last executing test programs:

1m3.974423464s ago: executing program 2 (id=409):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc)
setsockopt$MRT6_DONE(r1, 0x29, 0xc9, 0x0, 0x0)

1m3.898903674s ago: executing program 2 (id=413):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x6})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000400)='kfree\x00', r3}, 0x18)
mkdir(&(0x7f0000000000)='./file0\x00', 0x6)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r4, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0x5}, 0x18)
sendmmsg$inet(r4, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000700)="a8", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000480)="ec", 0x1}], 0x1}}], 0x2, 0x4004441)
mount(0x0, &(0x7f0000001fc0)='./file0\x00', &(0x7f0000002000)='devtmpfs\x00', 0x0, &(0x7f0000002040)='dirsync')
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r6, &(0x7f0000001180)={0x13, 0x10, 0xfa00, {0xfffffffffffffffe, r7, 0x2}}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0xe, &(0x7f0000000540)={[{@dioread_nolock}, {@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@noblock_validity}]}, 0x3, 0x472, &(0x7f0000000ec0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1m3.780920003s ago: executing program 2 (id=414):
unshare(0x2040400)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x2, &(0x7f0000000000)=[{0x4d, 0x0, 0xff, 0x7ffc0001}, {0x8, 0x2, 0x8c, 0x10001}]})
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
fgetxattr(r0, &(0x7f00000003c0)=@known='security.selinux\x00', 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
unshare(0x8020000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setgroups(0x0, 0x0)
chroot(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')

1m3.722764403s ago: executing program 2 (id=416):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
r1 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r1, &(0x7f0000002240)=[{&(0x7f0000001000)=@in={0x2, 0x4e23, @local}, 0x10, &(0x7f0000001040)=[{&(0x7f00000010c0)="13", 0x1}], 0x1, &(0x7f0000002180)=[@dstaddrv4={0x18, 0x84, 0x7, @loopback}], 0x18, 0x40010}], 0x1, 0x240000c0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket(0x10, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
getpid()
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x13, &(0x7f0000000700)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0xd626}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x1}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001100010027bd7000ffdbdf2500000000", @ANYRES32=r8], 0x20}}, 0x0)
recvmsg(r2, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0xd68210}], 0x1, 0x0, 0x1f00000000000000, 0x200000}, 0x1f00)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10, 0x0, 0x1}, 0x18)
r11 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r12 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r12, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
close_range(r11, 0xffffffffffffffff, 0x0)
sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

1m2.820202871s ago: executing program 2 (id=432):
ptrace$getregset(0x4204, 0x0, 0x202, &(0x7f0000000180)={0x0})
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r0, 0x400, 0x2)
r1 = socket$kcm(0x10, 0x2, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800009f0fe54bffffffff000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x46, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)

1m2.626698991s ago: executing program 2 (id=434):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()

1m2.608917181s ago: executing program 32 (id=434):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()

5.554873783s ago: executing program 1 (id=1674):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYRESDEC, @ANYRES64, @ANYRES16, @ANYRESHEX=0x0, @ANYRES8, @ANYRES8, @ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000780)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket(0x10, 0x3, 0x6)
r5 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000680)={0xa0, r2, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x38}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x30, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x34, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x14}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0xa0}}, 0x4000011)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000ac0)={{}, &(0x7f0000000a40), &(0x7f0000000a80)='%pB    \x00'}, 0x20)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
munlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
socket$inet(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
r10 = socket(0x10, 0x3, 0x2)
connect$netlink(r10, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
socket$inet(0xa, 0x1, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@gettclass={0x24, 0x2a, 0x10d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, {0x81ff}}}, 0x24}}, 0x0)

5.443983543s ago: executing program 1 (id=1678):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x3, 0x81f42)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
ioctl$EVIOCGBITSW(r0, 0x40095505, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001740)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x4000844)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x25, 0x10, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="50000000100001040000fe00000000000000ffff", @ANYRES32=0x0, @ANYBLOB="421c0000000000001c001280090001007866726d000000000c0002800800020002000000140003007866726d3000"/56], 0x50}}, 0x0)
ioctl$IMCLEAR_L2(0xffffffffffffffff, 0x80044946, &(0x7f0000000180)=0x7)
syz_usbip_server_init(0x3)
select(0x40, &(0x7f0000000300)={0xd, 0x8, 0x1000, 0x7, 0x0, 0x10001, 0x8, 0x6}, 0x0, 0x0, 0x0)

3.274625948s ago: executing program 5 (id=1718):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'dvmrp1\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530)

3.218614378s ago: executing program 5 (id=1719):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
clock_adjtime(0xffffffd3, &(0x7f0000000440)={0x6, 0x0, 0x8c1f, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2a, 0x0, 0xe, 0xfffffffffffffffc, 0x1, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x80000000000000})
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2b, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x20}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
lseek(0xffffffffffffffff, 0xfffffffffffffff5, 0x1)
unshare(0x8000400)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x74, r5, 0x0, 0x11203}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x5, 0x1}, @IFLA_BR_VLAN_DEFAULT_PVID={0x6}, @IFLA_BR_AGEING_TIME={0x8, 0x4, 0x9}, @IFLA_BR_VLAN_STATS_PER_PORT={0x5}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0)

3.146232678s ago: executing program 5 (id=1720):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b0000000000000046cd3cf6f53ee90000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000980)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x40, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x2}, &(0x7f0000001fee)='R\x10rust\xe3c*s\xa8rVid:\xc4e', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00'}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c003d000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002000)=@newtaction={0xd80, 0x30, 0xffff, 0x0, 0x25dfdbfe, {}, [{0xd6c, 0x1, [@m_police={0xd68, 0x1, 0x0, 0x0, {{0xb}, {0xc34, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x200}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xe, 0xefad, 0x3, 0xa, 0x8, 0x4, 0xa, 0x5, 0x6, 0x101, 0x668b1169, 0x0, 0xfff, 0x9, 0x21, 0x3, 0x2, 0x101, 0x5, 0x9, 0x6, 0x4, 0x4, 0x7, 0x6, 0x37, 0x6, 0x8, 0x8b8, 0xbe1e, 0x3, 0x0, 0xc, 0xbf3, 0x100, 0xc10, 0x1, 0x7, 0x9e1, 0x0, 0xaa, 0x2, 0x368, 0x8, 0x7fff, 0x3, 0x2, 0x4, 0x7, 0x2, 0x5, 0x80, 0x8, 0x5, 0x1, 0xfffffffa, 0x2, 0x81, 0x6, 0x6, 0x100, 0xffff, 0x0, 0x4, 0x1f55, 0xd51, 0x0, 0xfffffffe, 0x7, 0x0, 0x80000000, 0x0, 0x91ba, 0xfff, 0xff, 0x95b6, 0xa7, 0x2, 0x1, 0x9, 0x3, 0x3, 0xd4e7, 0x10001, 0x7fffffff, 0x6, 0x7, 0x4, 0x3, 0xc, 0x27, 0x56, 0xbe, 0x87, 0x6, 0x4, 0x6, 0x1, 0x6, 0x4, 0x3, 0x80000001, 0x72fa5994, 0x3, 0x1, 0x5, 0x169, 0xe1, 0x5, 0x1, 0x0, 0x1, 0x2, 0x3, 0x8, 0x80000000, 0x1, 0x200, 0x80, 0x1, 0x4, 0x5, 0x2, 0x6, 0x1ff, 0x3, 0xcb, 0xfffffffa, 0x0, 0x4, 0x67, 0x8dc6, 0xe, 0x4, 0x9, 0x1, 0x200, 0xffff, 0x4, 0x0, 0xfff, 0x9, 0xffb, 0x1, 0x57, 0x5, 0x0, 0x5, 0x2, 0x5, 0xfd, 0x9, 0xf0, 0x3, 0x535b3c0e, 0xa7c, 0x10, 0x10, 0x7f, 0x3, 0x54e, 0x8, 0x8000, 0x9, 0xfffffffb, 0x6, 0x8, 0x70, 0xfffff5ef, 0x8a, 0x6, 0x1, 0x1, 0x6, 0x2, 0x6, 0x2, 0x3, 0xa, 0x424, 0x0, 0x2, 0x2, 0xb05, 0x6, 0xfffffffe, 0x9, 0x1, 0x6, 0x7ff, 0x8001, 0x9, 0x4d3, 0x8000, 0x4, 0x6, 0x3, 0x6, 0x7, 0x16, 0x0, 0x9, 0x7f80, 0xfffffff9, 0x3, 0x3, 0x8, 0x5, 0x7, 0xe, 0x1, 0xb, 0x5, 0x3f, 0xfffffff8, 0x40, 0x1, 0x287, 0x6, 0xb, 0x2, 0x5, 0x1, 0x27, 0x8, 0x3, 0xfffffff7, 0x7f1, 0x6, 0x5, 0x7, 0x5, 0x5, 0x7fffffff, 0x7, 0x1, 0x55b1, 0xdbd2, 0x10000, 0x8, 0x98f5, 0x4, 0x4, 0x4, 0x9, 0x1, 0x29, 0x3, 0x7ff, 0x0, 0x3, 0x7, 0x5, 0x9, 0x4, 0x1]}, @TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x3, 0xfffffffa, 0xc, 0x5, 0x9f, 0x200, 0xd4, 0x7ff, 0x7, 0x1, 0x6b3c, 0x2, 0x8, 0x600, 0xd45, 0x6, 0x7, 0x8, 0xbbc7, 0x20ec, 0x5, 0xb, 0x3, 0x4, 0xe, 0x6, 0xc00000, 0x5, 0xe, 0x7, 0x25ee41e2, 0x1, 0x98a, 0xfffffffd, 0x7fffffff, 0x3, 0x2, 0x40, 0x9, 0x50, 0x4, 0x200, 0x9, 0x2000, 0x6, 0x8, 0x2, 0x7, 0x1, 0x7, 0x3, 0x6, 0x3, 0x7, 0x0, 0xf501, 0xb, 0x1000, 0xa, 0x3, 0x0, 0x0, 0x2, 0x8001, 0x7fffffff, 0x2, 0x7fff, 0x4, 0x8, 0x8, 0xd, 0xd, 0x6, 0x29e, 0x0, 0x2, 0x3, 0xa, 0xe78, 0x8, 0x80000000, 0x7, 0xa58, 0x8, 0xd, 0x3, 0x1, 0x0, 0x865, 0x3, 0x4, 0x9, 0x0, 0x6, 0x7, 0x37548e76, 0x5, 0x0, 0x5, 0x1, 0x1, 0xfffffffb, 0xffffffff, 0x6, 0xffff, 0x2, 0x5, 0x80, 0xffffffff, 0x7, 0x6, 0x6, 0x6, 0x10001, 0xfffffffe, 0xff, 0x7, 0xb4b, 0x6417, 0x6, 0xffffffff, 0x3, 0x2, 0x408, 0x1, 0x98, 0x35, 0x5, 0x3, 0x4, 0x8a, 0xb07, 0x2, 0xf, 0x5b, 0xfcd, 0x3, 0x7, 0x800, 0x8001, 0x47, 0xb, 0x2, 0x80000001, 0xfffffffd, 0x4, 0x7, 0x1000, 0x3, 0x52f, 0xc9, 0x800, 0x9, 0x6, 0xef5, 0x80000000, 0xfffffffb, 0x9f6, 0xff, 0x8, 0xd, 0xf, 0x0, 0x3, 0x401, 0x2, 0x1, 0x5, 0xfffffbff, 0x5, 0x800, 0xfffffff8, 0x8, 0x3ff, 0x6, 0x9, 0x40, 0x35, 0x5b, 0xf, 0x10, 0xffff, 0x6, 0x1, 0x9, 0x3, 0x8, 0x7fffffff, 0x5a073000, 0x5342, 0x2, 0x2, 0x8, 0xfab, 0x8, 0x9, 0x1000, 0x2, 0x84c2, 0x1000, 0x101, 0x0, 0xc31, 0x2, 0x1, 0x6, 0x5, 0x4, 0x8, 0x2, 0xb, 0x800, 0x7, 0x120000, 0xc, 0x5, 0xfffffff8, 0x3, 0x9, 0x2, 0x7ff, 0x7, 0x8, 0x7, 0x7, 0xa5, 0x9, 0x9a, 0xe6c, 0x7, 0x7, 0x9, 0xecd, 0x3, 0x7f, 0x2, 0x6, 0x10, 0x3, 0x2, 0x21f4, 0x401, 0x6, 0x7, 0x2, 0x35c4, 0x0, 0x7, 0x2, 0x7, 0x2, 0x1, 0x9, 0x1, 0x3, 0x1ff]}, @TCA_POLICE_RATE64={0xc, 0x8, 0xf}, @TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x81, 0x400, 0x8, 0x80000000, 0x2, 0x80000000, 0x7, 0xb4, 0x1, 0x1, 0xa, 0x3, 0x2, 0xe, 0x1ff, 0x71a, 0x8bc, 0x5, 0x1d, 0x3, 0x7, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x9, 0x4, 0x5, 0xfff, 0x0, 0x4, 0x9, 0x7, 0xfffffffb, 0x5, 0xc, 0x7f, 0x6, 0x10000, 0x0, 0x5, 0x97f, 0x0, 0x8001, 0x8, 0x401, 0x6, 0xfd9, 0x5, 0x2, 0x2ccab67b, 0x100, 0xfffff000, 0x2, 0x7, 0x800, 0x0, 0x7, 0x3, 0xed, 0x80000001, 0x38f1c1c4, 0x2, 0xfffffc01, 0xf, 0xd7aa, 0x28, 0x9, 0x0, 0xfd2d, 0x32, 0xb7d4, 0x1, 0x3, 0x7fff, 0xfffffffa, 0x1, 0x1000, 0x9, 0x2, 0x81, 0x7fff, 0xdff0, 0x423, 0xd4, 0x6, 0x8, 0xc, 0x9, 0x7, 0x6000000, 0x6e9e, 0xc6, 0x81, 0x4000000, 0x8, 0x4, 0xffff, 0x9, 0x1, 0x7, 0xd7bf, 0x1, 0xfff, 0x1000, 0x5, 0x3, 0x9, 0x9, 0xfffffff8, 0x1000, 0x5, 0x8, 0x9, 0x2, 0x4, 0x10001, 0x2, 0x401, 0x9412, 0x10000, 0xffa, 0x0, 0x8001, 0x1000, 0x6, 0x7, 0x7ff, 0xfff, 0x4, 0x2, 0x3, 0x0, 0x1ff, 0x4, 0x4, 0x3, 0x8, 0x7, 0x2, 0x9, 0x9, 0x6ff8, 0x8, 0x81, 0x8, 0x8, 0x9, 0xfffffff2, 0x800, 0x8, 0x3, 0x0, 0x4, 0x1, 0x80000001, 0x2, 0x7f, 0x1, 0x5, 0x7fffffff, 0x2, 0x9b3, 0xffffff7f, 0x7, 0x9, 0x9, 0xffff8000, 0x4, 0xd, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x5, 0xd9ae, 0x5, 0x7, 0x8794, 0x9, 0x9, 0x100, 0x3ff, 0xfd6c, 0x7, 0x3, 0x451, 0x6, 0xffffffff, 0x1, 0x1, 0x0, 0xff, 0xd956, 0x46, 0x992, 0x9, 0x67, 0x6, 0x1, 0x200, 0x4, 0x1, 0x3, 0x3, 0x10001, 0x2e, 0x40, 0x4, 0x0, 0x5, 0x2, 0xfffffffe, 0x401, 0xffff, 0x36fa, 0x49, 0xfffffe00, 0x82b9, 0x4, 0x80000001, 0x4, 0x7ff, 0x2400000, 0x6, 0xfffffff1, 0x4, 0xbf, 0x1, 0x1, 0x1, 0x1, 0xff, 0x2, 0x6, 0x8, 0x400, 0x94, 0x5, 0x6, 0x4, 0x0, 0x400, 0x200, 0x9, 0x4, 0x2, 0x0, 0xff, 0x3ff, 0x10001]}]]}, {0x10a, 0x6, "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"}, {0xc, 0xb}, {0xc, 0xa, {0x0, 0x3}}}}]}]}, 0xd80}, 0x1, 0x0, 0x0, 0x24000000}, 0x10)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
request_key(&(0x7f0000000700)='rxrpc\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)='errors=continue', r3)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000880)=@newqdisc={0x24, 0x25, 0x4ee4e6a52ff56541, 0x20001fd, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0x9}, {0xfff2, 0xa}, {0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x40008}, 0x0)
r9 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r9, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r9, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendto$inet(r9, 0x0, 0x100000, 0x0, 0x0, 0x0)
r10 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
close(r10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)

2.922478377s ago: executing program 4 (id=1723):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet(0x2, 0x3, 0x4)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'team_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x800000000000000}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000100)=0x1, 0x12)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f0000000840)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]}, 0x298)

