x2e)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @broadcast}, 0x2, 0x9800}}, 0x2e)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffa}]})
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$poke(0x5, r8, &(0x7f0000000000), 0x8)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r9}, 0x10)
close(r0)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000003c0))
setsockopt$IP_VS_SO_SET_ADD(r7, 0x0, 0x482, &(0x7f0000000040)={0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x3, 'dh\x00', 0x1, 0x7, 0x49}, 0x2c)
setsockopt$IP_VS_SO_SET_FLUSH(r7, 0x0, 0x485, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/mcfilter\x00')
r10 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r10, &(0x7f00000000c0)=[{&(0x7f0000000140)="de", 0x1}], 0x1, 0x0, 0x0)

2.096959497s ago: executing program 1 (id=898):
syz_emit_ethernet(0x76, &(0x7f00000010c0)={@broadcast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x68, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @redirect={0x3, 0x0, 0x0, @broadcast=0x1000000, {0x13, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @empty, {[@timestamp_addr={0x44, 0xc, 0x0, 0x1, 0x0, [{@remote, 0x4e210000}]}, @timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{@multicast1}, {}, {@dev}, {@private}, {@empty}]}]}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
socket$kcm(0x29, 0x2, 0x0)
r0 = socket$inet6(0xa, 0x803, 0x6)
syz_open_dev$vcsn(&(0x7f00000004c0), 0x7ff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
socket$inet(0x2, 0x2, 0x1)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x2031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2000000, &(0x7f0000000080), 0x3, 0x44d, &(0x7f0000000a40)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0xf, @empty}, 0x1c)

2.088370488s ago: executing program 2 (id=899):
r0 = syz_genetlink_get_family_id$smc(&(0x7f00000005c0), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'pim6reg0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="270e000000170000000004"], 0x14}, 0x1, 0x40030000000000, 0x0, 0x40000}, 0x0)

2.023265907s ago: executing program 2 (id=900):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r0, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="8b3300000000000000001500000008000300", @ANYRES32=0x0, @ANYBLOB="aea131962c147929b20760e877bcdc35baad02bb6d77f1a50a239b3d2dd247ad21dc8da29cab51f1296f00fdfef1df0433a80bf5029e363467f6b8d72382a1ececd007bec96469dfb2e6a4dd964c6b7985ffa38e811d7af6c027b1769995d548f66b9b4f112fcb6b58bae32bdec6b1e38ecac79dc753a76abf66978df7da33e2a0970ae04c"], 0x1c}, 0x1, 0x0, 0x0, 0x24008080}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0)=@generic={&(0x7f0000000180)='./file0\x00', 0x0, 0x10}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="1e00000001800000ffffffff0300000020000000cac73a1d6592e443e1c80aac950d94449b797fb0ca70b8fad2cc609eec49ed8ce7f3b28d82e6bb2d2e522cf1893043dadba09f17b56a73c8c0fe94205e6ffd1b50b1ab890b192e103ac505aeb9595daba722724ddbd7cb04078db1937076bdf660628e7200719e49ebd114022ee353aef902", @ANYRES32=r5, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="0400000004000000050000000100"/28], 0x50)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000380), 0x181040, 0x0)
removexattr(&(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000540)=@known='user.syz\x00')
madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x17)
madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x204092, &(0x7f0000000000), 0x6, 0x50d, &(0x7f00000006c0)="$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")
quotactl$Q_GETFMT(0xffffffff80000400, 0x0, 0x0, &(0x7f00000011c0))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000d00)=ANY=[@ANYBLOB="bcf5c50e5f4a72c842b0853e68aeae53303729b03116e14edb55e95cbeb011cffa868d7dc19bdf9a372a7b8b7660cfceec506422c917094493665c3ea024a565fabf3aaf8724041b096e3d43d8ab2bf7019ac05751cdaea04ba4cbbad83df676007d48", @ANYRES32=r6, @ANYBLOB="76d85cbd2c1222546ba037d794505a81db70916b16dee78fea29de660cec831a22562a7b538c3ed5148ed68c795000008c53c618fcb2e233031deaa7cba64157da4106b7c9a679f2731e23c89c293747c8c6540c35188d3ed771750d76c7d0233a055c993bec2768f7d8f11ba31add8b6cd5b85e101af91114ef4b13750ad97bc14dace3e9dbd96d09d4f99cec529db31a190bc408aead08941f362ebfeac30774599ce2a423ffa542b55aaea0"], 0x3c}, 0x1, 0x0, 0x0, 0x200000d0}, 0x4008050)

2.020100777s ago: executing program 3 (id=901):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
epoll_create1(0x80000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
add_key(&(0x7f0000000080)='asymmetric\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
request_key(0x0, &(0x7f0000001040)={'syz', 0x2}, &(0x7f0000001080)='\x00', 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = getpid()
setreuid(0xee00, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x3, 0xf2)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000380)={0x3, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000b26d3bf74401ab86000000000018090000", @ANYBLOB="b2a55fd49115de0971bea9574b106de3e0e5b0cd8e807a908285780d7573e01d7dbf50fc20ee4a478c4a5454b1c46d6b63fc77b515a2aa05501a3b2402028609a88645de5d204c638c0b781104c1f8634a92a70bdd491fcb8f7ee186b469de2aa84f15510c103e26da24c6e57bf595a556a7e70a331750cf42f76e31e985bd76b0dacb0e672723353e4f45fcb7e919df10842d14f7add8d791a9252d68259e5c3a800a3b32af3bf43f82812130ab6776937c2fcf86e4f3d34d1b319631d911f236afd745faa2c5b651bf2393eb66a2d3cab1e9ad792690d74dfac0c598fb82bfb4", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000ccd4da66e17fe6bb6b0000000087020000f8ffffffb703000002000000b704000000000000850000004300000095dbb041ad21d9fe525b40736a18e16856a8e952205343fb066f7d08c48cd78357ad07806394e6629bd3d23935e3d2d98a3e12c18101624539f73f0a1211be42249317fe6b4528d09c4dc21e11ec2b248c2c18e891b2caa4b2720c190e365c137a910fb40f29a6f1f9920dbf5fac85abb9f8bd82c0f9a93258f6571e8bc669e471c9e458096346cd364ce1f3faf12dd90386fd9e58cfded36fc2ce5bc9"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_pidfd_open(r1, 0x0)
setns(r3, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x14840000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0x0], 0x1}, 0x58)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x15, 0xe, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000003c0)='kmem_cache_free\x00', r5}, 0x18)
close_range(r4, r4, 0x2)
socket$inet6(0xa, 0x802, 0x8)

2.019110387s ago: executing program 4 (id=902):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xb, 0x10, &(0x7f0000000280)=ANY=[@ANYRESOCT=r0, @ANYRES16=<r2=>r0, @ANYRES32=r0, @ANYRESHEX, @ANYRESOCT=r0, @ANYRESOCT, @ANYRESDEC, @ANYRES8=r0], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r3 = socket$unix(0x1, 0x1, 0x0)
close(r3)
r4 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r4, 0x1, 0x2, &(0x7f0000000040)=0xffff, 0x4)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a00000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x1008002, &(0x7f0000001300)={[{@grpquota}, {@sysvgroups}, {@abort}, {@usrquota}, {@dioread_nolock}, {@jqfmt_vfsv0}, {@nomblk_io_submit}, {@stripe={'stripe', 0x3d, 0xffff}}], [{@obj_role={'obj_role', 0x3d, 'grpquota\x8f\xa2N\x15\xb7\xf0\xb0\xb5j\xf6\xad\x80\x880\xa1\xfa\xcc-\x8c\xa2\xd0\x8b\x91\xd7d\x18^\xa29\x91\xb9\xb1\x15\x83\xc2h^E\xcb\xe5X\xc2\x856\xcc C\xc5w%\r\xa1\xb4\xd6\x963\x8b\'\x1f\xbb\xfb(\xea\xfa\xbb&-\xf9\x16HL4\x7fy>\x88\xf8_\xd6\xb99cp\xfa\xcd\xe2\xe8C\xb4\x83Z\xc4\x80\xad\x10\xa8\xec\x86\x1bu\xd4\xedU\xf4\xca#\n;\x99\x99\xf7\x1a\xe8aZ\xc7;H\xb5D\x9b\x92c\xc1\xb9\x90\xa4n\xcb\x82\x9d\xff\x01\x028EH\x1e\xfa\x9cX|\xecrx\x03O\x1c\x8f\x1df\xcd\xd4*\xe8\x9c\\=u\x90\\w\x8d\xceCZ\xfd\x11\x8e\xe7\xbe\x7f{\xfa\x8d\xb1\x01$\xe8\xbc\f\x80w\x0f\xd3\xda\xe8\x0e\xa9\xe6\x16\x17\xf7\n\x9cc\xba\xddc\xef\x85\f\xfdu\x1c\xe7\xeb\x1b\x00\x00\x00\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, 'memory.events\x00'}}, {@audit}, {@appraise}]}, 0x0, 0x5e0, &(0x7f0000000bc0)="$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")
syz_open_dev$hidraw(&(0x7f0000000080), 0x9, 0x114a41)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f00000011c0)={"69951f3f0bdb36da439195def3fffe00", 0x0, 0x0, {0x4, 0x3}, {0x7, 0x1}, 0x5, [0x3, 0x9, 0x7ff, 0x6, 0xfffffffffffffffe, 0x10000400, 0xd, 0x0, 0x0, 0x6, 0x6, 0x8000082, 0xe, 0x10000000000000bd, 0x7, 0x80008006]})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="17000000384232b7102736e8ace221b5c11086472d1e8faabd946aff522027d512223fa143b30bc8b776a818db2aadf1cb38be5a28035bf32427680f763d054c79e1e41d7941b62510671204b5b4440356ed34bcf59049f307166270e6efe74ab5fab65087cc9008", @ANYRESOCT=r2], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500"], 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0xd, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r6, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r6, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r6, 0x0, 0x0, 0x0, 0x0, 0x0)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreqsrc(r7, 0x0, 0x27, &(0x7f0000000000)={@multicast1=0xe000bb00, @remote, @private=0xa010100}, 0xc)
r8 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
socket$netlink(0x10, 0x3, 0x0)
r9 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r9, 0x8922, &(0x7f0000000180)={'lo\x00'})

1.597820385s ago: executing program 4 (id=903):
r0 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000000000080000000000000069d082c9a783d4d8ee754e4829f7782eb83252c8677b959d856bf4", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="54ab15e0d11800000000008000ffffffff000000f818110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008", @ANYRES32=r2, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @broadcast}, 0x2}}, 0x2e)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @broadcast}, 0x2, 0x9800}}, 0x2e)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffa}]})
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000080))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)
ptrace$poke(0x5, r8, &(0x7f0000000000), 0x8)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r9}, 0x10)
close(r0)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000003c0))
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, &(0x7f0000000000)={{0x87, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'wrr\x00', 0x4, 0x81, 0x5}, {@multicast1, 0x4e23, 0x10000, 0x1cb, 0x12d5c, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r7, 0x0, 0x485, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/mcfilter\x00')
r10 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
pwritev(r10, &(0x7f00000000c0)=[{&(0x7f0000000140)="de", 0x1}], 0x1, 0x0, 0x0)

1.322498445s ago: executing program 4 (id=904):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095", @ANYRESDEC=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x16)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x16, 0xc, &(0x7f0000000900)=ANY=[@ANYRES64=r2, @ANYRES16=r0, @ANYRES32, @ANYRESDEC=r0, @ANYBLOB="5687f69c042ce3254c8be3694a52cd692a6c81719ebff3bdae82b2a342ee9a4bb0c604a49c849253e1a87500bc70256e8f839ea42dcab0a830afd515835e7f3fdeee1ac15ff6773672f30f8590f126d6197e", @ANYRESDEC, @ANYRESOCT=r0, @ANYRES64=r1], &(0x7f0000000180)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x1f)
io_setup(0x9d0, &(0x7f0000000a80)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101042, 0x0)
io_submit(r3, 0x1, &(0x7f00000002c0)=[&(0x7f0000000280)={0xffffff7f00000000, 0x0, 0x0, 0x0, 0x5, r4, 0x0, 0x0, 0xfffffffffffffffc}])
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e00001c00e900ff00"/20, @ANYRES32=0x1, @ANYBLOB="002000000000000000000000000000000000000013e7799d8688fd5813e9d1b1326e55750ab412f9f35150d5ae6932742adae8", @ANYRES32=0x0, @ANYBLOB="c464e5782f5c091768df92835adcc73e6bac29c3869a09032c09f7a0f5632a2c18a26b02c8be2a255803c00a98d6ee28b45ec6a5c4492e9ada18d7cf6132cd2b59249607af0d91fb6c0bbceae47ff93012c02ecdc9305b73f07f5623383ef224d5998b19f0b033d5b393f921437f1b79f769ac2812a147af860c2c6c00d0efe2e96bd7db1c008fe2538098467623c2be1c88ba45f6498d00d595ac3a68cd639880f06f722f066a296e7d15fe8d5376929b69d27b625d5e1abecdb87c2abc", @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
tgkill(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10)
sync()
r7 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r7, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x66010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x8da}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1f, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$netlink(0x10, 0x3, 0x8000000004)
r11 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r11, 0x107, 0xa, &(0x7f00000003c0)=0x2, 0x4)
setsockopt$packet_rx_ring(r11, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="1c0000004817578b2a91dd8f5b23f32b3c868509786132294fc8e993f65ff4c367796c67f5861d4969853f4b778a5725a1e80d84ee04f4ff66d2d29e5620942dd116489b4ae6086f5826bfffe106f9d6c2ed61830384b3a061bddb982c3608cff037754b0a6804429ac9d067c31261e2a104e383b4603ab19693d9021b5eab4e902e4608ed32e1af817142f75bb8e5707a578a7e6bede9f7bcc443b22217000d0ac4b5998772d33db3808da1e21e59247731af9a885f97b60f558b239e5ddb8f5c145284d0a1a6b616ab8ca63d7df032ee93c0", @ANYRES16, @ANYBLOB="010001000000000000002e00000008000200", @ANYRESHEX, @ANYRES8], 0x1c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
writev(r10, &(0x7f0000000140)=[{&(0x7f00000004c0)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r8}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x790, @void, @value}, 0x94)

1.280324244s ago: executing program 0 (id=905):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x25, &(0x7f00000003c0)=0xb4e, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'bond0\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x2, [{}, {0xfffffffe, 0x80003}]}})
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x10001, 0x0, 0x0, 0x41100, 0x28, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
msync(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4)

1.164293834s ago: executing program 0 (id=906):
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000380)={<r0=>0x0, @in6={{0xa, 0x4e22, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0x401}}}, &(0x7f00000001c0)=0x84)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000440)={r0, 0x7, 0x9f, 0x7}, &(0x7f0000000480)=0x10)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x2, 0x800800000003}, 0xb702, 0x5dd9, 0x3, 0x5, 0x0, 0x8, 0xff7d, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
quotactl$Q_GETNEXTQUOTA(0x0, &(0x7f0000002040)=@filename='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)
socket(0x1d, 0x3, 0xfff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000000306010200000000000000000000000005000100d1"], 0x1c}}, 0x0)

1.032052744s ago: executing program 3 (id=907):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x19, 0x13, &(0x7f0000000280)=ANY=[@ANYRES16], &(0x7f00000009c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = io_uring_setup(0x5a2c, &(0x7f0000000000)={0x0, 0x90de, 0x800, 0x2, 0x3d4})
r2 = syz_io_uring_setup(0x1b3a, &(0x7f0000000a80)={0x0, 0x0, 0x40, 0xfffffffe, 0xfffffffe, 0x0, r1}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)='./file0\x00', 0x20, 0x2000})
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
syz_mount_image$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x204c800, 0x0, 0x0, 0x0, &(0x7f0000000000))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x9, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000300180100002020702500000000000020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000800000000000095147328ff423acb9f2fdb908925a1cc09d7ad388da6836e58ab6d426e7e3c8cab670ecdef00"/114], 0x0, 0x2, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='kfree\x00', r4}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x200, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_REAPURB(r5, 0x4008550c, &(0x7f0000002680))
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
fdatasync(r6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mlock2(&(0x7f0000004000/0x4000)=nil, 0x40ef, 0x0)
ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002302230102090500000010000020d3"])
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020e0000150000000000000000000000030005000000000002004e24ac1e00010000000000000000030006003c000000020000fc3400000000000000000000000100180000"], 0xa8}}, 0x0)

