last executing test programs:

1.72828092s ago: executing program 3 (id=949):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

1.633397911s ago: executing program 3 (id=952):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r1, 0x0, &(0x7f00000004c0)=""/243}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r5, 0x0, 0x78)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB="018029"], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
writev(r9, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r9, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqsrc(r3, 0x0, 0x24, &(0x7f0000000440)={@dev={0xac, 0x14, 0x14, 0x28}, @loopback, @empty}, 0xc)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000006c0)="ed", 0x1}], 0x1}}], 0x1, 0x4048841)

1.450224212s ago: executing program 3 (id=954):
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000280)={0x6, 0x0, 0x5, 0xe40, 0x101, 0x2})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r1}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0))
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x6)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r4, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r7}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
creat(&(0x7f0000000140)='./file2\x00', 0x1ad)
unlink(&(0x7f0000000180)='./file1\x00')
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x56, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x407fff, 0xaea}, 0x1a51d, 0x5c6, 0x200, 0x3, 0x2, 0x8010000, 0x1, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
sendmsg$NL80211_CMD_DISCONNECT(r3, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f0000000580)={0x4c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x38}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1e}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x21}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x32}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xd}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1a}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.242673803s ago: executing program 4 (id=958):
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in6=@mcast1}}, {{@in=@multicast1}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000006c0)=[{0x0}], 0x1, &(0x7f0000000040), 0x0, 0x20000000}, 0x40051)
r2 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f0000000380)={0xc, 0x8, 0xfa00, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000d00)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000cc0)={<r3=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000d40)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @local}, r3}}, 0x48)

1.215341033s ago: executing program 0 (id=959):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
write$binfmt_elf64(r2, 0x0, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.131538904s ago: executing program 4 (id=962):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

1.118136824s ago: executing program 2 (id=963):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f00000014c0), 0x1, 0x793, &(0x7f0000001700)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
ioprio_set$pid(0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r3}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000140)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x3, 0x46, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x400}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000300)={'syztnl0\x00', 0x0})

1.106064554s ago: executing program 0 (id=964):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0xed}}, {@debug}]}, 0xfe, 0x478, &(0x7f0000000440)="$eJzs3M1vFOUfAPDvTF8o8OPXivgCglTRSHxpaXmRgxeNJhw0MdEDxlNtC6ks1NCaCCFaPeDRkHg3/hfGk16MetHEq94NCTFcQL2smZ3Zsmx3yy7ddqH7+STTfZ6dB57nOzPPzDPz7G4APWs0+5NE/C8ifo+I4Tx7e4HR/OXm9UvTf1+/NJ1EufzWX0ml3I3rl6arRav/bnueKZeL/JYG9V5+N2KqVJo9X+THF89+ML5w4eILc2enTs+enj03efz4kcP7Bo9NHu1InFlcN/Z8PL9394l3rrwxffLKez8l/ZHHHXVxdMpovnUberrTlXXZjpp0ZcMu2//LrXSjI4Fu6ouIbHcNVPr/cPTF1uV1w/HaZ11tHLCuyuVyeZWz8lIZ2MSS6HYLgO6oXuiz+9/qEhEjGzT86LprL+c3QFncN4slX9MfaZ7YP1B3f9tJoxFxcumfr7Il1uk5BABAre+y8c/zK8Z/EZHGw3liMPvz/2IOJRsYPhAROyPiwYjYFREPRVTKPhIRj7ZZf/0MycrxT3r1roNrQTb+e6mY27p9/JdWi4z0FbkdlfgHklNzpdlDxTY5GANbTs0lsxOr1PH9q7990Wxd7fgvW7L6q2PBoh1X++se0M1MLU6tJeZa1z6N2NPfKP4kqtM4SUTsjog9d1nH3LP9TdfdOf5VNP9vW1b+OuKZfP8vRV38VUnT+cmJF49NHh0fitLsofHqUbHSz79efrNZ/WuKvwOy/b+t4fG/HP9IMhSxcOHimcp87UL7dVz+4/Om9zRtHv8ndhTH/2DyduWNwWLFR1OLi+cnIgaT11e8XzufXSk3eat8Fv/BA437/864tSUei4i9EbEvIh7PbgqLtj8REU9GxIFV4v/xlafebz/+jZkrzeKfudP+j9r9336i78wP3945/qGIaLb/j0QMZefaXCvnv1YbuLatBwAAAPeHtPIZ+CQdW06n6dhY/hn+XbEtLc0vLD53av7DczP5Z+VHYiCtPukarnkeOlE8G67mJ+vyh4vnxl/2ba3kx6bnSzPdDh563PYm/T/zZ1+3Wwesuw7MowH3Kf0fepf+D70pyfr/1m63AugW13/oXY36/ydNS499s66NATaU6z/0rhb6/1L+0nxUANyfXP+hd+n/0JOafjc+XdNX/jc88W/xe4b3Sns2fyLSe6IZmz/R3/KPWbSRKA/n/T97Z0vDMt0+MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTGfwEAAP//OMDlOw==")
chdir(&(0x7f00000001c0)='./file0\x00')
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, 0x0, 0x0)

1.014355365s ago: executing program 4 (id=966):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "ff00f7000000000000000000af88008300"})
syz_open_pts(r0, 0x141601)
close_range(r0, 0xffffffffffffffff, 0x100000)

910.321855ms ago: executing program 4 (id=968):
ioperm(0x0, 0x6, 0xd644)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000), 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000140)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
ioperm(0x6, 0xd, 0x81)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000001a00)={0x3}, 0x8)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000380), 0x5, r1}, 0x38)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1600000000000000040000000100000000000000", @ANYRES32=0x1, @ANYBLOB="000000000000000000001e0fa0ffe3e6df000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
setgroups(0xfffffffffffffc2a, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x1, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @rand_addr=0x64010100}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x5ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x89f1, &(0x7f0000000080))

746.262996ms ago: executing program 2 (id=970):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xf, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r3, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)

701.099776ms ago: executing program 0 (id=971):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003000083850000002d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001480)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

659.163146ms ago: executing program 0 (id=972):
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in6=@mcast1}}, {{@in=@multicast1}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000006c0)=[{0x0}], 0x1, &(0x7f0000000040), 0x0, 0x20000000}, 0x40051)
r2 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f0000000380)={0xc, 0x8, 0xfa00, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000d00)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000cc0)={<r3=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000d40)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @local}, r3}}, 0x48)

608.479956ms ago: executing program 1 (id=973):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={0x0}}, 0x0)

608.285946ms ago: executing program 1 (id=974):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
write$binfmt_elf64(r2, 0x0, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_DEL(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

607.866297ms ago: executing program 2 (id=975):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

591.302037ms ago: executing program 1 (id=976):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

562.997397ms ago: executing program 3 (id=977):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@user_xattr}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@noblock_validity}, {@norecovery}, {@nobh}, {@lazytime}, {@nodelalloc}, {@usrquota}, {@debug}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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") (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00')
ioperm(0x0, 0x7fff, 0x15f9)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x3d, &(0x7f0000000000)={'security\x00'}, &(0x7f00000000c0)=0x54) (async)
r1 = semget$private(0x0, 0x1, 0x0)
semop(r1, &(0x7f0000000080)=[{0x0, 0x0, 0x1000}], 0x1) (async)
r2 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c51c000000000000000000", @ANYRES32=r6, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES8=r4], 0x50}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="500000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100030000000c0002001c0000000f00000008000500", @ANYRES32=r6], 0x50}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000040)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x1b)
bpf$ENABLE_STATS(0x20, &(0x7f0000000240), 0x4) (async)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000640)=ANY=[@ANYBLOB="2000000011000d04000000000800000000000000", @ANYRES32=r8], 0x20}, 0x1, 0x6}, 0x0) (async)
fsconfig$FSCONFIG_SET_FLAG(r2, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0) (async)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0) (async)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r9}, 0x10)
socket$packet(0x11, 0xa, 0x300)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0) (async)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r10, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4) (async)
bind$inet6(r10, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) (async)
syz_emit_ethernet(0x9a, &(0x7f0000000300)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x64, 0x11, 0x0, @private1, @mcast2, {[], {0x0, 0xe22, 0x64, 0x0, @wg=@response={0x2, 0x3, 0x3, "25dd80e966fae5e10da5b74de90c0c6b0d835f3b6e6e3996322cafec7ac3d8ea", "b18ad9456f70defe386fa86cc846f493", {"30b96a46282b516cd06fa8560a39ada5", "568046936d174155e3e7759daf582e25"}}}}}}}}, 0x0)

562.655407ms ago: executing program 2 (id=978):
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x65, 0x0, 0x5, 0x0, 0x0, 0x3, 0x89008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_config_ext={0x3}, 0xaf1, 0x19fbcc0a, 0x0, 0x3, 0x1, 0x2}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="2100e8ffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r3, &(0x7f0000000200)=ANY=[], 0xff2e)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
eventfd(0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r5 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB="8500d600000e0000dd9400ff9f0000305370fd3b44c49316b047b8b2e43e3aea6df855d27f414d4db08090e46e3112fe9b035b0a2f83e51fe3ada2123e9383bee67be9d5835896434e09"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000580)='neigh_update\x00', r6}, 0x10)
r7 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r7, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
r8 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r8, 0x29, 0x20, &(0x7f00000000c0)={@mcast2, 0x200800, 0x0, 0x103, 0x1}, 0x20)
ioctl$sock_SIOCINQ(r8, 0x541b, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f00000002c0)=[{&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/44, 0x2c}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {0x0}], 0x0, 0x2}, 0x20)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700)
close(r9)
write$cgroup_subtree(r9, 0x0, 0x5)