2.921467257s ago: executing program 5 (id=1724):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$eJzs3c9vI1cdAPDvOPZ2s5ttUuAAlSiFFmVXsHbS0DbiUIqE4FQJKPclJE4UxYmj2Gk3VkWy4g9AQgiQOMGFCxJ/ABKqxIUjQqoEZxAgEIItHDiUDrI9SfNjnHi3bpyNPx9pMu/ND3/fc/TG82aeZgIYWU9HxMsR8W6aprciYjJbXsim2OtO7e3evv/GYntKIk1f/WcSSbZs/7OSbH492+1qRHz9KxHfSk7Gbey01hZqtepWlq801zcrjZ3W7dX1hZXqSnVjbm72hfkX55+fnxlIPW9ExEtf+usPvvuzL7/0q8++/qc7f7/57XaxJrL1h+vxgIqnrexWvdT5Lg7vsPWQwS6iYqeGmfG8LcZOLLn3AZcJAIB87XP8D0XEpyLiVkzG2OmnswAAAMAjKP3CRLyTRKT5rvRYDgAAADxCCp0xsEmhnI0FmIhCoVzujuH9SFwr1OqN5meW69sbS92xslNRKiyv1qoz2VjhqSgl7fxsJ/1e/rlj+bmIeCIivj853smXF+u1pWFf/AAAAIARcf1Y//8/k93+PwAAAHDJTA27AAAAAMAHTv8fAAAALj/9fwAAALjUvvrKK+0p3X//9dJrO9tr9dduL1Uba+X17cXyYn1rs7xSr690ntm3ftbn1er1zc/FxvbdSrPaaFYaO6076/Xtjead1SOvwAYAAADO0ROfePMPSUTsfX68M7Vd6W/XPjcDLqriQSrJ5jnN+o+Pd+d/OadCAedibNgFAIamOOwCAENTGnYBgKFLjmZPdAt6Dt75bTb/5ODLBAAADNb0x3rf/y+cuufe6auBC08jhtHl/j+Mrs79/35H8jpZgEul5AwARt6h+//pbs76M+//nylNH7xUAADAIE10pqRQzi7vTUShUC5H3Oi8FqCULK/WqjMR8XhE/H6y9Fg7P9vZMzk+ZhgAAAAAAAAAAAAAAAAAAAAAAAAA6CFNk0gBAACASy2i8Lfk191n+U9PPjtx/PrAleS/k5G9IvT1H7/6w7sLzebWbHv5vw6WN3+ULX9uGFcwAAAAYCQ80Av89/vp+/14AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABikt++/sbg/nWfcf3wxIqby4hfjamd+NUoRce3fSRQP7ZdExNgA4o+3/3w0L37SLtZByLz44wOIv3fv1PgxlX0LefGvDyA+jLI328efl/PaXyGe7szz218x4kj+YfU+/sXB8W+sR/u/0WeMJ9/6RaVn/HsRTxbzjz/78ZMe8Z/pM/43v9Fq9VqX/iRiOvf3JzkSq9Jc36w0dlq3V9cXVqor1Y25udkX5l+cf35+prK8Wqtmf+OxnBjf+/gv3z2t/td6xJ86o/7P9ln//7119/6Hu8lSXvybz+TE/81Psy1Oxi9kv32fztLt9dP76b1u+rCnfv67p06r/1KP+uf//3cP6n+zz/rf+tp3/tznpgDAOWjstNYWarXq1qVNtHvpF6AYo5R4J70QxTg7sdtaW0h3B9UK0jRN223qfXxOEhfha+kkhn1kAgAABu29k/6H2v3qwAsEAAAAAAAAAAAAAAAAAAAAI+g8Hid2PObeQSoZxCO0AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG4v8BAAD//6fG3GI=")
llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0)

2.843250627s ago: executing program 4 (id=1727):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001c40)={{r0}, &(0x7f0000001bc0), &(0x7f0000001c00)='%pi6   \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x7, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x80000, 0x12)

2.776369517s ago: executing program 0 (id=1728):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$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")
llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0)

2.763880797s ago: executing program 4 (id=1729):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)

2.744138167s ago: executing program 4 (id=1731):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$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")
llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0)

641.998142ms ago: executing program 3 (id=1732):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f600000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
wait4(0x0, 0x0, 0x0, 0x0)

534.548042ms ago: executing program 1 (id=1733):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYRESDEC, @ANYRES64, @ANYRES16, @ANYRESHEX=0x0, @ANYRES8, @ANYRES8, @ANYRES8=0x0, @ANYRESHEX, @ANYRESDEC], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000001811000002000000000000006a3369ab0000000000000000000000000000468daacda598840099d6e41599a53c69bfb169222673de", @ANYRES32], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r3=>0x0})
r4 = socket(0x10, 0x3, 0x6)
r5 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000680)={0xa0, r2, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x38}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x30, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x34, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x14}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r3}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r6}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0xa0}}, 0x4000011)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000ac0)={{}, &(0x7f0000000a40), &(0x7f0000000a80)='%pB    \x00'}, 0x20)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
munlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="30000000100001000000ce6bb9092919507f3400", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
socket$inet(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
r10 = socket(0x10, 0x3, 0x2)
connect$netlink(r10, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc)
socket$inet(0xa, 0x1, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@gettclass={0x24, 0x2a, 0x10d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, {0x81ff}}}, 0x24}}, 0x0)

534.030201ms ago: executing program 3 (id=1734):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$inet6(0xa, 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, 0x0, &(0x7f00000002c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x0, 0x4e, @local, @local, 0x10, 0x7, 0x2, 0x8}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000600)={'syztnl1\x00', 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r0}, 0x10)
r4 = io_uring_setup(0x6503, &(0x7f0000001300)={0x0, 0x0, 0x1046})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, &(0x7f0000001140)=[@ioring_restriction_register_op={0x0, 0xc}], 0x1)

444.264431ms ago: executing program 1 (id=1735):
syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f0000000280)="$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")
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x14, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
creat(&(0x7f0000000000)='./file1\x00', 0x0)

321.797391ms ago: executing program 0 (id=1736):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x8)

285.143101ms ago: executing program 1 (id=1737):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet(0x2, 0x3, 0x4)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'team_slave_0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x800000000000000}, 0x18)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(r6, &(0x7f0000000100)=0x1, 0x12)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(r8, 0x0, 0x80, &(0x7f0000000840)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]}, 0x298)

284.591901ms ago: executing program 3 (id=1738):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x3000, 0x3, &(0x7f0000b25000/0x3000)=nil)

283.511031ms ago: executing program 5 (id=1739):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001c40)={{r0}, &(0x7f0000001bc0), &(0x7f0000001c00)='%pi6   \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x7, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r1, &(0x7f0000000040)=0x80000, 0x12)

247.106971ms ago: executing program 4 (id=1740):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x6)
r3 = socket(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc, 0xfffe], [0x0, 0x4]}}}}]}, 0x88}}, 0x20000000)
r7 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r7, 0x65, 0x1, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x8)

242.796091ms ago: executing program 3 (id=1741):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='tlb_flush\x00', r0}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x9000, 0x3000, 0x3, &(0x7f0000b25000/0x3000)=nil)

219.005781ms ago: executing program 1 (id=1742):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x3, 0x81f42)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
ioctl$EVIOCGBITSW(r0, 0x40095505, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001740)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x4000844)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', r4, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x25, 0x10, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="50000000100001040000fe00000000000000ffff", @ANYRES32=0x0, @ANYBLOB="421c0000000000001c001280090001007866726d000000000c0002800800020002000000140003007866726d3000"/56], 0x50}}, 0x0)
ioctl$IMCLEAR_L2(0xffffffffffffffff, 0x80044946, &(0x7f0000000180)=0x7)
syz_usbip_server_init(0x3)
select(0x40, &(0x7f0000000300)={0xd, 0x8, 0x1000, 0x7, 0x0, 0x10001, 0x8, 0x6}, 0x0, 0x0, 0x0)

206.553781ms ago: executing program 3 (id=1743):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@jqfmt_vfsold}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmmsg$inet(r2, &(0x7f0000005b40)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000340)="f37481d90eeaead391345b4da9d27e24c9c670da3afc5c00"/50, 0x32}, {&(0x7f0000000140)="ead5e96719a44591801f33", 0xb}, {&(0x7f0000000180)="f3f97053495b072215aee864193557c0dabdd253711d5ed9b131c5abd8796e5759ab1f639211e68e24bf4471b6ab1429b165c7248cded82bfb4a3f48e8d0", 0x3e}], 0x3, &(0x7f0000000f80)=ANY=[@ANYBLOB="2c000000000000000000000007000000441c9301ffffffff0000000000000000000000000000000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="9c1414aae000000200001c7945761a600500c655fb0008b4cd0d000f93f63eb67b4df7901106cd88e3ab9db1fe224211ee5505719771043395747485e394535d870568"], 0x50}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000380)="c1ad061c5d914eadd95de7fb63eb7b0306d91c25f3fba6c97eda8ade2420dfe1fe0f5c7a01d724be33a44f1cd52028110d8f7dd4b3421a3fe4b2066d179f938ba15c3956e1aaad35035bcde7b90ed59ee2de06c8a4af3de95bda", 0x5a}], 0x1}}, {{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000480)="f41fa963edcd5e2a5d", 0x9}, {&(0x7f00000004c0)="0c71e8d7705b19c24e8c3ec98b4243ae0be48cd79f024361b8082d328363e63e360e122e7ec929c89aea0b338987609655fb5f5f91cd457584f30946f63e00fd0e8c536ae0106beb7d02fb4eb35db10c37c4bf3f2c6df9254d540598ae9b7098b74908c7da448e8891bc1b46f58553776f43370d090df693f3a4e4a724dbb498e51860bd766e36c41c0a0ee41019a0b05b519107c1fbb944f26f16f9fc127f3cd86c3fdbcf169912fc1c42a4a7051d3e85591ccd24b19681da775dc34c98ad24ab07c6feab583ba1f5efb430a06d66c039dbf40a84f04cfdfca240676e96579502925e57864815d3fe17edaf5cdbc3a4b48843c22372f9f1cf363d8428fe6341fb474ba53db6be689703ce5f7b6639b3493a5aca4c9316df8b4600d73533021932eb359ce7c1f00a54cb1318076ccb00e27ba0934db1867e078ee47b86d3e367b96ba948c3aa029c365eb0dc99685c5fd7bfbd1916b889da42d6ad1ab2466e989b5c8304b1e2190d4efeb9ccbd3a7a48c3b393470fc215e164cb91e238c5a28c4f40b4b99ee8f9481fe62e0bcf0a9831e491dc1150ad9c023217df6432487219a3083b310958cdbc217f99d02a19414987ff1bc176e3267c205827f466ea1912cbc0e304faf034602b85db010d8796d2ab18c2c4badf39db5312ad908d8555c30d0cc7d3bce8b4fcfc5764ed6e8bf4e8e4af6bbb3f82ac014f021dc6cb81cebe4b7d071e4d019719d1b0354ce0a2ff3b66ba7bf0f4598bde90a9115ddc4f197bcd881e0cd0baabb57316e75d108b14acc668ee906acf7bffdff3aef11ecf107b3eccd67a56c6b26e0a9a72d404a7a2dd3da8759e676c0eef6a95890d4f647269d1bf972d75307bd867819f385df6f57a7c28332307f444d1157c303c30a478b056d6e11111398aafcb6fff1b6a985cf888afa04586e35e7d3b292d254acf08a6bd38fbbd22bc9919052e6693c1e454aade6348679e027d1b102618476c9ab1f9928fc7f505046cb8383b9e1d79b961895502cded12f1842705102dffddc11f7bea0bd53833f1a455e661f6bda92d35b1159e1489cf762da76c125060ffedc7cc54238b3bd2d894a91d92a6c5cce9bf5417674a2bd0e38271912f7481e58ec7ab422db826482ffb80ce45dab2cb43105356c292a2fd1db8a758b37d56f46721163f24c075d980a37917cca20acce274c404828efaed50b881a5481f9ad268e99e25884db25426d5a5f338f405748817bba32b89e4c18b0f061e6758d46b5f0f2865b1c41be4f7ff999d289538a8fca45b2cf76a2fc398b7913db0ea85ee4d00156432f764ef888094dceb05c68da62fdf667b511276ac97dcf0b34819d9307cf0066267f94ab80fcc19c9f3d682e6e375ac25d7d6b71ae6d084ca1ed7e21b46b1ca0abc6cd50b3aa40e341cfc0a75f2040cc71c26e6cff3d76cc6c629051c47d8b950d01de19d324f2705e37a7a41364ecc70e5021ef955b50144860dafe6fc8b14fb6c451c0444aef66c3081097b6072c304f17206810b4e937bd5673720071d5f1d964f8bb21ab4ffbda1ece1e95005c6abdf00f78681f37c34936e8c9ba1bf420ba0dbfb84698931da95003dd2a34f59a179420ce004664f0495d1548e04e544c238599e6c41831d05c568607f0cd59153422fea60f7de8c4c1ab308b977e2280372c1f57506c22caf84ef2d912b3dbdd9d05fd1fe78ea2965f9542b0010009efea9c642f1", 0x4c6}], 0x2}}, {{0x0, 0x0, &(0x7f0000004240)=[{&(0x7f0000003140)="01", 0x1}], 0x1}}], 0x4, 0xc080)

183.896881ms ago: executing program 0 (id=1744):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x8)

158.602051ms ago: executing program 0 (id=1745):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x81}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000580)=ANY=[])
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
finit_module(r5, 0x0, 0x3)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
syz_open_dev$tty1(0xc, 0x4, 0x1)

155.675821ms ago: executing program 4 (id=1746):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2, 0x0, 0x3}, 0x18)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, 0x0, &(0x7f0000000040)}, 0x20)
r4 = accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14)
copy_file_range(r3, &(0x7f0000000000)=0x2, r4, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffeffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r5 = open$dir(&(0x7f0000000240)='./file0\x00', 0x543240, 0x104)
openat(r5, &(0x7f0000000280)='./file0\x00', 0xc6502, 0x125)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r3, &(0x7f0000000140)={0x20000009})
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, &(0x7f00000008c0)={0xb, 0x0, 0x3, 0x2, 0x6, 0x0, [{0x3893, 0xb68c, 0x3ff, '\x00', 0x1}, {0x4, 0x29, 0x101, '\x00', 0x1708}, {0x1000, 0xa6b, 0x2, '\x00', 0x80}, {0x50, 0xe, 0x4}, {0x128000000000, 0xfffffffffffffff1, 0x7fffffff, '\x00', 0x3}, {0xdb6, 0x1, 0x1}]})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r7 = socket$inet6(0xa, 0x3, 0x8)
setsockopt$inet6_int(r7, 0x29, 0x4b, &(0x7f0000000000)=0x2, 0x4)
sendmmsg$inet6(r7, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00'], 0x28}}], 0x1, 0x0)
recvmmsg(r7, &(0x7f0000001e00)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x0, 0x0)
connect(r6, &(0x7f00000005c0)=@llc={0x1a, 0x308, 0x40, 0xc, 0x5, 0x8, @remote}, 0x80)

140.217141ms ago: executing program 5 (id=1747):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$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")
llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0)

102.123871ms ago: executing program 0 (id=1748):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@jqfmt_vfsold}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b000000000000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xa0242, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42)
sendfile(r3, r3, 0x0, 0x80000000)

41.1497ms ago: executing program 3 (id=1749):
r0 = io_uring_setup(0x6503, &(0x7f0000001300)={0x0, 0x0, 0x1046})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000001140)=[@ioring_restriction_register_op={0x0, 0xc}], 0x1)