723.901523ms ago: executing program 0 (id=908):
r0 = socket(0x10, 0x803, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$eJzs3U1vG1sZAODXzpeTm97kXu4CENBSCgVVdRK3jaouoKwQQpUQXYLUhsSNothxFDulCV2k/wGJSqxgyQ9g3RV7Ngh2bMoCiY8I1FRiYTTjSeomdpOSNI7i55FGM+eMM+85ieec+nXtE0DfuhQRWxExHBEPI2Iiq89lW9xtbcnjXm0/nd/Zfjqfi2bz/j9z6fmkLtp+JvFRds1CRPzoexE/zR2MW9/YXJ6rVMprWXmqUV2dqm9sXl+qzi2WF8srpdLszOz07Ru3SifW14vV4ezoyy//sPWtnyfNGs9q2vtxklpdH9qLE9nv/AcfIlgPDETEYPb8yVzoZXt4P/mI+DQiLqf3/0QMpH9NAOA8azYnojnRXgYAzrt8mgPL5YtZLmA88vlisZXD+yzG8pVavXHtUW19ZaGVK5uMofyjpUp5OssVTsZQLinPpMdvyqV95RsR8UlE/GJkNC0X52uVhV7+wwcA+thH++b//4y05n8A4Jwr9LoBAMCpM/8DQP8x/wNA/zH/A0D/Mf8DQP8x/wNA/zH/A0Bf+eG9e8nW3Mm+/3rh8cb6cu3x9YVyfblYXZ8vztfWVouLtdpi+p091cOuV6nVVmduxvqTyW+v1htT9Y3NB9Xa+krjQfq93g/KQ6fSKwDgXT65+OLPuYjYujOabtG2loO5Gs63fK8bAPTMQK8bAPSM1b6gfx3jNb70AJwTHZbofUshIkb3VzabzeaHaxLwgV39gvw/9Ku2/L//BQx9Rv4f+lfX/P+BF/vAedNs5o665n8c9YEAwNkmxw90ef//02z/2+zNgZ8s7H/E8/0VPlEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA/9hd/7eYrdwxHvl8sRhxISImYyj3aKlSno6IjyPiTyNDI0l5psdtBgCOK/+3XLb+19WJK+P7zw7nXo+k+4j42a/u//LJXKOx9sek/l979Y3nWX2pF+0HAA6zO0+n+7YX8q+2n87vbqfZnr9/NyIKrfg728Oxsxd/MAbTfSGGImLs37ms3JJry10cx9aziPh8p/7nYjzNgbRWPt0fP4l94VTj59+Kn0/PtfbJ7+JzJ9AW6DcvkvHnbqf7Lx+X0n3n+7+QjlDHl41/yaXmd9Ix8E383fFvoMv4d+moMW7+/vuto9GD555FfHEwYjf2Ttv4sxs/1yX+lYOX6+gvX/rK5W7nmr+OuBqd47fHmmpUV6fqG5vXl6pzi+XF8kqpNDszO337xq3SVJqjnuo+G/zjzrWPu51L+j/WJX7hkP5//Wjdj9/89+GPv/qO+N/8Wqf4+fjsHfGTOfEbR4w/N/a7QrdzSfyFLv0/7O9/7YjxX/5188Cy4QBA79Q3NpfnKpXymgMHZ/8gecqegWZ0PPjOacUajvf6qWbz/4rVbcQ4iawbcBbs3fQR8brXjQEAAAAAAAAAAAAAADo6jU8s9bqPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnF//CwAA//8wuNJ1")
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=@newtfilter={0x74, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0xfff2, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x44, 0x2, [@TCA_FLOW_POLICE={0x40, 0xa, 0x0, 0x1, [@TCA_POLICE_TBF={0x3c, 0x1, {0xb, 0xffffffffffffffff, 0xfffffffd, 0xc, 0x5, {0xe, 0x1, 0x6, 0x8, 0x7, 0x8001}, {0x3, 0x2, 0x1, 0xffff, 0x8, 0x1}, 0x81, 0x0, 0xd6}}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x884)
r8 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r8, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x11d102)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
r11 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, 0x0, 0x0, 0x6, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @cgroup_sockopt, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r13 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r12}, 0x10)
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100006000000000020"], 0x24, 0x2)
io_uring_setup(0x721f, &(0x7f0000000540)={0x0, 0xb3bc, 0x21288, 0x1, 0x169})
recvmsg(r9, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r10, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff"], 0x48)
write$binfmt_register(r13, &(0x7f0000000180)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x5, 0x3a, '-}-', 0x3a, '{\xf3\'$$', 0x3a, './file0', 0x3a, [0x46, 0x4f, 0x43]}, 0x32)

589.089442ms ago: executing program 3 (id=909):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x178}, 0x18)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x200000000000000)

519.711902ms ago: executing program 1 (id=910):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0e00000004000000080000000620000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000012a11f00000000000000000000000056d02dc139b805d10000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000200)='./bus\x00', 0x1200010, &(0x7f0000000600)=ANY=[], 0x0, 0x126f, &(0x7f0000002880)="$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") (async, rerun: 64)
creat(&(0x7f0000000000)='./bus\x00', 0x26) (rerun: 64)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0) (async, rerun: 32)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0) (rerun: 32)
write(r3, &(0x7f0000004200)='t', 0x1) (async, rerun: 32)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xa8, 0x0, 0x0) (rerun: 32)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff}) (async, rerun: 64)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (rerun: 64)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r6, &(0x7f0000000180), 0x20000000}, 0x20) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r7}, 0x10) (async)
sendmsg$tipc(r5, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, &(0x7f0000004340)=[{&(0x7f0000000f00)="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", 0xd24}, {0x0, 0x4000}, {0x0, 0x21}, {0x0}, {&(0x7f00000020c0)}], 0x5}, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r8 = memfd_secret(0x0) (async)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10) (async)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r11 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000280)={r10, r8, 0x2e, 0x4608, @void}, 0x10)
bpf$LINK_DETACH(0x22, &(0x7f0000000080)=r11, 0x4) (async)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

463.751652ms ago: executing program 1 (id=911):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000200)={0x10000, <r0=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x2007, @fd, 0x4, 0x20000000, 0xd, 0x1, 0x1, {0x8001}})
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00008011000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbffffffffffffff0000000000000000000000000000000000a5e1104a011cc5216bc64f60e320cf85000072df000000000000000000000000000000dccbaf6a7100"/133], 0xb8}}, 0x20004800)
ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5393, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES8], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_DELETE_ELEM(0x4, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="9feb01001800000000000000100000001000000008000000040000000000000e0400000002000000000000002e613e007ed10825439917cf934cd4c54e2734027ef28a5e90e11a634402a11aeeff152f3fe82c87bcaf63b840dffc4665657d89b1b14f0cc7adea9b943ad7add59c1361de5bbdfc9d763a48e2272d29fff78de14925aafb37f02dca7b29429024ec40bdbe429790791bbfe0dd7a6622a94efb3037f6f040b4b2c0d4484c5320a0d90f9cb34d88a378ac189f01c6ba87bb3b4a10d480eb658e524a7867"], 0x0, 0x30, 0x0, 0x0, 0x171, 0x0, @void, @value}, 0x28)
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x3c, 0x0, 0x1, 0x70bd29, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x200000c1}, 0x40)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_GET(r6, &(0x7f0000000480)={&(0x7f0000000300), 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x10, 0x3e8, 0x10, 0x70bd27, 0x25dfdbfd, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)

463.011342ms ago: executing program 2 (id=912):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000340), 0x800000001fe, 0x802)
r2 = dup(r1)
ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f00000003c0)={0x23, 0x3, 0x12, 0x4, 0x0, 0x8000, 0x0})
name_to_handle_at(r2, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)=@FILEID_INO32_GEN={0x8, 0x1, {0xbf, 0x8}}, &(0x7f00000001c0), 0x200)

398.472612ms ago: executing program 4 (id=913):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001280)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000040000000000000000000000850000002c000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000017"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r7, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
write$binfmt_aout(r8, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r8, 0x40045431, &(0x7f0000000100))
r9 = syz_open_pts(r8, 0x0)
r10 = epoll_create(0x1)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r9, &(0x7f0000000040))
r11 = syz_open_dev$usbfs(&(0x7f00000003c0), 0x1, 0x40502)
ioctl$USBDEVFS_IOCTL(r11, 0xc0105512, &(0x7f0000000400)=@usbdevfs_connect={0x4})
ioctl$TCSETS(r9, 0x5402, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xffffffff, 0x0, "0195f0efd2581b636f293efa3040c34a2be908"})
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r6, r5, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r2}, 0x20)
recvmsg$unix(r3, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f00000002c0)=""/139, 0x8b}], 0x1}, 0x0)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000900)="19", 0x1}], 0x1}, 0x0)

331.891461ms ago: executing program 1 (id=914):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="0a41afc701060000a93796aae364403fa25f0dbbb699d99251"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
pipe2(&(0x7f0000000040), 0x80800)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000054"], 0x14}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a30000000030a01020000000000000000010000000900030073797a32000000000900010073797a300000000004000c00140000001100010000006f66702c00000000000a"], 0x58}, 0x1, 0x0, 0x0, 0x20008084}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
r7 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r7, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r7, &(0x7f00000005c0)="f5", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffffc, @rand_addr=' \x01\x00'}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000000140), 0x1, 0x784, &(0x7f00000007c0)="$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")
r8 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
r9 = open(&(0x7f0000000040)='./bus\x00', 0x10103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r9, 0x0)
ftruncate(r9, 0x20cf01)
sendfile(r8, 0xffffffffffffffff, 0x0, 0x1000000201001)
r10 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r10, &(0x7f0000000080), 0x208e24b)

316.539171ms ago: executing program 2 (id=915):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x41)
copy_file_range(r2, 0x0, r2, 0x0, 0x1, 0x0) (fail_nth: 9)

227.431111ms ago: executing program 3 (id=916):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x25, &(0x7f00000003c0)=0xb4e, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'bond0\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x2, [{}, {0xfffffffe, 0x80003}]}})
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x10001, 0x0, 0x0, 0x41100, 0x28, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
msync(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4)

9.8272ms ago: executing program 2 (id=917):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
epoll_create1(0x80000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
add_key(&(0x7f0000000080)='asymmetric\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
request_key(0x0, &(0x7f0000001040)={'syz', 0x2}, &(0x7f0000001080)='\x00', 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = getpid()
setreuid(0xee00, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x3, 0xf2)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000380)={0x3, <r2=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000b26d3bf74401ab86000000000018090000", @ANYBLOB="b2a55fd49115de0971bea9574b106de3e0e5b0cd8e807a908285780d7573e01d7dbf50fc20ee4a478c4a5454b1c46d6b63fc77b515a2aa05501a3b2402028609a88645de5d204c638c0b781104c1f8634a92a70bdd491fcb8f7ee186b469de2aa84f15510c103e26da24c6e57bf595a556a7e70a331750cf42f76e31e985bd76b0dacb0e672723353e4f45fcb7e919df10842d14f7add8d791a9252d68259e5c3a800a3b32af3bf43f82812130ab6776937c2fcf86e4f3d34d1b319631d911f236afd745faa2c5b651bf2393eb66a2d3cab1e9ad792690d74dfac0c598fb82bfb4", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000ccd4da66e17fe6bb6b0000000087020000f8ffffffb703000002000000b704000000000000850000004300000095dbb041ad21d9fe525b40736a18e16856a8e952205343fb066f7d08c48cd78357ad07806394e6629bd3d23935e3d2d98a3e12c18101624539f73f0a1211be42249317fe6b4528d09c4dc21e11ec2b248c2c18e891b2caa4b2720c190e365c137a910fb40f29a6f1f9920dbf5fac85abb9f8bd82c0f9a93258f6571e8bc669e471c9e458096346cd364ce1f3faf12dd90386fd9e58cfded36fc2ce5bc9"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_pidfd_open(r1, 0x0)
setns(r3, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x14840000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000880)=[0x0], 0x1}, 0x58)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x15, 0xe, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000003c0)='kmem_cache_free\x00', r5}, 0x18)
close_range(r4, r4, 0x2)
socket$inet6(0xa, 0x802, 0x8)

0s ago: executing program 3 (id=918):
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000380)={<r0=>0x0, @in6={{0xa, 0x4e22, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0x401}}}, &(0x7f00000001c0)=0x84)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000440)={r0, 0x7, 0x9f, 0x7}, &(0x7f0000000480)=0x10)
r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x2, 0x800800000003}, 0xb702, 0x5dd9, 0x3, 0x5, 0x0, 0x8, 0xff7d, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
quotactl$Q_GETNEXTQUOTA(0x0, &(0x7f0000002040)=@filename='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)
socket(0x1d, 0x3, 0xfff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c0000000306010200000000000000000000000005000100d1"], 0x1c}}, 0x0)

kernel console output (not intermixed with test programs):