535.490877ms ago: executing program 0 (id=979):
r0 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000680)='*,-}\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000001e80)={[{@inlinecrypt}]}, 0x1, 0x549, &(0x7f0000001800)="$eJzs3c9vI1cdAPDvTH65222zCz1ABewChQWt1t5421XVS8sFhKpKiIoD4rANiTcKseMQO6UJkUj/BpBA4gR/AgckDkg9ceDGEYkDQpQDUoEItEHiYDRjJ+smNmtqx+7Gn480O/Pmzcz3PWdn3vNz4hfA1LoeEQcRMR8Rb0TEYmd/0lnilfaSHffgcH/l6HB/JYlW6/W/J3l+ti+6zsk82blmISK+/pWIbydn4zZ29zaWq9XKdiddata2So3dvVvrteW1ylpls1y+u3T39ot3XiiPrK7Xar9478vrr37j17/65Lu/O/ji97NiXe7kdddjlNpVnzuJk5mNiFfPI9gEzHTW8xMuBx9MGhEfiYjP5Pf/Yszk/zsBgIus1VqM1mJ3GgC46NJ8DCxJixGRpp1OQLE9hvdMXEqr9Ubz5v36zuZqe6zsSsyl99erldtXF/7w3fzguSRLL+V5eX6eLp9K34mIqxHxo4Un8nRxpV5dnUyXBwCm3pPd7X9E/GshTYvFgU7t8akeAPDYKEy6AADA2Gn/AWD6aP8BYPoM0P53Puw/OPeyAADj4f0/AEwf7T8ATB/tPwBMla+99lq2tI4633+9+ubuzkb9zVurlcZGsbazUlypb28V1+r1tfw7e2qPul61Xt9aej523io1K41mqbG7d69W39ls3su/1/teZW4stQIA/per1975fRIRBy89kS/RNZeDthoutnSERwGPl5lhTtZBgMea2b5geg3UhOedhN+ee1mAyej5Zd6Fnpvv95P/I4jfM4IPlRsfH3z83xzPcLEY2Yfp9cHG/18eeTmA8TP+D9Or1UpOz/k/f5IFAFxIQ/wKX+sHo+qEABP1qMm8R/L5PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwwlyPiO5GkxXwu8DT7Ny0WI56KiCsxl9xfr1ZuR8TTcS0i5hay9NKkCw0ADCn9a9KZ/+vG4nOXT+fOJ/9eyNcR8b2fvv7jt5abze2lbP8/TvYvHE8fVn543hDzCgIAg/vzIAfl7Xe5s+56I//gcH/leDnHMp7x3pdOJh9dOTrcz5d2zmy0Wq1WRCHvS1z6ZxKznXMKEfFsRMyMIP7B2xHxsV71T/KxkSudmU+740cn9lNjjZ++L36a57XX2cv30RGUBabNO9nz55Ve918a1/N17/u/kD+hhpc//woRx8++o674s51IMz3iZ/f89UFjPP+br57Z2Vps570d8exsr/jJSfykT/znBoz/x0986ocv98lr/SziRvSO3x2r1KxtlRq7e7fWa8trlbXKZrl8d+nu7RfvvFAu5WPUpeOR6rP+9tLNp/uVLav/pT7xCz3rP39y7ucGrP/P//PGtz79MLlwOv4XPtv75/9Mz/htWZv4+QHjL1/6Zd/pu7P4q33q/6if/80B47/7l73VAQ8FAMagsbu3sVytVraH2sjehY7iOmc2siIOdvBxd3G4oH+KfGNEL0ufjawzNsjBc+f1qp77xuxJX3G0V/5mdsUxVycdeS2G2ngwrliTeyYB4/Hwpp90SQAAAAAAAAAAAAAAgH7G8adLk64jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF9d/AwAA//8+JMPM")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
copy_file_range(r4, 0x0, r4, 0x0, 0xe942, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000010000000000000000000000711275000000000095"], &(0x7f0000000100)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
mount$9p_tcp(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', &(0x7f0000000640), 0x10023, &(0x7f0000000900)=ANY=[@ANYBLOB="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"])
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r6, &(0x7f0000000580)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000540)={&(0x7f0000002a00)={0x1348, r7, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x108, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x24, 0x5, "842020599bac76b8a6007a63898c6065f92ded1c81782d8fa11678e02e47da20"}, @ETHTOOL_A_BITSET_VALUE={0x8d, 0x4, "b34adf90db3417a4c276889e31a83307f11b1bb8b9c3f5a0a6b78e026466c54e258559c01aaad727bbeb5bfee81429e14b0eb34edfd5eb4ff90837d636007117d266cffda0f27432d8029f8fe0c0091c9e1b2c4c2fe28f7e9f1baf54e568183ee0d255b754fc95d30c3168344832b5058bae704999663087547eeaaae51bf0c528b53a422aa296c558"}, @ETHTOOL_A_BITSET_MASK={0x4f, 0x5, "3c3d392d9c9a7869e7e93c92d25c494d4021e643127e83679fa2873766fc3abd3160cbdfc34a39cb40d210bda3a90fb37532264c7be3ad6d770d6bc7525daa0cefb8117f388bfbd5b5558a"}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x1014, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfffffffc}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x1e8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x98, 0x3, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, ':<\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, 'inlinecrypt'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'sched_switch\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'ext4\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x224}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '}\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '{\'&[\xad\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x148, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xea}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ')\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'ext4\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/**./\')*$,+{\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, 'inlinecrypt'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x1c, 0x2, 'system.posix_acl_access\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'/-*#*%'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '&*^\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffb}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'ext4\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '!@$!$:@.$\x1d-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x14, 0x2, 'kmem_cache_free\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x401}]}]}]}, @ETHTOOL_A_DEBUG_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}]}, 0x1348}, 0x1, 0x0, 0x0, 0x80}, 0x44000)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c00000010001ffe00989837a182138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e0000000400028008000a"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x180, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fsetxattr$system_posix_acl(r8, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
close(r10)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r11}, 0x9)
recvmsg$unix(r9, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r12=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r12, &(0x7f0000000200)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce8100036c00fc08000000000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
ioctl$SG_BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0)

486.512108ms ago: executing program 1 (id=980):
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x60, 0xd, 0x6, 0x401, 0x0, 0x0, {0x4, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x1}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x4095}, 0x4004) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x6c, r1, 0x300, 0x70bd2c, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x10)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x0, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}}, 0x4800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RATE_SET(r2, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x50, r1, 0x300, 0x70bd2a, 0x25dfdbfb, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x9}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x6}]}, 0x50}, 0x1, 0x0, 0x0, 0x20044001}, 0x10) (async)
r3 = accept$packet(0xffffffffffffffff, &(0x7f0000000500)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000540)=0x14) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000640)={'gretap0\x00', &(0x7f00000005c0)={'gre0\x00', <r5=>0x0, 0x7, 0x8007, 0x7fff, 0xc94, {{0x14, 0x4, 0x0, 0x8, 0x50, 0x67, 0x0, 0x6, 0x0, 0x0, @local, @loopback, {[@lsrr={0x83, 0x1f, 0xab, [@multicast2, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty, @remote, @local, @dev={0xac, 0x14, 0x14, 0x2a}]}, @generic={0x86, 0x11, "cac10cdae0b8c1277c0307ec994a3e"}, @rr={0x7, 0xb, 0x6, [@loopback, @local]}]}}}}})
sendto$packet(r3, &(0x7f0000000580)="0dfef4c10c7f2aa0252e35fac07866038287e3165203590719e86c7a328442f34cb8e6b548038637f3c0", 0x2a, 0x200408c0, &(0x7f0000000680)={0x11, 0xc, r5, 0x1, 0xc7, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}}, 0x14)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000006c0)={0x1, <r6=>0x0}, 0x8)
r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000700)=r6, 0x4)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000780), r2)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000880)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x4c, r8, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0xfffffffffffffffe}]}, 0x4c}, 0x1, 0x0, 0x0, 0x1a48d1c7db7fa6ae}, 0x4000) (async)
r9 = openat$incfs(0xffffffffffffff9c, &(0x7f00000008c0)='.pending_reads\x00', 0x121102, 0x88)
setsockopt$RDS_GET_MR_FOR_DEST(r9, 0x114, 0x7, &(0x7f0000000a40)={@xdp={0x2c, 0xc, r4, 0x1d}, {&(0x7f0000000900)=""/237, 0xed}, &(0x7f0000000a00), 0x8}, 0xa0)
getsockopt$EBT_SO_GET_ENTRIES(r9, 0x0, 0x81, &(0x7f0000000b80)={'filter\x00', 0x0, 0x4, 0x25, [0xc315, 0x1, 0x80000000, 0x400, 0x2], 0x3, &(0x7f0000000b00)=[{}, {}, {}], &(0x7f0000000b40)=""/37}, &(0x7f0000000c00)=0x78) (async, rerun: 32)
ioctl$sock_inet_SIOCDELRT(r9, 0x890c, &(0x7f0000000c80)={0x0, {0x2, 0x4e22, @broadcast}, {0x2, 0x4e20, @broadcast}, {0x2, 0x4e22, @multicast2}, 0x34c, 0x0, 0x0, 0x0, 0x841, &(0x7f0000000c40)='virt_wifi0\x00', 0x5, 0x5, 0x8}) (rerun: 32)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000dc0)={0x0, <r10=>0x0}, &(0x7f0000000e00)=0xc)
mount$nfs4(&(0x7f0000000d00)='devlink\x00', &(0x7f0000000d40)='./file0\x00', &(0x7f0000000d80), 0x2000000, &(0x7f0000000e40)={[{'\xaa\xaa\xaa\xaa\xaa'}, {'filter\x00'}, {'\xaa\xaa\xaa\xaa\xaa'}, {'\\\\'}, {'.pending_reads\x00'}, {'gretap0\x00'}, {'0000:00:10.0\x00'}], [{@uid_gt={'uid>', r10}}, {@hash}, {@subj_type={'subj_type', 0x3d, 'gre0\x00'}}, {@audit}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) (async, rerun: 64)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, 0xffffffffffffffff, &(0x7f0000000f00)={0x1000201b}) (async, rerun: 64)
sendmsg$IPSET_CMD_DEL(r9, &(0x7f0000001080)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001040)={&(0x7f0000000f80)={0x94, 0xa, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0x2}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x5}, @IPSET_ATTR_DATA={0x70, 0x7, 0x0, 0x1, [@IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x8}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x3}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x3}, @IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast1}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0xfffffffffffffffc}, @IPSET_ATTR_NAME={0x9, 0x12, 'syz0\x00'}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz2\x00'}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x40}]}, 0x94}, 0x1, 0x0, 0x0, 0x20000010}, 0x8000) (async)
socket(0x1f, 0x813, 0x1d16) (async, rerun: 64)
ioctl$TUNGETVNETHDRSZ(r9, 0x800454d7, &(0x7f00000010c0)) (rerun: 64)
ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f0000001100)={0x0, r3, 0xa883, 0x8, 0xfffffffffffffff7, 0x3ae9}) (async)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x8924, &(0x7f0000001140)={'pim6reg1\x00', @local}) (async, rerun: 32)
ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000001180)={'veth1_to_batadv\x00', {0x2, 0x4e22, @loopback}}) (async, rerun: 32)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=@bloom_filter={0x1e, 0x362, 0x5, 0x6, 0x4841, 0x1, 0x2, '\x00', r5, r9, 0x0, 0x3, 0x0, 0xf, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001600)={0xf, 0x1c, &(0x7f0000001300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x9}, [@map_val={0x18, 0x6, 0x2, 0x0, r11, 0x0, 0x0, 0x0, 0x8}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @jmp={0x5, 0x0, 0x3, 0x9, 0x5, 0xfffffffffffffff4, 0xffffffffffffffff}, @initr0={0x18, 0x0, 0x0, 0x0, 0xc35, 0x0, 0x0, 0x0, 0x6}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r9}}, @tail_call, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}]}, &(0x7f0000001400)='GPL\x00', 0xfff, 0x28, &(0x7f0000001440)=""/40, 0x41000, 0x50, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001500)={0x2, 0x7, 0x8, 0x8}, 0x10, r6, r9, 0x1, &(0x7f0000001580)=[r9, 0xffffffffffffffff, r9, r9], &(0x7f00000015c0)=[{0x4, 0x4, 0xf, 0x6}], 0x10, 0xcd02, @void, @value}, 0x94)