0s ago: executing program 0 (id=1750):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00@\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3, 0x0, 0x3}, 0x18)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a", @ANYRES32], 0x3c}}, 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000040)}, 0x20)
r5 = accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000100)=0x14)
copy_file_range(r4, &(0x7f0000000000)=0x2, r5, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffeffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x18)
r6 = open$dir(&(0x7f0000000240)='./file0\x00', 0x543240, 0x104)
openat(r6, &(0x7f0000000280)='./file0\x00', 0xc6502, 0x125)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r4, &(0x7f0000000140)={0x20000009})
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, &(0x7f00000008c0)={0xb, 0x0, 0x3, 0x2, 0x6, 0x0, [{0x3893, 0xb68c, 0x3ff, '\x00', 0x1}, {0x4, 0x29, 0x101, '\x00', 0x1708}, {0x1000, 0xa6b, 0x2, '\x00', 0x80}, {0x50, 0xe, 0x4}, {0x128000000000, 0xfffffffffffffff1, 0x7fffffff, '\x00', 0x3}, {0xdb6, 0x1, 0x1}]})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r8 = socket$inet6(0xa, 0x3, 0x8)
setsockopt$inet6_int(r8, 0x29, 0x4b, &(0x7f0000000000)=0x2, 0x4)
sendmmsg$inet6(r8, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002'], 0x28}}], 0x1, 0x0)
recvmmsg(r8, &(0x7f0000001e00)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x0, 0x0)
connect(r7, &(0x7f00000005c0)=@llc={0x1a, 0x308, 0x40, 0xc, 0x5, 0x8, @remote}, 0x80)
r9 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)={0x38, 0x1403, 0x1, 0x700, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'sit0\x00'}}]}, 0x38}, 0x1, 0xe00}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
unshare(0x64000600)

kernel console output (not intermixed with test programs):