SCSI ioctl, please convert it to SG_IO
[   57.104062][    C0] hrtimer: interrupt took 36499 ns
[   57.160386][ T4190] loop4: detected capacity change from 0 to 512
[   57.171478][ T4190] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   57.239747][ T4190] EXT4-fs (loop4): 1 orphan inode deleted
[   57.245571][ T4190] EXT4-fs (loop4): 1 truncate cleaned up
[   57.369893][ T4196] 9pnet_fd: Insufficient options for proto=fd
[   57.453407][ T4196] loop0: detected capacity change from 0 to 512
[   57.527340][ T4196] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   57.610473][ T4196] EXT4-fs error (device loop0): ext4_orphan_get:1389: inode #17: comm syz.0.242: iget: bad i_size value: -6917529027641081756
[   57.692052][ T4196] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.242: couldn't read orphan inode 17 (err -117)
[   57.706424][ T4207] FAULT_INJECTION: forcing a failure.
[   57.706424][ T4207] name failslab, interval 1, probability 0, space 0, times 0
[   57.719077][ T4207] CPU: 0 UID: 0 PID: 4207 Comm: syz.3.245 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   57.719158][ T4207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   57.719169][ T4207] Call Trace:
[   57.719175][ T4207]  <TASK>
[   57.719182][ T4207]  dump_stack_lvl+0xf2/0x150
[   57.719205][ T4207]  dump_stack+0x15/0x1a
[   57.719221][ T4207]  should_fail_ex+0x24a/0x260
[   57.719354][ T4207]  should_failslab+0x8f/0xb0
[   57.719373][ T4207]  __kmalloc_node_noprof+0xad/0x410
[   57.719400][ T4207]  ? __kvmalloc_node_noprof+0x72/0x170
[   57.719419][ T4207]  __kvmalloc_node_noprof+0x72/0x170
[   57.719488][ T4207]  rhashtable_init_noprof+0x312/0x450
[   57.719507][ T4207]  rhltable_init_noprof+0x1e/0x40
[   57.719523][ T4207]  nf_tables_newtable+0x54d/0xee0
[   57.719610][ T4207]  nfnetlink_rcv+0xb3e/0x15d0
[   57.719625][ T4207]  ? kmem_cache_free+0xdc/0x2d0
[   57.719667][ T4207]  netlink_unicast+0x599/0x670
[   57.719693][ T4207]  netlink_sendmsg+0x5cc/0x6e0
[   57.719795][ T4207]  ? __pfx_netlink_sendmsg+0x10/0x10
[   57.719821][ T4207]  __sock_sendmsg+0x140/0x180
[   57.719870][ T4207]  ____sys_sendmsg+0x312/0x410
[   57.719896][ T4207]  __sys_sendmsg+0x19d/0x230
[   57.719931][ T4207]  __x64_sys_sendmsg+0x46/0x50
[   57.719958][ T4207]  x64_sys_call+0x2734/0x2dc0
[   57.720009][ T4207]  do_syscall_64+0xc9/0x1c0
[   57.720032][ T4207]  ? clear_bhb_loop+0x55/0xb0
[   57.720056][ T4207]  ? clear_bhb_loop+0x55/0xb0
[   57.720115][ T4207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.720138][ T4207] RIP: 0033:0x7f816586cd29
[   57.720191][ T4207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.720209][ T4207] RSP: 002b:00007f8163ed1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.720223][ T4207] RAX: ffffffffffffffda RBX: 00007f8165a85fa0 RCX: 00007f816586cd29
[   57.720235][ T4207] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000008
[   57.720246][ T4207] RBP: 00007f8163ed1090 R08: 0000000000000000 R09: 0000000000000000
[   57.720258][ T4207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.720330][ T4207] R13: 0000000000000000 R14: 00007f8165a85fa0 R15: 00007ffc39fa1408
[   57.720344][ T4207]  </TASK>
[   57.969995][ T4207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.245'.
[   57.978929][ T4207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.245'.
[   58.115750][ T4211] pim6reg1: entered promiscuous mode
[   58.121162][ T4211] pim6reg1: entered allmulticast mode
[   58.346757][ T4230] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.362918][ T4228] loop2: detected capacity change from 0 to 1024
[   58.376035][ T4228] EXT4-fs: Ignoring removed orlov option
[   58.379809][ T4230] FAULT_INJECTION: forcing a failure.
[   58.379809][ T4230] name failslab, interval 1, probability 0, space 0, times 0
[   58.381694][ T4228] EXT4-fs: Ignoring removed orlov option
[   58.394336][ T4230] CPU: 1 UID: 0 PID: 4230 Comm: +}[@ Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   58.394390][ T4230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   58.394400][ T4230] Call Trace:
[   58.394407][ T4230]  <TASK>
[   58.394414][ T4230]  dump_stack_lvl+0xf2/0x150
[   58.394439][ T4230]  dump_stack+0x15/0x1a
[   58.394456][ T4230]  should_fail_ex+0x24a/0x260
[   58.394529][ T4230]  should_failslab+0x8f/0xb0
[   58.394593][ T4230]  __kmalloc_noprof+0xab/0x3f0
[   58.394620][ T4230]  ? bio_kmalloc+0x43/0x50
[   58.394642][ T4230]  bio_kmalloc+0x43/0x50
[   58.394665][ T4230]  blk_rq_map_kern+0x18e/0x6f0
[   58.394732][ T4230]  scsi_ioctl+0x13d7/0x1540
[   58.394766][ T4230]  ? avc_has_perm+0xd4/0x160
[   58.394789][ T4230]  ? file_has_perm+0x329/0x370
[   58.394808][ T4230]  ? do_vfs_ioctl+0x96e/0x1530
[   58.394878][ T4230]  sg_ioctl+0xda4/0x1870
[   58.394898][ T4230]  ? __fget_files+0x17c/0x1c0
[   58.394922][ T4230]  ? __pfx_sg_ioctl+0x10/0x10
[   58.394991][ T4230]  __se_sys_ioctl+0xc9/0x140
[   58.395073][ T4230]  __x64_sys_ioctl+0x43/0x50
[   58.395090][ T4230]  x64_sys_call+0x1690/0x2dc0
[   58.395112][ T4230]  do_syscall_64+0xc9/0x1c0
[   58.395194][ T4230]  ? clear_bhb_loop+0x55/0xb0
[   58.395223][ T4230]  ? clear_bhb_loop+0x55/0xb0
[   58.395246][ T4230]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.395268][ T4230] RIP: 0033:0x7f06d306cd29
[   58.395282][ T4230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.395328][ T4230] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.395344][ T4230] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   58.395359][ T4230] RDX: 0000000020000000 RSI: 0000000000000001 RDI: 0000000000000003
[   58.395370][ T4230] RBP: 00007f06d16d7090 R08: 0000000000000000 R09: 0000000000000000
[   58.395381][ T4230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.395391][ T4230] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   58.395406][ T4230]  </TASK>
[   58.604643][ T4228] EXT4-fs: Ignoring removed oldalloc option
[   58.611005][ T4234] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[   58.611151][ T4228] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   58.630584][ T4228] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   58.641656][ T4228] EXT4-fs (loop2): invalid journal inode
[   58.647369][ T4228] EXT4-fs (loop2): can't get journal size
[   58.664609][ T4228] 9pnet_fd: Insufficient options for proto=fd
[   58.738379][ T4249] FAULT_INJECTION: forcing a failure.
[   58.738379][ T4249] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.751500][ T4249] CPU: 0 UID: 0 PID: 4249 Comm: syz.1.259 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   58.751520][ T4249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   58.751568][ T4249] Call Trace:
[   58.751574][ T4249]  <TASK>
[   58.751581][ T4249]  dump_stack_lvl+0xf2/0x150
[   58.751606][ T4249]  dump_stack+0x15/0x1a
[   58.751624][ T4249]  should_fail_ex+0x24a/0x260
[   58.751707][ T4249]  should_fail+0xb/0x10
[   58.751731][ T4249]  should_fail_usercopy+0x1a/0x20
[   58.751748][ T4249]  _copy_from_user+0x1c/0xa0
[   58.751768][ T4249]  copy_msghdr_from_user+0x54/0x2a0
[   58.751805][ T4249]  ? __fget_files+0x17c/0x1c0
[   58.751833][ T4249]  __sys_sendmmsg+0x1e8/0x4b0
[   58.751876][ T4249]  __x64_sys_sendmmsg+0x57/0x70
[   58.751901][ T4249]  x64_sys_call+0x29aa/0x2dc0
[   58.751958][ T4249]  do_syscall_64+0xc9/0x1c0
[   58.751980][ T4249]  ? clear_bhb_loop+0x55/0xb0
[   58.752081][ T4249]  ? clear_bhb_loop+0x55/0xb0
[   58.752114][ T4249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.752138][ T4249] RIP: 0033:0x7f06d306cd29
[   58.752152][ T4249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.752241][ T4249] RSP: 002b:00007f06d16b6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   58.752257][ T4249] RAX: ffffffffffffffda RBX: 00007f06d3286080 RCX: 00007f06d306cd29
[   58.752267][ T4249] RDX: 0000000000000001 RSI: 0000000020002780 RDI: 0000000000000004
[   58.752276][ T4249] RBP: 00007f06d16b6090 R08: 0000000000000000 R09: 0000000000000000
[   58.752285][ T4249] R10: 0000000000048009 R11: 0000000000000246 R12: 0000000000000001
[   58.752294][ T4249] R13: 0000000000000000 R14: 00007f06d3286080 R15: 00007ffe61c70878
[   58.752307][ T4249]  </TASK>
[   58.983765][ T4276] FAULT_INJECTION: forcing a failure.
[   58.983765][ T4276] name failslab, interval 1, probability 0, space 0, times 0
[   58.996498][ T4276] CPU: 1 UID: 0 PID: 4276 Comm: syz.3.271 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   58.996518][ T4276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   58.996529][ T4276] Call Trace:
[   58.996536][ T4276]  <TASK>
[   58.996542][ T4276]  dump_stack_lvl+0xf2/0x150
[   58.996618][ T4276]  dump_stack+0x15/0x1a
[   58.996634][ T4276]  should_fail_ex+0x24a/0x260
[   58.996662][ T4276]  ? __pfx_macvlan_setup+0x10/0x10
[   58.996738][ T4276]  should_failslab+0x8f/0xb0
[   58.996757][ T4276]  __kmalloc_node_noprof+0xad/0x410
[   58.996815][ T4276]  ? __kvmalloc_node_noprof+0x72/0x170
[   58.996837][ T4276]  ? __pfx_macvlan_setup+0x10/0x10
[   58.996893][ T4276]  __kvmalloc_node_noprof+0x72/0x170
[   58.996939][ T4276]  alloc_netdev_mqs+0xa8/0xa20
[   58.996960][ T4276]  ? __pfx_macvlan_setup+0x10/0x10
[   58.997058][ T4276]  rtnl_create_link+0x233/0x680
[   58.997079][ T4276]  rtnl_newlink_create+0x133/0x5d0
[   58.997114][ T4276]  ? ns_capable+0x7d/0xb0
[   58.997130][ T4276]  ? netlink_ns_capable+0x88/0xa0
[   58.997150][ T4276]  rtnl_newlink+0xe9f/0x1250
[   58.997179][ T4276]  ? cgroup_rstat_updated+0x9f/0x570
[   58.997204][ T4276]  ? strlen+0x19/0x30
[   58.997261][ T4276]  ? __kfree_skb+0x102/0x150
[   58.997314][ T4276]  ? perf_trace_kmem_cache_free+0x56/0x160
[   58.997396][ T4276]  ? __kfree_skb+0x102/0x150
[   58.997414][ T4276]  ? __rcu_read_unlock+0x4e/0x70
[   58.997433][ T4276]  ? avc_has_perm_noaudit+0x1cc/0x210
[   58.997458][ T4276]  ? selinux_capable+0x1f2/0x260
[   58.997564][ T4276]  ? security_capable+0x81/0x90
[   58.997585][ T4276]  ? ns_capable+0x7d/0xb0
[   58.997599][ T4276]  ? __pfx_rtnl_newlink+0x10/0x10
[   58.997619][ T4276]  rtnetlink_rcv_msg+0x651/0x710
[   58.997700][ T4276]  ? ref_tracker_free+0x3a5/0x410
[   58.997721][ T4276]  ? __dev_queue_xmit+0x186/0x2090
[   58.997745][ T4276]  netlink_rcv_skb+0x12c/0x230
[   58.997767][ T4276]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   58.997806][ T4276]  rtnetlink_rcv+0x1c/0x30
[   58.997868][ T4276]  netlink_unicast+0x599/0x670
[   58.997892][ T4276]  netlink_sendmsg+0x5cc/0x6e0
[   58.997919][ T4276]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.997999][ T4276]  __sock_sendmsg+0x140/0x180
[   58.998014][ T4276]  ____sys_sendmsg+0x312/0x410
[   58.998038][ T4276]  __sys_sendmsg+0x19d/0x230
[   58.998087][ T4276]  __x64_sys_sendmsg+0x46/0x50
[   58.998109][ T4276]  x64_sys_call+0x2734/0x2dc0
[   58.998133][ T4276]  do_syscall_64+0xc9/0x1c0
[   58.998151][ T4276]  ? clear_bhb_loop+0x55/0xb0
[   58.998177][ T4276]  ? clear_bhb_loop+0x55/0xb0
[   58.998216][ T4276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.998329][ T4276] RIP: 0033:0x7f816586cd29
[   58.998344][ T4276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.998372][ T4276] RSP: 002b:00007f8163ed1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   58.998412][ T4276] RAX: ffffffffffffffda RBX: 00007f8165a85fa0 RCX: 00007f816586cd29
[   58.998422][ T4276] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000006
[   58.998431][ T4276] RBP: 00007f8163ed1090 R08: 0000000000000000 R09: 0000000000000000
[   58.998440][ T4276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.998450][ T4276] R13: 0000000000000000 R14: 00007f8165a85fa0 R15: 00007ffc39fa1408
[   58.998466][ T4276]  </TASK>
[   59.331660][ T4278] loop2: detected capacity change from 0 to 512
[   59.347793][ T4278] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   60.083198][ T4281] loop4: detected capacity change from 0 to 512
[   60.240900][   T29] kauditd_printk_skb: 250 callbacks suppressed
[   60.240912][   T29] audit: type=1400 audit(1738000572.016:1573): avc:  denied  { write } for  pid=4264 comm="syz.0.266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   60.267532][ T4282] netlink: 348 bytes leftover after parsing attributes in process `syz.0.266'.
[   60.316523][ T4281] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   61.267972][ T4284] loop3: detected capacity change from 0 to 1024
[   61.278853][   T29] audit: type=1400 audit(1738000572.045:1574): avc:  denied  { nlmsg_write } for  pid=4264 comm="syz.0.266" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   61.299799][ T4284] EXT4-fs: Ignoring removed nomblk_io_submit option
[   61.594191][ T4284] ext4: Unknown parameter 'obj_role'
[   61.635116][ T4278] EXT4-fs (loop2): 1 orphan inode deleted
[   61.640864][ T4278] EXT4-fs (loop2): 1 truncate cleaned up
[   61.950748][ T4281] EXT4-fs (loop4): 1 orphan inode deleted
[   61.956542][ T4281] EXT4-fs (loop4): 1 truncate cleaned up
[   61.970072][ T3980] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   61.985195][   T29] audit: type=1400 audit(1738000573.336:1575): avc:  denied  { create } for  pid=4283 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   62.004521][   T29] audit: type=1400 audit(1738000573.336:1576): avc:  denied  { connect } for  pid=4283 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   62.023973][   T29] audit: type=1400 audit(1738000573.336:1577): avc:  denied  { bind } for  pid=4283 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   62.032949][ T4282] loop0: detected capacity change from 0 to 128
[   62.043208][   T29] audit: type=1400 audit(1738000573.336:1578): avc:  denied  { write } for  pid=4283 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   62.068749][   T29] audit: type=1400 audit(1738000573.336:1579): avc:  denied  { setopt } for  pid=4283 comm="syz.3.272" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   62.088941][   T29] audit: type=1400 audit(1738000573.346:1580): avc:  denied  { create } for  pid=4283 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   62.108542][   T29] audit: type=1400 audit(1738000573.346:1581): avc:  denied  { ioctl } for  pid=4283 comm="syz.3.272" path="socket:[7299]" dev="sockfs" ino=7299 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   62.133631][   T29] audit: type=1400 audit(1738000573.832:1582): avc:  denied  { mount } for  pid=4264 comm="syz.0.266" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   62.230365][ T4297] loop2: detected capacity change from 0 to 512
[   62.240597][ T4297] EXT4-fs: Ignoring removed oldalloc option
[   62.246578][ T4297] EXT4-fs: inline encryption not supported
[   62.256584][ T4297] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   62.265434][ T4297] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   62.295070][ T4297] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 64: padding at end of block bitmap is not set
[   62.309523][ T4297] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm +}[@: Failed to acquire dquot type 0
[   62.323778][   T11] kworker/u8:0: attempt to access beyond end of device
[   62.323778][   T11] loop0: rw=1, sector=145, nr_sectors = 896 limit=128
[   62.327097][ T4297] EXT4-fs (loop2): 1 truncate cleaned up
[   62.361312][ T4297] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   62.394470][ T4305] bridge0: entered promiscuous mode
[   62.394710][ T4297] +}[@ (4297) used greatest stack depth: 9256 bytes left
[   62.407311][ T4305] macvlan2: entered promiscuous mode
[   62.416074][ T4305] bridge0: port 3(macvlan2) entered blocking state
[   62.422852][ T4305] bridge0: port 3(macvlan2) entered disabled state
[   62.435129][ T4305] macvlan2: entered allmulticast mode
[   62.440585][ T4305] bridge0: entered allmulticast mode
[   62.474103][ T4312] loop2: detected capacity change from 0 to 1024
[   62.480864][ T4305] macvlan2: left allmulticast mode
[   62.486054][ T4305] bridge0: left allmulticast mode
[   62.493145][ T4312] EXT4-fs: Ignoring removed orlov option
[   62.498807][ T4312] EXT4-fs: Ignoring removed orlov option
[   62.504500][ T4312] EXT4-fs: Ignoring removed oldalloc option
[   62.515524][ T4305] bridge0: left promiscuous mode
[   62.542269][ T4313] loop0: detected capacity change from 0 to 512
[   62.548793][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   62.559811][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   62.574606][ T4312] EXT4-fs (loop2): invalid journal inode
[   62.580490][ T4312] EXT4-fs (loop2): can't get journal size
[   62.589515][ T4313] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.624962][ T4313] EXT4-fs (loop0): orphan cleanup on readonly fs
[   62.637699][ T4313] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.281: bg 0: block 248: padding at end of block bitmap is not set
[   62.664943][ T4313] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.281: Failed to acquire dquot type 1
[   62.709646][ T4313] EXT4-fs (loop0): 1 truncate cleaned up
[   62.733510][ T4319] loop2: detected capacity change from 0 to 1024
[   62.747746][ T4319] EXT4-fs: Ignoring removed nomblk_io_submit option
[   62.758267][ T4319] ext4: Unknown parameter 'obj_role'
[   62.885720][ T4327] FAULT_INJECTION: forcing a failure.
[   62.885720][ T4327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.898959][ T4327] CPU: 0 UID: 0 PID: 4327 Comm: syz.1.288 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   62.899056][ T4327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   62.899116][ T4327] Call Trace:
[   62.899121][ T4327]  <TASK>
[   62.899126][ T4327]  dump_stack_lvl+0xf2/0x150
[   62.899146][ T4327]  dump_stack+0x15/0x1a
[   62.899161][ T4327]  should_fail_ex+0x24a/0x260
[   62.899226][ T4327]  should_fail+0xb/0x10
[   62.899245][ T4327]  should_fail_usercopy+0x1a/0x20
[   62.899259][ T4327]  _copy_from_user+0x1c/0xa0
[   62.899328][ T4327]  copy_msghdr_from_user+0x54/0x2a0
[   62.899343][ T4327]  ? __fget_files+0x17c/0x1c0
[   62.899364][ T4327]  __sys_sendmsg+0x13e/0x230
[   62.899405][ T4327]  __x64_sys_sendmsg+0x46/0x50
[   62.899489][ T4327]  x64_sys_call+0x2734/0x2dc0
[   62.899508][ T4327]  do_syscall_64+0xc9/0x1c0
[   62.899580][ T4327]  ? clear_bhb_loop+0x55/0xb0
[   62.899599][ T4327]  ? clear_bhb_loop+0x55/0xb0
[   62.899618][ T4327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.899636][ T4327] RIP: 0033:0x7f06d306cd29
[   62.899677][ T4327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.899690][ T4327] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.899704][ T4327] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   62.899749][ T4327] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 000000000000000b