388.442138ms ago: executing program 1 (id=981):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f00000014c0), 0x1, 0x793, &(0x7f0000001700)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
ioprio_set$pid(0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='signal_generate\x00', r3}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000140)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x3, 0x46, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x400}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000300)={'syztnl0\x00', 0x0})

159.927559ms ago: executing program 3 (id=982):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003000083850000002d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000001480)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

108.153579ms ago: executing program 2 (id=983):
r0 = syz_open_dev$sg(&(0x7f0000000640), 0x0, 0x8005)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300bf5a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d48", 0x3}], 0x2)

90.716549ms ago: executing program 3 (id=984):
getxattr(&(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580)=@known='trusted.overlay.redirect\x00', 0x0, 0x0) (async)
r0 = msgget$private(0x0, 0x208) (async)
perf_event_open$cgroup(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2) (async, rerun: 32)
perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x2}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (rerun: 32)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
msgsnd(r0, &(0x7f0000000000)={0x2, "5c4f6c2f25f0457203be6569a9ffe9250fa865afd23a54e38790d8a7efb9421d3cb1f0ab897902a0972b65f4d3f95e5b0bdb0b742322478cff6e68c210d0ab1d61519e6505b1843079c002845e4552ae3bdea21be726ae82bd2420cb2b48db45deb3bbc54ed97c7b39546690b89764874f284fe387724ce839106b45c2e300bd79a39979e8465f7eadc4544fb9bb8a9d65de70798722589e4c98a2d4b3488f86247419551e816c5ed5c367439d0e9be2dbf489710766f2cb8b7ce23c3da71c7e061b2266d20da458178da301b5ad3fee34e8f803ebf7aed750889787e5d300b1d836f1a93bf0033abb"}, 0xf1, 0x800)

47.35123ms ago: executing program 4 (id=985):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000000), &(0x7f00000003c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={0x0}}, 0x0)

47.10904ms ago: executing program 2 (id=986):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xf, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r3, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)

45.94235ms ago: executing program 1 (id=987):
r0 = syz_open_dev$sg(&(0x7f0000000640), 0x20000000000, 0x8005)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01010000000000000000020000000900020008000000001f000008000440000000000900010073797a3000000000080003"], 0x64}}, 0x0)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d48", 0x3}], 0x2)

9.58756ms ago: executing program 4 (id=988):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

0s ago: executing program 0 (id=989):
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in6=@mcast1}}, {{@in=@multicast1}, 0x0, @in=@private}}, &(0x7f0000000140)=0xe8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007c40)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c, 0x0}}], 0x1, 0x0)
r2 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f0000000380)={0xc, 0x8, 0xfa00, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000d00)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000cc0)={<r3=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000d40)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @local}, r3}}, 0x48)

kernel console output (not intermixed with test programs):