lidate_block_bitmap:441: comm syz.0.822: bg 0: block 248: padding at end of block bitmap is not set
[   75.989294][ T5730] loop1: detected capacity change from 0 to 512
[   75.995527][ T5721] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.822: Failed to acquire dquot type 1
[   76.012837][ T5721] EXT4-fs (loop0): 1 truncate cleaned up
[   76.018987][ T5721] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.031660][ T5721] ext4 filesystem being mounted at /228/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   76.050808][ T5730] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   76.064121][ T5730] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.231782][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.304564][ T5742] pim6reg: entered allmulticast mode
[   76.325028][ T5742] pim6reg: left allmulticast mode
[   76.339995][   T29] kauditd_printk_skb: 421 callbacks suppressed
[   76.340009][   T29] audit: type=1400 audit(1736833206.473:2161): avc:  denied  { create } for  pid=5743 comm="syz.4.831" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   76.375692][   T29] audit: type=1400 audit(1736833206.503:2162): avc:  denied  { write } for  pid=5743 comm="syz.4.831" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   76.499772][ T5754] loop1: detected capacity change from 0 to 512
[   76.507271][ T5756] batadv1: entered promiscuous mode
[   76.512505][ T5756] batadv1: entered allmulticast mode
[   76.519615][ T5754] EXT4-fs: Ignoring removed orlov option
[   76.525671][ T5754] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   76.537241][ T5754] EXT4-fs (loop1): orphan cleanup on readonly fs
[   76.544138][ T5754] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.836: bg 0: block 248: padding at end of block bitmap is not set
[   76.561837][ T5754] Quota error (device loop1): write_blk: dquota write failed
[   76.569344][ T5754] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[   76.579451][ T5754] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.836: Failed to acquire dquot type 1
[   76.592137][ T5754] EXT4-fs (loop1): 1 truncate cleaned up
[   76.599381][ T5754] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   76.664001][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.666711][   T29] audit: type=1326 audit(1736833206.793:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.4.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   76.696501][   T29] audit: type=1326 audit(1736833206.813:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.4.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   76.719868][   T29] audit: type=1326 audit(1736833206.813:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.4.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   76.743180][   T29] audit: type=1326 audit(1736833206.813:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.4.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   76.766561][   T29] audit: type=1326 audit(1736833206.813:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.4.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   76.789912][   T29] audit: type=1326 audit(1736833206.813:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5759 comm="syz.4.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   76.834994][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.846373][ T5764] loop0: detected capacity change from 0 to 2048
[   76.853254][ T5764] EXT4-fs: dax option not supported
[   76.872587][ T5764] loop0: detected capacity change from 0 to 2048
[   76.967972][ T5764] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.997238][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.010595][ T5767] loop4: detected capacity change from 0 to 512
[   77.038503][ T5767] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.840: bg 0: block 248: padding at end of block bitmap is not set
[   77.052985][ T5767] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.840: Failed to acquire dquot type 1
[   77.065203][ T5767] EXT4-fs (loop4): 1 truncate cleaned up
[   77.071361][ T5767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.083896][ T5767] ext4 filesystem being mounted at /173/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   77.155113][ T5766] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   77.163749][ T5766] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   77.207268][ T5789] batadv1: entered promiscuous mode
[   77.212517][ T5789] batadv1: entered allmulticast mode
[   77.221854][ T5791] netlink: 'syz.3.850': attribute type 1 has an invalid length.
[   77.226059][ T5792] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10)
[   77.236183][ T5792] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   77.243847][ T5792] vhci_hcd vhci_hcd.0: Device attached
[   77.290741][ T5801] netlink: 'syz.3.853': attribute type 1 has an invalid length.
[   77.460727][ T5827] batadv0: entered promiscuous mode
[   77.466030][ T5827] batadv0: entered allmulticast mode
[   77.479715][ T5829] loop0: detected capacity change from 0 to 512
[   77.485857][ T3356] usb 3-1: new high-speed USB device number 5 using vhci_hcd
[   77.486375][ T5829] EXT4-fs: Ignoring removed orlov option
[   77.501223][ T5829] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   77.510398][ T5829] EXT4-fs (loop0): orphan cleanup on readonly fs
[   77.518765][ T5829] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.867: bg 0: block 248: padding at end of block bitmap is not set
[   77.533381][ T5829] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.867: Failed to acquire dquot type 1
[   77.545079][ T5829] EXT4-fs (loop0): 1 truncate cleaned up
[   77.551454][ T5829] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   77.592400][ T5833] infiniband syz2: set active
[   77.615070][    T9] sit0 speed is unknown, defaulting to 1000
[   77.651507][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.678638][ T5835] batadv0: entered promiscuous mode
[   77.683879][ T5835] batadv0: entered allmulticast mode
[   77.703682][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.715923][ T5838] syz2: rxe_newlink: already configured on sit0
[   77.731319][ T5838] sit0 speed is unknown, defaulting to 1000
[   77.791753][ T5693] vhci_hcd: connection reset by peer
[   77.807415][   T11] vhci_hcd: stop threads
[   77.811773][   T11] vhci_hcd: release socket
[   77.816246][   T11] vhci_hcd: disconnect device
[   77.903200][ T5848] loop0: detected capacity change from 0 to 512
[   78.059335][ T5848] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.870: bg 0: block 248: padding at end of block bitmap is not set
[   78.075496][ T5848] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.870: Failed to acquire dquot type 1
[   78.088365][ T5848] EXT4-fs (loop0): 1 truncate cleaned up
[   78.094382][ T5848] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.107048][ T5848] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   78.146310][ T5863] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.154824][ T5863] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.240683][ T5873] pim6reg: entered allmulticast mode
[   78.248584][ T5873] pim6reg: left allmulticast mode
[   78.369572][ T5892] batadv1: entered promiscuous mode
[   78.374810][ T5892] batadv1: entered allmulticast mode
[   78.410873][ T5892] rdma_rxe: rxe_newlink: failed to add sit0
[   78.424682][ T5892] sit0 speed is unknown, defaulting to 1000
[   78.434240][ T5893] ieee802154 phy1 wpan1: encryption failed: -22
[   78.574857][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.601058][ T5898] loop5: detected capacity change from 0 to 512
[   78.607836][ T5898] EXT4-fs: Ignoring removed orlov option
[   78.617362][ T5898] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   78.634852][ T5898] EXT4-fs (loop5): orphan cleanup on readonly fs
[   78.646705][ T5898] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.896: bg 0: block 248: padding at end of block bitmap is not set
[   78.679087][ T5905] FAULT_INJECTION: forcing a failure.
[   78.679087][ T5905] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   78.692353][ T5905] CPU: 1 UID: 0 PID: 5905 Comm: syz.4.899 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   78.703003][ T5905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   78.709266][ T5898] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.896: Failed to acquire dquot type 1
[   78.713050][ T5905] Call Trace:
[   78.713060][ T5905]  <TASK>
[   78.713068][ T5905]  dump_stack_lvl+0xf2/0x150
[   78.724951][ T5898] EXT4-fs (loop5): 1 truncate cleaned up
[   78.727437][ T5905]  dump_stack+0x15/0x1a
[   78.727469][ T5905]  should_fail_ex+0x223/0x230
[   78.731291][ T5898] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   78.734996][ T5905]  should_fail_alloc_page+0xfd/0x110
[   78.767126][ T5905]  __alloc_pages_noprof+0x109/0x340
[   78.772332][ T5905]  alloc_pages_mpol_noprof+0xb8/0x260
[   78.777737][ T5905]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   78.783186][ T5905]  handle_mm_fault+0xdd7/0x2ac0
[   78.788035][ T5905]  exc_page_fault+0x3b9/0x650
[   78.792785][ T5905]  asm_exc_page_fault+0x26/0x30
[   78.797626][ T5905] RIP: 0033:0x7f871d2e7796
[   78.802104][ T5905] Code: 00 00 00 00 41 57 31 c0 41 56 49 89 d6 41 55 49 89 f5 48 89 d6 41 54 49 89 fc 48 8d 3d 36 b7 1a 00 55 53 48 81 ec 88 20 00 00 <48> 89 0c 24 4c 89 44 24 08 e8 cc e7 fe ff 4d 85 f6 0f 84 46 0a 00
[   78.821732][ T5905] RSP: 002b:00007f871ba84f70 EFLAGS: 00010202
[   78.827827][ T5905] RAX: 0000000000000000 RBX: 00007f871d605fa0 RCX: 0000000000000000
[   78.835787][ T5905] RDX: 0000000020001a40 RSI: 0000000020001a40 RDI: 00007f871d492ec3
[   78.843756][ T5905] RBP: 00007f871ba87090 R08: 00007f871d2d62f0 R09: 0000000000000000
[   78.851715][ T5905] R10: 0000000000000005 R11: 0000000020001a40 R12: 0000000000000005
[   78.859710][ T5905] R13: 000000000000006e R14: 0000000020001a40 R15: 00007fffd612ce08
[   78.867678][ T5905]  </TASK>
[   78.870857][ T5905] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   78.879334][ T5905] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   78.887830][ T5905] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   78.970335][ T5917] __nla_validate_parse: 11 callbacks suppressed
[   78.970346][ T5917] netlink: 3 bytes leftover after parsing attributes in process `syz.0.904'.
[   78.988724][ T5917] batadv1: entered promiscuous mode
[   78.993952][ T5917] batadv1: entered allmulticast mode
[   78.999847][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.075998][ T5924] loop5: detected capacity change from 0 to 512
[   79.088396][ T5917] rdma_rxe: rxe_newlink: failed to add sit0
[   79.108424][ T5924] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.907: corrupted in-inode xattr: invalid ea_ino
[   79.127029][ T5917] sit0 speed is unknown, defaulting to 1000
[   79.177475][ T5924] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.907: couldn't read orphan inode 15 (err -117)
[   79.246727][ T5928] loop3: detected capacity change from 0 to 512
[   79.254798][ T5928] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.908: corrupted in-inode xattr: invalid ea_ino
[   79.268839][ T5928] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.908: couldn't read orphan inode 15 (err -117)
[   79.276258][ T5924] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.294661][ T5928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.313206][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.397098][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.439892][ T5940] loop4: detected capacity change from 0 to 512
[   79.465936][ T5940] EXT4-fs: Ignoring removed orlov option
[   79.486603][ T5940] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   79.521389][ T5940] EXT4-fs (loop4): orphan cleanup on readonly fs
[   79.521897][ T5940] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.915: bg 0: block 248: padding at end of block bitmap is not set
[   79.522114][ T5940] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.915: Failed to acquire dquot type 1
[   79.522517][ T5940] EXT4-fs (loop4): 1 truncate cleaned up
[   79.523032][ T5940] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.624744][ T5958] capability: warning: `syz.3.921' uses 32-bit capabilities (legacy support in use)
[   79.652567][ T5955] loop0: detected capacity change from 0 to 512
[   79.665650][ T5961] loop5: detected capacity change from 0 to 2048
[   79.684687][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.698527][ T5955] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.920: bg 0: block 248: padding at end of block bitmap is not set
[   79.707743][ T5967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.716861][ T5955] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.920: Failed to acquire dquot type 1
[   79.721772][ T5967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.733188][ T5955] EXT4-fs (loop0): 1 truncate cleaned up
[   79.746249][ T5955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.758802][ T5955] ext4 filesystem being mounted at /259/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   79.785202][ T5967] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.794659][ T5967] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.816083][ T5961] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.833040][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.844266][ T5961] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2 with error 28
[   79.856521][ T5961] EXT4-fs (loop5): This should not happen!! Data will be lost
[   79.856521][ T5961] 
[   79.866174][ T5961] EXT4-fs (loop5): Total free blocks count 0
[   79.872255][ T5961] EXT4-fs (loop5): Free/Dirty block details
[   79.878304][ T5961] EXT4-fs (loop5): free_blocks=0
[   79.883256][ T5961] EXT4-fs (loop5): dirty_blocks=0
[   79.888389][ T5961] EXT4-fs (loop5): Block reservation details
[   79.894408][ T5961] EXT4-fs (loop5): i_reserved_data_blocks=0
[   79.907135][ T5793] vhci_hcd: connection reset by peer
[   79.917649][   T11] vhci_hcd: stop threads
[   79.922009][   T11] vhci_hcd: release socket
[   79.926482][   T11] vhci_hcd: disconnect device
[   79.962622][ T5982] bpf_get_probe_write_proto: 26 callbacks suppressed
[   79.962635][ T5982] syz.1.930[5982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.971010][ T5982] syz.1.930[5982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.988911][ T5982] syz.1.930[5982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.012319][ T5989] pim6reg: entered allmulticast mode
[   80.031497][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.068006][ T5992] loop4: detected capacity change from 0 to 512
[   80.078248][ T5992] EXT4-fs: Ignoring removed orlov option
[   80.084781][ T5992] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   80.101660][ T5992] EXT4-fs (loop4): orphan cleanup on readonly fs
[   80.110008][ T5992] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.935: bg 0: block 248: padding at end of block bitmap is not set
[   80.125880][ T5992] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.935: Failed to acquire dquot type 1
[   80.139894][ T5992] EXT4-fs (loop4): 1 truncate cleaned up
[   80.146248][ T5992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   80.245766][ T6000] loop0: detected capacity change from 0 to 512
[   80.269039][ T6000] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.937: bg 0: block 248: padding at end of block bitmap is not set
[   80.283524][ T6000] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.937: Failed to acquire dquot type 1
[   80.295363][ T6000] EXT4-fs (loop0): 1 truncate cleaned up
[   80.301402][ T6000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.313958][ T6000] ext4 filesystem being mounted at /263/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   80.324548][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.345424][ T6021] FAULT_INJECTION: forcing a failure.
[   80.345424][ T6021] name failslab, interval 1, probability 0, space 0, times 0
[   80.358097][ T6021] CPU: 1 UID: 0 PID: 6021 Comm: syz.4.945 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   80.368823][ T6021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   80.379018][ T6021] Call Trace:
[   80.382298][ T6021]  <TASK>
[   80.385219][ T6021]  dump_stack_lvl+0xf2/0x150
[   80.389886][ T6021]  dump_stack+0x15/0x1a
[   80.394101][ T6021]  should_fail_ex+0x223/0x230
[   80.398773][ T6021]  should_failslab+0x8f/0xb0
[   80.403376][ T6021]  kmem_cache_alloc_noprof+0x52/0x320
[   80.408791][ T6021]  ? vm_area_dup+0x2c/0x130
[   80.413328][ T6021]  vm_area_dup+0x2c/0x130
[   80.417657][ T6021]  __split_vma+0xf7/0x6a0
[   80.421985][ T6021]  vms_gather_munmap_vmas+0x2a5/0x7a0
[   80.427463][ T6021]  do_vmi_align_munmap+0x1a4/0x390
[   80.432576][ T6021]  do_vmi_munmap+0x1eb/0x230
[   80.437256][ T6021]  do_munmap+0x8b/0xc0
[   80.441327][ T6021]  __se_sys_mremap+0x916/0xf10
[   80.446105][ T6021]  ? bpf_trace_run2+0x123/0x1d0
[   80.450957][ T6021]  __x64_sys_mremap+0x67/0x80
[   80.455675][ T6021]  x64_sys_call+0x27e8/0x2dc0
[   80.460392][ T6021]  do_syscall_64+0xc9/0x1c0
[   80.465032][ T6021]  ? clear_bhb_loop+0x55/0xb0
[   80.469707][ T6021]  ? clear_bhb_loop+0x55/0xb0
[   80.474420][ T6021]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.480321][ T6021] RIP: 0033:0x7f871d415d29
[   80.484724][ T6021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.504373][ T6021] RSP: 002b:00007f871ba87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[   80.512853][ T6021] RAX: ffffffffffffffda RBX: 00007f871d605fa0 RCX: 00007f871d415d29
[   80.520817][ T6021] RDX: 0000000000400000 RSI: 0000000000001000 RDI: 0000000020a96000
[   80.528796][ T6021] RBP: 00007f871ba87090 R08: 0000000020000000 R09: 0000000000000000
[   80.536770][ T6021] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[   80.544809][ T6021] R13: 0000000000000000 R14: 00007f871d605fa0 R15: 00007fffd612ce08
[   80.552800][ T6021]  </TASK>
[   80.560956][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.565885][   T24] vhci_hcd: vhci_device speed not set
[   80.575698][ T6002] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.585689][ T6002] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.646471][ T6031] netlink: 'syz.1.949': attribute type 1 has an invalid length.
[   80.654177][ T6031] netlink: 224 bytes leftover after parsing attributes in process `syz.1.949'.
[   80.665657][ T6032] netlink: 48 bytes leftover after parsing attributes in process `syz.5.938'.
[   80.671803][ T6029] loop4: detected capacity change from 0 to 1024
[   80.688728][ T6032] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(10)
[   80.692723][ T6034] netlink: 3 bytes leftover after parsing attributes in process `syz.0.951'.
[   80.695382][ T6032] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   80.707626][ T6034] batadv1: entered promiscuous mode
[   80.711836][ T6032] vhci_hcd vhci_hcd.0: Device attached
[   80.716928][ T6034] batadv1: entered allmulticast mode
[   80.774608][ T6049] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.783458][ T6049] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.822484][ T6034] rdma_rxe: rxe_newlink: failed to add sit0
[   80.842159][ T6034] sit0 speed is unknown, defaulting to 1000
[   80.845594][ T6055] netlink: 48 bytes leftover after parsing attributes in process `syz.1.955'.
[   80.904956][ T6055] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(11)
[   80.911600][ T6055] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   80.919308][ T6055] vhci_hcd vhci_hcd.0: Device attached
[   81.046319][ T6072] syz.3.962[6072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.046378][ T6072] syz.3.962[6072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.058420][ T6072] syz.3.962[6072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.071672][ T6072] syz.3.962[6072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.083331][ T6072] syz.3.962[6072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.095935][ T6072] syz.3.962[6072] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.125849][   T24] usb 11-1: device descriptor read/64, error -110
[   81.167916][ T6079] netlink: 'syz.0.965': attribute type 1 has an invalid length.
[   81.175635][ T6079] netlink: 224 bytes leftover after parsing attributes in process `syz.0.965'.
[   81.232747][ T6087] netlink: 'syz.3.968': attribute type 1 has an invalid length.
[   81.240509][ T6087] netlink: 224 bytes leftover after parsing attributes in process `syz.3.968'.
[   81.247603][ T6089] loop0: detected capacity change from 0 to 512
[   81.270994][ T6089] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   81.285321][ T6089] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.969: bad orphan inode 16
[   81.289376][ T6092] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.970'.
[   81.295896][ T6089] ext4_test_bit(bit=15, block=4) = 0
[   81.309831][ T6089] EXT4-fs (loop0): 1 orphan inode deleted
[   81.359861][ T6096] loop3: detected capacity change from 0 to 512
[   81.388055][ T6096] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   81.396090][ T6096] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[   81.404241][ T6096] System zones: 0-1, 15-15, 18-18, 34-34
[   81.411221][ T6096] EXT4-fs (loop3): orphan cleanup on readonly fs
[   81.417707][ T6096] __quota_error: 359 callbacks suppressed
[   81.417719][ T6096] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[   81.434269][ T6096] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   81.448855][ T6096] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   81.457072][ T6096] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.972: bad orphan inode 16
[   81.468590][   T29] audit: type=1326 audit(1736833211.603:2512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6028 comm="syz.4.950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7fc00000
[   81.492015][   T29] audit: type=1326 audit(1736833211.603:2513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6028 comm="syz.4.950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f871d415d29 code=0x7fc00000
[   81.507384][ T6096] ext4_test_bit(bit=15, block=18) = 1
[   81.515292][   T29] audit: type=1326 audit(1736833211.603:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6028 comm="syz.4.950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7fc00000
[   81.520633][ T6096] is_bad_inode(inode)=0
[   81.520641][ T6096] NEXT_ORPHAN(inode)=0
[   81.520648][ T6096] max_ino=32
[   81.520654][ T6096] i_nlink=2
[   81.528025][ T6096] xt_l2tp: missing protocol rule (udp|l2tpip)