[   62.899758][ T4327] RBP: 00007f06d16d7090 R08: 0000000000000000 R09: 0000000000000000
[   62.899767][ T4327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.899776][ T4327] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   62.899789][ T4327]  </TASK>
[   63.152899][ T4333] SELinux:  policydb string SE Linřw does not match my string SE Linux
[   63.183341][ T4337] loop4: detected capacity change from 0 to 1024
[   63.191220][ T4337] EXT4-fs: Ignoring removed orlov option
[   63.196972][ T4337] EXT4-fs: Ignoring removed orlov option
[   63.202708][ T4337] EXT4-fs: Ignoring removed oldalloc option
[   63.209785][ T4333] SELinux: failed to load policy
[   63.216225][ T4337] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   63.227140][ T4337] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   63.287956][ T4337] EXT4-fs (loop4): invalid journal inode
[   63.331032][ T4337] EXT4-fs (loop4): can't get journal size
[   63.332318][ T4346] netlink: 'syz.3.295': attribute type 25 has an invalid length.
[   63.460092][ T4342] team_slave_0: entered promiscuous mode
[   63.465810][ T4342] team_slave_1: entered promiscuous mode
[   63.472460][ T4342] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   63.482949][ T4342] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[   63.520429][ T4351] netlink: 348 bytes leftover after parsing attributes in process `syz.4.296'.
[   63.586545][ T4354] loop4: detected capacity change from 0 to 128
[   63.621699][ T4363] FAULT_INJECTION: forcing a failure.
[   63.621699][ T4363] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.634887][ T4363] CPU: 1 UID: 0 PID: 4363 Comm: syz.1.301 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   63.634910][ T4363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   63.634921][ T4363] Call Trace:
[   63.634928][ T4363]  <TASK>
[   63.634935][ T4363]  dump_stack_lvl+0xf2/0x150
[   63.635012][ T4363]  dump_stack+0x15/0x1a
[   63.635035][ T4363]  should_fail_ex+0x24a/0x260
[   63.635066][ T4363]  should_fail+0xb/0x10
[   63.635160][ T4363]  should_fail_usercopy+0x1a/0x20
[   63.635179][ T4363]  _copy_to_user+0x20/0xa0
[   63.635230][ T4363]  ucma_query+0x8ff/0x9e0
[   63.635309][ T4363]  ? kernelmode_fixup_or_oops+0x58/0xb0
[   63.635387][ T4363]  ? _parse_integer+0x27/0x30
[   63.635409][ T4363]  ? kstrtoull+0x110/0x140
[   63.635428][ T4363]  ? kstrtouint+0x77/0xc0
[   63.635453][ T4363]  ? kstrtouint_from_user+0xb0/0xe0
[   63.635521][ T4363]  ? should_fail_ex+0xd7/0x260
[   63.635554][ T4363]  ucma_write+0x1a4/0x240
[   63.635581][ T4363]  ? __pfx_ucma_write+0x10/0x10
[   63.635632][ T4363]  vfs_write+0x27d/0x920
[   63.635650][ T4363]  ? __fget_files+0x17c/0x1c0
[   63.635712][ T4363]  ksys_write+0xe8/0x1b0
[   63.635728][ T4363]  __x64_sys_write+0x42/0x50
[   63.635745][ T4363]  x64_sys_call+0x287e/0x2dc0
[   63.635768][ T4363]  do_syscall_64+0xc9/0x1c0
[   63.635789][ T4363]  ? clear_bhb_loop+0x55/0xb0
[   63.635881][ T4363]  ? clear_bhb_loop+0x55/0xb0
[   63.635905][ T4363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.635929][ T4363] RIP: 0033:0x7f06d306cd29
[   63.635943][ T4363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.635960][ T4363] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   63.636044][ T4363] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   63.636054][ T4363] RDX: 0000000000000018 RSI: 0000000020000100 RDI: 0000000000000006
[   63.636113][ T4363] RBP: 00007f06d16d7090 R08: 0000000000000000 R09: 0000000000000000
[   63.636122][ T4363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.636131][ T4363] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   63.636144][ T4363]  </TASK>
[   63.857498][ T4364] tipc: Started in network mode
[   63.862375][ T4364] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[   63.887866][ T4364] tipc: Enabled bearer <udp:s>, priority 10
[   63.915689][ T4371] FAULT_INJECTION: forcing a failure.
[   63.915689][ T4371] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.928811][ T4371] CPU: 1 UID: 0 PID: 4371 Comm: syz.1.303 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   63.928831][ T4371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   63.928841][ T4371] Call Trace:
[   63.928847][ T4371]  <TASK>
[   63.928854][ T4371]  dump_stack_lvl+0xf2/0x150
[   63.928919][ T4371]  dump_stack+0x15/0x1a
[   63.928938][ T4371]  should_fail_ex+0x24a/0x260
[   63.928964][ T4371]  should_fail+0xb/0x10
[   63.928984][ T4371]  should_fail_usercopy+0x1a/0x20
[   63.929005][ T4371]  _copy_from_iter+0xd5/0xd00
[   63.929092][ T4371]  ? __alloc_skb+0x1b5/0x310
[   63.929113][ T4371]  ? kmalloc_reserve+0x16e/0x190
[   63.929134][ T4371]  ? __build_skb_around+0x196/0x1f0
[   63.929156][ T4371]  ? __alloc_skb+0x21f/0x310
[   63.929176][ T4371]  ? __virt_addr_valid+0x1ed/0x250
[   63.929249][ T4371]  ? __check_object_size+0x364/0x520
[   63.929277][ T4371]  netlink_sendmsg+0x460/0x6e0
[   63.929309][ T4371]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.929401][ T4371]  __sock_sendmsg+0x140/0x180
[   63.929420][ T4371]  ____sys_sendmsg+0x312/0x410
[   63.929507][ T4371]  __sys_sendmsg+0x19d/0x230
[   63.929614][ T4371]  __x64_sys_sendmsg+0x46/0x50
[   63.929639][ T4371]  x64_sys_call+0x2734/0x2dc0
[   63.929673][ T4371]  do_syscall_64+0xc9/0x1c0
[   63.929695][ T4371]  ? clear_bhb_loop+0x55/0xb0
[   63.929724][ T4371]  ? clear_bhb_loop+0x55/0xb0
[   63.929817][ T4371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.929883][ T4371] RIP: 0033:0x7f06d306cd29
[   63.929898][ T4371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.929915][ T4371] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.929932][ T4371] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   63.930010][ T4371] RDX: 0000000000080840 RSI: 0000000020000180 RDI: 0000000000000003
[   63.930022][ T4371] RBP: 00007f06d16d7090 R08: 0000000000000000 R09: 0000000000000000
[   63.930033][ T4371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.930044][ T4371] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   63.930058][ T4371]  </TASK>
[   64.210268][ T4377] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[   64.219325][ T4377] SELinux: failed to load policy
[   64.338665][   T11] kworker/u8:0: attempt to access beyond end of device
[   64.338665][   T11] loop4: rw=1, sector=145, nr_sectors = 896 limit=128
[   64.693825][ T4395] loop0: detected capacity change from 0 to 512
[   64.702187][ T4395] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   64.735077][ T4395] EXT4-fs (loop0): 1 orphan inode deleted
[   64.740922][ T4395] EXT4-fs (loop0): 1 truncate cleaned up
[   65.023022][ T4406] loop2: detected capacity change from 0 to 2048
[   65.030702][   T35] tipc: Node number set to 4269801488
[   65.476276][   T29] kauditd_printk_skb: 289 callbacks suppressed
[   65.476288][   T29] audit: type=1400 audit(1738001603.145:1868): avc:  denied  { name_bind } for  pid=4405 comm="syz.2.312" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   65.476385][   T29] audit: type=1400 audit(1738001603.145:1869): avc:  denied  { node_bind } for  pid=4405 comm="syz.2.312" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   65.514609][   T29] audit: type=1400 audit(1738001603.154:1870): avc:  denied  { read } for  pid=2982 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   65.514679][   T29] audit: type=1400 audit(1738001603.154:1871): avc:  denied  { search } for  pid=2982 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   65.514700][   T29] audit: type=1400 audit(1738001603.154:1872): avc:  denied  { open } for  pid=2982 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   65.514748][   T29] audit: type=1400 audit(1738001603.154:1873): avc:  denied  { getattr } for  pid=2982 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   65.550833][   T29] audit: type=1400 audit(1738001603.213:1874): avc:  denied  { create } for  pid=4413 comm="syz.3.315" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   65.559112][ T4415] netlink: 'syz.3.315': attribute type 33 has an invalid length.
[   65.559128][ T4415] netlink: 152 bytes leftover after parsing attributes in process `syz.3.315'.
[   65.569323][   T29] audit: type=1400 audit(1738001603.232:1875): avc:  denied  { map } for  pid=4413 comm="syz.3.315" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=153 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   65.629728][ T3980] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   65.635333][   T29] audit: type=1400 audit(1738001603.290:1876): avc:  denied  { map } for  pid=4409 comm="syz.4.314" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=7604 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   65.635399][   T29] audit: type=1400 audit(1738001603.290:1877): avc:  denied  { read write } for  pid=4409 comm="syz.4.314" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=7604 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   65.659753][ T4416] Unknown options in mask 5
[   66.198226][ T4423] netlink: 348 bytes leftover after parsing attributes in process `syz.0.318'.
[   66.357161][ T4425] loop0: detected capacity change from 0 to 128
[   66.452806][ T4427] SELinux:  policydb string SE Linřw does not match my string SE Linux
[   66.497501][ T4427] SELinux: failed to load policy
[   66.518946][ T4434] netlink: 16 bytes leftover after parsing attributes in process `syz.4.322'.
[   66.593154][ T4439] FAULT_INJECTION: forcing a failure.
[   66.593154][ T4439] name failslab, interval 1, probability 0, space 0, times 0
[   66.605975][ T4439] CPU: 1 UID: 0 PID: 4439 Comm: syz.3.324 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   66.605999][ T4439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   66.606079][ T4439] Call Trace:
[   66.606084][ T4439]  <TASK>
[   66.606091][ T4439]  dump_stack_lvl+0xf2/0x150
[   66.606128][ T4439]  dump_stack+0x15/0x1a
[   66.606147][ T4439]  should_fail_ex+0x24a/0x260
[   66.606213][ T4439]  should_failslab+0x8f/0xb0
[   66.606237][ T4439]  kmem_cache_alloc_noprof+0x52/0x320
[   66.606261][ T4439]  ? getname_flags+0x81/0x3b0
[   66.606376][ T4439]  getname_flags+0x81/0x3b0
[   66.606416][ T4439]  __x64_sys_mkdirat+0x41/0x60
[   66.606433][ T4439]  x64_sys_call+0x1b6f/0x2dc0
[   66.606459][ T4439]  do_syscall_64+0xc9/0x1c0
[   66.606540][ T4439]  ? clear_bhb_loop+0x55/0xb0
[   66.606561][ T4439]  ? clear_bhb_loop+0x55/0xb0
[   66.606585][ T4439]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.606667][ T4439] RIP: 0033:0x7f816586cd29
[   66.606721][ T4439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.606738][ T4439] RSP: 002b:00007f8163ed1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   66.606760][ T4439] RAX: ffffffffffffffda RBX: 00007f8165a85fa0 RCX: 00007f816586cd29
[   66.606771][ T4439] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000006
[   66.606782][ T4439] RBP: 00007f8163ed1090 R08: 0000000000000000 R09: 0000000000000000
[   66.606800][ T4439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.606811][ T4439] R13: 0000000000000000 R14: 00007f8165a85fa0 R15: 00007ffc39fa1408
[   66.606828][ T4439]  </TASK>
[   66.901143][ T4444] loop3: detected capacity change from 0 to 512
[   66.934192][ T4444] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.192660][   T40] kworker/u8:2: attempt to access beyond end of device
[   67.192660][   T40] loop0: rw=1, sector=145, nr_sectors = 896 limit=128
[   67.635831][ T4459] loop0: detected capacity change from 0 to 1024
[   67.668205][ T4459] EXT4-fs: Ignoring removed orlov option
[   67.673877][ T4459] EXT4-fs: Ignoring removed orlov option
[   67.679590][ T4459] EXT4-fs: Ignoring removed oldalloc option
[   67.734741][ T4459] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   67.745693][ T4459] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   67.840425][ T4459] EXT4-fs (loop0): invalid journal inode
[   67.866173][ T4459] EXT4-fs (loop0): can't get journal size
[   67.909305][ T4444] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   67.943025][ T4444] System zones: 1-12
[   67.971571][ T4444] EXT4-fs (loop3): 1 truncate cleaned up
[   68.318187][ T4476] FAULT_INJECTION: forcing a failure.
[   68.318187][ T4476] name failslab, interval 1, probability 0, space 0, times 0
[   68.330892][ T4476] CPU: 0 UID: 0 PID: 4476 Comm: syz.2.338 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   68.330915][ T4476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   68.330930][ T4476] Call Trace:
[   68.330935][ T4476]  <TASK>
[   68.330941][ T4476]  dump_stack_lvl+0xf2/0x150
[   68.330967][ T4476]  dump_stack+0x15/0x1a
[   68.330986][ T4476]  should_fail_ex+0x24a/0x260
[   68.331025][ T4476]  should_failslab+0x8f/0xb0
[   68.331125][ T4476]  __kmalloc_noprof+0xab/0x3f0
[   68.331148][ T4476]  ? usb_alloc_urb+0x36/0xb0
[   68.331162][ T4476]  usb_alloc_urb+0x36/0xb0
[   68.331175][ T4476]  do_proc_control+0x196/0x850
[   68.331203][ T4476]  ? should_fail_ex+0xd7/0x260
[   68.331237][ T4476]  usbdev_ioctl+0x1bb3/0x3e00
[   68.331264][ T4476]  ? do_vfs_ioctl+0x96e/0x1530
[   68.331280][ T4476]  ? selinux_file_ioctl+0x2f7/0x380
[   68.331297][ T4476]  ? __fget_files+0x17c/0x1c0
[   68.331380][ T4476]  ? __pfx_usbdev_ioctl+0x10/0x10
[   68.331407][ T4476]  __se_sys_ioctl+0xc9/0x140
[   68.331426][ T4476]  __x64_sys_ioctl+0x43/0x50
[   68.331443][ T4476]  x64_sys_call+0x1690/0x2dc0
[   68.331465][ T4476]  do_syscall_64+0xc9/0x1c0
[   68.331564][ T4476]  ? clear_bhb_loop+0x55/0xb0
[   68.331589][ T4476]  ? clear_bhb_loop+0x55/0xb0
[   68.331694][ T4476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.331718][ T4476] RIP: 0033:0x7fcc68d1cd29
[   68.331733][ T4476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.331750][ T4476] RSP: 002b:00007fcc67387038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   68.331769][ T4476] RAX: ffffffffffffffda RBX: 00007fcc68f35fa0 RCX: 00007fcc68d1cd29
[   68.331784][ T4476] RDX: 0000000020000040 RSI: 00000000c0185500 RDI: 0000000000000007
[   68.331796][ T4476] RBP: 00007fcc67387090 R08: 0000000000000000 R09: 0000000000000000
[   68.331808][ T4476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.331893][ T4476] R13: 0000000000000000 R14: 00007fcc68f35fa0 R15: 00007ffc17a3c1e8
[   68.331910][ T4476]  </TASK>
[   68.836862][ T4510] loop0: detected capacity change from 0 to 2048
[   68.890403][ T4510] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a800c029, mo2=0002]
[   68.899066][ T4510] System zones: 0-7
[   68.906222][ T4510] EXT4-fs mount: 44 callbacks suppressed
[   68.906233][ T4510] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.013251][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.498051][ T4527] loop0: detected capacity change from 0 to 2048
[   69.571324][ T4527] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a800c029, mo2=0002]
[   69.631359][ T4527] System zones: 0-7
[   69.840231][ T4527] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.911733][ T4527] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.356: bg 0: block 234: padding at end of block bitmap is not set
[   69.958383][ T4527] EXT4-fs (loop0): Remounting filesystem read-only
[   69.976115][ T4536] FAULT_INJECTION: forcing a failure.
[   69.976115][ T4536] name failslab, interval 1, probability 0, space 0, times 0
[   69.988765][ T4536] CPU: 0 UID: 0 PID: 4536 Comm: syz.0.356 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   69.988789][ T4536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   69.988837][ T4536] Call Trace:
[   69.988843][ T4536]  <TASK>
[   69.988849][ T4536]  dump_stack_lvl+0xf2/0x150
[   69.988871][ T4536]  dump_stack+0x15/0x1a
[   69.988886][ T4536]  should_fail_ex+0x24a/0x260
[   69.988912][ T4536]  should_failslab+0x8f/0xb0
[   69.988995][ T4536]  kmem_cache_alloc_noprof+0x52/0x320
[   69.989021][ T4536]  ? getname_kernel+0x3d/0x1e0
[   69.989049][ T4536]  getname_kernel+0x3d/0x1e0
[   69.989075][ T4536]  kern_path_create+0x24/0x120
[   69.989180][ T4536]  unix_bind+0x1c0/0x870
[   69.989234][ T4536]  __sys_bind+0x10c/0x190
[   69.989332][ T4536]  __x64_sys_bind+0x41/0x50
[   69.989352][ T4536]  x64_sys_call+0x20ab/0x2dc0
[   69.989376][ T4536]  do_syscall_64+0xc9/0x1c0
[   69.989398][ T4536]  ? clear_bhb_loop+0x55/0xb0
[   69.989453][ T4536]  ? clear_bhb_loop+0x55/0xb0
[   69.989473][ T4536]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.989493][ T4536] RIP: 0033:0x7effdc08cd29
[   69.989506][ T4536] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.989561][ T4536] RSP: 002b:00007effda6d0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[   69.989578][ T4536] RAX: ffffffffffffffda RBX: 00007effdc2a6080 RCX: 00007effdc08cd29
[   69.989587][ T4536] RDX: 0000000000000056 RSI: 00000000200001c0 RDI: 0000000000000003
[   69.989596][ T4536] RBP: 00007effda6d0090 R08: 0000000000000000 R09: 0000000000000000
[   69.989605][ T4536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.989614][ T4536] R13: 0000000000000001 R14: 00007effdc2a6080 R15: 00007fff1f1e8188
[   69.989628][ T4536]  </TASK>
[   70.253279][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.375407][ T4547] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.406747][ T4547] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.579799][ T4553] netlink: 8 bytes leftover after parsing attributes in process `syz.0.364'.
[   70.740930][   T29] kauditd_printk_skb: 233 callbacks suppressed
[   70.740942][   T29] audit: type=1326 audit(1738002121.260:2111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.1.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[   70.823568][   T29] audit: type=1326 audit(1738002121.299:2112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4548 comm="syz.1.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[   70.847083][   T29] audit: type=1326 audit(1738002121.299:2113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4555 comm="syz.1.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f06d309f5e5 code=0x7ffc0000
[   70.973752][   T29] audit: type=1400 audit(1738002121.445:2114): avc:  denied  { map_create } for  pid=4556 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   70.994881][   T29] audit: type=1400 audit(1738002121.455:2115): avc:  denied  { open } for  pid=4556 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   71.014064][   T29] audit: type=1400 audit(1738002121.455:2116): avc:  denied  { perfmon } for  pid=4556 comm="syz.1.365" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   71.034871][   T29] audit: type=1400 audit(1738002121.455:2117): avc:  denied  { kernel } for  pid=4556 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   71.054188][   T29] audit: type=1326 audit(1738002121.455:2118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4555 comm="syz.1.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[   71.077469][   T29] audit: type=1400 audit(1738002121.455:2119): avc:  denied  { prog_load } for  pid=4556 comm="syz.1.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   71.096432][   T29] audit: type=1400 audit(1738002121.455:2120): avc:  denied  { bpf } for  pid=4556 comm="syz.1.365" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   71.161481][ T4571] 9pnet_fd: Insufficient options for proto=fd