/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff8da3ff19 code=0x7ffc0000
[   53.539145][   T29] audit: type=1326 audit(1733337973.104:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4562 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff8da3ff19 code=0x7ffc0000
[   53.562586][   T29] audit: type=1326 audit(1733337973.104:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4562 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff8da3ff19 code=0x7ffc0000
[   53.562720][ T4569] loop3: detected capacity change from 0 to 512
[   53.585894][   T29] audit: type=1326 audit(1733337973.104:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4562 comm="syz.0.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7eff8da3ff19 code=0x7ffc0000
[   53.634261][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.644792][ T4569] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.655886][ T4569] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   53.667553][ T4569] System zones: 1-12
[   53.672192][ T4569] EXT4-fs (loop3): 1 truncate cleaned up
[   53.693880][ T4572] wireguard0: entered promiscuous mode
[   53.699416][ T4572] wireguard0: entered allmulticast mode
[   53.708979][ T4569] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.734971][ T4575] loop4: detected capacity change from 0 to 512
[   53.742550][ T4575] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   53.801905][ T4575] EXT4-fs (loop4): 1 truncate cleaned up
[   53.808273][ T4575] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.841989][ T4577] netlink: 'syz.2.425': attribute type 10 has an invalid length.
[   53.926593][ T4577] batman_adv: batadv0: Removing interface: team0
[   53.933999][ T4577] bridge0: port 3(team0) entered blocking state
[   53.940312][ T4577] bridge0: port 3(team0) entered disabled state
[   53.968012][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.031625][ T4577] team0: entered allmulticast mode
[   54.036881][ T4577] team_slave_0: entered allmulticast mode
[   54.042665][ T4577] team_slave_1: entered allmulticast mode
[   54.057818][ T4580] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.074508][ T4580] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.084874][ T4577] team0: entered promiscuous mode
[   54.089982][ T4577] team_slave_0: entered promiscuous mode
[   54.095686][ T4577] team_slave_1: entered promiscuous mode
[   54.325906][ T4584] SELinux: failed to load policy
[   54.383916][ T4585] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   54.405947][ T4585] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   54.422260][ T4587] FAULT_INJECTION: forcing a failure.
[   54.422260][ T4587] name failslab, interval 1, probability 0, space 0, times 0
[   54.434943][ T4587] CPU: 0 UID: 0 PID: 4587 Comm: syz.2.430 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   54.445593][ T4587] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   54.455669][ T4587] Call Trace:
[   54.458960][ T4587]  <TASK>
[   54.461929][ T4587]  dump_stack_lvl+0xf2/0x150
[   54.466565][ T4587]  dump_stack+0x15/0x1a
[   54.470742][ T4587]  should_fail_ex+0x223/0x230
[   54.475432][ T4587]  should_failslab+0x8f/0xb0
[   54.480084][ T4587]  kmem_cache_alloc_noprof+0x52/0x320
[   54.485482][ T4587]  ? skb_clone+0x154/0x1f0
[   54.489924][ T4587]  skb_clone+0x154/0x1f0
[   54.494198][ T4587]  nfnetlink_rcv+0x2de/0x15d0
[   54.498952][ T4587]  ? kmem_cache_free+0xdc/0x2d0
[   54.503824][ T4587]  ? nlmon_xmit+0x51/0x60
[   54.508214][ T4587]  ? __kfree_skb+0x102/0x150
[   54.512846][ T4587]  ? consume_skb+0x49/0x160
[   54.517371][ T4587]  ? nlmon_xmit+0x51/0x60
[   54.521793][ T4587]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   54.527122][ T4587]  ? __dev_queue_xmit+0xb6e/0x2090
[   54.532328][ T4587]  ? ref_tracker_free+0x3a5/0x410
[   54.537444][ T4587]  ? __dev_queue_xmit+0x186/0x2090
[   54.542590][ T4587]  netlink_unicast+0x599/0x670
[   54.547384][ T4587]  netlink_sendmsg+0x5cc/0x6e0
[   54.552256][ T4587]  ? __pfx_netlink_sendmsg+0x10/0x10
[   54.557605][ T4587]  __sock_sendmsg+0x140/0x180
[   54.562305][ T4587]  ____sys_sendmsg+0x312/0x410
[   54.567121][ T4587]  __sys_sendmsg+0x19d/0x230
[   54.571818][ T4587]  __x64_sys_sendmsg+0x46/0x50
[   54.576596][ T4587]  x64_sys_call+0x2734/0x2dc0
[   54.581300][ T4587]  do_syscall_64+0xc9/0x1c0
[   54.585822][ T4587]  ? clear_bhb_loop+0x55/0xb0
[   54.590523][ T4587]  ? clear_bhb_loop+0x55/0xb0
[   54.595224][ T4587]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.601251][ T4587] RIP: 0033:0x7f46168bff19
[   54.605803][ T4587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.625518][ T4587] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.633977][ T4587] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   54.642000][ T4587] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[   54.649988][ T4587] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   54.658150][ T4587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.666135][ T4587] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   54.674128][ T4587]  </TASK>
[   54.677861][ T4588] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   54.824116][ T4593] loop3: detected capacity change from 0 to 512
[   54.881635][ T4593] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   54.922948][ T4593] EXT4-fs (loop3): 1 truncate cleaned up
[   54.953383][ T4593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.968857][ T4606] loop0: detected capacity change from 0 to 512
[   54.996029][ T4606] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   55.018789][ T4606] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   55.039322][ T4606] System zones: 1-12
[   55.054490][ T4606] EXT4-fs (loop0): 1 truncate cleaned up
[   55.066163][ T4606] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.100338][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.220593][ T4620] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   55.228268][ T4620] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   55.238019][ T4614] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   55.254653][ T4622] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.263510][ T4622] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.271836][ T4624] Zero length message leads to an empty skb
[   55.339380][ T4626] FAULT_INJECTION: forcing a failure.
[   55.339380][ T4626] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.352507][ T4626] CPU: 1 UID: 0 PID: 4626 Comm: syz.3.444 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   55.363135][ T4626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.373245][ T4626] Call Trace:
[   55.376589][ T4626]  <TASK>
[   55.379520][ T4626]  dump_stack_lvl+0xf2/0x150
[   55.384130][ T4626]  dump_stack+0x15/0x1a
[   55.388315][ T4626]  should_fail_ex+0x223/0x230
[   55.393019][ T4626]  should_fail+0xb/0x10
[   55.397225][ T4626]  should_fail_usercopy+0x1a/0x20
[   55.402277][ T4626]  _copy_to_user+0x20/0xa0
[   55.406712][ T4626]  simple_read_from_buffer+0xa0/0x110
[   55.412175][ T4626]  proc_fail_nth_read+0xf9/0x140
[   55.417185][ T4626]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   55.422814][ T4626]  vfs_read+0x1a2/0x700
[   55.427030][ T4626]  ? __rcu_read_unlock+0x4e/0x70
[   55.431997][ T4626]  ? __fget_files+0x17c/0x1c0
[   55.436719][ T4626]  ksys_read+0xe8/0x1b0
[   55.440974][ T4626]  __x64_sys_read+0x42/0x50
[   55.445552][ T4626]  x64_sys_call+0x2874/0x2dc0
[   55.450232][ T4626]  do_syscall_64+0xc9/0x1c0
[   55.454893][ T4626]  ? clear_bhb_loop+0x55/0xb0
[   55.459630][ T4626]  ? clear_bhb_loop+0x55/0xb0
[   55.464315][ T4626]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.470291][ T4626] RIP: 0033:0x7ff76978e92c
[   55.474805][ T4626] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   55.494485][ T4626] RSP: 002b:00007ff767e07050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   55.503075][ T4626] RAX: ffffffffffffffda RBX: 00007ff769955fa0 RCX: 00007ff76978e92c
[   55.511078][ T4626] RDX: 000000000000000f RSI: 00007ff767e070b0 RDI: 0000000000000004
[   55.519119][ T4626] RBP: 00007ff767e070a0 R08: 0000000000000000 R09: 0000000000000000
[   55.527102][ T4626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.535167][ T4626] R13: 0000000000000000 R14: 00007ff769955fa0 R15: 00007ffc1a8f8b88
[   55.543781][ T4626]  </TASK>
[   55.801174][ T4647] loop2: detected capacity change from 0 to 512
[   55.809919][ T4647] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   55.821554][ T4647] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   55.829647][ T4647] System zones: 1-12
[   55.834584][ T4647] EXT4-fs (loop2): 1 truncate cleaned up
[   55.896965][ T4652] loop3: detected capacity change from 0 to 512
[   55.904325][ T4652] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   55.955334][ T4652] EXT4-fs (loop3): 1 truncate cleaned up
[   56.241226][ T4660] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   56.259334][ T4662] loop0: detected capacity change from 0 to 128
[   56.265756][ T4660] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   56.281379][ T4662] ext4 filesystem being mounted at /82/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   56.318233][ T4664] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   56.424286][ T4667] capability: warning: `syz.4.459' uses 32-bit capabilities (legacy support in use)
[   56.444601][ T4662] netlink: 8 bytes leftover after parsing attributes in process `syz.0.458'.
[   56.465115][ T4667] loop4: detected capacity change from 0 to 512
[   56.689470][ T4677] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.704711][ T4677] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.787039][ T4680] loop4: detected capacity change from 0 to 2048
[   56.965700][ T4693] loop0: detected capacity change from 0 to 128