[   81.570407][   T29] audit: type=1400 audit(1736833211.663:2515): avc:  denied  { read } for  pid=6095 comm="syz.3.972" name="file2" dev="loop3" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[   81.614677][ T6101] syz.4.973[6101] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.702371][ T6109] netlink: 'syz.3.977': attribute type 1 has an invalid length.
[   81.721541][ T6109] netlink: 224 bytes leftover after parsing attributes in process `syz.3.977'.
[   81.794972][ T6116] infiniband syz2: set active
[   81.828576][ T3373] sit0 speed is unknown, defaulting to 1000
[   81.888872][ T6121] rdma_rxe: rxe_newlink: failed to add sit0
[   81.893685][ T6120] infiniband syz2: set active
[   81.968245][ T3561] sit0 speed is unknown, defaulting to 1000
[   81.975698][ T6121] sit0 speed is unknown, defaulting to 1000
[   82.034727][ T6124] netlink: 3 bytes leftover after parsing attributes in process `syz.3.983'.
[   82.060700][ T6124] batadv0: entered promiscuous mode
[   82.066050][ T6124] batadv0: entered allmulticast mode
[   82.128921][   T29] audit: type=1326 audit(1736833212.263:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6126 comm="syz.0.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[   82.160139][   T29] audit: type=1326 audit(1736833212.283:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6126 comm="syz.0.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[   82.183498][   T29] audit: type=1326 audit(1736833212.283:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6126 comm="syz.0.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[   82.206915][   T29] audit: type=1326 audit(1736833212.283:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6126 comm="syz.0.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[   82.230227][   T29] audit: type=1326 audit(1736833212.283:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6126 comm="syz.0.984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[   82.449321][ T6153] netlink: 'syz.3.995': attribute type 1 has an invalid length.
[   82.502238][ T6161] loop3: detected capacity change from 0 to 512
[   82.519296][ T6161] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.998: corrupted in-inode xattr: invalid ea_ino
[   82.527796][ T6164] batadv1: entered promiscuous mode
[   82.537829][ T6164] batadv1: entered allmulticast mode
[   82.546724][ T6161] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.998: couldn't read orphan inode 15 (err -117)
[   82.555551][ T6166] rdma_rxe: rxe_newlink: failed to add sit0
[   82.585366][ T6166] sit0 speed is unknown, defaulting to 1000
[   82.647949][ T6171] IPv6: NLM_F_CREATE should be specified when creating new route
[   82.697400][ T6174] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.715322][ T6174] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.750237][ T6178] batadv1: entered promiscuous mode
[   82.755507][ T6178] batadv1: entered allmulticast mode
[   82.805877][ T6179] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[   82.812544][ T6179] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   82.820184][ T6179] vhci_hcd vhci_hcd.0: Device attached
[   82.883345][ T6185] rdma_rxe: rxe_newlink: failed to add sit0
[   82.940605][ T6178] sit0 speed is unknown, defaulting to 1000
[   83.065848][ T3374] usb 7-1: new high-speed USB device number 4 using vhci_hcd
[   83.173579][ T6036] vhci_hcd: connection reset by peer
[   83.179319][   T62] vhci_hcd: stop threads
[   83.183693][   T62] vhci_hcd: release socket
[   83.188173][   T62] vhci_hcd: disconnect device
[   83.220530][ T6205] bond0: (slave geneve1): Error: Device can not be enslaved while up
[   83.260663][ T6207] FAULT_INJECTION: forcing a failure.
[   83.260663][ T6207] name failslab, interval 1, probability 0, space 0, times 0
[   83.273437][ T6207] CPU: 1 UID: 0 PID: 6207 Comm: syz.0.1017 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   83.284184][ T6207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.294254][ T6207] Call Trace:
[   83.297534][ T6207]  <TASK>
[   83.300448][ T6207]  dump_stack_lvl+0xf2/0x150
[   83.305056][ T6207]  dump_stack+0x15/0x1a
[   83.309267][ T6207]  should_fail_ex+0x223/0x230
[   83.314034][ T6207]  should_failslab+0x8f/0xb0
[   83.318721][ T6207]  kmem_cache_alloc_noprof+0x52/0x320
[   83.324160][ T6207]  ? security_inode_alloc+0x37/0x100
[   83.329484][ T6207]  security_inode_alloc+0x37/0x100
[   83.334589][ T6207]  inode_init_always_gfp+0x4a2/0x4f0
[   83.339891][ T6207]  alloc_inode+0x82/0x160
[   83.344238][ T6207]  new_inode_pseudo+0x15/0x20
[   83.349040][ T6207]  alloc_anon_inode+0x1e/0x170
[   83.353807][ T6207]  __se_sys_memfd_secret+0x122/0x2c0
[   83.359098][ T6207]  __x64_sys_memfd_secret+0x1f/0x30
[   83.364285][ T6207]  x64_sys_call+0x1b0f/0x2dc0
[   83.368964][ T6207]  do_syscall_64+0xc9/0x1c0
[   83.373506][ T6207]  ? clear_bhb_loop+0x55/0xb0
[   83.378231][ T6207]  ? clear_bhb_loop+0x55/0xb0
[   83.382933][ T6207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.388949][ T6207] RIP: 0033:0x7f7bc9f05d29
[   83.393344][ T6207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.412986][ T6207] RSP: 002b:00007f7bc8571038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[   83.421417][ T6207] RAX: ffffffffffffffda RBX: 00007f7bca0f5fa0 RCX: 00007f7bc9f05d29
[   83.429372][ T6207] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   83.437347][ T6207] RBP: 00007f7bc8571090 R08: 0000000000000000 R09: 0000000000000000
[   83.445373][ T6207] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.453366][ T6207] R13: 0000000000000000 R14: 00007f7bca0f5fa0 R15: 00007fff511b8bb8
[   83.461370][ T6207]  </TASK>
[   83.531787][ T6221] batadv1: entered promiscuous mode
[   83.537661][ T6221] batadv1: entered allmulticast mode
[   83.552807][ T6217] batadv1: entered promiscuous mode
[   83.558064][ T6217] batadv1: entered allmulticast mode
[   83.592584][ T6229] loop4: detected capacity change from 0 to 512
[   83.601342][ T6229] EXT4-fs: Ignoring removed orlov option
[   83.612704][ T6229] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   83.624369][ T6229] EXT4-fs (loop4): orphan cleanup on readonly fs
[   83.633639][ T6231] rdma_rxe: rxe_newlink: failed to add sit0
[   83.634303][ T6229] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1027: bg 0: block 248: padding at end of block bitmap is not set
[   83.651486][ T6231] sit0 speed is unknown, defaulting to 1000
[   83.660391][ T6229] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1027: Failed to acquire dquot type 1
[   83.673479][ T6229] EXT4-fs (loop4): 1 truncate cleaned up
[   83.785015][ T6057] vhci_hcd: connection reset by peer
[   83.792275][  T170] vhci_hcd: stop threads
[   83.796593][  T170] vhci_hcd: release socket
[   83.801045][  T170] vhci_hcd: disconnect device
[   83.885896][ T3356] vhci_hcd: vhci_device speed not set
[   83.928359][ T6239] batadv1: entered promiscuous mode
[   83.933804][ T6239] batadv1: entered allmulticast mode
[   83.964922][ T6245] rdma_rxe: rxe_newlink: failed to add sit0
[   83.996892][ T6245] sit0 speed is unknown, defaulting to 1000
[   84.020150][ T6251] __nla_validate_parse: 7 callbacks suppressed
[   84.020165][ T6251] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.1037'.
[   84.039886][ T6249] loop5: detected capacity change from 0 to 512
[   84.059173][ T6249] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.082730][ T6249] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1035: bg 0: block 131: padding at end of block bitmap is not set
[   84.111031][ T6256] loop1: detected capacity change from 0 to 128
[   84.136348][ T6249] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   84.153402][ T6249] EXT4-fs (loop5): 1 truncate cleaned up
[   84.163411][ T6258] loop0: detected capacity change from 0 to 512
[   84.203365][ T6258] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1038: bg 0: block 248: padding at end of block bitmap is not set
[   84.226846][ T6258] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1038: Failed to acquire dquot type 1
[   84.239072][ T6258] EXT4-fs (loop0): 1 truncate cleaned up
[   84.245096][ T6258] ext4 filesystem being mounted at /286/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.346885][ T6270] ieee802154 phy1 wpan1: encryption failed: -22
[   84.460309][ T6278] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1048'.
[   84.481927][ T6278] batadv1: entered promiscuous mode
[   84.487295][ T6278] batadv1: entered allmulticast mode
[   84.510881][ T6280] rdma_rxe: rxe_newlink: failed to add sit0
[   84.535621][ T6280] sit0 speed is unknown, defaulting to 1000
[   84.559703][ T6283] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.1049'.
[   84.594560][ T6284] loop1: detected capacity change from 0 to 512
[   84.857779][ T6287] loop5: detected capacity change from 0 to 1024
[   84.978692][ T6284] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1046: bg 0: block 248: padding at end of block bitmap is not set
[   85.039153][ T6284] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1046: Failed to acquire dquot type 1
[   85.064402][ T6284] EXT4-fs (loop1): 1 truncate cleaned up
[   85.098572][ T6284] ext4 filesystem being mounted at /146/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   85.120029][ T6302] sit0 speed is unknown, defaulting to 1000
[   85.220418][ T6309] ieee802154 phy1 wpan1: encryption failed: -22
[   85.347805][ T6313] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.1060'.
[   85.447140][ T6316] No such timeout policy "syz0"
[   85.600582][ T6316] loop5: detected capacity change from 0 to 128
[   85.611863][ T6316] EXT4-fs: Ignoring removed nobh option
[   85.634470][ T6316] ext4: Bad value for 'debug_want_extra_isize'
[   85.718675][ T6180] vhci_hcd: connection reset by peer
[   85.724365][  T170] vhci_hcd: stop threads
[   85.728659][  T170] vhci_hcd: release socket
[   85.733153][  T170] vhci_hcd: disconnect device
[   85.815136][ T6335] ieee802154 phy1 wpan1: encryption failed: -22
[   85.907754][ T6346] netlink: 'syz.3.1074': attribute type 1 has an invalid length.
[   85.915622][ T6346] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1074'.
[   85.934099][ T6348] rdma_rxe: rxe_newlink: failed to add sit0
[   85.966688][ T6351] bond0: (slave geneve1): Error: Device can not be enslaved while up
[   86.004810][ T6348] sit0 speed is unknown, defaulting to 1000
[   86.084068][ T6361] loop5: detected capacity change from 0 to 512
[   86.098912][ T6363] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1080'.
[   86.125565][ T6370] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1084'.
[   86.136084][ T6361] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.181237][ T6361] Cannot find add_set index 0 as target
[   86.193664][ T6376] loop0: detected capacity change from 0 to 512
[   86.231968][ T6376] EXT4-fs: Ignoring removed orlov option
[   86.255994][   T24] usb 11-1: enqueue for inactive port 0
[   86.263863][ T6376] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   86.276547][   T24] usb 11-1: enqueue for inactive port 0
[   86.305452][ T6376] EXT4-fs (loop0): orphan cleanup on readonly fs
[   86.317111][ T6376] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1086: bg 0: block 248: padding at end of block bitmap is not set
[   86.339567][ T6376] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1086: Failed to acquire dquot type 1
[   86.362148][ T6390] netlink: 'syz.5.1090': attribute type 1 has an invalid length.
[   86.369959][ T6390] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1090'.
[   86.380359][   T24] vhci_hcd: vhci_device speed not set
[   86.387435][ T6376] EXT4-fs (loop0): 1 truncate cleaned up
[   86.461092][ T6399] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.1095'.
[   86.480830][ T6404] loop4: detected capacity change from 0 to 512
[   86.521093][ T6408] loop3: detected capacity change from 0 to 2048
[   86.552880][ T6404] ext4 filesystem being mounted at /213/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   86.685115][ T6425] rdma_rxe: rxe_newlink: failed to add sit0
[   86.714875][   T29] kauditd_printk_skb: 218 callbacks suppressed
[   86.714934][   T29] audit: type=1400 audit(1736833216.843:2731): avc:  denied  { setattr } for  pid=6407 comm="syz.3.1099" path="/213/file1" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   86.752157][ T6425] sit0 speed is unknown, defaulting to 1000
[   86.787527][ T6433] SELinux:  policydb version 0 does not match my version range 15-33
[   86.808517][   T29] audit: type=1400 audit(1736833216.853:2732): avc:  denied  { name_bind } for  pid=6427 comm="syz.5.1106" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   86.830252][   T29] audit: type=1400 audit(1736833216.923:2733): avc:  denied  { load_policy } for  pid=6427 comm="syz.5.1106" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   86.841190][ T6433] SELinux: failed to load policy
[   87.075051][ T6441] netlink: 'syz.3.1108': attribute type 1 has an invalid length.
[   87.082964][ T6441] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1108'.
[   87.202330][ T6447] bond0: (slave geneve1): Enslaving as an active interface with an up link
[   87.298203][   T29] audit: type=1400 audit(1736833217.433:2734): avc:  denied  { write } for  pid=6450 comm="syz.1.1113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   87.542329][ T6476] loop5: detected capacity change from 0 to 1024
[   87.544051][ T6478] loop1: detected capacity change from 0 to 512
[   87.564867][ T6478] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.1126: casefold flag without casefold feature
[   87.565651][ T6475] infiniband syz2: set active
[   87.578129][ T6459] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.592182][ T6459] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.600511][ T6478] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.1126: couldn't read orphan inode 15 (err -117)
[   87.623885][ T3356] sit0 speed is unknown, defaulting to 1000
[   87.659559][   T29] audit: type=1326 audit(1736833217.793:2735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6482 comm="syz.3.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[   87.683199][   T29] audit: type=1326 audit(1736833217.793:2736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6482 comm="syz.3.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[   87.706805][   T29] audit: type=1326 audit(1736833217.793:2737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6482 comm="syz.3.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[   87.712849][ T6486] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[   87.730265][   T29] audit: type=1326 audit(1736833217.793:2738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6482 comm="syz.3.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[   87.736725][ T6486] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   87.736828][ T6486] vhci_hcd vhci_hcd.0: Device attached
[   87.773531][   T29] audit: type=1326 audit(1736833217.793:2739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6482 comm="syz.3.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[   87.798918][ T6478] syz.1.1126 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   87.871061][ T6493] netlink: 'syz.5.1129': attribute type 3 has an invalid length.
[   87.985956][    T9] usb 9-1: new high-speed USB device number 5 using vhci_hcd
[   88.066038][   T29] audit: type=1326 audit(1736833218.193:2740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6526 comm="syz.1.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b6b15d29 code=0x7ffc0000
[   88.090655][ T6497] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.101060][ T6497] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.175850][ T3374] vhci_hcd: vhci_device speed not set
[   88.200011][ T6534] batadv1: entered promiscuous mode
[   88.205260][ T6534] batadv1: entered allmulticast mode
[   88.230167][ T6546] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[   88.236936][ T6546] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   88.244633][ T6546] vhci_hcd vhci_hcd.0: Device attached
[   88.402601][ T6570] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.420484][ T6570] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.486334][ T3356] usb 1-1: new high-speed USB device number 3 using vhci_hcd
[   88.732248][ T6607] loop5: detected capacity change from 0 to 512
[   88.740273][ T6607] EXT4-fs: Ignoring removed orlov option
[   88.747061][ T6607] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   88.756241][ T6607] EXT4-fs (loop5): orphan cleanup on readonly fs
[   88.763154][ T6607] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1146: bg 0: block 248: padding at end of block bitmap is not set
[   88.777883][ T6607] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1146: Failed to acquire dquot type 1
[   88.789688][ T6607] EXT4-fs (loop5): 1 truncate cleaned up
[   89.051729][ T6628] ieee802154 phy1 wpan1: encryption failed: -22
[   89.140068][ T6645] loop1: detected capacity change from 0 to 512
[   89.155401][ T6645] EXT4-fs: inline encryption not supported
[   89.174281][ T6645] ext4 filesystem being mounted at /171/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.193495][ T6650] loop3: detected capacity change from 0 to 1024
[   89.200845][ T6650] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   89.216040][ T6650] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   89.224153][ T6650] EXT4-fs (loop3): orphan cleanup on readonly fs
[   89.230603][ T6650] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #3: comm syz.3.1161: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[   89.248884][ T6650] EXT4-fs error (device loop3): ext4_quota_enable:7115: comm syz.3.1161: Bad quota inode: 3, type: 0
[   89.252791][ T6656] __nla_validate_parse: 5 callbacks suppressed
[   89.252805][ T6656] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1163'.
[   89.260470][ T6650] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   89.270711][ T6656] batadv1: entered promiscuous mode
[   89.274861][ T6650] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   89.302317][ T6656] batadv1: entered allmulticast mode
[   89.336349][ T6650] vhci_hcd: invalid port number 61
[   89.341527][ T6650] vhci_hcd: default hub control req: d374 v3866 i003d l25388
[   89.384924][ T6659] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1164'.
[   89.397319][ T6659] batadv0: entered promiscuous mode
[   89.402538][ T6659] batadv0: entered allmulticast mode
[   89.490151][ T6660] syz2: rxe_newlink: already configured on sit0
[   89.506529][ T6660] sit0 speed is unknown, defaulting to 1000
[   89.732661][ T6670] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.1169'.
[   89.772880][ T6674] netlink: 'syz.3.1171': attribute type 1 has an invalid length.
[   89.780727][ T6674] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1171'.
[   89.817016][ T6676] bpf_get_probe_write_proto: 20 callbacks suppressed
[   89.817032][ T6676] syz.3.1172[6676] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.823878][ T6676] syz.3.1172[6676] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.835370][ T6676] syz.3.1172[6676] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.847776][ T6676] syz.3.1172[6676] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.859271][ T6676] syz.3.1172[6676] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.870692][ T6676] syz.3.1172[6676] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.060727][ T6697] FAULT_INJECTION: forcing a failure.
[   90.060727][ T6697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.085144][ T6697] CPU: 0 UID: 0 PID: 6697 Comm: syz.3.1180 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   90.095828][ T6697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   90.105890][ T6697] Call Trace:
[   90.109174][ T6697]  <TASK>
[   90.112089][ T6697]  dump_stack_lvl+0xf2/0x150
[   90.116688][ T6697]  dump_stack+0x15/0x1a
[   90.120881][ T6697]  should_fail_ex+0x223/0x230
[   90.125611][ T6697]  should_fail+0xb/0x10
[   90.129775][ T6697]  should_fail_usercopy+0x1a/0x20
[   90.134789][ T6697]  _copy_to_user+0x20/0xa0
[   90.139212][ T6697]  simple_read_from_buffer+0xa0/0x110
[   90.142152][ T6704] bond0: (slave geneve1): Error: Device can not be enslaved while up
[   90.144595][ T6697]  proc_fail_nth_read+0xf9/0x140
[   90.157604][ T6697]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.163275][ T6697]  vfs_read+0x1a2/0x700
[   90.167438][ T6697]  ? __rcu_read_unlock+0x4e/0x70
[   90.172393][ T6697]  ? __fget_files+0x17c/0x1c0
[   90.177079][ T6697]  ksys_read+0xe8/0x1b0
[   90.181237][ T6697]  __x64_sys_read+0x42/0x50
[   90.185819][ T6697]  x64_sys_call+0x2874/0x2dc0
[   90.190492][ T6697]  do_syscall_64+0xc9/0x1c0
[   90.195021][ T6697]  ? clear_bhb_loop+0x55/0xb0
[   90.199690][ T6697]  ? clear_bhb_loop+0x55/0xb0
[   90.204439][ T6697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.210336][ T6697] RIP: 0033:0x7f1bfdc9473c
[   90.214743][ T6697] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   90.234344][ T6697] RSP: 002b:00007f1bfc2e0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   90.242754][ T6697] RAX: ffffffffffffffda RBX: 00007f1bfde86080 RCX: 00007f1bfdc9473c
[   90.250719][ T6697] RDX: 000000000000000f RSI: 00007f1bfc2e00a0 RDI: 0000000000000004
[   90.260570][ T6697] RBP: 00007f1bfc2e0090 R08: 0000000000000000 R09: 0000000000000000
[   90.268540][ T6697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.276513][ T6697] R13: 0000000000000001 R14: 00007f1bfde86080 R15: 00007ffea8447938
[   90.284484][ T6697]  </TASK>
[   90.344018][ T6707] netlink: 'syz.5.1183': attribute type 1 has an invalid length.
[   90.351889][ T6707] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1183'.
[   90.355544][ T6710] loop3: detected capacity change from 0 to 1024
[   90.384070][ T6487] vhci_hcd: connection reset by peer
[   90.404731][  T170] vhci_hcd: stop threads
[   90.405568][ T6716] ieee802154 phy1 wpan1: encryption failed: -22
[   90.409082][  T170] vhci_hcd: release socket
[   90.419770][  T170] vhci_hcd: disconnect device
[   90.435831][ T6722] ieee802154 phy1 wpan1: encryption failed: -22
[   90.458072][ T6727] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.466723][ T6727] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.482712][ T6727] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.491449][ T6727] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.545982][ T6736] syz.1.1191[6736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.546111][ T6736] syz.1.1191[6736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.548851][ T6733] loop5: detected capacity change from 0 to 512
[   90.557669][ T6736] syz.1.1191[6736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.569123][ T6733] EXT4-fs: Ignoring removed orlov option