[   71.174994][ T4571] loop2: detected capacity change from 0 to 512
[   71.200055][ T4571] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   71.242152][ T4571] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.369: iget: bad i_size value: -6917529027641081756
[   71.273311][ T4571] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.369: couldn't read orphan inode 17 (err -117)
[   71.291357][ T4585] 9pnet_fd: Insufficient options for proto=fd
[   71.302425][ T4571] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.438186][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.533444][ T4605] loop2: detected capacity change from 0 to 2048
[   71.585485][ T4605] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a800c029, mo2=0002]
[   71.610607][ T4605] System zones: 0-7
[   71.625199][ T4608] loop4: detected capacity change from 0 to 4096
[   71.632020][ T4608] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   71.638046][ T4605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.692636][ T4605] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.381: bg 0: block 234: padding at end of block bitmap is not set
[   71.730594][ T4605] EXT4-fs (loop2): Remounting filesystem read-only
[   71.757102][ T4624] netlink: 24 bytes leftover after parsing attributes in process `syz.3.391'.
[   71.843361][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.011176][ T4643] pimreg: entered allmulticast mode
[   72.032991][ T4643] dvmrp5: entered allmulticast mode
[   72.045145][ T4643] pimreg: left allmulticast mode
[   72.056152][ T4643] dvmrp5: left allmulticast mode
[   72.187286][ T4649] loop2: detected capacity change from 0 to 512
[   72.205146][ T4649] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   72.258702][ T4649] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   72.268500][ T4653] team_slave_0: entered promiscuous mode
[   72.274164][ T4653] team_slave_1: entered promiscuous mode
[   72.275441][ T4649] System zones: 1-12
[   72.297168][ T4649] EXT4-fs (loop2): 1 truncate cleaned up
[   72.298185][ T4653] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   72.303245][ T4649] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.336110][ T4653] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[   72.358748][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.386201][ T4657] netlink: 16 bytes leftover after parsing attributes in process `syz.3.404'.
[   72.494053][ T4681] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   72.506955][ T4680] FAULT_INJECTION: forcing a failure.
[   72.506955][ T4680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.520061][ T4680] CPU: 0 UID: 0 PID: 4680 Comm: syz.1.414 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   72.520115][ T4680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   72.520124][ T4680] Call Trace:
[   72.520129][ T4680]  <TASK>
[   72.520135][ T4680]  dump_stack_lvl+0xf2/0x150
[   72.520159][ T4680]  dump_stack+0x15/0x1a
[   72.520254][ T4680]  should_fail_ex+0x24a/0x260
[   72.520280][ T4685] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[   72.520281][ T4680]  should_fail+0xb/0x10
[   72.520305][ T4680]  should_fail_usercopy+0x1a/0x20
[   72.520320][ T4680]  _copy_from_user+0x1c/0xa0
[   72.520442][ T4680]  do_ip_vs_set_ctl+0x191/0x810
[   72.520461][ T4680]  ? __rcu_read_unlock+0x4e/0x70
[   72.520480][ T4680]  ? __pfx_ip4_datagram_release_cb+0x10/0x10
[   72.520541][ T4680]  ? ip4_datagram_release_cb+0x36c/0x3a0
[   72.520568][ T4680]  ? do_ip_setsockopt+0x1fcf/0x2340
[   72.520588][ T4680]  nf_setsockopt+0x195/0x1b0
[   72.520659][ T4680]  ip_setsockopt+0xea/0x100
[   72.520679][ T4680]  raw_setsockopt+0x101/0x150
[   72.520751][ T4680]  sock_common_setsockopt+0x64/0x80
[   72.520769][ T4680]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   72.520788][ T4680]  __sys_setsockopt+0x187/0x200
[   72.520845][ T4680]  __x64_sys_setsockopt+0x66/0x80
[   72.520868][ T4680]  x64_sys_call+0x282e/0x2dc0
[   72.520890][ T4680]  do_syscall_64+0xc9/0x1c0
[   72.520941][ T4680]  ? clear_bhb_loop+0x55/0xb0
[   72.520964][ T4680]  ? clear_bhb_loop+0x55/0xb0
[   72.520987][ T4680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.521063][ T4680] RIP: 0033:0x7f06d306cd29
[   72.521077][ T4680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.521093][ T4680] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   72.521110][ T4680] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   72.521121][ T4680] RDX: 000000000000048c RSI: 0000000000000000 RDI: 0000000000000003
[   72.521131][ T4680] RBP: 00007f06d16d7090 R08: 0000000000000018 R09: 0000000000000000
[   72.521142][ T4680] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[   72.521225][ T4680] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   72.521241][ T4680]  </TASK>
[   72.720126][ T4682] IPVS: stopping master sync thread 4685 ...
[   72.801994][ T4692] netlink: 348 bytes leftover after parsing attributes in process `syz.2.416'.
[   72.836498][ T4697] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   72.836498][ T4697] The task syz.1.417 (4697) triggered the difference, watch for misbehavior.
[   72.867380][ T4701] loop2: detected capacity change from 0 to 128
[   72.924372][ T4703] netlink: 16 bytes leftover after parsing attributes in process `syz.4.420'.
[   73.002781][ T4711] FAULT_INJECTION: forcing a failure.
[   73.002781][ T4711] name failslab, interval 1, probability 0, space 0, times 0
[   73.015622][ T4711] CPU: 1 UID: 0 PID: 4711 Comm: syz.4.424 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   73.015645][ T4711] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   73.015655][ T4711] Call Trace:
[   73.015660][ T4711]  <TASK>
[   73.015666][ T4711]  dump_stack_lvl+0xf2/0x150
[   73.015752][ T4711]  dump_stack+0x15/0x1a
[   73.015768][ T4711]  should_fail_ex+0x24a/0x260
[   73.015796][ T4711]  ? tcf_action_init_1+0x121/0x490
[   73.015818][ T4711]  should_failslab+0x8f/0xb0
[   73.015863][ T4711]  __kmalloc_cache_noprof+0x4e/0x320
[   73.015965][ T4711]  tcf_action_init_1+0x121/0x490
[   73.015983][ T4711]  ? tc_action_load_ops+0x1a9/0x410
[   73.016006][ T4711]  tcf_action_init+0x1cc/0x610
[   73.016026][ T4711]  ? __rmqueue_pcplist+0xf7e/0x1110
[   73.016065][ T4711]  tc_ctl_action+0x292/0x840
[   73.016086][ T4711]  ? xa_load+0xb9/0xe0
[   73.016171][ T4711]  ? __pfx_tc_ctl_action+0x10/0x10
[   73.016188][ T4711]  rtnetlink_rcv_msg+0x6aa/0x710
[   73.016211][ T4711]  ? ref_tracker_free+0x3a5/0x410
[   73.016237][ T4711]  ? __dev_queue_xmit+0x186/0x2090
[   73.016325][ T4711]  netlink_rcv_skb+0x12c/0x230
[   73.016351][ T4711]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   73.016506][ T4711]  rtnetlink_rcv+0x1c/0x30
[   73.016527][ T4711]  netlink_unicast+0x599/0x670
[   73.016597][ T4711]  netlink_sendmsg+0x5cc/0x6e0
[   73.016628][ T4711]  ? __pfx_netlink_sendmsg+0x10/0x10
[   73.016656][ T4711]  __sock_sendmsg+0x140/0x180
[   73.016710][ T4711]  ____sys_sendmsg+0x312/0x410
[   73.016732][ T4711]  __sys_sendmsg+0x19d/0x230
[   73.016764][ T4711]  __x64_sys_sendmsg+0x46/0x50
[   73.016790][ T4711]  x64_sys_call+0x2734/0x2dc0
[   73.016871][ T4711]  do_syscall_64+0xc9/0x1c0
[   73.016888][ T4711]  ? clear_bhb_loop+0x55/0xb0
[   73.016909][ T4711]  ? clear_bhb_loop+0x55/0xb0
[   73.016932][ T4711]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.016987][ T4711] RIP: 0033:0x7fc6c6a8cd29
[   73.017001][ T4711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.017025][ T4711] RSP: 002b:00007fc6c50f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.017043][ T4711] RAX: ffffffffffffffda RBX: 00007fc6c6ca5fa0 RCX: 00007fc6c6a8cd29
[   73.017052][ T4711] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[   73.017075][ T4711] RBP: 00007fc6c50f7090 R08: 0000000000000000 R09: 0000000000000000
[   73.017085][ T4711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.017096][ T4711] R13: 0000000000000000 R14: 00007fc6c6ca5fa0 R15: 00007ffcea50a478
[   73.017112][ T4711]  </TASK>
[   73.358680][ T4723] xt_recent: Unsupported userspace flags (000000da)
[   73.436424][ T4727] FAULT_INJECTION: forcing a failure.
[   73.436424][ T4727] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.449546][ T4727] CPU: 1 UID: 0 PID: 4727 Comm: syz.4.429 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   73.449568][ T4727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   73.449579][ T4727] Call Trace:
[   73.449586][ T4727]  <TASK>
[   73.449592][ T4727]  dump_stack_lvl+0xf2/0x150
[   73.449617][ T4727]  dump_stack+0x15/0x1a
[   73.449632][ T4727]  should_fail_ex+0x24a/0x260
[   73.449708][ T4727]  should_fail+0xb/0x10
[   73.449731][ T4727]  should_fail_usercopy+0x1a/0x20
[   73.449748][ T4727]  strncpy_from_user+0x25/0x210
[   73.449862][ T4727]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   73.449891][ T4727]  ? getname_flags+0x81/0x3b0
[   73.449917][ T4727]  getname_flags+0xb0/0x3b0
[   73.449969][ T4727]  user_path_at+0x26/0x120
[   73.449983][ T4727]  do_faccessat+0x35b/0x680
[   73.450008][ T4727]  __x64_sys_faccessat2+0x51/0x60
[   73.450029][ T4727]  x64_sys_call+0x15bc/0x2dc0
[   73.450077][ T4727]  do_syscall_64+0xc9/0x1c0
[   73.450095][ T4727]  ? clear_bhb_loop+0x55/0xb0
[   73.450115][ T4727]  ? clear_bhb_loop+0x55/0xb0
[   73.450136][ T4727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.450166][ T4727] RIP: 0033:0x7fc6c6a8cd29
[   73.450178][ T4727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.450192][ T4727] RSP: 002b:00007fc6c50f7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b7
[   73.450206][ T4727] RAX: ffffffffffffffda RBX: 00007fc6c6ca5fa0 RCX: 00007fc6c6a8cd29
[   73.450215][ T4727] RDX: 0000000000000002 RSI: 0000000020000000 RDI: 0000000000000004
[   73.450225][ T4727] RBP: 00007fc6c50f7090 R08: 0000000000000000 R09: 0000000000000000
[   73.450235][ T4727] R10: 0000000000001100 R11: 0000000000000246 R12: 0000000000000001
[   73.450245][ T4727] R13: 0000000000000000 R14: 00007fc6c6ca5fa0 R15: 00007ffcea50a478
[   73.450258][ T4727]  </TASK>
[   73.700116][   T11] kworker/u8:0: attempt to access beyond end of device
[   73.700116][   T11] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   73.936801][ T4760] netlink: 'syz.4.442': attribute type 27 has an invalid length.
[   73.959384][ T4762] FAULT_INJECTION: forcing a failure.
[   73.959384][ T4762] name failslab, interval 1, probability 0, space 0, times 0
[   73.972175][ T4762] CPU: 0 UID: 0 PID: 4762 Comm: syz.2.443 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   73.972199][ T4762] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   73.972210][ T4762] Call Trace:
[   73.972215][ T4762]  <TASK>
[   73.972222][ T4762]  dump_stack_lvl+0xf2/0x150
[   73.972245][ T4762]  dump_stack+0x15/0x1a
[   73.972317][ T4762]  should_fail_ex+0x24a/0x260
[   73.972346][ T4762]  should_failslab+0x8f/0xb0
[   73.972364][ T4762]  kmem_cache_alloc_noprof+0x52/0x320
[   73.972420][ T4762]  ? skb_clone+0x154/0x1f0
[   73.972446][ T4762]  skb_clone+0x154/0x1f0
[   73.972468][ T4762]  __netlink_deliver_tap+0x2bd/0x4f0
[   73.972547][ T4762]  netlink_unicast+0x64a/0x670
[   73.972570][ T4762]  netlink_sendmsg+0x5cc/0x6e0
[   73.972595][ T4762]  ? __pfx_netlink_sendmsg+0x10/0x10
[   73.972623][ T4762]  __sock_sendmsg+0x140/0x180
[   73.972641][ T4762]  ____sys_sendmsg+0x312/0x410
[   73.972713][ T4762]  __sys_sendmsg+0x19d/0x230
[   73.972784][ T4762]  __x64_sys_sendmsg+0x46/0x50
[   73.972816][ T4762]  x64_sys_call+0x2734/0x2dc0
[   73.972840][ T4762]  do_syscall_64+0xc9/0x1c0
[   73.972862][ T4762]  ? clear_bhb_loop+0x55/0xb0
[   73.972907][ T4762]  ? clear_bhb_loop+0x55/0xb0
[   73.972931][ T4762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.973040][ T4762] RIP: 0033:0x7fcc68d1cd29
[   73.973060][ T4762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.973078][ T4762] RSP: 002b:00007fcc67387038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.973096][ T4762] RAX: ffffffffffffffda RBX: 00007fcc68f35fa0 RCX: 00007fcc68d1cd29
[   73.973123][ T4762] RDX: 0000000020004000 RSI: 0000000020000040 RDI: 0000000000000005
[   73.973132][ T4762] RBP: 00007fcc67387090 R08: 0000000000000000 R09: 0000000000000000
[   73.973141][ T4762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.973150][ T4762] R13: 0000000000000000 R14: 00007fcc68f35fa0 R15: 00007ffc17a3c1e8
[   73.973163][ T4762]  </TASK>
[   74.259931][ T4760] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.267164][ T4760] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.280537][ T4760] team_slave_0: left promiscuous mode
[   74.286260][ T4760] team_slave_1: left promiscuous mode
[   74.326573][ T4760] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   74.337220][ T4760] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   74.368197][ T4760] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.377121][ T4760] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.386029][ T4760] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.394997][ T4760] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   74.410513][ T4762] netlink: 12 bytes leftover after parsing attributes in process `syz.2.443'.
[   74.464710][ T4776] netlink: 304 bytes leftover after parsing attributes in process `syz.1.447'.
[   74.991188][ T4813] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=12 sclass=netlink_xfrm_socket pid=4813 comm=syz.3.460
[   75.100414][ T4819] netlink: 4 bytes leftover after parsing attributes in process `syz.4.463'.
[   75.148972][ T4821] loop2: detected capacity change from 0 to 512
[   75.195887][ T4821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.222006][ T4821] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.232649][ T4827] netlink: 4 bytes leftover after parsing attributes in process `syz.4.466'.
[   75.258114][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.262985][ T4827] netlink: 12 bytes leftover after parsing attributes in process `syz.4.466'.
[   75.385173][ T4838] FAULT_INJECTION: forcing a failure.
[   75.385173][ T4838] name failslab, interval 1, probability 0, space 0, times 0
[   75.397882][ T4838] CPU: 0 UID: 0 PID: 4838 Comm: syz.2.472 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   75.397936][ T4838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   75.397944][ T4838] Call Trace:
[   75.398021][ T4838]  <TASK>
[   75.398028][ T4838]  dump_stack_lvl+0xf2/0x150
[   75.398050][ T4838]  dump_stack+0x15/0x1a
[   75.398095][ T4838]  should_fail_ex+0x24a/0x260
[   75.398124][ T4838]  should_failslab+0x8f/0xb0
[   75.398146][ T4838]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   75.398174][ T4838]  ? kasprintf+0x82/0xb0
[   75.398193][ T4838]  kvasprintf+0x8c/0x110
[   75.398279][ T4838]  kasprintf+0x82/0xb0
[   75.398296][ T4838]  ? alloc_bprm+0x64/0x680
[   75.398314][ T4838]  ? alloc_bprm+0xf3/0x680
[   75.398334][ T4838]  alloc_bprm+0x134/0x680
[   75.398355][ T4838]  do_execveat_common+0x12b/0x7e0
[   75.398386][ T4838]  ? getname_flags+0x15a/0x3b0
[   75.398409][ T4838]  __x64_sys_execveat+0x75/0x90
[   75.398431][ T4838]  x64_sys_call+0x291e/0x2dc0
[   75.398454][ T4838]  do_syscall_64+0xc9/0x1c0
[   75.398476][ T4838]  ? clear_bhb_loop+0x55/0xb0
[   75.398576][ T4838]  ? clear_bhb_loop+0x55/0xb0
[   75.398598][ T4838]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.398622][ T4838] RIP: 0033:0x7fcc68d1cd29
[   75.398636][ T4838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.398654][ T4838] RSP: 002b:00007fcc67387038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[   75.398692][ T4838] RAX: ffffffffffffffda RBX: 00007fcc68f35fa0 RCX: 00007fcc68d1cd29
[   75.398701][ T4838] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[   75.398710][ T4838] RBP: 00007fcc67387090 R08: 0000000000001000 R09: 0000000000000000
[   75.398719][ T4838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   75.398728][ T4838] R13: 0000000000000000 R14: 00007fcc68f35fa0 R15: 00007ffc17a3c1e8
[   75.398742][ T4838]  </TASK>
[   75.682772][ T4852] loop2: detected capacity change from 0 to 1024
[   75.699523][ T4852] EXT4-fs: inline encryption not supported
[   75.705464][ T4852] EXT4-fs: Ignoring removed i_version option
[   75.790355][ T4852] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.865660][   T29] kauditd_printk_skb: 553 callbacks suppressed
[   75.865672][   T29] audit: type=1400 audit(1738004178.270:2672): avc:  denied  { mounton } for  pid=4861 comm="syz.4.482" path="/93/file0" dev="tmpfs" ino=514 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   75.895994][ T4862] FAULT_INJECTION: forcing a failure.
[   75.895994][ T4862] name failslab, interval 1, probability 0, space 0, times 0
[   75.908656][ T4862] CPU: 1 UID: 0 PID: 4862 Comm: syz.4.482 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   75.908678][ T4862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   75.908689][ T4862] Call Trace:
[   75.908695][ T4862]  <TASK>
[   75.908702][ T4862]  dump_stack_lvl+0xf2/0x150
[   75.908798][ T4862]  dump_stack+0x15/0x1a
[   75.908814][ T4862]  should_fail_ex+0x24a/0x260
[   75.908858][ T4862]  should_failslab+0x8f/0xb0
[   75.908951][ T4862]  kmem_cache_alloc_noprof+0x52/0x320
[   75.908979][ T4862]  ? alloc_empty_file+0xd0/0x200
[   75.909051][ T4869] netlink: 304 bytes leftover after parsing attributes in process `syz.3.483'.
[   75.909057][ T4862]  ? _raw_spin_unlock+0x26/0x50
[   75.909083][ T4862]  alloc_empty_file+0xd0/0x200
[   75.909127][ T4862]  alloc_file_pseudo+0xc3/0x140
[   75.909236][ T4862]  __shmem_file_setup+0x1bb/0x1f0
[   75.909262][ T4862]  shmem_file_setup+0x3b/0x50
[   75.909317][ T4862]  __se_sys_memfd_create+0x2e1/0x5a0
[   75.909336][ T4862]  __x64_sys_memfd_create+0x31/0x40
[   75.909354][ T4862]  x64_sys_call+0x2d4c/0x2dc0
[   75.909389][ T4862]  do_syscall_64+0xc9/0x1c0
[   75.909409][ T4862]  ? clear_bhb_loop+0x55/0xb0
[   75.909507][ T4862]  ? clear_bhb_loop+0x55/0xb0
[   75.909529][ T4862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.909551][ T4862] RIP: 0033:0x7fc6c6a8cd29