[   57.261982][ T4699] netlink: 8 bytes leftover after parsing attributes in process `syz.1.469'.
[   57.271476][ T4699] netlink: 'syz.1.469': attribute type 4 has an invalid length.
[   57.282648][ T4699] netlink: 'syz.1.469': attribute type 4 has an invalid length.
[   57.345622][ T4707] FAULT_INJECTION: forcing a failure.
[   57.345622][ T4707] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.358882][ T4707] CPU: 0 UID: 0 PID: 4707 Comm: syz.1.473 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   57.369585][ T4707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   57.379766][ T4707] Call Trace:
[   57.383052][ T4707]  <TASK>
[   57.386024][ T4707]  dump_stack_lvl+0xf2/0x150
[   57.390640][ T4707]  dump_stack+0x15/0x1a
[   57.394861][ T4707]  should_fail_ex+0x223/0x230
[   57.399568][ T4707]  should_fail+0xb/0x10
[   57.403758][ T4707]  should_fail_usercopy+0x1a/0x20
[   57.408805][ T4707]  _copy_from_user+0x1e/0xb0
[   57.413492][ T4707]  copy_msghdr_from_user+0x54/0x2a0
[   57.418777][ T4707]  ? __fget_files+0x17c/0x1c0
[   57.423590][ T4707]  __sys_sendmsg+0x13e/0x230
[   57.428206][ T4707]  __x64_sys_sendmsg+0x46/0x50
[   57.432979][ T4707]  x64_sys_call+0x2734/0x2dc0
[   57.437727][ T4707]  do_syscall_64+0xc9/0x1c0
[   57.442243][ T4707]  ? clear_bhb_loop+0x55/0xb0
[   57.446977][ T4707]  ? clear_bhb_loop+0x55/0xb0
[   57.451715][ T4707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.457711][ T4707] RIP: 0033:0x7f72dce5ff19
[   57.462205][ T4707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.481909][ T4707] RSP: 002b:00007f72db4d7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.490330][ T4707] RAX: ffffffffffffffda RBX: 00007f72dd025fa0 RCX: 00007f72dce5ff19
[   57.498358][ T4707] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[   57.506334][ T4707] RBP: 00007f72db4d70a0 R08: 0000000000000000 R09: 0000000000000000
[   57.514359][ T4707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.522337][ T4707] R13: 0000000000000000 R14: 00007f72dd025fa0 R15: 00007ffe48f4d658
[   57.530325][ T4707]  </TASK>
[   57.641376][ T4721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   57.650077][ T4721] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   57.660693][ T4719] vhci_hcd: default hub control req: 4750 v004c i0000 l0
[   57.669968][ T4724] vhci_hcd: default hub control req: 4750 v004c i0000 l0
[   57.764356][ T4736] netlink: 8 bytes leftover after parsing attributes in process `syz.2.485'.
[   57.773448][ T4736] netlink: 12 bytes leftover after parsing attributes in process `syz.2.485'.
[   57.793967][ T4736] vlan2: entered allmulticast mode
[   57.799290][ T4736] bond0: entered allmulticast mode
[   57.804902][ T4736] bond_slave_0: entered allmulticast mode
[   57.810893][ T4736] bond_slave_1: entered allmulticast mode
[   57.829573][ T4741] loop4: detected capacity change from 0 to 1024
[   57.838751][ T4741] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   57.893281][ T4741] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.488: corrupted in-inode xattr: bad magic number in in-inode xattr
[   57.926439][ T4741] dvmrp0: entered allmulticast mode
[   57.936477][ T4740] dvmrp0: left allmulticast mode
[   57.943138][ T4755] loop3: detected capacity change from 0 to 1024
[   57.949904][ T4755] EXT4-fs: Ignoring removed nobh option
[   57.956158][ T4755] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   57.974177][ T4753] block device autoloading is deprecated and will be removed.
[   57.986332][   T29] kauditd_printk_skb: 415 callbacks suppressed
[   57.986348][   T29] audit: type=1400 audit(1733337977.684:1948): avc:  denied  { bind } for  pid=4754 comm="syz.3.493" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   57.993769][ T4753] syz.2.492: attempt to access beyond end of device
[   57.993769][ T4753] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[   58.012019][   T29] audit: type=1400 audit(1733337977.684:1949): avc:  denied  { name_bind } for  pid=4754 comm="syz.3.493" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   58.046783][   T29] audit: type=1400 audit(1733337977.684:1950): avc:  denied  { node_bind } for  pid=4754 comm="syz.3.493" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   58.062013][ T4753] loop2: detected capacity change from 0 to 2048
[   58.067601][   T29] audit: type=1400 audit(1733337977.704:1951): avc:  denied  { read write } for  pid=3297 comm="syz-executor" name="loop0" dev="devtmpfs" ino=606 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   58.097246][   T29] audit: type=1400 audit(1733337977.704:1952): avc:  denied  { open } for  pid=3297 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=606 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   58.120583][   T29] audit: type=1400 audit(1733337977.704:1953): avc:  denied  { ioctl } for  pid=3297 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=606 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[   58.269076][ T4770] FAULT_INJECTION: forcing a failure.
[   58.269076][ T4770] name failslab, interval 1, probability 0, space 0, times 0
[   58.281788][ T4770] CPU: 0 UID: 0 PID: 4770 Comm: syz.0.497 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   58.292405][ T4770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.302530][ T4770] Call Trace:
[   58.305819][ T4770]  <TASK>
[   58.308772][ T4770]  dump_stack_lvl+0xf2/0x150
[   58.313461][ T4770]  dump_stack+0x15/0x1a
[   58.317695][ T4770]  should_fail_ex+0x223/0x230
[   58.322537][ T4770]  should_failslab+0x8f/0xb0
[   58.327194][ T4770]  kmem_cache_alloc_lru_noprof+0x57/0x320
[   58.333019][ T4770]  ? __d_alloc+0x3d/0x340
[   58.337372][ T4770]  __d_alloc+0x3d/0x340
[   58.341586][ T4770]  d_alloc_parallel+0x54/0xc60
[   58.346373][ T4770]  ? selinux_inode_permission+0x341/0x410
[   58.352154][ T4770]  ? lockref_get_not_dead+0x118/0x1b0
[   58.357675][ T4770]  ? down_read+0x171/0x4b0
[   58.362138][ T4770]  __lookup_slow+0x8d/0x250
[   58.366652][ T4770]  lookup_slow+0x3c/0x60
[   58.371010][ T4770]  walk_component+0x1f5/0x230
[   58.375754][ T4770]  ? path_lookupat+0xfd/0x2b0
[   58.380441][ T4770]  path_lookupat+0x10a/0x2b0
[   58.385106][ T4770]  filename_lookup+0x150/0x340
[   58.390051][ T4770]  ? __pfx_resume_store+0x10/0x10
[   58.395097][ T4770]  kern_path+0x39/0x120
[   58.399276][ T4770]  lookup_bdev+0x62/0x140
[   58.403642][ T4770]  resume_store+0x10a/0x3a0
[   58.408256][ T4770]  ? _copy_from_iter+0x169/0xd00
[   58.413290][ T4770]  ? kstrtouint+0x77/0xc0
[   58.417627][ T4770]  ? should_fail_ex+0xd7/0x230
[   58.422429][ T4770]  kobj_attr_store+0x47/0x70
[   58.427073][ T4770]  ? __pfx_kobj_attr_store+0x10/0x10
[   58.432373][ T4770]  sysfs_kf_write+0xae/0xd0
[   58.436887][ T4770]  ? __pfx_sysfs_kf_write+0x10/0x10
[   58.442092][ T4770]  kernfs_fop_write_iter+0x1c8/0x2c0
[   58.447411][ T4770]  vfs_write+0x77f/0x920
[   58.451669][ T4770]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   58.457569][ T4770]  ksys_write+0xe8/0x1b0
[   58.461849][ T4770]  __x64_sys_write+0x42/0x50
[   58.466481][ T4770]  x64_sys_call+0x287e/0x2dc0
[   58.471183][ T4770]  do_syscall_64+0xc9/0x1c0
[   58.475716][ T4770]  ? clear_bhb_loop+0x55/0xb0
[   58.480416][ T4770]  ? clear_bhb_loop+0x55/0xb0
[   58.485144][ T4770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.491149][ T4770] RIP: 0033:0x7eff8da3ff19
[   58.495581][ T4770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.515548][ T4770] RSP: 002b:00007eff8c0b7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   58.524224][ T4770] RAX: ffffffffffffffda RBX: 00007eff8dc05fa0 RCX: 00007eff8da3ff19
[   58.532213][ T4770] RDX: 0000000000000012 RSI: 0000000020000000 RDI: 0000000000000006
[   58.540205][ T4770] RBP: 00007eff8c0b70a0 R08: 0000000000000000 R09: 0000000000000000
[   58.548369][ T4770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.556348][ T4770] R13: 0000000000000000 R14: 00007eff8dc05fa0 R15: 00007ffd254815a8
[   58.564511][ T4770]  </TASK>
[   58.567876][   T29] audit: type=1326 audit(1733337977.984:1954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4774 comm="syz.1.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   58.578115][ T4780] FAULT_INJECTION: forcing a failure.
[   58.578115][ T4780] name failslab, interval 1, probability 0, space 0, times 0
[   58.591377][   T29] audit: type=1326 audit(1733337977.984:1955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4774 comm="syz.1.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   58.603979][ T4780] CPU: 0 UID: 0 PID: 4780 Comm: syz.2.499 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   58.627242][   T29] audit: type=1326 audit(1733337977.984:1956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4774 comm="syz.1.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   58.637789][ T4780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.661081][   T29] audit: type=1326 audit(1733337977.984:1957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4774 comm="syz.1.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   58.671101][ T4780] Call Trace:
[   58.671111][ T4780]  <TASK>
[   58.671120][ T4780]  dump_stack_lvl+0xf2/0x150
[   58.705575][ T4780]  dump_stack+0x15/0x1a
[   58.709844][ T4780]  should_fail_ex+0x223/0x230
[   58.714546][ T4780]  should_failslab+0x8f/0xb0
[   58.719226][ T4780]  kmem_cache_alloc_node_noprof+0x59/0x320
[   58.725058][ T4780]  ? __alloc_skb+0x10b/0x310
[   58.729750][ T4780]  ? rcu_segcblist_enqueue+0x92/0xb0
[   58.735091][ T4780]  __alloc_skb+0x10b/0x310
[   58.739600][ T4780]  rtmsg_fib+0x9b/0x240
[   58.743799][ T4780]  ? fib_table_delete+0x431/0x8f0
[   58.748935][ T4780]  fib_table_delete+0x835/0x8f0
[   58.753827][ T4780]  fib_magic+0x1c1/0x1f0
[   58.758157][ T4780]  fib_del_ifaddr+0x83c/0xa60
[   58.762868][ T4780]  fib_inetaddr_event+0x77/0x200
[   58.767841][ T4780]  ? inetaddr_event+0x71/0xa0