[   90.594094][ T6733] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   90.607034][ T6733] EXT4-fs (loop5): orphan cleanup on readonly fs
[   90.613992][ T6736] syz.1.1191[6736] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.614169][ T6733] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1190: bg 0: block 248: padding at end of block bitmap is not set
[   90.631913][ T6739] infiniband syz2: set active
[   90.646332][ T6733] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1190: Failed to acquire dquot type 1
[   90.658841][ T6733] EXT4-fs (loop5): 1 truncate cleaned up
[   90.696448][    T8] sit0 speed is unknown, defaulting to 1000
[   90.749088][ T6748] netlink: 'syz.1.1196': attribute type 1 has an invalid length.
[   90.756920][ T6748] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1196'.
[   90.787865][ T6746] loop3: detected capacity change from 0 to 512
[   90.797699][ T6750] loop5: detected capacity change from 0 to 512
[   90.800093][ T6746] EXT4-fs: Ignoring removed orlov option
[   90.835502][ T6746] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   90.848409][ T6746] EXT4-fs (loop3): orphan cleanup on readonly fs
[   90.856702][ T6746] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1195: bg 0: block 248: padding at end of block bitmap is not set
[   90.905682][ T6547] vhci_hcd: connection reset by peer
[   90.918268][ T6746] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1195: Failed to acquire dquot type 1
[   90.929597][   T40] vhci_hcd: stop threads
[   90.933854][   T40] vhci_hcd: release socket
[   90.938397][   T40] vhci_hcd: disconnect device
[   90.947051][ T6759] rdma_rxe: rxe_newlink: failed to add sit0
[   90.959686][ T6746] EXT4-fs (loop3): 1 truncate cleaned up
[   91.033487][ T6759] sit0 speed is unknown, defaulting to 1000
[   91.098674][ T6771] loop4: detected capacity change from 0 to 512
[   91.109983][ T6771] EXT4-fs: inline encryption not supported
[   91.157469][ T6771] ext4 filesystem being mounted at /217/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.332527][ T6799] ieee802154 phy1 wpan1: encryption failed: -22
[   91.350076][ T6800] loop3: detected capacity change from 0 to 512
[   91.369306][ T6800] EXT4-fs: Ignoring removed orlov option
[   91.387951][ T6800] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   91.402141][ T6800] EXT4-fs (loop3): orphan cleanup on readonly fs
[   91.417918][ T6800] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1215: bg 0: block 248: padding at end of block bitmap is not set
[   91.448787][ T6805] loop5: detected capacity change from 0 to 512
[   91.466292][ T6800] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1215: Failed to acquire dquot type 1
[   91.478930][ T6805] EXT4-fs: inline encryption not supported
[   91.516085][ T6800] EXT4-fs (loop3): 1 truncate cleaned up
[   91.527240][ T6805] ext4 filesystem being mounted at /150/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.545736][ T6811] netlink: 'syz.4.1217': attribute type 21 has an invalid length.
[   91.613834][ T6815] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.1219'.
[   91.628005][ T6801] loop0: detected capacity change from 0 to 512
[   91.633477][ T6813] loop5: detected capacity change from 0 to 512
[   91.646869][ T6801] journal_path: Non-blockdev passed as './bus'
[   91.651360][ T6813] EXT4-fs: inline encryption not supported
[   91.653132][ T6801] EXT4-fs: error: could not find journal device path
[   91.693004][ T6813] ext4 filesystem being mounted at /151/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.745680][   T29] kauditd_printk_skb: 137 callbacks suppressed
[   91.745693][   T29] audit: type=1326 audit(1736833221.873:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b6b15d29 code=0x7ffc0000
[   91.799395][   T29] audit: type=1326 audit(1736833221.873:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b6b15d29 code=0x7ffc0000
[   91.822867][   T29] audit: type=1326 audit(1736833221.873:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f05b6b15d29 code=0x7ffc0000
[   91.846259][   T29] audit: type=1326 audit(1736833221.873:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6823 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f05b6b15d29 code=0x7ffc0000
[   91.847098][ T6831] loop5: detected capacity change from 0 to 2048
[   91.895719][ T6833] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.1226'.
[   91.972290][ T6840] loop1: detected capacity change from 0 to 1024
[   92.002474][ T6841] loop3: detected capacity change from 0 to 512
[   92.009165][ T6841] EXT4-fs: inline encryption not supported
[   92.020664][ T6831] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.1225: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   92.068883][ T6841] ext4 filesystem being mounted at /263/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.103552][   T29] audit: type=1326 audit(1736833222.233:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6846 comm="syz.5.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[   92.130919][ T6849] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.1230'.
[   92.181188][   T29] audit: type=1326 audit(1736833222.233:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6846 comm="syz.5.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[   92.204729][   T29] audit: type=1326 audit(1736833222.233:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6846 comm="syz.5.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[   92.228257][   T29] audit: type=1326 audit(1736833222.233:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6846 comm="syz.5.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[   92.251994][   T29] audit: type=1326 audit(1736833222.233:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6846 comm="syz.5.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[   92.275405][   T29] audit: type=1326 audit(1736833222.233:2879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6846 comm="syz.5.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[   92.305405][ T6862] loop0: detected capacity change from 0 to 128
[   92.331792][ T6862] syz.0.1235: attempt to access beyond end of device
[   92.331792][ T6862] loop0: rw=2049, sector=145, nr_sectors = 3 limit=128
[   92.351990][ T6866] bond0: (slave geneve1): Error: Device can not be enslaved while up
[   92.362461][ T6864] IPv6: syztnl0: Disabled Multicast RS
[   92.418475][ T6868] raw_sendmsg: syz.5.1239 forgot to set AF_INET. Fix it!
[   92.462370][ T6872] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1241'.
[   92.474541][ T6872] batadv1: entered promiscuous mode
[   92.476491][ T6875] syz.0.1235: attempt to access beyond end of device
[   92.476491][ T6875] loop0: rw=0, sector=147, nr_sectors = 1 limit=128
[   92.479844][ T6872] batadv1: entered allmulticast mode
[   92.613070][ T6872] rdma_rxe: rxe_newlink: failed to add sit0
[   92.666333][ T6872] sit0 speed is unknown, defaulting to 1000
[   93.092662][ T6924] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.110615][ T6924] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.149767][    T9] vhci_hcd: vhci_device speed not set
[   93.192672][ T6934] bond0: (slave geneve1): Error: Device is in use and cannot be enslaved
[   93.273834][ T6940] batadv1: entered promiscuous mode
[   93.279112][ T6940] batadv1: entered allmulticast mode
[   93.349590][ T6949] loop3: detected capacity change from 0 to 512
[   93.373180][ T6949] EXT4-fs: Ignoring removed nobh option
[   93.384514][ T6940] rdma_rxe: rxe_newlink: failed to add sit0
[   93.419488][ T6940] sit0 speed is unknown, defaulting to 1000
[   93.430282][ T6949] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.473039][ T6949] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1263: bg 0: block 224: padding at end of block bitmap is not set
[   93.536966][ T6949] EXT4-fs (loop3): Remounting filesystem read-only
[   93.592818][ T6967] bond0: (slave geneve1): Error: Device can not be enslaved while up
[   93.605986][ T3356] vhci_hcd: vhci_device speed not set
[   93.690502][ T6978] loop5: detected capacity change from 0 to 1024
[   93.725291][ T6971] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.750950][ T6971] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.850701][ T6998] batadv1: entered promiscuous mode
[   93.856038][ T6998] batadv1: entered allmulticast mode
[   93.906776][ T7006] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.933976][ T7010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.943256][ T7006] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.945046][ T7010] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.967405][ T7006] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.976391][ T7006] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.998813][ T7012] batadv1: entered promiscuous mode
[   94.004053][ T7012] batadv1: entered allmulticast mode
[   94.101120][ T7012] rdma_rxe: rxe_newlink: failed to add sit0
[   94.118380][ T7012] sit0 speed is unknown, defaulting to 1000
[   94.459994][ T7041] loop3: detected capacity change from 0 to 1024
[   94.480103][ T7045] loop5: detected capacity change from 0 to 512
[   94.486831][ T7045] EXT4-fs: Ignoring removed mblk_io_submit option
[   94.497571][ T7045] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1300: bg 0: block 131: padding at end of block bitmap is not set
[   94.512439][ T7045] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   94.538486][ T7045] EXT4-fs (loop5): 1 truncate cleaned up
[   94.630978][ T7061] __nla_validate_parse: 3 callbacks suppressed
[   94.630994][ T7061] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1306'.
[   94.656918][ T7061] batadv1: entered promiscuous mode
[   94.662227][ T7061] batadv1: entered allmulticast mode
[   94.707503][ T7070] loop5: detected capacity change from 0 to 2048
[   94.709511][ T7074] loop3: detected capacity change from 0 to 1024
[   94.750840][ T7083] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   94.759478][ T7083] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   94.776818][ T7061] rdma_rxe: rxe_newlink: failed to add sit0
[   94.803946][ T7061] sit0 speed is unknown, defaulting to 1000
[   94.851906][ T7090] loop3: detected capacity change from 0 to 128
[   94.857115][ T7088] loop4: detected capacity change from 0 to 1024
[   94.867117][ T7070] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.1310: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   94.892712][ T7090] syz.3.1317: attempt to access beyond end of device
[   94.892712][ T7090] loop3: rw=2049, sector=145, nr_sectors = 3 limit=128
[   95.197709][ T7100] rdma_op ffff888113d4c180 conn xmit_rdma 0000000000000000
[   95.487476][ T7106] bond0: (slave geneve1): Releasing backup interface
[   95.946926][ T7088] Set syz1 is full, maxelem 65536 reached
[   96.059783][ T7136] loop5: detected capacity change from 0 to 1024
[   96.060514][ T7135] bond0: (slave geneve1): Enslaving as an active interface with an up link
[   96.091721][ T7141] loop4: detected capacity change from 0 to 1024
[   96.144484][ T7148] loop3: detected capacity change from 0 to 512
[   96.163497][ T7148] EXT4-fs: inline encryption not supported
[   96.223078][ T7148] EXT4-fs mount: 73 callbacks suppressed
[   96.223095][ T7148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.243890][ T7148] ext4 filesystem being mounted at /285/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.268399][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.353616][ T7172] FAULT_INJECTION: forcing a failure.
[   96.353616][ T7172] name failslab, interval 1, probability 0, space 0, times 0
[   96.366300][ T7172] CPU: 0 UID: 0 PID: 7172 Comm: syz.5.1347 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   96.377064][ T7172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.387124][ T7172] Call Trace:
[   96.390394][ T7172]  <TASK>
[   96.393319][ T7172]  dump_stack_lvl+0xf2/0x150
[   96.398025][ T7172]  dump_stack+0x15/0x1a
[   96.402243][ T7172]  should_fail_ex+0x223/0x230
[   96.406937][ T7172]  should_failslab+0x8f/0xb0
[   96.411557][ T7172]  kmem_cache_alloc_noprof+0x52/0x320
[   96.416985][ T7172]  ? ioctx_alloc+0xf0/0x4c0
[   96.421570][ T7172]  ioctx_alloc+0xf0/0x4c0
[   96.425949][ T7172]  __se_sys_io_setup+0x6b/0x1b0
[   96.430801][ T7172]  __x64_sys_io_setup+0x31/0x40
[   96.435742][ T7172]  x64_sys_call+0x160f/0x2dc0
[   96.440466][ T7172]  do_syscall_64+0xc9/0x1c0
[   96.445043][ T7172]  ? clear_bhb_loop+0x55/0xb0
[   96.449775][ T7172]  ? clear_bhb_loop+0x55/0xb0
[   96.454451][ T7172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.460412][ T7172] RIP: 0033:0x7fa9204f5d29
[   96.464951][ T7172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.484552][ T7172] RSP: 002b:00007fa91eb61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[   96.493015][ T7172] RAX: ffffffffffffffda RBX: 00007fa9206e5fa0 RCX: 00007fa9204f5d29
[   96.501094][ T7172] RDX: 0000000000000000 RSI: 0000000020000680 RDI: 0000000000002004
[   96.509130][ T7172] RBP: 00007fa91eb61090 R08: 0000000000000000 R09: 0000000000000000
[   96.517093][ T7172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.525122][ T7172] R13: 0000000000000000 R14: 00007fa9206e5fa0 R15: 00007ffd6e955618
[   96.533158][ T7172]  </TASK>
[   96.644377][ T7181] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1351'.
[   96.653799][ T7181] unsupported nlmsg_type 40
[   96.671403][ T7192] loop0: detected capacity change from 0 to 1024
[   96.708626][ T7192] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.766859][ T7205] FAULT_INJECTION: forcing a failure.
[   96.766859][ T7205] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.780063][ T7205] CPU: 1 UID: 0 PID: 7205 Comm: +}[@ Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   96.790223][ T7205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   96.800346][ T7205] Call Trace:
[   96.803627][ T7205]  <TASK>
[   96.806605][ T7205]  dump_stack_lvl+0xf2/0x150
[   96.811223][ T7205]  dump_stack+0x15/0x1a
[   96.815454][ T7205]  should_fail_ex+0x223/0x230
[   96.820154][ T7205]  should_fail+0xb/0x10
[   96.824371][ T7205]  should_fail_usercopy+0x1a/0x20
[   96.829476][ T7205]  _copy_from_user+0x1e/0xb0
[   96.834090][ T7205]  copy_msghdr_from_user+0x54/0x2a0
[   96.839342][ T7205]  ? __fget_files+0x17c/0x1c0
[   96.844106][ T7205]  __sys_sendmsg+0x13e/0x230
[   96.848716][ T7205]  __x64_sys_sendmsg+0x46/0x50
[   96.853538][ T7205]  x64_sys_call+0x2734/0x2dc0
[   96.858271][ T7205]  do_syscall_64+0xc9/0x1c0
[   96.862768][ T7205]  ? clear_bhb_loop+0x55/0xb0
[   96.867460][ T7205]  ? clear_bhb_loop+0x55/0xb0
[   96.872170][ T7205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.878146][ T7205] RIP: 0033:0x7f05b6b15d29
[   96.882552][ T7205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.902154][ T7205] RSP: 002b:00007f05b5187038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   96.910665][ T7205] RAX: ffffffffffffffda RBX: 00007f05b6d05fa0 RCX: 00007f05b6b15d29
[   96.918668][ T7205] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000006
[   96.926644][ T7205] RBP: 00007f05b5187090 R08: 0000000000000000 R09: 0000000000000000
[   96.934612][ T7205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.942666][ T7205] R13: 0000000000000000 R14: 00007f05b6d05fa0 R15: 00007ffecbece928
[   96.950643][ T7205]  </TASK>
[   96.960485][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.970187][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.086116][ T7225] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1367'.
[   97.106136][   T29] kauditd_printk_skb: 410 callbacks suppressed
[   97.106183][   T29] audit: type=1326 audit(1736833483.245:3288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.121085][ T7213] loop0: detected capacity change from 0 to 8192
[   97.135765][   T29] audit: type=1326 audit(1736833483.245:3289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.172826][ T7225] batadv1: entered promiscuous mode
[   97.178093][ T7225] batadv1: entered allmulticast mode
[   97.199921][   T29] audit: type=1326 audit(1736833483.305:3290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.223336][   T29] audit: type=1326 audit(1736833483.305:3291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.246779][   T29] audit: type=1326 audit(1736833483.305:3292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.270209][   T29] audit: type=1326 audit(1736833483.305:3293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.272463][ T7243] rdma_rxe: rxe_newlink: failed to add sit0
[   97.293686][   T29] audit: type=1326 audit(1736833483.305:3294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.293754][   T29] audit: type=1326 audit(1736833483.305:3295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.346462][   T29] audit: type=1326 audit(1736833483.305:3296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.369965][   T29] audit: type=1326 audit(1736833483.305:3297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7210 comm="syz.4.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[   97.500673][ T7246] sit0 speed is unknown, defaulting to 1000
[   97.512582][ T7255] loop5: detected capacity change from 0 to 512
[   97.523095][ T7255] EXT4-fs: inline encryption not supported
[   97.591046][ T7255] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.620234][ T7255] ext4 filesystem being mounted at /191/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.720131][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.800168][ T7282] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.1381'.
[   97.825677][ T7280] loop5: detected capacity change from 0 to 164
[   97.849901][ T7280] iso9660: Unknown parameter ''
[   98.017088][ T7304] FAULT_INJECTION: forcing a failure.
[   98.017088][ T7304] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   98.024184][ T7301] loop5: detected capacity change from 0 to 2048
[   98.030387][ T7304] CPU: 0 UID: 0 PID: 7304 Comm: syz.1.1389 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[   98.047389][ T7304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   98.057459][ T7304] Call Trace:
[   98.060820][ T7304]  <TASK>
[   98.063751][ T7304]  dump_stack_lvl+0xf2/0x150
[   98.068505][ T7304]  dump_stack+0x15/0x1a
[   98.072675][ T7304]  should_fail_ex+0x223/0x230
[   98.077421][ T7304]  should_fail_alloc_page+0xfd/0x110
[   98.082718][ T7304]  __alloc_pages_noprof+0x109/0x340
[   98.087974][ T7304]  alloc_pages_mpol_noprof+0xb8/0x260
[   98.093374][ T7304]  alloc_pages_noprof+0xe1/0x100
[   98.098345][ T7304]  get_zeroed_page_noprof+0x17/0x40
[   98.103607][ T7304]  simple_transaction_get+0x4c/0x120
[   98.108940][ T7304]  selinux_transaction_write+0x86/0x100
[   98.114489][ T7304]  ? __pfx_selinux_transaction_write+0x10/0x10
[   98.120688][ T7304]  vfs_write+0x281/0x920
[   98.124991][ T7304]  ? __fget_files+0x17c/0x1c0
[   98.129740][ T7304]  ksys_write+0xe8/0x1b0
[   98.133992][ T7304]  __x64_sys_write+0x42/0x50
[   98.138602][ T7304]  x64_sys_call+0x287e/0x2dc0
[   98.143354][ T7304]  do_syscall_64+0xc9/0x1c0
[   98.147851][ T7304]  ? clear_bhb_loop+0x55/0xb0
[   98.152520][ T7304]  ? clear_bhb_loop+0x55/0xb0
[   98.157206][ T7304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.163168][ T7304] RIP: 0033:0x7f05b6b15d29
[   98.167642][ T7304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.187304][ T7304] RSP: 002b:00007f05b5187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   98.195792][ T7304] RAX: ffffffffffffffda RBX: 00007f05b6d05fa0 RCX: 00007f05b6b15d29
[   98.203757][ T7304] RDX: 0000000000000005 RSI: 0000000020000200 RDI: 0000000000000005
[   98.211721][ T7304] RBP: 00007f05b5187090 R08: 0000000000000000 R09: 0000000000000000
[   98.219686][ T7304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.227672][ T7304] R13: 0000000000000000 R14: 00007f05b6d05fa0 R15: 00007ffecbece928
[   98.235704][ T7304]  </TASK>
[   98.278869][ T7301] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.338488][ T7301] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.1390: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   98.365682][ T7315] loop1: detected capacity change from 0 to 512
[   98.372403][ T7315] EXT4-fs: inline encryption not supported
[   98.383895][ T7316] loop4: detected capacity change from 0 to 512
[   98.428336][ T7316] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1383: bg 0: block 248: padding at end of block bitmap is not set
[   98.442880][ T7316] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1383: Failed to acquire dquot type 1
[   98.455616][ T7316] EXT4-fs (loop4): 1 truncate cleaned up
[   98.461754][ T7316] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.474260][ T7316] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   98.492758][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.504918][ T7315] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.518856][ T7315] ext4 filesystem being mounted at /227/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.719724][ T7324] loop5: detected capacity change from 0 to 512
[   98.726353][ T7324] EXT4-fs: inline encryption not supported
[   98.747391][ T7324] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.760151][ T7324] ext4 filesystem being mounted at /196/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.761642][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.793991][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.819338][ T7330] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1397'.
[   98.831329][ T7330] batadv1: entered promiscuous mode
[   98.836818][ T7330] batadv1: entered allmulticast mode
[   98.871243][ T7332] Unknown options in mask 5
[   98.941948][ T7333] rdma_rxe: rxe_newlink: failed to add sit0
[   98.961754][ T7330] sit0 speed is unknown, defaulting to 1000
[   99.086500][ T7337] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1399'.
[   99.154404][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.215917][ T7346] rdma_rxe: rxe_newlink: failed to add sit0
[   99.271677][ T7352] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1404'.
[   99.294474][ T7346] sit0 speed is unknown, defaulting to 1000
[   99.303330][ T7352] batadv1: entered promiscuous mode
[   99.308713][ T7352] batadv1: entered allmulticast mode
[   99.410457][ T7360] loop5: detected capacity change from 0 to 128
[   99.542067][ T7365] loop3: detected capacity change from 0 to 512
[   99.578072][ T7365] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1406: bg 0: block 248: padding at end of block bitmap is not set
[   99.593619][ T7365] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.1406: Failed to acquire dquot type 1