[   75.909565][ T4862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.909622][ T4862] RSP: 002b:00007fc6c50f6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   75.909638][ T4862] RAX: ffffffffffffffda RBX: 00000000000004bc RCX: 00007fc6c6a8cd29
[   75.909649][ T4862] RDX: 00007fc6c50f6ef0 RSI: 0000000000000000 RDI: 00007fc6c6b0ec01
[   75.909660][ T4862] RBP: 0000000020000a40 R08: 00007fc6c50f6bb7 R09: 00007fc6c50f6e40
[   75.909671][ T4862] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000500
[   75.909682][ T4862] R13: 00007fc6c50f6ef0 R14: 00007fc6c50f6eb0 R15: 00000000200001c0
[   75.909735][ T4862]  </TASK>
[   75.919419][   T29] audit: type=1400 audit(1738004178.320:2673): avc:  denied  { create } for  pid=4863 comm="syz.3.483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   75.941713][ T4852] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.944596][   T29] audit: type=1400 audit(1738004178.320:2674): avc:  denied  { write } for  pid=4863 comm="syz.3.483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   75.949441][ T4862] loop4: detected capacity change from 0 to 512
[   75.953949][   T29] audit: type=1400 audit(1738004178.320:2675): avc:  denied  { nlmsg_write } for  pid=4863 comm="syz.3.483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   76.040199][ T4862] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   76.058193][   T29] audit: type=1400 audit(1738004178.340:2676): avc:  denied  { create } for  pid=4868 comm="syz.1.484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   76.071752][ T4866] pim6reg1: entered promiscuous mode
[   76.072772][   T29] audit: type=1400 audit(1738004178.380:2677): avc:  denied  { mount } for  pid=4850 comm="syz.2.477" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   76.080787][ T4866] pim6reg1: entered allmulticast mode
[   76.088803][   T29] audit: type=1400 audit(1738004178.380:2678): avc:  denied  { write } for  pid=4850 comm="syz.2.477" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   76.268037][   T29] audit: type=1400 audit(1738004178.380:2679): avc:  denied  { add_name } for  pid=4850 comm="syz.2.477" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   76.309852][   T29] audit: type=1400 audit(1738004178.380:2680): avc:  denied  { create } for  pid=4850 comm="syz.2.477" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[   76.351617][   T29] audit: type=1400 audit(1738004178.380:2681): avc:  denied  { create } for  pid=4850 comm="syz.2.477" name="memory.events.local" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   76.374630][ T4862] EXT4-fs (loop4): orphan cleanup on readonly fs
[   76.382916][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.400070][ T4862] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   76.418849][ T4862] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   76.426942][ T4862] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.482: bg 0: block 40: padding at end of block bitmap is not set
[   76.441908][ T4862] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   76.451750][ T4862] EXT4-fs (loop4): 1 truncate cleaned up
[   76.457999][ T4862] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.473225][ T4862] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.484729][ T4879] netlink: 60 bytes leftover after parsing attributes in process `syz.2.485'.
[   76.503379][ T4879] netlink: 60 bytes leftover after parsing attributes in process `syz.2.485'.
[   76.531595][ T4879] netlink: 60 bytes leftover after parsing attributes in process `syz.2.485'.
[   76.561620][ T4879] netlink: 60 bytes leftover after parsing attributes in process `syz.2.485'.
[   76.674557][ T4879] netlink: 60 bytes leftover after parsing attributes in process `syz.2.485'.
[   76.733475][ T4879] netlink: 60 bytes leftover after parsing attributes in process `syz.2.485'.
[   76.741457][ T4895] lo speed is unknown, defaulting to 1000
[   76.766932][ T4895] lo speed is unknown, defaulting to 1000
[   76.795337][ T4895] lo speed is unknown, defaulting to 1000
[   76.801402][ T4895] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   76.802610][ T4899] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=147 sclass=netlink_route_socket pid=4899 comm=syz.2.493
[   76.847521][ T4895] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   76.903469][ T4895] lo speed is unknown, defaulting to 1000
[   76.916356][ T4895] lo speed is unknown, defaulting to 1000
[   76.932875][ T4907] netlink: 16 bytes leftover after parsing attributes in process `syz.2.496'.
[   76.947871][ T4895] lo speed is unknown, defaulting to 1000
[   76.964418][ T4895] lo speed is unknown, defaulting to 1000
[   76.972910][ T4895] lo speed is unknown, defaulting to 1000
[   76.997505][ T4895] lo speed is unknown, defaulting to 1000
[   77.105584][ T4912] 9pnet_fd: Insufficient options for proto=fd
[   77.141396][ T4912] loop4: detected capacity change from 0 to 512
[   77.162593][ T4912] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   77.199432][ T4912] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #17: comm syz.4.499: iget: bad i_size value: -6917529027641081756
[   77.232000][ T4912] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.499: couldn't read orphan inode 17 (err -117)
[   77.235483][ T4925] netlink: 20 bytes leftover after parsing attributes in process `syz.3.497'.
[   77.282792][ T4912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.323559][ T4925] geneve0: entered allmulticast mode
[   77.326497][ T4935] block device autoloading is deprecated and will be removed.
[   77.359789][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.373598][ T4938] netlink: 304 bytes leftover after parsing attributes in process `syz.0.507'.
[   77.385750][ T4940] FAULT_INJECTION: forcing a failure.
[   77.385750][ T4940] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   77.398894][ T4940] CPU: 1 UID: 0 PID: 4940 Comm: syz.1.508 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   77.398922][ T4940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   77.398931][ T4940] Call Trace:
[   77.398935][ T4940]  <TASK>
[   77.398941][ T4940]  dump_stack_lvl+0xf2/0x150
[   77.398962][ T4940]  dump_stack+0x15/0x1a
[   77.399033][ T4940]  should_fail_ex+0x24a/0x260
[   77.399062][ T4940]  should_fail+0xb/0x10
[   77.399153][ T4940]  should_fail_usercopy+0x1a/0x20
[   77.399168][ T4940]  strncpy_from_user+0x25/0x210
[   77.399187][ T4940]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   77.399210][ T4940]  ? getname_flags+0x81/0x3b0
[   77.399252][ T4940]  getname_flags+0xb0/0x3b0
[   77.399278][ T4940]  user_path_at+0x26/0x120
[   77.399295][ T4940]  __se_sys_mount+0x24b/0x2d0
[   77.399321][ T4940]  __x64_sys_mount+0x67/0x80
[   77.399467][ T4940]  x64_sys_call+0x2c84/0x2dc0
[   77.399487][ T4940]  do_syscall_64+0xc9/0x1c0
[   77.399516][ T4940]  ? clear_bhb_loop+0x55/0xb0
[   77.399539][ T4940]  ? clear_bhb_loop+0x55/0xb0
[   77.399562][ T4940]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.399585][ T4940] RIP: 0033:0x7f06d306cd29
[   77.399599][ T4940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.399623][ T4940] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   77.399641][ T4940] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   77.399652][ T4940] RDX: 0000000020000b80 RSI: 0000000020000180 RDI: 0000000000000000
[   77.399663][ T4940] RBP: 00007f06d16d7090 R08: 0000000020000600 R09: 0000000000000000
[   77.399674][ T4940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.399686][ T4940] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   77.399703][ T4940]  </TASK>
[   77.684614][ T4949] lo speed is unknown, defaulting to 1000
[   77.846860][ T4959] loop3: detected capacity change from 0 to 2048
[   77.893978][ T4959]  loop3: p1 < > p4
[   77.898890][ T4959] loop3: p4 size 8388608 extends beyond EOD, truncated
[   77.980146][ T3000]  loop3: p1 < > p4
[   77.990235][ T3000] loop3: p4 size 8388608 extends beyond EOD, truncated
[   78.031212][ T4971] loop3: detected capacity change from 0 to 2048
[   78.067097][ T4973] capability: warning: `syz.1.519' uses deprecated v2 capabilities in a way that may be insecure
[   78.079140][ T4973] program syz.1.519 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   78.111659][ T3515] udevd[3515]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   78.122816][ T3295] udevd[3295]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   78.133468][ T4971]  loop3: p1 < > p4
[   78.146818][ T4971] loop3: p4 size 8388608 extends beyond EOD, truncated
[   78.209590][ T4977] bond2 (unregistering): Released all slaves
[   78.383250][ T4984] lo speed is unknown, defaulting to 1000
[   78.454667][ T4997] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.475792][ T4997] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.521937][ T5002] bridge0: port 3(hsr_slave_1) entered blocking state
[   78.528960][ T5002] bridge0: port 3(hsr_slave_1) entered disabled state
[   78.547978][ T5002] hsr_slave_1: entered allmulticast mode
[   78.563658][ T5002] hsr_slave_1: left allmulticast mode
[   78.707752][ T5010] FAULT_INJECTION: forcing a failure.
[   78.707752][ T5010] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.720931][ T5010] CPU: 1 UID: 0 PID: 5010 Comm: syz.1.535 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   78.720955][ T5010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   78.720965][ T5010] Call Trace:
[   78.720988][ T5010]  <TASK>
[   78.721057][ T5010]  dump_stack_lvl+0xf2/0x150
[   78.721111][ T5010]  dump_stack+0x15/0x1a
[   78.721131][ T5010]  should_fail_ex+0x24a/0x260
[   78.721158][ T5010]  should_fail+0xb/0x10
[   78.721210][ T5010]  should_fail_usercopy+0x1a/0x20
[   78.721228][ T5010]  _copy_from_user+0x1c/0xa0
[   78.721254][ T5010]  move_addr_to_kernel+0x82/0x120
[   78.721336][ T5010]  copy_msghdr_from_user+0x271/0x2a0
[   78.721382][ T5010]  __sys_sendmsg+0x13e/0x230
[   78.721413][ T5010]  __x64_sys_sendmsg+0x46/0x50
[   78.721437][ T5010]  x64_sys_call+0x2734/0x2dc0
[   78.721527][ T5010]  do_syscall_64+0xc9/0x1c0
[   78.721546][ T5010]  ? clear_bhb_loop+0x55/0xb0
[   78.721566][ T5010]  ? clear_bhb_loop+0x55/0xb0
[   78.721652][ T5010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.721673][ T5010] RIP: 0033:0x7f06d306cd29
[   78.721827][ T5010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.721843][ T5010] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.721859][ T5010] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   78.721913][ T5010] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006
[   78.721925][ T5010] RBP: 00007f06d16d7090 R08: 0000000000000000 R09: 0000000000000000
[   78.721936][ T5010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.721947][ T5010] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   78.721964][ T5010]  </TASK>
[   78.895427][ T5011] loop3: detected capacity change from 0 to 512
[   78.903181][ T5011] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   78.918544][ T5011] EXT4-fs (loop3): 1 orphan inode deleted
[   78.924359][ T5011] EXT4-fs (loop3): 1 truncate cleaned up
[   78.930759][ T5011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.947118][ T5017] FAULT_INJECTION: forcing a failure.
[   78.947118][ T5017] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.960274][ T5017] CPU: 1 UID: 0 PID: 5017 Comm: syz.1.537 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[   78.960295][ T5017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   78.960304][ T5017] Call Trace:
[   78.960309][ T5017]  <TASK>
[   78.960337][ T5017]  dump_stack_lvl+0xf2/0x150
[   78.960362][ T5017]  dump_stack+0x15/0x1a
[   78.960379][ T5017]  should_fail_ex+0x24a/0x260
[   78.960435][ T5017]  should_fail+0xb/0x10
[   78.960456][ T5017]  should_fail_usercopy+0x1a/0x20
[   78.960470][ T5017]  _copy_from_user+0x1c/0xa0
[   78.960488][ T5017]  copy_msghdr_from_user+0x54/0x2a0
[   78.960589][ T5017]  ? __fget_files+0x17c/0x1c0
[   78.960617][ T5017]  __sys_sendmsg+0x13e/0x230
[   78.960649][ T5017]  __x64_sys_sendmsg+0x46/0x50
[   78.960668][ T5017]  x64_sys_call+0x2734/0x2dc0
[   78.960697][ T5017]  do_syscall_64+0xc9/0x1c0
[   78.960720][ T5017]  ? clear_bhb_loop+0x55/0xb0
[   78.960780][ T5017]  ? clear_bhb_loop+0x55/0xb0
[   78.960799][ T5017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.960821][ T5017] RIP: 0033:0x7f06d306cd29
[   78.960834][ T5017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.960851][ T5017] RSP: 002b:00007f06d16d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.960919][ T5017] RAX: ffffffffffffffda RBX: 00007f06d3285fa0 RCX: 00007f06d306cd29
[   78.960930][ T5017] RDX: 0000000000004000 RSI: 0000000020000840 RDI: 0000000000000005
[   78.960942][ T5017] RBP: 00007f06d16d7090 R08: 0000000000000000 R09: 0000000000000000
[   78.960951][ T5017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.960960][ T5017] R13: 0000000000000000 R14: 00007f06d3285fa0 R15: 00007ffe61c70878
[   78.960973][ T5017]  </TASK>
[   79.545671][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.556902][ T5034] program syz.2.546 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   79.709643][ T5048] loop2: detected capacity change from 0 to 512
[   79.733950][ T5048] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   79.845690][ T5048] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   79.854834][ T5048] System zones: 1-12
[   79.872893][ T5048] EXT4-fs (loop2): 1 truncate cleaned up
[   79.896973][ T5048] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.994347][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.415689][ T5071] loop2: detected capacity change from 0 to 1024
[   80.437494][ T5071] EXT4-fs: Ignoring removed orlov option
[   80.443244][ T5071] EXT4-fs: Ignoring removed orlov option
[   80.448928][ T5071] EXT4-fs: Ignoring removed oldalloc option
[   80.481394][ T5071] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   80.492406][ T5071] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   80.529919][ T5071] EXT4-fs (loop2): invalid journal inode
[   80.542029][ T5071] EXT4-fs (loop2): can't get journal size
[   80.569588][ T5071] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.585105][ T5076] lo speed is unknown, defaulting to 1000
[   80.650924][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.897312][ T5093] loop4: detected capacity change from 0 to 1024
[   80.906608][ T5087] loop2: detected capacity change from 0 to 512
[   80.913378][ T5087] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   80.930368][ T5093] EXT4-fs: Ignoring removed orlov option
[   80.936095][ T5093] EXT4-fs: Ignoring removed orlov option
[   80.941785][ T5093] EXT4-fs: Ignoring removed oldalloc option
[   80.948311][ T5087] EXT4-fs (loop2): 1 orphan inode deleted
[   80.954033][ T5087] EXT4-fs (loop2): 1 truncate cleaned up
[   80.960093][ T5087] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   80.973948][ T5093] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   80.984887][ T5093] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   81.147671][ T5093] EXT4-fs (loop4): invalid journal inode
[   81.156277][ T5093] EXT4-fs (loop4): can't get journal size
[   81.328500][ T5093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   81.814222][ T5112] loop3: detected capacity change from 0 to 512
[   82.175548][   T29] kauditd_printk_skb: 418 callbacks suppressed
[   82.175602][   T29] audit: type=1326 audit(1738006236.466:3099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc6c6a8b690 code=0x7ffc0000
[   82.203785][ T5112] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   83.216058][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.431610][ T5112] EXT4-fs (loop3): 1 orphan inode deleted
[   83.437618][ T5112] EXT4-fs (loop3): 1 truncate cleaned up
[   83.443574][ T5112] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.523464][   T29] audit: type=1326 audit(1738006236.495:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc6c6a8b690 code=0x7ffc0000
[   83.546921][   T29] audit: type=1326 audit(1738006236.495:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.570311][   T29] audit: type=1326 audit(1738006236.495:3102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.593847][   T29] audit: type=1326 audit(1738006236.495:3103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.617213][   T29] audit: type=1326 audit(1738006236.495:3104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.640543][   T29] audit: type=1326 audit(1738006236.495:3105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.663868][   T29] audit: type=1326 audit(1738006236.495:3106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.687314][   T29] audit: type=1326 audit(1738006236.495:3107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.710660][   T29] audit: type=1326 audit(1738006236.495:3108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5091 comm="syz.4.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7fc6c6a8cd29 code=0x7ffc0000
[   83.734780][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.836209][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.883544][ T5115] lo speed is unknown, defaulting to 1000
[   83.930682][ T5129] loop4: detected capacity change from 0 to 128
[   84.059641][  T313] kworker/u8:5: attempt to access beyond end of device
[   84.059641][  T313] loop4: rw=1, sector=145, nr_sectors = 896 limit=128
[   84.149289][ T5145] loop4: detected capacity change from 0 to 1024
[   84.168117][ T5145] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.175734][ T5145] ext4: Unknown parameter 'obj_role'
[   84.547433][ T5167] loop4: detected capacity change from 0 to 512
[   84.581413][ T5167] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   84.613802][ T5167] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   84.632858][ T5167] System zones: 1-12
[   84.637426][ T5167] EXT4-fs (loop4): 1 truncate cleaned up
[   84.643564][ T5167] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.676518][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.787246][ T5183] loop4: detected capacity change from 0 to 764
[   84.944863][ T5195] loop4: detected capacity change from 0 to 1024
[   84.975301][ T5195] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.994010][ T5195] ext4: Unknown parameter 'obj_role'
[   85.928550][ T5247] loop3: detected capacity change from 0 to 512
[   85.938126][ T5247] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   85.950241][ T5247] EXT4-fs (loop3): 1 orphan inode deleted
[   85.956030][ T5247] EXT4-fs (loop3): 1 truncate cleaned up