[   58.772600][ T4780]  ? __pfx_fib_inetaddr_event+0x10/0x10
[   58.778165][ T4780]  blocking_notifier_call_chain+0x94/0x200
[   58.784050][ T4780]  __inet_del_ifa+0x4cf/0x7e0
[   58.788748][ T4780]  ? strcmp+0x21/0x50
[   58.792761][ T4780]  devinet_ioctl+0x730/0xe10
[   58.797367][ T4780]  inet_ioctl+0x2f4/0x3a0
[   58.801750][ T4780]  sock_do_ioctl+0x81/0x260
[   58.806373][ T4780]  sock_ioctl+0x40f/0x600
[   58.810779][ T4780]  ? __pfx_sock_ioctl+0x10/0x10
[   58.815662][ T4780]  __se_sys_ioctl+0xc9/0x140
[   58.820286][ T4780]  __x64_sys_ioctl+0x43/0x50
[   58.825138][ T4780]  x64_sys_call+0x1690/0x2dc0
[   58.829826][ T4780]  do_syscall_64+0xc9/0x1c0
[   58.834408][ T4780]  ? clear_bhb_loop+0x55/0xb0
[   58.839102][ T4780]  ? clear_bhb_loop+0x55/0xb0
[   58.843785][ T4780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.849796][ T4780] RIP: 0033:0x7f46168bff19
[   58.854215][ T4780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.873829][ T4780] RSP: 002b:00007f4614f16058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.882249][ T4780] RAX: ffffffffffffffda RBX: 00007f4616a86080 RCX: 00007f46168bff19
[   58.890229][ T4780] RDX: 0000000020000000 RSI: 0000000000008916 RDI: 0000000000000008
[   58.898235][ T4780] RBP: 00007f4614f160a0 R08: 0000000000000000 R09: 0000000000000000
[   58.906212][ T4780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.914190][ T4780] R13: 0000000000000000 R14: 00007f4616a86080 R15: 00007ffd7b078eb8
[   58.922171][ T4780]  </TASK>
[   58.937953][ T4770] block device autoloading is deprecated and will be removed.
[   58.945616][ T4782] loop0: detected capacity change from 0 to 2048
[   58.955253][ T4772] loop3: detected capacity change from 0 to 512
[   58.971854][ T4772] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.3.498: corrupted xattr block 95: invalid header
[   58.979526][ T4770] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[   58.986246][ T4772] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.498: bg 0: block 7: invalid block bitmap
[   59.007157][ T4772] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   59.016058][ T4772] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #11: comm syz.3.498: corrupted xattr block 95: invalid header
[   59.029728][ T4772] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   59.038819][ T4772] EXT4-fs (loop3): 1 orphan inode deleted
[   59.252073][ T4813] loop4: detected capacity change from 0 to 512
[   59.272618][ T4813] EXT4-fs: Ignoring removed mblk_io_submit option
[   59.288446][ T4809] loop0: detected capacity change from 0 to 128
[   59.293934][ T4813] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   59.312727][ T4809] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.330470][ T4813] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   59.341036][ T4813] System zones: 1-12
[   59.345512][ T4813] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.513: corrupted in-inode xattr: bad e_name length
[   59.362512][ T4813] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.513: couldn't read orphan inode 15 (err -117)
[   59.378454][ T4829] netlink: 4 bytes leftover after parsing attributes in process `syz.3.517'.
[   59.613348][ T4863] IPVS: set_ctl: invalid protocol: 46 0.0.0.0:20001
[   59.638327][ T4865] netlink: 8 bytes leftover after parsing attributes in process `syz.0.532'.
[   59.656164][ T4869] FAULT_INJECTION: forcing a failure.
[   59.656164][ T4869] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.669336][ T4869] CPU: 1 UID: 0 PID: 4869 Comm: syz.2.534 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   59.680045][ T4869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.690127][ T4869] Call Trace:
[   59.693526][ T4869]  <TASK>
[   59.696512][ T4869]  dump_stack_lvl+0xf2/0x150
[   59.701233][ T4869]  dump_stack+0x15/0x1a
[   59.705428][ T4869]  should_fail_ex+0x223/0x230
[   59.710180][ T4869]  should_fail+0xb/0x10
[   59.714499][ T4869]  should_fail_usercopy+0x1a/0x20
[   59.715963][ T4868] veth0_to_team: entered promiscuous mode
[   59.719540][ T4869]  strncpy_from_user+0x25/0x210
[   59.719646][ T4869]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   59.719716][ T4869]  ? getname_flags+0x81/0x3b0
[   59.719740][ T4869]  getname_flags+0xb0/0x3b0
[   59.719763][ T4869]  getname+0x17/0x20
[   59.719782][ T4869]  path_removexattrat+0xf0/0x4b0
[   59.719810][ T4869]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   59.719883][ T4869]  __x64_sys_removexattr+0x38/0x50
[   59.719909][ T4869]  x64_sys_call+0x3ea/0x2dc0
[   59.719938][ T4869]  do_syscall_64+0xc9/0x1c0
[   59.719961][ T4869]  ? clear_bhb_loop+0x55/0xb0
[   59.719986][ T4869]  ? clear_bhb_loop+0x55/0xb0
[   59.720010][ T4869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.720050][ T4869] RIP: 0033:0x7f46168bff19
[   59.720069][ T4869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.725834][ T4868] veth0_to_team: entered allmulticast mode
[   59.730702][ T4869] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5
[   59.730730][ T4869] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   59.730755][ T4869] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000040
[   59.730772][ T4869] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   59.852064][ T4869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.860062][ T4869] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   59.868067][ T4869]  </TASK>
[   59.923035][ T4877] FAULT_INJECTION: forcing a failure.
[   59.923035][ T4877] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   59.936195][ T4877] CPU: 0 UID: 0 PID: 4877 Comm: syz.0.538 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   59.946846][ T4877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.957025][ T4877] Call Trace:
[   59.960325][ T4877]  <TASK>
[   59.963298][ T4877]  dump_stack_lvl+0xf2/0x150
[   59.967943][ T4877]  dump_stack+0x15/0x1a
[   59.972141][ T4877]  should_fail_ex+0x223/0x230
[   59.976974][ T4877]  should_fail+0xb/0x10
[   59.981159][ T4877]  should_fail_usercopy+0x1a/0x20
[   59.986280][ T4877]  _copy_from_iter+0xd5/0xd00
[   59.991072][ T4877]  ? kmalloc_reserve+0x16e/0x190
[   59.996065][ T4877]  ? __build_skb_around+0x196/0x1f0
[   60.001307][ T4877]  ? __alloc_skb+0x21f/0x310
[   60.006114][ T4877]  ? __virt_addr_valid+0x1ed/0x250
[   60.011269][ T4877]  ? __check_object_size+0x364/0x520
[   60.016608][ T4877]  netlink_sendmsg+0x460/0x6e0
[   60.021408][ T4877]  ? __pfx_netlink_sendmsg+0x10/0x10
[   60.026725][ T4877]  __sock_sendmsg+0x140/0x180
[   60.031539][ T4877]  ____sys_sendmsg+0x312/0x410
[   60.036340][ T4877]  __sys_sendmsg+0x19d/0x230
[   60.041005][ T4877]  __x64_sys_sendmsg+0x46/0x50
[   60.045799][ T4877]  x64_sys_call+0x2734/0x2dc0
[   60.050505][ T4877]  do_syscall_64+0xc9/0x1c0
[   60.055062][ T4877]  ? clear_bhb_loop+0x55/0xb0
[   60.059806][ T4877]  ? clear_bhb_loop+0x55/0xb0
[   60.064503][ T4877]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.070526][ T4877] RIP: 0033:0x7eff8da3ff19
[   60.075090][ T4877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.094733][ T4877] RSP: 002b:00007eff8c0b7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   60.103175][ T4877] RAX: ffffffffffffffda RBX: 00007eff8dc05fa0 RCX: 00007eff8da3ff19
[   60.111172][ T4877] RDX: 0000000004000000 RSI: 0000000020000000 RDI: 0000000000000003
[   60.119162][ T4877] RBP: 00007eff8c0b70a0 R08: 0000000000000000 R09: 0000000000000000
[   60.127153][ T4877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.135209][ T4877] R13: 0000000000000000 R14: 00007eff8dc05fa0 R15: 00007ffd254815a8
[   60.143211][ T4877]  </TASK>
[   60.237595][ T4890] netlink: 'syz.2.542': attribute type 10 has an invalid length.
[   60.259954][ T4890] netdevsim netdevsim2 netdevsim1: entered promiscuous mode
[   60.267497][ T4890] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[   60.308750][ T4890] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[   60.336934][ T4890] team0: Failed to send options change via netlink (err -105)
[   60.344483][ T4890] team0: Port device netdevsim1 added
[   60.347883][ T4903] netlink: 'syz.4.547': attribute type 13 has an invalid length.
[   60.372112][ T4908] loop3: detected capacity change from 0 to 512
[   60.383475][ T4907] netlink: 'syz.0.549': attribute type 4 has an invalid length.
[   60.397452][ T4908] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   60.412844][ T4907] netlink: 'syz.0.549': attribute type 4 has an invalid length.
[   60.427654][ T4908] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   60.435654][ T4908] System zones: 1-12
[   60.457195][ T4908] EXT4-fs (loop3): 1 truncate cleaned up
[   60.518396][ T4917] loop0: detected capacity change from 0 to 512
[   60.525051][ T4917] EXT4-fs: Ignoring removed orlov option
[   60.532629][ T4918] FAULT_INJECTION: forcing a failure.
[   60.532629][ T4918] name failslab, interval 1, probability 0, space 0, times 0
[   60.545359][ T4918] CPU: 1 UID: 0 PID: 4918 Comm: +}[p� Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   60.546127][ T4920] FAULT_INJECTION: forcing a failure.
[   60.546127][ T4920] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.555628][ T4918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.578752][ T4918] Call Trace:
[   60.582033][ T4918]  <TASK>
[   60.585039][ T4918]  dump_stack_lvl+0xf2/0x150
[   60.589685][ T4918]  dump_stack+0x15/0x1a
[   60.594089][ T4918]  should_fail_ex+0x223/0x230
[   60.598780][ T4918]  ? percpu_ref_init+0x96/0x240
[   60.603642][ T4918]  should_failslab+0x8f/0xb0
[   60.608255][ T4918]  ? __pfx_free_ioctx_users+0x10/0x10
[   60.613653][ T4918]  __kmalloc_cache_noprof+0x4e/0x320
[   60.618953][ T4918]  ? __pfx_free_ioctx_users+0x10/0x10
[   60.624386][ T4918]  percpu_ref_init+0x96/0x240
[   60.629129][ T4918]  ioctx_alloc+0x1b8/0x4c0