[   99.606657][ T7365] EXT4-fs (loop3): 1 truncate cleaned up
[   99.612676][ T7365] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.625230][ T7365] ext4 filesystem being mounted at /301/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  100.207449][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.290145][ T7435] loop5: detected capacity change from 0 to 1024
[  100.319584][ T7435] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.387423][ T7451] bpf_get_probe_write_proto: 5 callbacks suppressed
[  100.387440][ T7451] syz.3.1434[7451] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.399373][ T7451] syz.3.1434[7451] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.410968][ T7451] syz.3.1434[7451] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.427660][ T7451] Invalid ELF header magic: != ELF
[  100.471413][ T7451] loop3: detected capacity change from 0 to 764
[  100.486426][ T7457] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1438'.
[  100.495653][ T7451] rock: directory entry would overflow storage
[  100.501965][ T7451] rock: sig=0x4654, size=5, remaining=4
[  100.511060][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.531984][ T7457] batadv1: entered promiscuous mode
[  100.537428][ T7457] batadv1: entered allmulticast mode
[  100.558335][ T7463] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1441'.
[  100.599680][ T7463] batadv1: entered promiscuous mode
[  100.604917][ T7463] batadv1: entered allmulticast mode
[  100.619906][ T7467] loop5: detected capacity change from 0 to 2048
[  100.641029][ T7470] rdma_rxe: rxe_newlink: failed to add sit0
[  100.684931][ T7467] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.697677][ T7470] sit0 speed is unknown, defaulting to 1000
[  100.890591][ T7478] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.1440: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  100.940619][ T7481] loop4: detected capacity change from 0 to 512
[  100.985076][ T7483] loop3: detected capacity change from 0 to 128
[  101.006977][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.017195][ T7483] syz.3.1444: attempt to access beyond end of device
[  101.017195][ T7483] loop3: rw=2049, sector=145, nr_sectors = 3 limit=128
[  101.021163][ T7481] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1436: bg 0: block 248: padding at end of block bitmap is not set
[  101.099786][ T7481] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1436: Failed to acquire dquot type 1
[  101.164730][ T7481] EXT4-fs (loop4): 1 truncate cleaned up
[  101.195435][ T7481] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.260992][ T7481] ext4 filesystem being mounted at /255/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.298784][ T7502] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[  101.654996][ T7535] loop0: detected capacity change from 0 to 128
[  101.666805][ T7535] syz.0.1465: attempt to access beyond end of device
[  101.666805][ T7535] loop0: rw=2049, sector=145, nr_sectors = 3 limit=128
[  101.734281][ T7542] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1467'.
[  101.768758][ T7542] batadv1: entered promiscuous mode
[  101.774237][ T7542] batadv1: entered allmulticast mode
[  101.922910][ T7560] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1474'.
[  101.949066][ T7560] batadv1: entered promiscuous mode
[  101.954410][ T7560] batadv1: entered allmulticast mode
[  102.021588][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.051215][ T7567] rdma_rxe: rxe_newlink: failed to add sit0
[  102.122366][ T7560] sit0 speed is unknown, defaulting to 1000
[  102.343222][   T29] kauditd_printk_skb: 185 callbacks suppressed
[  102.343271][   T29] audit: type=1326 audit(1736833488.475:3477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[  102.372920][   T29] audit: type=1326 audit(1736833488.475:3478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[  102.402372][   T29] audit: type=1326 audit(1736833488.535:3479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[  102.425899][   T29] audit: type=1326 audit(1736833488.535:3480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1bfdc95d63 code=0x7ffc0000
[  102.449182][   T29] audit: type=1326 audit(1736833488.535:3481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1bfdc95d63 code=0x7ffc0000
[  102.472593][   T29] audit: type=1326 audit(1736833488.535:3482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[  102.496126][   T29] audit: type=1326 audit(1736833488.535:3483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1bfdc95d29 code=0x7ffc0000
[  102.558702][ T7600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.567703][ T7600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.584358][ T7603] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1492'.
[  102.584457][   T29] audit: type=1400 audit(1736833488.715:3484): avc:  denied  { ioctl } for  pid=7601 comm="syz.0.1492" path="socket:[18963]" dev="sockfs" ino=18963 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  102.679790][ T7600] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.692882][ T7600] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.744789][   T29] audit: type=1326 audit(1736833488.875:3485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7618 comm="syz.0.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[  102.768900][   T29] audit: type=1326 audit(1736833488.875:3486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7618 comm="syz.0.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7bc9f05d29 code=0x7ffc0000
[  102.796971][ T7621] FAULT_INJECTION: forcing a failure.
[  102.796971][ T7621] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.810208][ T7621] CPU: 1 UID: 0 PID: 7621 Comm: syz.4.1496 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  102.820910][ T7621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  102.830957][ T7621] Call Trace:
[  102.834225][ T7621]  <TASK>
[  102.837226][ T7621]  dump_stack_lvl+0xf2/0x150
[  102.841857][ T7621]  dump_stack+0x15/0x1a
[  102.846067][ T7621]  should_fail_ex+0x223/0x230
[  102.850752][ T7621]  should_fail+0xb/0x10
[  102.854909][ T7621]  should_fail_usercopy+0x1a/0x20
[  102.859931][ T7621]  _copy_from_user+0x1e/0xb0
[  102.864598][ T7621]  bpf_test_init+0x105/0x170
[  102.869185][ T7621]  bpf_prog_test_run_nf+0x178/0x590
[  102.874443][ T7621]  ? __pfx_bpf_prog_test_run_nf+0x10/0x10
[  102.880199][ T7621]  bpf_prog_test_run+0x20f/0x3a0
[  102.885341][ T7621]  __sys_bpf+0x400/0x7a0
[  102.889646][ T7621]  __x64_sys_bpf+0x43/0x50
[  102.894073][ T7621]  x64_sys_call+0x2914/0x2dc0
[  102.898748][ T7621]  do_syscall_64+0xc9/0x1c0
[  102.903248][ T7621]  ? clear_bhb_loop+0x55/0xb0
[  102.907926][ T7621]  ? clear_bhb_loop+0x55/0xb0
[  102.912598][ T7621]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.918516][ T7621] RIP: 0033:0x7f871d415d29
[  102.922922][ T7621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  102.942543][ T7621] RSP: 002b:00007f871ba87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  102.950963][ T7621] RAX: ffffffffffffffda RBX: 00007f871d605fa0 RCX: 00007f871d415d29
[  102.959004][ T7621] RDX: 0000000000000050 RSI: 00000000200008c0 RDI: 000000000000000a
[  102.967017][ T7621] RBP: 00007f871ba87090 R08: 0000000000000000 R09: 0000000000000000
[  102.974979][ T7621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.982941][ T7621] R13: 0000000000000000 R14: 00007f871d605fa0 R15: 00007fffd612ce08
[  102.990998][ T7621]  </TASK>
[  103.123252][ T7632] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1503'.
[  103.128446][ T7634] FAULT_INJECTION: forcing a failure.
[  103.128446][ T7634] name failslab, interval 1, probability 0, space 0, times 0
[  103.136244][ T7632] batadv1: entered promiscuous mode
[  103.144815][ T7634] CPU: 0 UID: 0 PID: 7634 Comm: syz.5.1502 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  103.144842][ T7634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  103.150054][ T7632] batadv1: entered allmulticast mode
[  103.160668][ T7634] Call Trace:
[  103.160681][ T7634]  <TASK>
[  103.160689][ T7634]  dump_stack_lvl+0xf2/0x150
[  103.186913][ T7634]  dump_stack+0x15/0x1a
[  103.191064][ T7634]  should_fail_ex+0x223/0x230
[  103.195809][ T7634]  should_failslab+0x8f/0xb0
[  103.200398][ T7634]  kmem_cache_alloc_lru_noprof+0x57/0x320
[  103.206175][ T7634]  ? shmem_alloc_inode+0x34/0x50
[  103.211113][ T7634]  shmem_alloc_inode+0x34/0x50
[  103.215956][ T7634]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  103.221442][ T7634]  alloc_inode+0x3c/0x160
[  103.225798][ T7634]  new_inode+0x1e/0x100
[  103.229951][ T7634]  shmem_get_inode+0x24e/0x730
[  103.234703][ T7634]  __shmem_file_setup+0x127/0x1f0
[  103.239815][ T7634]  shmem_file_setup+0x3b/0x50
[  103.244512][ T7634]  __se_sys_memfd_create+0x31d/0x5c0
[  103.249857][ T7634]  __x64_sys_memfd_create+0x31/0x40
[  103.255100][ T7634]  x64_sys_call+0x2d4c/0x2dc0
[  103.259758][ T7634]  do_syscall_64+0xc9/0x1c0
[  103.264290][ T7634]  ? clear_bhb_loop+0x55/0xb0
[  103.268970][ T7634]  ? clear_bhb_loop+0x55/0xb0
[  103.273647][ T7634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.279571][ T7634] RIP: 0033:0x7fa9204f5d29
[  103.283969][ T7634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.303576][ T7634] RSP: 002b:00007fa91eb60e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  103.312050][ T7634] RAX: ffffffffffffffda RBX: 00000000000007fb RCX: 00007fa9204f5d29
[  103.320027][ T7634] RDX: 00007fa91eb60ef0 RSI: 0000000000000000 RDI: 00007fa920572469
[  103.328010][ T7634] RBP: 0000000020000340 R08: 00007fa91eb60bb7 R09: 00007fa91eb60e40
[  103.336006][ T7634] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000300
[  103.343990][ T7634] R13: 00007fa91eb60ef0 R14: 00007fa91eb60eb0 R15: 0000000020000000
[  103.352029][ T7634]  </TASK>
[  103.457047][ T7653] netlink: 133536 bytes leftover after parsing attributes in process `syz.1.1506'.
[  103.492383][ T7632] rdma_rxe: rxe_newlink: failed to add sit0
[  103.543920][ T7632] sit0 speed is unknown, defaulting to 1000
[  103.596511][ T7669] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  103.614676][ T7669] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.680433][ T7669] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  103.696867][ T7673] bond0: (slave geneve1): Releasing backup interface
[  103.707365][ T7669] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.986571][ T7699] openvswitch: netlink: Message has 12 unknown bytes.
[  104.044013][ T7706] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1526'.
[  104.067751][ T7706] batadv0: entered promiscuous mode
[  104.073039][ T7706] batadv0: entered allmulticast mode
[  104.111483][ T7708] loop4: detected capacity change from 0 to 512
[  104.121896][ T7708] EXT4-fs: inline encryption not supported
[  104.149213][ T7708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.162416][ T7708] ext4 filesystem being mounted at /271/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.187616][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.315171][ T7725] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1533'.
[  104.339600][ T7725] batadv1: entered promiscuous mode
[  104.344862][ T7725] batadv1: entered allmulticast mode
[  104.351120][ T7727] netlink: 'syz.5.1532': attribute type 1 has an invalid length.
[  104.358929][ T7727] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1532'.
[  104.495644][ T7725] rdma_rxe: rxe_newlink: failed to add sit0
[  104.528956][ T7725] sit0 speed is unknown, defaulting to 1000
[  104.568196][ T7737] loop0: detected capacity change from 0 to 1024
[  104.588301][ T7737] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.690439][ T7743] loop5: detected capacity change from 0 to 512
[  104.719500][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.765851][ T7743] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1534: bg 0: block 248: padding at end of block bitmap is not set
[  104.833135][ T7743] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1534: Failed to acquire dquot type 1
[  104.873462][ T7743] EXT4-fs (loop5): 1 truncate cleaned up
[  104.894811][ T7743] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.918070][ T7753] FAULT_INJECTION: forcing a failure.
[  104.918070][ T7753] name failslab, interval 1, probability 0, space 0, times 0
[  104.930714][ T7753] CPU: 0 UID: 0 PID: 7753 Comm: syz.1.1541 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  104.941395][ T7753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  104.941448][ T7743] ext4 filesystem being mounted at /233/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  104.951443][ T7753] Call Trace:
[  104.951455][ T7753]  <TASK>
[  104.951463][ T7753]  dump_stack_lvl+0xf2/0x150
[  104.951502][ T7753]  dump_stack+0x15/0x1a
[  104.951527][ T7753]  should_fail_ex+0x223/0x230
[  104.951549][ T7753]  ? univ8250_setup_irq+0xb8/0x2e0
[  104.986503][ T7753]  should_failslab+0x8f/0xb0
[  104.991166][ T7753]  __kmalloc_cache_noprof+0x4e/0x320
[  104.996486][ T7753]  univ8250_setup_irq+0xb8/0x2e0
[  105.001444][ T7753]  serial8250_do_startup+0xc73/0x1ea0
[  105.006901][ T7753]  serial8250_startup+0x40/0x50
[  105.011814][ T7753]  uart_startup+0x481/0x9b0
[  105.016328][ T7753]  uart_ioctl+0xc39/0xe20
[  105.020841][ T7753]  ? ioctl_has_perm+0x28d/0x2e0
[  105.025753][ T7753]  ? do_vfs_ioctl+0x96e/0x1530
[  105.030516][ T7753]  ? tty_jobctrl_ioctl+0x2ab/0x810
[  105.035740][ T7753]  tty_ioctl+0x815/0xbe0
[  105.039995][ T7753]  ? __pfx_tty_ioctl+0x10/0x10
[  105.044841][ T7753]  __se_sys_ioctl+0xc9/0x140
[  105.049446][ T7753]  __x64_sys_ioctl+0x43/0x50
[  105.054074][ T7753]  x64_sys_call+0x1690/0x2dc0
[  105.058761][ T7753]  do_syscall_64+0xc9/0x1c0
[  105.063279][ T7753]  ? clear_bhb_loop+0x55/0xb0
[  105.068057][ T7753]  ? clear_bhb_loop+0x55/0xb0
[  105.072750][ T7753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.078667][ T7753] RIP: 0033:0x7f05b6b15d29
[  105.083085][ T7753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.102712][ T7753] RSP: 002b:00007f05b5187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  105.111214][ T7753] RAX: ffffffffffffffda RBX: 00007f05b6d05fa0 RCX: 00007f05b6b15d29
[  105.119251][ T7753] RDX: 0000000000000000 RSI: 0000000000005453 RDI: 0000000000000003
[  105.127239][ T7753] RBP: 00007f05b5187090 R08: 0000000000000000 R09: 0000000000000000
[  105.135268][ T7753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.143293][ T7753] R13: 0000000000000000 R14: 00007f05b6d05fa0 R15: 00007ffecbece928
[  105.151297][ T7753]  </TASK>
[  105.198841][ T7766] SELinux:  Context Ü is not valid (left unmapped).
[  105.342926][ T7782] batadv1: entered promiscuous mode
[  105.348371][ T7782] batadv1: entered allmulticast mode
[  105.360838][ T7786] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.372222][ T7786] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.392545][ T7788] batadv1: entered promiscuous mode
[  105.397871][ T7788] batadv1: entered allmulticast mode
[  105.409924][ T7790] loop1: detected capacity change from 0 to 512
[  105.429376][ T7790] EXT4-fs: inline encryption not supported
[  105.469568][ T7790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.492325][ T7790] ext4 filesystem being mounted at /260/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.534467][ T7788] rdma_rxe: rxe_newlink: failed to add sit0
[  105.591476][ T7788] sit0 speed is unknown, defaulting to 1000
[  105.607233][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.871602][ T7813] __nla_validate_parse: 4 callbacks suppressed
[  105.871617][ T7813] netlink: 133536 bytes leftover after parsing attributes in process `syz.5.1563'.
[  105.922772][ T7817] netlink: 'syz.3.1566': attribute type 1 has an invalid length.
[  105.930585][ T7817] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1566'.
[  105.963006][ T7823] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1568'.
[  105.975257][ T7823] batadv0: entered promiscuous mode
[  105.980620][ T7823] batadv0: entered allmulticast mode
[  106.008087][ T7827] loop5: detected capacity change from 0 to 2048
[  106.019025][ T7827] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.075121][ T7831] syz2: rxe_newlink: already configured on sit0
[  106.093016][ T7831] sit0 speed is unknown, defaulting to 1000
[  106.142628][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.199379][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.274864][ T7847] netlink: 133536 bytes leftover after parsing attributes in process `syz.5.1575'.
[  106.338651][ T7851] netlink: 'syz.0.1578': attribute type 1 has an invalid length.
[  106.346486][ T7851] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1578'.
[  106.383987][ T7857] loop4: detected capacity change from 0 to 1024
[  106.412081][ T7855] loop5: detected capacity change from 0 to 512
[  106.418923][ T7857] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.426411][ T7855] EXT4-fs: inline encryption not supported
[  106.463020][ T7866] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1583'.
[  106.484381][ T3297] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.494011][ T7855] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.511360][ T7866] batadv0: entered promiscuous mode
[  106.516681][ T7866] batadv0: entered allmulticast mode
[  106.540833][ T7855] ext4 filesystem being mounted at /248/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.553011][ T7872] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1587'.
[  106.589303][ T7872] batadv1: entered promiscuous mode
[  106.594586][ T7872] batadv1: entered allmulticast mode
[  106.629384][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.707069][ T7885] rdma_rxe: rxe_newlink: failed to add sit0
[  106.721795][ T7888] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1592'.
[  106.772227][ T7885] sit0 speed is unknown, defaulting to 1000
[  106.796115][ T7890] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1594'.
[  106.805006][ T7890] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1594'.
[  106.831295][ T7892] batadv1: entered promiscuous mode
[  106.836660][ T7892] batadv1: entered allmulticast mode
[  106.853259][ T7890] batadv1: entered promiscuous mode
[  106.858599][ T7890] batadv1: entered allmulticast mode
[  106.937508][ T7901] rdma_rxe: rxe_newlink: failed to add sit0
[  106.983875][ T7902] rdma_rxe: rxe_newlink: failed to add sit0
[  107.047155][ T7901] sit0 speed is unknown, defaulting to 1000
[  107.152629][ T7902] sit0 speed is unknown, defaulting to 1000
[  107.203630][ T7907] loop0: detected capacity change from 0 to 1024
[  107.252298][ T7907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.442622][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.593326][ T7924] loop3: detected capacity change from 0 to 2048
[  107.621194][ T7924] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.641178][ T7931] loop0: detected capacity change from 0 to 1024
[  107.667540][ T7931] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.719478][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.720694][   T29] kauditd_printk_skb: 440 callbacks suppressed
[  107.720706][   T29] audit: type=1326 audit(1736833493.855:3925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7937 comm="syz.4.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  107.764597][   T29] audit: type=1326 audit(1736833493.895:3926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7937 comm="syz.4.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  107.788033][   T29] audit: type=1326 audit(1736833493.895:3927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7937 comm="syz.4.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  107.843583][ T7942] ip6tnl1: entered promiscuous mode
[  107.848896][ T7942] ip6tnl1: entered allmulticast mode
[  107.879100][ T7924] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.1605: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  107.883150][ T7944] loop0: detected capacity change from 0 to 2048
[  107.899436][ T7946] netlink: 'syz.1.1613': attribute type 1 has an invalid length.
[  107.934261][ T7948] FAULT_INJECTION: forcing a failure.
[  107.934261][ T7948] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.947477][ T7948] CPU: 0 UID: 0 PID: 7948 Comm: syz.5.1614 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  107.958165][ T7948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  107.968222][ T7948] Call Trace:
[  107.971506][ T7948]  <TASK>
[  107.974436][ T7948]  dump_stack_lvl+0xf2/0x150
[  107.979089][ T7948]  dump_stack+0x15/0x1a
[  107.983250][ T7948]  should_fail_ex+0x223/0x230
[  107.987961][ T7948]  should_fail+0xb/0x10
[  107.992112][ T7948]  should_fail_usercopy+0x1a/0x20
[  107.997141][ T7948]  _copy_from_user+0x1e/0xb0
[  108.001766][ T7948]  copy_msghdr_from_user+0x54/0x2a0
[  108.007066][ T7948]  ? __fget_files+0x17c/0x1c0
[  108.011746][ T7948]  __sys_sendmsg+0x13e/0x230
[  108.016343][ T7948]  __x64_sys_sendmsg+0x46/0x50
[  108.021199][ T7948]  x64_sys_call+0x2734/0x2dc0
[  108.025870][ T7948]  do_syscall_64+0xc9/0x1c0
[  108.030487][ T7948]  ? clear_bhb_loop+0x55/0xb0
[  108.035231][ T7948]  ? clear_bhb_loop+0x55/0xb0
[  108.039957][ T7948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.045856][ T7948] RIP: 0033:0x7fa9204f5d29
[  108.050321][ T7948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.069922][ T7948] RSP: 002b:00007fa91eb61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  108.078328][ T7948] RAX: ffffffffffffffda RBX: 00007fa9206e5fa0 RCX: 00007fa9204f5d29
[  108.086288][ T7948] RDX: 0000000000000800 RSI: 0000000020000740 RDI: 0000000000000003
[  108.094250][ T7948] RBP: 00007fa91eb61090 R08: 0000000000000000 R09: 0000000000000000
[  108.102213][ T7948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.110178][ T7948] R13: 0000000000000000 R14: 00007fa9206e5fa0 R15: 00007ffd6e955618
[  108.118178][ T7948]  </TASK>
[  108.126574][ T7944] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.143063][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.193702][ T7944] EXT4-fs error (device loop0): ext4_find_extent:938: inode #2: comm syz.0.1610: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  108.261081][ T7964] loop5: detected capacity change from 0 to 164
[  108.267454][   T29] audit: type=1326 audit(1736833494.395:3928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  108.291222][   T29] audit: type=1326 audit(1736833494.395:3929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  108.314801][   T29] audit: type=1326 audit(1736833494.395:3930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  108.338301][   T29] audit: type=1326 audit(1736833494.395:3931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  108.361841][   T29] audit: type=1326 audit(1736833494.395:3932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7965 comm="syz.4.1622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f871d415d29 code=0x7ffc0000