[   85.962708][ T5247] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.146479][ T5271] __nla_validate_parse: 2 callbacks suppressed
[   86.146493][ T5271] netlink: 304 bytes leftover after parsing attributes in process `syz.1.640'.
[   86.636557][ T5279] netlink: 304 bytes leftover after parsing attributes in process `syz.2.643'.
[   86.672588][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.701769][ T5281] loop2: detected capacity change from 0 to 128
[   86.714711][ T5282] netlink: 20 bytes leftover after parsing attributes in process `syz.3.644'.
[   86.813845][ T5286] netlink: 20 bytes leftover after parsing attributes in process `syz.3.646'.
[   87.253071][ T5316] loop4: detected capacity change from 0 to 1024
[   87.265156][ T5316] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.279574][ T5316] ext4: Unknown parameter 'obj_role'
[   87.340450][   T29] kauditd_printk_skb: 230 callbacks suppressed
[   87.340461][   T29] audit: type=1400 audit(1738006754.483:3339): avc:  denied  { shutdown } for  pid=5306 comm="syz.1.654" laddr=fe80::10 lport=52824 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   87.528205][ T5329] netlink: 304 bytes leftover after parsing attributes in process `syz.3.664'.
[   87.538656][   T29] audit: type=1400 audit(1738006754.688:3340): avc:  denied  { unmount } for  pid=3308 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   87.540017][  T313] kworker/u8:5: attempt to access beyond end of device
[   87.540017][  T313] loop2: rw=1, sector=145, nr_sectors = 896 limit=128
[   87.633708][ T5332] loop4: detected capacity change from 0 to 512
[   87.649804][ T5332] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   87.664787][ T5332] EXT4-fs (loop4): 1 orphan inode deleted
[   87.670550][ T5332] EXT4-fs (loop4): 1 truncate cleaned up
[   87.676867][ T5332] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.706062][   T29] audit: type=1400 audit(1738006754.834:3341): avc:  denied  { write } for  pid=5323 comm="syz.4.662" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   87.727693][   T29] audit: type=1400 audit(1738006754.834:3342): avc:  denied  { add_name } for  pid=5323 comm="syz.4.662" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   87.748262][   T29] audit: type=1400 audit(1738006754.834:3343): avc:  denied  { create } for  pid=5323 comm="syz.4.662" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   87.768268][   T29] audit: type=1400 audit(1738006754.844:3344): avc:  denied  { connect } for  pid=5323 comm="syz.4.662" lport=6 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   87.794621][ T5330] loop3: detected capacity change from 0 to 128
[   87.852856][ T5334] loop2: detected capacity change from 0 to 1024
[   87.873877][ T5334] EXT4-fs: Ignoring removed orlov option
[   87.879625][ T5334] EXT4-fs: Ignoring removed orlov option
[   87.885330][ T5334] EXT4-fs: Ignoring removed oldalloc option
[   87.978195][ T5334] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   87.989122][ T5334] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   88.062141][ T5334] EXT4-fs (loop2): invalid journal inode
[   88.071445][ T5334] EXT4-fs (loop2): can't get journal size
[   88.081912][ T5334] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   88.094953][   T29] audit: type=1326 audit(1738006754.970:3345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5331 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc68d1cd29 code=0x7ffc0000
[   88.118334][   T29] audit: type=1326 audit(1738006754.970:3346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5331 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc68d1cd29 code=0x7ffc0000
[   88.141669][   T29] audit: type=1326 audit(1738006754.970:3347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5331 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcc68d1cd29 code=0x7ffc0000
[   88.165100][   T29] audit: type=1326 audit(1738006754.970:3348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5331 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc68d1cd29 code=0x7ffc0000
[   88.446664][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.569795][  T108] kworker/u8:4: attempt to access beyond end of device
[   88.569795][  T108] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[   88.697180][ T5350] loop2: detected capacity change from 0 to 1024
[   88.714258][ T5350] EXT4-fs: Ignoring removed nomblk_io_submit option
[   88.747279][ T5350] ext4: Unknown parameter 'obj_role'
[   88.907482][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.131861][ T5370] netlink: 304 bytes leftover after parsing attributes in process `syz.0.680'.
[   89.144203][ T5366] loop2: detected capacity change from 0 to 512
[   89.151092][ T5366] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   89.162995][ T5366] EXT4-fs (loop2): 1 orphan inode deleted
[   89.168842][ T5366] EXT4-fs (loop2): 1 truncate cleaned up
[   89.174841][ T5366] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.516603][ T5386] loop4: detected capacity change from 0 to 512
[   89.538701][ T5386] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   89.591965][ T5386] EXT4-fs (loop4): 1 orphan inode deleted
[   89.597870][ T5386] EXT4-fs (loop4): 1 truncate cleaned up
[   89.604334][ T5386] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.991682][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.340613][ T5399] IPVS: set_ctl: invalid protocol: 135 172.30.1.2:20001
[   90.368674][ T5401] loop2: detected capacity change from 0 to 764
[   90.423498][    T9] IPVS: starting estimator thread 0...
[   90.525203][ T5402] IPVS: using max 3024 ests per chain, 151200 per kthread
[   90.761107][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.804835][ T5415] loop2: detected capacity change from 0 to 512
[   90.818420][ T5415] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   90.836601][ T5415] EXT4-fs (loop2): 1 orphan inode deleted
[   90.842351][ T5415] EXT4-fs (loop2): 1 truncate cleaned up
[   90.848848][ T5415] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.920581][ T5419] 9pnet_fd: Insufficient options for proto=fd
[   90.934036][ T5419] loop4: detected capacity change from 0 to 512
[   91.052419][ T5419] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   91.170186][ T5419] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #17: comm syz.4.697: iget: bad i_size value: -6917529027641081756
[   91.325651][ T5419] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.697: couldn't read orphan inode 17 (err -117)
[   91.624797][ T5419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.666193][ T5427] netlink: 268 bytes leftover after parsing attributes in process `syz.3.700'.
[   91.742036][ T5256] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   91.776312][ T5434] loop3: detected capacity change from 0 to 128
[   91.827451][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.974073][ T5431] lo speed is unknown, defaulting to 1000
[   92.160061][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.175373][ T5440] lo speed is unknown, defaulting to 1000
[   92.462986][  T313] kworker/u8:5: attempt to access beyond end of device
[   92.462986][  T313] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[   92.500945][ T5460] 9pnet_fd: Insufficient options for proto=fd
[   92.512951][   T29] kauditd_printk_skb: 263 callbacks suppressed
[   92.512964][   T29] audit: type=1400 audit(1738007272.538:3612): avc:  denied  { write } for  pid=5454 comm="syz.1.713" path="socket:[10771]" dev="sockfs" ino=10771 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   92.550976][ T5462] netlink: 20 bytes leftover after parsing attributes in process `syz.1.713'.
[   92.683637][ T5468] loop4: detected capacity change from 0 to 512
[   92.720570][   T29] audit: type=1400 audit(1738007272.723:3613): avc:  denied  { unmount } for  pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   92.740530][   T29] audit: type=1400 audit(1738007272.733:3614): avc:  denied  { map_create } for  pid=5466 comm="syz.0.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   92.777187][ T5468] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   92.833617][ T5473] IPVS: set_ctl: invalid protocol: 135 172.30.1.4:20001
[   92.852253][ T5468] EXT4-fs (loop4): 1 orphan inode deleted
[   92.858041][ T5468] EXT4-fs (loop4): 1 truncate cleaned up
[   92.864012][ T5468] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.883169][ T3377] IPVS: starting estimator thread 0...
[   93.057521][   T29] audit: type=1400 audit(1738007272.772:3615): avc:  denied  { open } for  pid=5466 comm="syz.0.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   93.076720][   T29] audit: type=1400 audit(1738007272.772:3616): avc:  denied  { perfmon } for  pid=5466 comm="syz.0.717" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   93.097629][   T29] audit: type=1400 audit(1738007272.772:3617): avc:  denied  { kernel } for  pid=5466 comm="syz.0.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   93.116926][   T29] audit: type=1400 audit(1738007272.772:3618): avc:  denied  { append } for  pid=2982 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   93.139800][   T29] audit: type=1400 audit(1738007272.811:3619): avc:  denied  { prog_load } for  pid=5466 comm="syz.0.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   93.158821][   T29] audit: type=1400 audit(1738007272.811:3620): avc:  denied  { bpf } for  pid=5466 comm="syz.0.717" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   93.179226][   T29] audit: type=1400 audit(1738007272.811:3621): avc:  denied  { create } for  pid=5466 comm="syz.0.717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   93.200863][ T5475] IPVS: using max 2784 ests per chain, 139200 per kthread
[   93.269480][ T5479] lo speed is unknown, defaulting to 1000
[   93.475934][ T5485] loop3: detected capacity change from 0 to 1024
[   93.502160][ T5485] EXT4-fs: Ignoring removed orlov option
[   93.507869][ T5485] EXT4-fs: Ignoring removed orlov option
[   93.513546][ T5485] EXT4-fs: Ignoring removed oldalloc option
[   93.532768][ T5483] lo speed is unknown, defaulting to 1000
[   93.600269][ T5485] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   93.611198][ T5485] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   93.790915][ T5485] EXT4-fs (loop3): invalid journal inode
[   93.796701][ T5485] EXT4-fs (loop3): can't get journal size
[   93.797449][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.817631][ T5485] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   93.895879][ T5493] loop2: detected capacity change from 0 to 1024
[   93.925278][ T5493] EXT4-fs: Ignoring removed orlov option
[   93.931019][ T5493] EXT4-fs: Ignoring removed orlov option
[   93.936741][ T5493] EXT4-fs: Ignoring removed oldalloc option
[   93.951581][ T5493] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   93.962685][ T5493] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   93.976052][ T5493] EXT4-fs (loop2): invalid journal inode
[   93.981848][ T5493] EXT4-fs (loop2): can't get journal size
[   94.031312][ T5493] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   94.098374][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.183713][ T5508] netlink: 268 bytes leftover after parsing attributes in process `syz.3.728'.
[   94.260193][ T5512] loop3: detected capacity change from 0 to 128
[   94.279902][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.374792][ T5521] 9pnet_fd: Insufficient options for proto=fd
[   94.400316][ T5524] IPVS: set_ctl: invalid protocol: 135 172.30.1.3:20001
[   94.410409][   T35] IPVS: starting estimator thread 0...
[   94.499581][ T5525] IPVS: using max 2784 ests per chain, 139200 per kthread
[   94.534291][  T108] kworker/u8:4: attempt to access beyond end of device
[   94.534291][  T108] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[   94.588621][ T5537] netlink: 20 bytes leftover after parsing attributes in process `syz.2.741'.
[   94.599777][ T5537] geneve0: entered allmulticast mode
[   94.877848][ T5553] 9pnet_fd: Insufficient options for proto=fd
[   94.890149][ T5553] loop2: detected capacity change from 0 to 512
[   94.899229][ T5553] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   94.959783][ T5558] loop4: detected capacity change from 0 to 512
[   94.973040][ T5558] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   95.014432][ T5558] EXT4-fs (loop4): 1 orphan inode deleted
[   95.020329][ T5558] EXT4-fs (loop4): 1 truncate cleaned up
[   95.026495][ T5558] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.086487][ T5553] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.749: iget: bad i_size value: -6917529027641081756
[   95.159835][ T5553] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.749: couldn't read orphan inode 17 (err -117)
[   95.233746][ T5553] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.476635][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.536127][ T5572] lo speed is unknown, defaulting to 1000
[   95.989842][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.154411][ T5597] netlink: 268 bytes leftover after parsing attributes in process `syz.0.764'.
[   96.155784][ T5601] 9pnet_fd: Insufficient options for proto=fd
[   96.224260][ T5601] loop4: detected capacity change from 0 to 512
[   96.320324][ T5610] loop3: detected capacity change from 0 to 512
[   96.328922][ T5610] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   96.340137][ T5601] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   96.351116][ T5610] EXT4-fs (loop3): 1 orphan inode deleted
[   96.356939][ T5610] EXT4-fs (loop3): 1 truncate cleaned up
[   96.363018][ T5610] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.432561][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.451628][ T5601] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #17: comm syz.4.766: iget: bad i_size value: -6917529027641081756
[   96.473048][ T5601] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.766: couldn't read orphan inode 17 (err -117)
[   96.516460][ T5601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.620091][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.829762][ T5642] loop3: detected capacity change from 0 to 1024
[   96.849722][ T5642] EXT4-fs: Ignoring removed orlov option
[   96.855440][ T5642] EXT4-fs: Ignoring removed orlov option
[   96.860295][ T5637] loop2: detected capacity change from 0 to 2048
[   96.861117][ T5642] EXT4-fs: Ignoring removed oldalloc option
[   96.882853][ T5642] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   96.893816][ T5642] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[   96.915762][ T5642] EXT4-fs (loop3): invalid journal inode
[   96.928758][ T5642] EXT4-fs (loop3): can't get journal size
[   96.949392][ T5637] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.962984][ T5642] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.989720][ T5637] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.013926][ T5637] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.017669][ T5657] 9pnet_fd: Insufficient options for proto=fd
[   97.042766][ T5657] loop4: detected capacity change from 0 to 512
[   97.102817][ T5657] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   97.125568][ T5637] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   97.146394][ T5637] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1050 with error 28
[   97.158951][ T5637] EXT4-fs (loop2): This should not happen!! Data will be lost
[   97.158951][ T5637] 
[   97.168812][ T5637] EXT4-fs (loop2): Total free blocks count 0
[   97.174925][ T5637] EXT4-fs (loop2): Free/Dirty block details
[   97.180846][ T5637] EXT4-fs (loop2): free_blocks=2415919104
[   97.186627][ T5637] EXT4-fs (loop2): dirty_blocks=1056
[   97.191926][ T5637] EXT4-fs (loop2): Block reservation details
[   97.197911][ T5637] EXT4-fs (loop2): i_reserved_data_blocks=66
[   97.245848][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.267633][ T5657] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #17: comm syz.4.787: iget: bad i_size value: -6917529027641081756
[   97.327314][ T5657] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.787: couldn't read orphan inode 17 (err -117)
[   97.356762][ T5657] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.127965][ T5686] loop3: detected capacity change from 0 to 512
[   98.499774][   T29] kauditd_printk_skb: 299 callbacks suppressed
[   98.499787][   T29] audit: type=1400 audit(1738007278.387:3921): avc:  denied  { connect } for  pid=5683 comm="syz.0.799" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   98.525540][   T29] audit: type=1400 audit(1738007278.387:3922): avc:  denied  { name_connect } for  pid=5683 comm="syz.0.799" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   98.603634][ T5686] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   98.740195][ T5686] EXT4-fs (loop3): 1 orphan inode deleted
[   98.745964][ T5686] EXT4-fs (loop3): 1 truncate cleaned up
[   98.770868][   T29] audit: type=1400 audit(1738007278.584:3923): avc:  denied  { connect } for  pid=5672 comm="syz.1.795" lport=6 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   99.661470][   T29] audit: type=1400 audit(1738007279.527:3924): avc:  denied  { execute } for  pid=5683 comm="syz.0.799" path="/147/bus" dev="tmpfs" ino=799 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   99.827116][ T5693] loop4: detected capacity change from 0 to 512
[  100.009265][ T5693] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  100.067508][ T5693] EXT4-fs (loop4): 1 orphan inode deleted
[  100.073273][ T5693] EXT4-fs (loop4): 1 truncate cleaned up
[  100.079626][ T5693] EXT4-fs mount: 3 callbacks suppressed
[  100.079639][ T5693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.113022][ T5689] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  100.125265][   T29] audit: type=1400 audit(1738007279.960:3925): avc:  denied  { create } for  pid=5688 comm="syz.4.800" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  100.259574][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.269003][ T5689] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  100.468644][ T5711] 9pnet_fd: Insufficient options for proto=fd
[  100.493669][ T5711] loop3: detected capacity change from 0 to 512
[  100.515238][ T5711] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  100.548690][ T5711] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #17: comm syz.3.808: iget: bad i_size value: -6917529027641081756
[  100.580738][ T5711] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.808: couldn't read orphan inode 17 (err -117)