[   60.633734][ T4918]  __se_sys_io_setup+0x6b/0x1b0
[   60.638674][ T4918]  __x64_sys_io_setup+0x31/0x40
[   60.643540][ T4918]  x64_sys_call+0x160f/0x2dc0
[   60.648226][ T4918]  do_syscall_64+0xc9/0x1c0
[   60.652798][ T4918]  ? clear_bhb_loop+0x55/0xb0
[   60.657519][ T4918]  ? clear_bhb_loop+0x55/0xb0
[   60.662216][ T4918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.668219][ T4918] RIP: 0033:0x7f46168bff19
[   60.672673][ T4918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.692299][ T4918] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 00000000000000ce
[   60.700719][ T4918] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   60.708771][ T4918] RDX: 0000000000000000 RSI: 0000000020004200 RDI: 0000000000000008
[   60.716762][ T4918] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   60.724772][ T4918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.732833][ T4918] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   60.740820][ T4918]  </TASK>
[   60.743929][ T4920] CPU: 0 UID: 0 PID: 4920 Comm: syz.1.554 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   60.754819][ T4920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.764896][ T4920] Call Trace:
[   60.768261][ T4920]  <TASK>
[   60.771235][ T4920]  dump_stack_lvl+0xf2/0x150
[   60.775963][ T4920]  dump_stack+0x15/0x1a
[   60.780183][ T4920]  should_fail_ex+0x223/0x230
[   60.785039][ T4920]  should_fail+0xb/0x10
[   60.789221][ T4920]  should_fail_usercopy+0x1a/0x20
[   60.794264][ T4920]  _copy_to_user+0x20/0xa0
[   60.798782][ T4920]  simple_read_from_buffer+0xa0/0x110
[   60.804301][ T4920]  proc_fail_nth_read+0xf9/0x140
[   60.809324][ T4920]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   60.814887][ T4920]  vfs_read+0x1a2/0x700
[   60.819147][ T4920]  ? __rcu_read_unlock+0x4e/0x70
[   60.824131][ T4920]  ? __fget_files+0x17c/0x1c0
[   60.828832][ T4920]  ksys_read+0xe8/0x1b0
[   60.833148][ T4920]  __x64_sys_read+0x42/0x50
[   60.837669][ T4920]  x64_sys_call+0x2874/0x2dc0
[   60.842368][ T4920]  do_syscall_64+0xc9/0x1c0
[   60.846878][ T4920]  ? clear_bhb_loop+0x55/0xb0
[   60.851701][ T4920]  ? clear_bhb_loop+0x55/0xb0
[   60.856399][ T4920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.862318][ T4920] RIP: 0033:0x7f72dce5e92c
[   60.866911][ T4920] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   60.886743][ T4920] RSP: 002b:00007f72db4d7050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   60.895340][ T4920] RAX: ffffffffffffffda RBX: 00007f72dd025fa0 RCX: 00007f72dce5e92c
[   60.903318][ T4920] RDX: 000000000000000f RSI: 00007f72db4d70b0 RDI: 0000000000000003
[   60.911345][ T4920] RBP: 00007f72db4d70a0 R08: 0000000000000000 R09: 0000000000000000
[   60.919322][ T4920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.927318][ T4920] R13: 0000000000000000 R14: 00007f72dd025fa0 R15: 00007ffe48f4d658
[   60.935305][ T4920]  </TASK>
[   60.943039][ T4917] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   60.987781][ T4917] EXT4-fs (loop0): 1 orphan inode deleted
[   60.993659][ T4917] EXT4-fs (loop0): 1 truncate cleaned up
[   61.145539][ T4938] netlink: 'syz.3.562': attribute type 21 has an invalid length.
[   61.153426][ T4938] netlink: 156 bytes leftover after parsing attributes in process `syz.3.562'.
[   61.249284][ T4950] loop2: detected capacity change from 0 to 512
[   61.265617][ T4950] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   61.351266][ T4950] EXT4-fs (loop2): 1 truncate cleaned up
[   61.416052][ T4960] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   61.424207][ T4960] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   61.442672][ T4963] FAULT_INJECTION: forcing a failure.
[   61.442672][ T4963] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.455815][ T4963] CPU: 1 UID: 0 PID: 4963 Comm: syz.0.569 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   61.466424][ T4963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.476608][ T4963] Call Trace:
[   61.479896][ T4963]  <TASK>
[   61.482915][ T4963]  dump_stack_lvl+0xf2/0x150
[   61.487604][ T4963]  dump_stack+0x15/0x1a
[   61.491797][ T4963]  should_fail_ex+0x223/0x230
[   61.496519][ T4963]  should_fail+0xb/0x10
[   61.500766][ T4963]  should_fail_usercopy+0x1a/0x20
[   61.505825][ T4963]  _copy_from_user+0x1e/0xb0
[   61.510433][ T4963]  __sys_bpf+0x14e/0x7a0
[   61.514768][ T4963]  __x64_sys_bpf+0x43/0x50
[   61.519237][ T4963]  x64_sys_call+0x2914/0x2dc0
[   61.523978][ T4963]  do_syscall_64+0xc9/0x1c0
[   61.528570][ T4963]  ? clear_bhb_loop+0x55/0xb0
[   61.533259][ T4963]  ? clear_bhb_loop+0x55/0xb0
[   61.537973][ T4963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.543905][ T4963] RIP: 0033:0x7eff8da3ff19
[   61.548331][ T4963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.567956][ T4963] RSP: 002b:00007eff8c0b7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   61.576449][ T4963] RAX: ffffffffffffffda RBX: 00007eff8dc05fa0 RCX: 00007eff8da3ff19
[   61.584537][ T4963] RDX: 000000000000004d RSI: 0000000020000080 RDI: 0000000000000016
[   61.592588][ T4963] RBP: 00007eff8c0b70a0 R08: 0000000000000000 R09: 0000000000000000
[   61.600741][ T4963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.608740][ T4963] R13: 0000000000000000 R14: 00007eff8dc05fa0 R15: 00007ffd254815a8
[   61.616740][ T4963]  </TASK>
[   61.629101][ T4965] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   62.202815][ T4989] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4989 comm=syz.1.579
[   62.229518][ T4991] FAULT_INJECTION: forcing a failure.
[   62.229518][ T4991] name failslab, interval 1, probability 0, space 0, times 0
[   62.242321][ T4991] CPU: 1 UID: 0 PID: 4991 Comm: syz.4.580 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   62.253115][ T4991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.263370][ T4991] Call Trace:
[   62.266665][ T4991]  <TASK>
[   62.269610][ T4991]  dump_stack_lvl+0xf2/0x150
[   62.274269][ T4991]  dump_stack+0x15/0x1a
[   62.278523][ T4991]  should_fail_ex+0x223/0x230
[   62.283222][ T4991]  ? nf_tables_newtable+0x3a1/0xf20
[   62.288486][ T4991]  should_failslab+0x8f/0xb0
[   62.293181][ T4991]  __kmalloc_cache_noprof+0x4e/0x320
[   62.298566][ T4991]  nf_tables_newtable+0x3a1/0xf20
[   62.303694][ T4991]  nfnetlink_rcv+0xb3e/0x15d0
[   62.308436][ T4991]  ? kmem_cache_free+0xdc/0x2d0
[   62.313397][ T4991]  netlink_unicast+0x599/0x670
[   62.318190][ T4991]  netlink_sendmsg+0x5cc/0x6e0
[   62.322991][ T4991]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.328389][ T4991]  __sock_sendmsg+0x140/0x180
[   62.333130][ T4991]  ____sys_sendmsg+0x312/0x410
[   62.337918][ T4991]  __sys_sendmsg+0x19d/0x230
[   62.342611][ T4991]  __x64_sys_sendmsg+0x46/0x50
[   62.347419][ T4991]  x64_sys_call+0x2734/0x2dc0
[   62.352123][ T4991]  do_syscall_64+0xc9/0x1c0
[   62.356728][ T4991]  ? clear_bhb_loop+0x55/0xb0
[   62.361466][ T4991]  ? clear_bhb_loop+0x55/0xb0
[   62.366168][ T4991]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.372175][ T4991] RIP: 0033:0x7ff0bc67ff19
[   62.376608][ T4991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.396491][ T4991] RSP: 002b:00007ff0bacf7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.404964][ T4991] RAX: ffffffffffffffda RBX: 00007ff0bc845fa0 RCX: 00007ff0bc67ff19
[   62.412962][ T4991] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000006
[   62.420966][ T4991] RBP: 00007ff0bacf70a0 R08: 0000000000000000 R09: 0000000000000000
[   62.429124][ T4991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.437169][ T4991] R13: 0000000000000000 R14: 00007ff0bc845fa0 R15: 00007fffa8c13888
[   62.445170][ T4991]  </TASK>
[   62.462331][ T4993] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=20890 sclass=netlink_route_socket pid=4993 comm=syz.3.581
[   62.639497][ T5007] FAULT_INJECTION: forcing a failure.
[   62.639497][ T5007] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   62.652644][ T5007] CPU: 0 UID: 0 PID: 5007 Comm: syz.2.587 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   62.663260][ T5007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   62.673899][ T5007] Call Trace:
[   62.677181][ T5007]  <TASK>
[   62.680129][ T5007]  dump_stack_lvl+0xf2/0x150
[   62.684820][ T5007]  dump_stack+0x15/0x1a
[   62.689049][ T5007]  should_fail_ex+0x223/0x230
[   62.693768][ T5007]  should_fail+0xb/0x10
[   62.698001][ T5007]  should_fail_usercopy+0x1a/0x20
[   62.703077][ T5007]  _copy_to_user+0x20/0xa0
[   62.707517][ T5007]  __se_sys_io_uring_register+0x1759/0x21d0
[   62.713506][ T5007]  ? get_pid_task+0x8e/0xc0
[   62.718025][ T5007]  ? proc_fail_nth_write+0x12a/0x150
[   62.723336][ T5007]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   62.728989][ T5007]  ? vfs_write+0x596/0x920
[   62.733431][ T5007]  __x64_sys_io_uring_register+0x55/0x70
[   62.739164][ T5007]  x64_sys_call+0x2c52/0x2dc0
[   62.743899][ T5007]  do_syscall_64+0xc9/0x1c0
[   62.748480][ T5007]  ? clear_bhb_loop+0x55/0xb0
[   62.753279][ T5007]  ? clear_bhb_loop+0x55/0xb0
[   62.757967][ T5007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.763882][ T5007] RIP: 0033:0x7f46168bff19
[   62.768337][ T5007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.787995][ T5007] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   62.796491][ T5007] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   62.804473][ T5007] RDX: 0000000020000440 RSI: 0000000000000021 RDI: 0000000000000006
[   62.812451][ T5007] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   62.820429][ T5007] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   62.828461][ T5007] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   62.836510][ T5007]  </TASK>
[   62.840856][ T5011] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   62.892618][ T5014] loop2: detected capacity change from 0 to 1024