[  108.390001][ T7974] loop1: detected capacity change from 0 to 512
[  108.390344][   T29] audit: type=1400 audit(1736833494.425:3933): avc:  denied  { read append } for  pid=7969 comm="syz.4.1625" name="event3" dev="devtmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  108.397080][ T7975] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.420019][   T29] audit: type=1400 audit(1736833494.425:3934): avc:  denied  { open } for  pid=7969 comm="syz.4.1625" path="/dev/input/event3" dev="devtmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  108.421063][ T7974] EXT4-fs: inline encryption not supported
[  108.458934][ T7975] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.469952][ T3296] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.502222][ T7974] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.514891][ T7974] ext4 filesystem being mounted at /269/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.552967][ T7984] loop5: detected capacity change from 0 to 2048
[  108.578496][ T7984] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.598908][ T7984] EXT4-fs error (device loop5): ext4_find_extent:938: inode #2: comm syz.5.1627: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  108.622996][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.694943][ T7980] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  108.703494][ T7980] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  108.715953][ T7992] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(9)
[  108.722524][ T7992] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  108.730140][ T7992] vhci_hcd vhci_hcd.0: Device attached
[  108.769715][ T8005] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[  108.776344][ T8005] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  108.784053][ T8005] vhci_hcd vhci_hcd.0: Device attached
[  108.976045][    T9] usb 9-1: new high-speed USB device number 6 using vhci_hcd
[  109.018253][ T8015] loop3: detected capacity change from 0 to 1024
[  109.027796][   T24] usb 1-1: new high-speed USB device number 4 using vhci_hcd
[  109.044072][ T8015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.095250][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.115377][ T8019] netlink: 'syz.3.1631': attribute type 1 has an invalid length.
[  109.147463][ T8021] loop3: detected capacity change from 0 to 1024
[  109.155275][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.156869][ T8021] EXT4-fs: Ignoring removed nobh option
[  109.170023][ T8021] EXT4-fs: Ignoring removed bh option
[  109.197930][ T8021] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.218470][ T8021] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4115: comm syz.3.1632: Allocating blocks 497-513 which overlap fs metadata
[  109.235347][ T8020] EXT4-fs (loop3): pa ffff888106457af0: logic 128, phys. 273, len 15
[  109.243531][ T8020] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1
[  109.265502][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.308774][ T8033] loop3: detected capacity change from 0 to 2048
[  109.328243][ T8033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.343726][ T8033] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.1636: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  109.364054][ T8041] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.373171][ T8041] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.381946][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.427360][ T8045] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  109.435922][ T8045] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  109.516470][ T8048] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  109.523147][ T8048] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  109.530843][ T8048] vhci_hcd vhci_hcd.0: Device attached
[  109.560629][ T8052] loop5: detected capacity change from 0 to 512
[  109.567241][ T8052] EXT4-fs: inline encryption not supported
[  109.588454][ T8052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.601164][ T8052] ext4 filesystem being mounted at /260/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.621250][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.777765][ T3374] usb 7-1: new high-speed USB device number 5 using vhci_hcd
[  109.783674][ T8072] loop5: detected capacity change from 0 to 1024
[  109.808611][ T8072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.883081][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.920448][ T8076] loop5: detected capacity change from 0 to 1024
[  109.939090][ T8076] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.982139][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.014240][ T8086] loop1: detected capacity change from 0 to 512
[  110.021884][ T8086] EXT4-fs: inline encryption not supported
[  110.048153][ T8086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.061045][ T8086] ext4 filesystem being mounted at /278/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.062607][ T8089] rdma_rxe: rxe_newlink: failed to add sit0
[  110.093000][ T8089] sit0 speed is unknown, defaulting to 1000
[  110.317755][ T8097] loop5: detected capacity change from 0 to 512
[  110.324339][ T8097] EXT4-fs: inline encryption not supported
[  110.348184][ T8097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.360853][ T8097] ext4 filesystem being mounted at /274/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.381424][ T4666] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.404280][ T8102] batadv1: entered promiscuous mode
[  110.409558][ T8102] batadv1: entered allmulticast mode
[  110.510748][ T8102] rdma_rxe: rxe_newlink: failed to add sit0
[  110.526656][ T8102] sit0 speed is unknown, defaulting to 1000
[  110.931242][ T8114] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  110.960817][ T8129] FAULT_INJECTION: forcing a failure.
[  110.960817][ T8129] name failslab, interval 1, probability 0, space 0, times 0
[  110.973476][ T8129] CPU: 0 UID: 0 PID: 8129 Comm: syz.1.1665 Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  110.984156][ T8129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.994210][ T8129] Call Trace:
[  110.997474][ T8129]  <TASK>
[  111.000390][ T8129]  dump_stack_lvl+0xf2/0x150
[  111.004986][ T8129]  dump_stack+0x15/0x1a
[  111.009197][ T8129]  should_fail_ex+0x223/0x230
[  111.013885][ T8129]  should_failslab+0x8f/0xb0
[  111.018550][ T8129]  kmem_cache_alloc_noprof+0x52/0x320
[  111.023956][ T8129]  ? sctp_get_port_local+0x410/0xa90
[  111.029307][ T8129]  sctp_get_port_local+0x410/0xa90
[  111.034408][ T8129]  sctp_do_bind+0x3a1/0x4c0
[  111.038901][ T8129]  sctp_connect_new_asoc+0x15b/0x3b0
[  111.044247][ T8129]  sctp_sendmsg+0xf05/0x1920
[  111.048876][ T8129]  ? __pfx_sctp_sendmsg+0x10/0x10
[  111.054057][ T8129]  inet_sendmsg+0xc5/0xd0
[  111.058390][ T8129]  __sock_sendmsg+0x102/0x180
[  111.063134][ T8129]  ____sys_sendmsg+0x312/0x410
[  111.068004][ T8129]  __sys_sendmmsg+0x227/0x4b0
[  111.072732][ T8129]  __x64_sys_sendmmsg+0x57/0x70
[  111.077569][ T8129]  x64_sys_call+0x29aa/0x2dc0
[  111.082231][ T8129]  do_syscall_64+0xc9/0x1c0
[  111.086760][ T8129]  ? clear_bhb_loop+0x55/0xb0
[  111.091428][ T8129]  ? clear_bhb_loop+0x55/0xb0
[  111.096123][ T8129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.102012][ T8129] RIP: 0033:0x7f05b6b15d29
[  111.106482][ T8129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.126090][ T8129] RSP: 002b:00007f05b5187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  111.134571][ T8129] RAX: ffffffffffffffda RBX: 00007f05b6d05fa0 RCX: 00007f05b6b15d29
[  111.142578][ T8129] RDX: 0000000000000002 RSI: 0000000020000880 RDI: 0000000000000005
[  111.150550][ T8129] RBP: 00007f05b5187090 R08: 0000000000000000 R09: 0000000000000000
[  111.158505][ T8129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.166475][ T8129] R13: 0000000000000000 R14: 00007f05b6d05fa0 R15: 00007ffecbece928
[  111.174486][ T8129]  </TASK>
[  111.196203][ T8131] loop1: detected capacity change from 0 to 1024
[  111.325754][ T8137] rdma_rxe: rxe_newlink: failed to add sit0
[  111.335833][ T7993] vhci_hcd: connection reset by peer
[  111.346056][   T40] vhci_hcd: stop threads
[  111.350349][   T40] vhci_hcd: release socket
[  111.354818][   T40] vhci_hcd: disconnect device
[  111.367021][ T8137] sit0 speed is unknown, defaulting to 1000
[  111.510344][ T8006] vhci_hcd: connection reset by peer
[  111.518762][ T3409] vhci_hcd: stop threads
[  111.523044][ T3409] vhci_hcd: release socket
[  111.527529][ T3409] vhci_hcd: disconnect device
[  111.567643][ T8147] loop4: detected capacity change from 0 to 1024
[  111.579171][ T8147] EXT4-fs: test_dummy_encryption option not supported
[  111.588404][ T8150] netlink: 'syz.0.1672': attribute type 1 has an invalid length.
[  111.596198][ T8150] __nla_validate_parse: 7 callbacks suppressed
[  111.596219][ T8150] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1672'.
[  111.668741][ T8147] bridge: RTM_NEWNEIGH with invalid ether address
[  111.678662][ T8157] loop0: detected capacity change from 0 to 2048
[  111.704601][ T8159] netlink: 'syz.5.1677': attribute type 1 has an invalid length.
[  111.712415][ T8159] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1677'.
[  111.723899][ T8147] loop4: detected capacity change from 0 to 2048
[  111.749724][ T8157] EXT4-fs error (device loop0): ext4_find_extent:938: inode #2: comm syz.0.1676: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  111.778588][ T8147]  loop4: p1 < > p2 p3 < p5 > p4
[  111.783551][ T8147] loop4: partition table partially beyond EOD, truncated
[  111.799473][ T8147] loop4: p1 start 4278190080 is beyond EOD, truncated
[  111.806437][ T8147] loop4: p2 start 16908800 is beyond EOD, truncated
[  111.818208][ T8147] loop4: p4 start 11326 is beyond EOD, truncated
[  111.822121][ T8168] loop0: detected capacity change from 0 to 2048
[  111.824584][ T8147] loop4: p5 start 16908800 is beyond EOD, truncated
[  111.871643][ T8168] EXT4-fs error (device loop0): ext4_find_extent:938: inode #2: comm syz.0.1680: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  111.942879][ T8183] loop0: detected capacity change from 0 to 1024
[  111.954560][ T8185] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1687'.
[  111.973826][ T8185] batadv1: entered promiscuous mode
[  111.979249][ T8185] batadv1: entered allmulticast mode
[  112.010909][ T8188] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  112.017476][ T8188] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  112.025330][ T8188] vhci_hcd vhci_hcd.0: Device attached
[  112.043147][ T8191] rdma_rxe: rxe_newlink: failed to add sit0
[  112.104269][ T8191] sit0 speed is unknown, defaulting to 1000
[  112.139729][ T8196] loop0: detected capacity change from 0 to 1024
[  112.265874][ T3356] usb 3-1: new high-speed USB device number 6 using vhci_hcd
[  112.292625][ T8204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.302593][ T8204] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.314508][ T8204] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  112.324747][ T8204] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  112.429377][ T8206] loop5: detected capacity change from 0 to 1024
[  112.433082][ T8049] vhci_hcd: connection reset by peer
[  112.445347][   T62] vhci_hcd: stop threads
[  112.449683][   T62] vhci_hcd: release socket
[  112.454101][   T62] vhci_hcd: disconnect device
[  112.487187][ T8214] loop3: detected capacity change from 0 to 128
[  112.504905][ T8214] syz.3.1695: attempt to access beyond end of device
[  112.504905][ T8214] loop3: rw=2049, sector=145, nr_sectors = 3 limit=128
[  112.832106][ T8219] loop4: detected capacity change from 0 to 512
[  112.851948][ T8219] EXT4-fs: inline encryption not supported
[  112.908720][ T8219] ext4 filesystem being mounted at /297/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.271053][ T8215] Set syz1 is full, maxelem 65536 reached
[  113.327291][ T8233] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1703'.
[  113.344905][ T8235] loop0: detected capacity change from 0 to 512
[  113.354242][ T8235] EXT4-fs: inline encryption not supported
[  113.363893][ T8233] batadv2: entered promiscuous mode
[  113.369202][ T8233] batadv2: entered allmulticast mode
[  113.374961][   T29] kauditd_printk_skb: 109 callbacks suppressed
[  113.374972][   T29] audit: type=1326 audit(1736833499.505:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8236 comm="syz.5.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  113.404678][   T29] audit: type=1326 audit(1736833499.505:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8236 comm="syz.5.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  113.411656][ T8241] netlink: 'syz.5.1706': attribute type 1 has an invalid length.
[  113.428396][   T29] audit: type=1326 audit(1736833499.505:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8236 comm="syz.5.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  113.435813][ T8241] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1706'.
[  113.460572][ T8235] ext4 filesystem being mounted at /388/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.468216][   T29] audit: type=1326 audit(1736833499.505:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8236 comm="syz.5.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  113.502251][   T29] audit: type=1326 audit(1736833499.505:4048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8236 comm="syz.5.1705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  113.574548][ T8245] loop5: detected capacity change from 0 to 512
[  113.581370][ T8245] EXT4-fs: inline encryption not supported
[  113.608234][ T8247] loop3: detected capacity change from 0 to 2048
[  113.621216][ T8245] ext4 filesystem being mounted at /289/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.640925][ T8247] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.1709: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  113.665731][ T8259] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1712'.
[  113.674846][ T8259] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1712'.
[  113.688056][ T8259] batadv1: entered promiscuous mode
[  113.693339][ T8259] batadv1: entered allmulticast mode
[  113.786031][ T8270] rdma_rxe: rxe_newlink: failed to add sit0
[  113.801443][ T8270] sit0 speed is unknown, defaulting to 1000
[  113.829687][ T8272] loop5: detected capacity change from 0 to 512
[  113.843059][ T8272] EXT4-fs: inline encryption not supported
[  113.858957][ T8272] ext4 filesystem being mounted at /291/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.880337][ T8274] sit0 speed is unknown, defaulting to 1000
[  113.969515][ T8281] netlink: 'syz.5.1719': attribute type 1 has an invalid length.
[  113.977307][ T8281] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1719'.
[  114.039707][   T29] audit: type=1326 audit(1736833500.175:4049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8283 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  114.063170][   T29] audit: type=1326 audit(1736833500.175:4050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8283 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  114.106217][    T9] vhci_hcd: vhci_device speed not set
[  114.138919][   T29] audit: type=1326 audit(1736833500.175:4051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8283 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  114.162455][   T29] audit: type=1326 audit(1736833500.175:4052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8283 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  114.176806][ T8286] loop3: detected capacity change from 0 to 2048
[  114.186025][   T29] audit: type=1326 audit(1736833500.175:4053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8283 comm="syz.5.1720" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9204f5d29 code=0x7ffc0000
[  114.217922][   T24] vhci_hcd: vhci_device speed not set
[  114.381766][ T8286] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.1721: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  114.557498][ T8312] loop5: detected capacity change from 0 to 512
[  115.345895][ T8189] vhci_hcd: connection reset by peer
[  115.376400][   T28] vhci_hcd: stop threads
[  115.380739][   T28] vhci_hcd: release socket
[  115.385278][   T28] vhci_hcd: disconnect device
[  115.455812][ T3374] vhci_hcd: vhci_device speed not set
[  115.569721][ T8318] netlink: 'syz.3.1730': attribute type 1 has an invalid length.
[  115.577555][ T8318] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1730'.
[  116.169687][ T8315] loop0: detected capacity change from 0 to 512
[  116.389276][ T8316] loop4: detected capacity change from 0 to 512
[  116.547395][ T8312] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1724: bg 0: block 248: padding at end of block bitmap is not set
[  116.561834][ T8315] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1728: bg 0: block 248: padding at end of block bitmap is not set
[  116.578925][ T8312] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1724: Failed to acquire dquot type 1
[  116.590505][ T8315] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1728: Failed to acquire dquot type 1
[  116.607545][ T8316] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1731: bg 0: block 248: padding at end of block bitmap is not set
[  116.622008][ T8312] EXT4-fs (loop5): 1 truncate cleaned up
[  116.628272][ T8312] ext4 filesystem being mounted at /295/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.639249][ T8315] EXT4-fs (loop0): 1 truncate cleaned up
[  116.645195][ T8315] ext4 filesystem being mounted at /395/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.656002][ T8316] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1731: Failed to acquire dquot type 1
[  116.697735][ T8316] EXT4-fs (loop4): 1 truncate cleaned up
[  116.703714][ T8316] ext4 filesystem being mounted at /304/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.760558][ T8333] loop1: detected capacity change from 0 to 4096
[  116.767656][ T8333] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[  116.982143][ T8352] loop3: detected capacity change from 0 to 1024
[  117.039599][ T8359] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1746'.
[  117.053320][ T8359] batadv2: entered promiscuous mode
[  117.058570][ T8359] batadv2: entered allmulticast mode
[  117.089623][ T8364] loop0: detected capacity change from 0 to 1024
[  117.134961][ T3303] ==================================================================
[  117.143078][ T3303] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[  117.150384][ T3303] 
[  117.152710][ T3303] read-write to 0xffff888237c2ba28 of 8 bytes by task 8364 on cpu 0:
[  117.160783][ T3303]  __find_get_block+0x434/0x8a0
[  117.165652][ T3303]  bdev_getblk+0x30/0x3b0
[  117.169993][ T3303]  __ext4_get_inode_loc+0x2f7/0x910
[  117.175205][ T3303]  ext4_reserve_inode_write+0xb0/0x200
[  117.180659][ T3303]  __ext4_mark_inode_dirty+0x8e/0x440
[  117.186023][ T3303]  ext4_write_end+0x34f/0x770
[  117.190695][ T3303]  ext4_da_write_end+0x74/0x810
[  117.195529][ T3303]  generic_perform_write+0x33c/0x4a0
[  117.200799][ T3303]  ext4_buffered_write_iter+0x1ea/0x370
[  117.206333][ T3303]  ext4_file_write_iter+0x383/0xf20
[  117.211517][ T3303]  vfs_write+0x77f/0x920
[  117.215744][ T3303]  __x64_sys_pwrite64+0xf6/0x150
[  117.220667][ T3303]  x64_sys_call+0xab0/0x2dc0
[  117.225240][ T3303]  do_syscall_64+0xc9/0x1c0
[  117.229725][ T3303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.234908][ T8371] loop5: detected capacity change from 0 to 512
[  117.235603][ T3303] 
[  117.235610][ T3303] read to 0xffff888237c2ba28 of 8 bytes by task 3303 on cpu 1:
[  117.251684][ T3303]  has_bh_in_lru+0x35/0x1f0
[  117.256201][ T3303]  __lru_add_drain_all+0x23f/0x3f0
[  117.261297][ T3303]  lru_add_drain_all+0x10/0x20
[  117.266044][ T3303]  invalidate_bdev+0x47/0x70
[  117.270615][ T3303]  ext4_put_super+0x571/0x840
[  117.275280][ T3303]  generic_shutdown_super+0xe5/0x220
[  117.280550][ T3303]  kill_block_super+0x2a/0x70
[  117.285213][ T3303]  ext4_kill_sb+0x44/0x80
[  117.288752][ T8371] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1747: bg 0: block 248: padding at end of block bitmap is not set
[  117.289526][ T3303]  deactivate_locked_super+0x7d/0x1c0
[  117.304102][ T8371] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1747: Failed to acquire dquot type 1
[  117.309092][ T3303]  deactivate_super+0x9f/0xb0
[  117.309115][ T3303]  cleanup_mnt+0x268/0x2e0
[  117.309134][ T3303]  __cleanup_mnt+0x19/0x20
[  117.321880][ T8371] EXT4-fs (loop5): 1 truncate cleaned up
[  117.324949][ T3303]  task_work_run+0x13a/0x1a0
[  117.329702][ T8371] ext4 filesystem being mounted at /297/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  117.333743][ T3303]  syscall_exit_to_user_mode+0xa8/0x120
[  117.333776][ T3303]  do_syscall_64+0xd6/0x1c0
[  117.364201][ T3303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.370092][ T3303] 
[  117.372394][ T3303] value changed: 0x0000000000000000 -> 0xffff8881067d7ea0
[  117.379476][ T3303] 
[  117.381781][ T3303] Reported by Kernel Concurrency Sanitizer on:
[  117.387910][ T3303] CPU: 1 UID: 0 PID: 3303 Comm: syz-executor Not tainted 6.13.0-rc7-syzkaller-00019-gc45323b7560e #0
[  117.398741][ T3303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  117.408781][ T3303] ==================================================================
[  117.443562][ T8378] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1750'.
[  117.457574][ T8378] batadv2: entered promiscuous mode
[  117.462835][ T8378] batadv2: entered allmulticast mode
[  117.471565][ T8379] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  117.478093][ T8379] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  117.485740][ T8379] vhci_hcd vhci_hcd.0: Device attached
[  117.561342][ T8382] rdma_rxe: rxe_newlink: failed to add sit0
[  117.578012][ T8382] sit0 speed is unknown, defaulting to 1000
[  117.755836][ T3356] usb 3-1: device descriptor read/64, error -110
[  119.978758][ T8380] vhci_hcd: connection reset by peer
[  119.984398][ T3409] vhci_hcd: stop threads
[  119.988690][ T3409] vhci_hcd: release socket
[  119.993117][ T3409] vhci_hcd: disconnect device
[  122.895857][ T3356] usb 3-1: enqueue for inactive port 0
[  122.901387][ T3356] usb 3-1: enqueue for inactive port 0
[  122.985877][ T3356] vhci_hcd: vhci_device speed not set