[  100.600718][   T29] audit: type=1400 audit(1738007280.452:3926): avc:  denied  { create } for  pid=5721 comm="syz.1.811" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  100.628190][ T5711] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.658057][   T29] audit: type=1326 audit(1738007280.481:3927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5721 comm="syz.1.811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[  100.681634][   T29] audit: type=1326 audit(1738007280.481:3928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5721 comm="syz.1.811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[  100.704948][   T29] audit: type=1326 audit(1738007280.481:3929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5721 comm="syz.1.811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[  100.728368][   T29] audit: type=1326 audit(1738007280.481:3930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5721 comm="syz.1.811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06d306cd29 code=0x7ffc0000
[  100.768742][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.066000][ T5731] IPv6: Can't replace route, no match found
[  101.126275][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.226628][ T5740] loop2: detected capacity change from 0 to 1024
[  101.244719][ T5739] FAULT_INJECTION: forcing a failure.
[  101.244719][ T5739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.258023][ T5739] CPU: 1 UID: 0 PID: 5739 Comm: syz.0.816 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[  101.258046][ T5739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  101.258057][ T5739] Call Trace:
[  101.258063][ T5739]  <TASK>
[  101.258069][ T5739]  dump_stack_lvl+0xf2/0x150
[  101.258090][ T5739]  dump_stack+0x15/0x1a
[  101.258107][ T5739]  should_fail_ex+0x24a/0x260
[  101.258149][ T5739]  should_fail+0xb/0x10
[  101.258174][ T5739]  should_fail_usercopy+0x1a/0x20
[  101.258234][ T5739]  _copy_from_user+0x1c/0xa0
[  101.258254][ T5739]  copy_msghdr_from_user+0x54/0x2a0
[  101.258272][ T5739]  ? __fget_files+0x17c/0x1c0
[  101.258306][ T5739]  __sys_sendmsg+0x13e/0x230
[  101.258348][ T5739]  __x64_sys_sendmsg+0x46/0x50
[  101.258372][ T5739]  x64_sys_call+0x2734/0x2dc0
[  101.258396][ T5739]  do_syscall_64+0xc9/0x1c0
[  101.258478][ T5739]  ? clear_bhb_loop+0x55/0xb0
[  101.258518][ T5739]  ? clear_bhb_loop+0x55/0xb0
[  101.258540][ T5739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.258563][ T5739] RIP: 0033:0x7effdc08cd29
[  101.258578][ T5739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.258630][ T5739] RSP: 002b:00007effda69d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.258644][ T5739] RAX: ffffffffffffffda RBX: 00007effdc2a6080 RCX: 00007effdc08cd29
[  101.258654][ T5739] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  101.258713][ T5739] RBP: 00007effda69d090 R08: 0000000000000000 R09: 0000000000000000
[  101.258722][ T5739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  101.258761][ T5739] R13: 0000000000000000 R14: 00007effdc2a6080 R15: 00007fff1f1e8188
[  101.258775][ T5739]  </TASK>
[  101.262184][ T5740] EXT4-fs: Ignoring removed orlov option
[  101.293801][ T5745] loop4: detected capacity change from 0 to 764
[  101.297714][ T5740] EXT4-fs: Ignoring removed orlov option
[  101.305940][ T5731] ebtables: ebtables: counters copy to user failed while replacing table
[  101.306627][ T5740] EXT4-fs: Ignoring removed oldalloc option
[  101.380002][ T5740] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  101.479102][ T5740] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  101.491291][ T5740] EXT4-fs (loop2): invalid journal inode
[  101.497051][ T5740] EXT4-fs (loop2): can't get journal size
[  101.504947][ T5740] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  101.540512][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.623429][ T5760] 9pnet_fd: Insufficient options for proto=fd
[  101.668155][ T5760] loop2: detected capacity change from 0 to 512
[  101.695852][ T5760] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  101.772969][ T5766] loop3: detected capacity change from 0 to 4096
[  101.776022][ T5760] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.823: iget: bad i_size value: -6917529027641081756
[  101.863644][ T5760] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.823: couldn't read orphan inode 17 (err -117)
[  101.885394][ T5766] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.907825][ T5760] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.979310][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.055646][ T5776] netlink: 268 bytes leftover after parsing attributes in process `syz.0.830'.
[  102.071210][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.141690][ T5786] loop2: detected capacity change from 0 to 1024
[  102.163848][ T5790] loop3: detected capacity change from 0 to 512
[  102.170655][ T5790] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  102.188116][ T5786] EXT4-fs: Ignoring removed orlov option
[  102.193986][ T5786] EXT4-fs: Ignoring removed orlov option
[  102.199683][ T5786] EXT4-fs: Ignoring removed oldalloc option
[  102.208396][ T5790] EXT4-fs (loop3): 1 orphan inode deleted
[  102.214155][ T5790] EXT4-fs (loop3): 1 truncate cleaned up
[  102.220132][ T5790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.278570][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.290155][ T5786] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  102.301126][ T5786] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  102.316994][ T5794] netlink: 20 bytes leftover after parsing attributes in process `syz.1.836'.
[  102.332811][ T5786] EXT4-fs (loop2): invalid journal inode
[  102.342713][ T5794] geneve0: entered allmulticast mode
[  102.358030][ T5786] EXT4-fs (loop2): can't get journal size
[  102.386479][ T5786] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  102.426455][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.522032][ T5808] netlink: 12 bytes leftover after parsing attributes in process `syz.4.838'.
[  102.631337][ T5797] ebtables: ebtables: counters copy to user failed while replacing table
[  102.773317][ T5826] loop3: detected capacity change from 0 to 128
[  102.804596][ T5826] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.847720][ T5826] ext4 filesystem being mounted at /181/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  102.859057][ T5830] loop4: detected capacity change from 0 to 764
[  102.915269][ T3301] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  103.134242][ T5840] netlink: 20 bytes leftover after parsing attributes in process `syz.4.853'.
[  103.170435][ T5840] geneve0: entered allmulticast mode
[  103.704408][   T29] kauditd_printk_skb: 328 callbacks suppressed
[  103.704423][   T29] audit: type=1400 audit(1738007283.437:4259): avc:  denied  { execmem } for  pid=5855 comm="syz.4.859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  104.020725][   T29] audit: type=1400 audit(1738007283.586:4260): avc:  denied  { create } for  pid=5858 comm="syz.3.860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  104.040330][   T29] audit: type=1400 audit(1738007283.586:4261): avc:  denied  { write } for  pid=5858 comm="syz.3.860" name="mcfilter" dev="proc" ino=4026532778 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  104.063278][   T29] audit: type=1400 audit(1738007283.812:4262): avc:  denied  { connect } for  pid=5858 comm="syz.3.860" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  104.086623][ T5856] loop4: detected capacity change from 0 to 512
[  104.107365][ T5856] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  104.134979][ T5856] EXT4-fs (loop4): 1 orphan inode deleted
[  104.141012][ T5856] EXT4-fs (loop4): 1 truncate cleaned up
[  104.147005][ T5856] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.241527][ T5862] netlink: 20 bytes leftover after parsing attributes in process `syz.2.861'.
[  104.255914][   T29] audit: type=1400 audit(1738007283.901:4263): avc:  denied  { mounton } for  pid=5855 comm="syz.4.859" path="/160/bus" dev="tmpfs" ino=876 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  104.278324][   T29] audit: type=1400 audit(1738007283.901:4264): avc:  denied  { create } for  pid=5861 comm="syz.2.861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  104.298944][   T29] audit: type=1400 audit(1738007283.901:4265): avc:  denied  { bind } for  pid=5861 comm="syz.2.861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  104.319386][   T29] audit: type=1400 audit(1738007283.961:4266): avc:  denied  { mount } for  pid=5855 comm="syz.4.859" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  104.341029][   T29] audit: type=1400 audit(1738007283.961:4267): avc:  denied  { write } for  pid=5855 comm="syz.4.859" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  104.362674][   T29] audit: type=1400 audit(1738007283.961:4268): avc:  denied  { add_name } for  pid=5855 comm="syz.4.859" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  104.405193][ T5869] loop3: detected capacity change from 0 to 128
[  104.504291][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.567696][ T5880] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  104.582572][ T5880] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  104.657280][ T5885] netlink: 20 bytes leftover after parsing attributes in process `syz.1.870'.
[  104.706331][ T5886] usb usb8: usbfs: process 5886 (syz.0.868) did not claim interface 0 before use
[  105.253220][ T5919] loop3: detected capacity change from 0 to 512
[  105.265590][ T5919] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  105.278783][ T5919] EXT4-fs (loop3): 1 orphan inode deleted
[  105.284552][ T5919] EXT4-fs (loop3): 1 truncate cleaned up
[  105.290526][ T5919] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.315892][ T3301] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.409100][ T5923] netlink: 20 bytes leftover after parsing attributes in process `syz.3.882'.
[  106.407644][ T5930] loop2: detected capacity change from 0 to 512
[  106.785923][ T5931] loop4: detected capacity change from 0 to 1024
[  106.860186][ T5930] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  107.083205][ T5931] EXT4-fs: Ignoring removed orlov option
[  107.088866][ T5931] EXT4-fs: Ignoring removed orlov option
[  107.094532][ T5931] EXT4-fs: Ignoring removed oldalloc option
[  107.394924][ T5930] EXT4-fs (loop2): 1 orphan inode deleted
[  107.400773][ T5930] EXT4-fs (loop2): 1 truncate cleaned up
[  107.407287][ T5930] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.458317][ T5931] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  107.469280][ T5931] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  107.480571][ T5931] EXT4-fs (loop4): invalid journal inode
[  107.486271][ T5931] EXT4-fs (loop4): can't get journal size
[  107.494616][ T5931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.520265][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.655143][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.681819][ T5952] xt_TCPMSS: Only works on TCP SYN packets
[  107.692335][ T5952] netlink: 'syz.4.894': attribute type 27 has an invalid length.
[  107.721553][ T5952] geneve0: left allmulticast mode
[  107.731430][ T5952] loop4: detected capacity change from 0 to 164
[  107.755528][ T5952] iso9660: Unknown parameter '˙˙˙˙˙˙˙˙unhide'
[  107.920432][ T5973] 9pnet_fd: Insufficient options for proto=fd
[  107.940573][ T5974] loop4: detected capacity change from 0 to 1024
[  107.969271][ T5973] loop2: detected capacity change from 0 to 512
[  107.983049][ T5974] EXT4-fs: Ignoring removed nomblk_io_submit option
[  108.053322][ T5974] ext4: Unknown parameter 'obj_role'
[  108.771756][   T29] kauditd_printk_skb: 174 callbacks suppressed
[  108.771769][   T29] audit: type=1400 audit(1738007288.519:4443): avc:  denied  { open } for  pid=5981 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  108.797199][   T29] audit: type=1400 audit(1738007288.519:4444): avc:  denied  { perfmon } for  pid=5981 comm="syz.4.904" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  108.818006][   T29] audit: type=1400 audit(1738007288.519:4445): avc:  denied  { kernel } for  pid=5981 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  108.943790][   T29] audit: type=1400 audit(1738007288.588:4446): avc:  denied  { module_request } for  pid=5970 comm="syz.3.901" kmod="net-pf-10-proto-8" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  108.966170][   T29] audit: type=1400 audit(1738007288.608:4447): avc:  denied  { prog_load } for  pid=5981 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  108.985223][   T29] audit: type=1400 audit(1738007288.608:4448): avc:  denied  { bpf } for  pid=5981 comm="syz.4.904" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  109.005680][   T29] audit: type=1400 audit(1738007288.608:4449): avc:  denied  { create } for  pid=5981 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  109.026022][   T29] audit: type=1400 audit(1738007288.608:4450): avc:  denied  { create } for  pid=5981 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  109.045668][   T29] audit: type=1400 audit(1738007288.608:4451): avc:  denied  { setopt } for  pid=5981 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  109.065238][   T29] audit: type=1400 audit(1738007288.618:4452): avc:  denied  { read write } for  pid=3301 comm="syz-executor" name="loop3" dev="devtmpfs" ino=620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  109.089715][ T5973] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  109.100927][ T5991] loop3: detected capacity change from 0 to 128
[  109.162244][ T5991] syz.3.907: attempt to access beyond end of device
[  109.162244][ T5991] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128
[  109.223921][ T5991] vhci_hcd: invalid port number 255
[  109.229247][ T5991] vhci_hcd: default hub control req: d303 v0000 i00ff l1
[  109.246985][ T5973] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.900: iget: bad i_size value: -6917529027641081756
[  109.302951][ T5973] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.900: couldn't read orphan inode 17 (err -117)
[  109.364561][ T5973] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.456912][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.622389][ T6016] FAULT_INJECTION: forcing a failure.
[  109.622389][ T6016] name failslab, interval 1, probability 0, space 0, times 0
[  109.635105][ T6016] CPU: 1 UID: 0 PID: 6016 Comm: syz.2.915 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[  109.635125][ T6016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  109.635135][ T6016] Call Trace:
[  109.635141][ T6016]  <TASK>
[  109.635147][ T6016]  dump_stack_lvl+0xf2/0x150
[  109.635193][ T6016]  dump_stack+0x15/0x1a
[  109.635210][ T6016]  should_fail_ex+0x24a/0x260
[  109.635277][ T6016]  should_failslab+0x8f/0xb0
[  109.635300][ T6016]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  109.635350][ T6016]  ? sidtab_sid2str_get+0xb8/0x140
[  109.635401][ T6016]  kmemdup_noprof+0x2a/0x60
[  109.635417][ T6016]  sidtab_sid2str_get+0xb8/0x140
[  109.635436][ T6016]  security_sid_to_context_core+0x1eb/0x2f0
[  109.635536][ T6016]  security_sid_to_context+0x27/0x30
[  109.635551][ T6016]  selinux_lsmprop_to_secctx+0x68/0xf0
[  109.635614][ T6016]  security_lsmprop_to_secctx+0x40/0x80
[  109.635639][ T6016]  audit_log_task_context+0x76/0x180
[  109.635669][ T6016]  audit_log_task+0xf9/0x1c0
[  109.635691][ T6016]  audit_seccomp+0x68/0x130
[  109.635780][ T6016]  __seccomp_filter+0x6fa/0x1180
[  109.635798][ T6016]  ? vfs_copy_file_range+0x72e/0xf00
[  109.635825][ T6016]  __secure_computing+0x9f/0x1c0
[  109.635849][ T6016]  syscall_trace_enter+0xd1/0x1f0
[  109.635869][ T6016]  do_syscall_64+0xaa/0x1c0
[  109.635895][ T6016]  ? clear_bhb_loop+0x55/0xb0
[  109.635920][ T6016]  ? clear_bhb_loop+0x55/0xb0
[  109.635941][ T6016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.635960][ T6016] RIP: 0033:0x7fcc68d1b73c
[  109.635972][ T6016] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  109.635986][ T6016] RSP: 002b:00007fcc67387030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  109.636024][ T6016] RAX: ffffffffffffffda RBX: 00007fcc68f35fa0 RCX: 00007fcc68d1b73c
[  109.636119][ T6016] RDX: 000000000000000f RSI: 00007fcc673870a0 RDI: 0000000000000005
[  109.636130][ T6016] RBP: 00007fcc67387090 R08: 0000000000000000 R09: 0000000000000000
[  109.636142][ T6016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.636154][ T6016] R13: 0000000000000000 R14: 00007fcc68f35fa0 R15: 00007ffc17a3c1e8
[  109.636185][ T6016]  </TASK>
[  109.944031][ T2247] ==================================================================
[  109.952127][ T2247] BUG: KCSAN: data-race in n_tty_receive_char_flow_ctrl / tty_set_termios
[  109.960627][ T2247] 
[  109.962948][ T2247] write to 0xffff888121105522 of 1 bytes by task 6018 on cpu 1:
[  109.970604][ T2247]  tty_set_termios+0x4c9/0x8b0
[  109.975368][ T2247]  set_termios+0x365/0x4e0
[  109.979800][ T2247]  tty_mode_ioctl+0x391/0x5d0
[  109.984479][ T2247]  n_tty_ioctl_helper+0x8d/0x240
[  109.989427][ T2247]  n_tty_ioctl+0xfd/0x200
[  109.993768][ T2247]  tty_ioctl+0x87a/0xbe0
[  109.998019][ T2247]  __se_sys_ioctl+0xc9/0x140
[  110.002616][ T2247]  __x64_sys_ioctl+0x43/0x50
[  110.007206][ T2247]  x64_sys_call+0x1690/0x2dc0
[  110.011896][ T2247]  do_syscall_64+0xc9/0x1c0
[  110.016396][ T2247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.022293][ T2247] 
[  110.024607][ T2247] read to 0xffff888121105522 of 1 bytes by task 2247 on cpu 0:
[  110.032152][ T2247]  n_tty_receive_char_flow_ctrl+0x58/0x1a0
[  110.037967][ T2247]  n_tty_lookahead_flow_ctrl+0xee/0x130
[  110.043527][ T2247]  tty_port_default_lookahead_buf+0x8a/0xc0
[  110.049447][ T2247]  flush_to_ldisc+0x31c/0x410
[  110.054142][ T2247]  process_scheduled_works+0x483/0x9a0
[  110.059606][ T2247]  worker_thread+0x51d/0x6f0
[  110.064196][ T2247]  kthread+0x4ae/0x520
[  110.068265][ T2247]  ret_from_fork+0x4b/0x60
[  110.072683][ T2247]  ret_from_fork_asm+0x1a/0x30
[  110.077453][ T2247] 
[  110.079773][ T2247] value changed: 0x13 -> 0x29
[  110.084442][ T2247] 
[  110.086763][ T2247] Reported by Kernel Concurrency Sanitizer on:
[  110.092915][ T2247] CPU: 0 UID: 0 PID: 2247 Comm: kworker/u8:8 Not tainted 6.13.0-syzkaller-08265-g9c5968db9e62 #0
[  110.103412][ T2247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  110.113467][ T2247] Workqueue: events_unbound flush_to_ldisc
[  110.119284][ T2247] ==================================================================