[   62.900590][ T5016] bond_slave_1: mtu greater than device maximum
[   62.908315][ T5014] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   62.918108][ T5014] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   62.928988][ T5014] EXT4-fs error (device loop2): ext4_get_journal_inode:5809: inode #32: comm syz.2.590: iget: special inode unallocated
[   62.941956][ T5014] EXT4-fs (loop2): no journal found
[   62.947293][ T5014] EXT4-fs (loop2): can't get journal size
[   62.953385][ T5014] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #32: comm syz.2.590: iget: special inode unallocated
[   62.968046][ T5014] EXT4-fs (loop2): failed to initialize system zone (-117)
[   62.975684][ T5014] EXT4-fs (loop2): mount failed
[   63.049286][ T5024] netlink: 664 bytes leftover after parsing attributes in process `syz.0.594'.
[   63.060701][ T5024] lo: entered promiscuous mode
[   63.066670][ T5024] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   63.089412][   T29] kauditd_printk_skb: 245 callbacks suppressed
[   63.089429][   T29] audit: type=1400 audit(1733337982.804:2203): avc:  denied  { create } for  pid=5023 comm="syz.0.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   63.115141][   T29] audit: type=1400 audit(1733337982.804:2204): avc:  denied  { write } for  pid=4994 comm="syz.1.582" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   63.142512][   T29] audit: type=1400 audit(1733337982.804:2205): avc:  denied  { map_create } for  pid=5018 comm="syz.4.592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   63.162106][   T29] audit: type=1400 audit(1733337982.804:2206): avc:  denied  { map_read map_write } for  pid=5018 comm="syz.4.592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   63.182165][   T29] audit: type=1400 audit(1733337982.804:2207): avc:  denied  { create } for  pid=5023 comm="syz.0.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   63.201777][   T29] audit: type=1400 audit(1733337982.804:2208): avc:  denied  { prog_load } for  pid=5018 comm="syz.4.592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   63.222561][   T29] audit: type=1400 audit(1733337982.804:2209): avc:  denied  { bpf } for  pid=5018 comm="syz.4.592" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   63.243171][   T29] audit: type=1400 audit(1733337982.804:2210): avc:  denied  { perfmon } for  pid=5018 comm="syz.4.592" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   63.251312][ T5027] netlink: 8 bytes leftover after parsing attributes in process `syz.0.596'.
[   63.264026][   T29] audit: type=1400 audit(1733337982.804:2211): avc:  denied  { prog_run } for  pid=5018 comm="syz.4.592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   63.291757][   T29] audit: type=1400 audit(1733337982.804:2212): avc:  denied  { mounton } for  pid=5023 comm="syz.0.594" path="/110/file0" dev="tmpfs" ino=609 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   63.318452][ T5028] netlink: 16 bytes leftover after parsing attributes in process `syz.2.595'.
[   63.426308][ T5045] FAULT_INJECTION: forcing a failure.
[   63.426308][ T5045] name failslab, interval 1, probability 0, space 0, times 0
[   63.439114][ T5045] CPU: 0 UID: 0 PID: 5045 Comm: syz.2.603 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   63.449762][ T5045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   63.459841][ T5045] Call Trace:
[   63.463130][ T5045]  <TASK>
[   63.466077][ T5045]  dump_stack_lvl+0xf2/0x150
[   63.470786][ T5045]  dump_stack+0x15/0x1a
[   63.474976][ T5045]  should_fail_ex+0x223/0x230
[   63.479718][ T5045]  should_failslab+0x8f/0xb0
[   63.484340][ T5045]  kmem_cache_alloc_node_noprof+0x59/0x320
[   63.490255][ T5045]  ? __alloc_skb+0x10b/0x310
[   63.494966][ T5045]  __alloc_skb+0x10b/0x310
[   63.499451][ T5045]  ? audit_log_start+0x34c/0x6b0
[   63.504422][ T5045]  audit_log_start+0x368/0x6b0
[   63.509220][ T5045]  audit_seccomp+0x4b/0x130
[   63.513807][ T5045]  ? cgroup_rstat_updated+0x9f/0x570
[   63.519120][ T5045]  __seccomp_filter+0x6fa/0x1180
[   63.524161][ T5045]  ? save_fpregs_to_fpstate+0x102/0x160
[   63.529741][ T5045]  __secure_computing+0x9f/0x1c0
[   63.534746][ T5045]  syscall_trace_enter+0xd1/0x1f0
[   63.539806][ T5045]  do_syscall_64+0xaa/0x1c0
[   63.544441][ T5045]  ? clear_bhb_loop+0x55/0xb0
[   63.549526][ T5045]  ? clear_bhb_loop+0x55/0xb0
[   63.554225][ T5045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.560240][ T5045] RIP: 0033:0x7f46168be92c
[   63.564669][ T5045] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   63.584416][ T5045] RSP: 002b:00007f4614f37050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   63.592995][ T5045] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168be92c
[   63.601083][ T5045] RDX: 000000000000000f RSI: 00007f4614f370b0 RDI: 0000000000000004
[   63.609079][ T5045] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   63.617171][ T5045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   63.625232][ T5045] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   63.633246][ T5045]  </TASK>
[   63.714277][ T5052] SELinux:  Context system_u:object_r:crash_device_t:s0 is not valid (left unmapped).
[   63.729457][ T5054] netlink: 8 bytes leftover after parsing attributes in process `syz.3.607'.
[   63.760138][ T5056] loop0: detected capacity change from 0 to 512
[   63.800962][ T5059] loop2: detected capacity change from 0 to 2048
[   63.831085][ T5056] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.857531][ T5059]  loop2: p1 < > p4
[   63.868684][ T5059] loop2: p4 size 8388608 extends beyond EOD, truncated
[   63.880603][ T5056] loop6: detected capacity change from 0 to 7
[   63.891729][ T2999]  loop2: p1 < > p4
[   63.896147][ T2999] loop2: p4 size 8388608 extends beyond EOD, truncated
[   63.903581][ T5056] Buffer I/O error on dev loop6, logical block 0, async page read
[   63.911771][ T5056] Buffer I/O error on dev loop6, logical block 0, async page read
[   63.919670][ T5056]  loop6: unable to read partition table
[   63.944355][ T5056] loop_reread_partitions: partition scan of loop6 (�被x������ڬ��dƤ����ݡ�����
[   63.944355][ T5056] 
) failed (rc=-5)
[   63.986972][ T3288] udevd[3288]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   63.989113][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   64.023890][ T5073] loop2: detected capacity change from 0 to 512
[   64.037122][ T5073] ext4: Unknown parameter 'uid'
[   64.088037][ T3288] udevd[3288]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   64.109096][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   64.650992][ T5104] netlink: 'syz.4.624': attribute type 4 has an invalid length.
[   64.660318][ T5103] syz.1.626[5103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.660420][ T5103] syz.1.626[5103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.681402][ T5103] syz.1.626[5103] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   64.706654][ T5104] netlink: 'syz.4.624': attribute type 4 has an invalid length.
[   65.080693][ T5082] syz.0.617 (5082) used greatest stack depth: 9480 bytes left
[   65.087767][ T5117] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2563 sclass=netlink_route_socket pid=5117 comm=syz.2.631
[   65.120619][ T5121] syz.3.632[5121] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.120683][ T5121] syz.3.632[5121] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.137289][ T5124] syz.4.633[5124] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.158463][ T5121] syz.3.632[5121] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.158713][ T5124] syz.4.633[5124] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.186182][ T5121] netlink: 'syz.3.632': attribute type 4 has an invalid length.
[   65.205322][ T5121] netlink: 17 bytes leftover after parsing attributes in process `syz.3.632'.
[   65.224948][ T5124] syz.4.633[5124] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.242048][ T5128] netlink: 'syz.4.633': attribute type 4 has an invalid length.
[   65.261583][ T5128] netlink: 17 bytes leftover after parsing attributes in process `syz.4.633'.
[   65.300296][ T5121] netlink: 'syz.3.632': attribute type 4 has an invalid length.
[   65.308106][ T5121] netlink: 17 bytes leftover after parsing attributes in process `syz.3.632'.
[   65.342011][ T5135] loop2: detected capacity change from 0 to 512
[   65.353190][ T5131] netlink: 12 bytes leftover after parsing attributes in process `syz.3.632'.
[   65.358716][ T5135] ext4: Unknown parameter 'uid'
[   65.390928][ T5124] netlink: 'syz.4.633': attribute type 4 has an invalid length.
[   65.398796][ T5124] netlink: 17 bytes leftover after parsing attributes in process `syz.4.633'.
[   65.414686][ T5128] netlink: 12 bytes leftover after parsing attributes in process `syz.4.633'.
[   65.503063][ T5143] ALSA: seq fatal error: cannot create timer (-22)
[   65.581493][ T5149] bridge_slave_0: left allmulticast mode
[   65.587262][ T5149] bridge_slave_0: left promiscuous mode
[   65.592941][ T5149] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.603198][ T5149] bridge_slave_1: left allmulticast mode
[   65.609036][ T5149] bridge_slave_1: left promiscuous mode
[   65.614832][ T5149] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.626051][ T5149] bond0: (slave bond_slave_0): Releasing backup interface
[   65.647907][ T5149] bond0: (slave bond_slave_1): Releasing backup interface
[   65.663714][ T5149] team0: Port device team_slave_0 removed
[   65.672845][ T5149] team0: Port device team_slave_1 removed
[   65.699894][ T5149] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.707461][ T5149] batman_adv: batadv0: Removing interface: batadv_slave_0
[   65.719230][ T5149] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.726817][ T5149] batman_adv: batadv0: Removing interface: batadv_slave_1
[   65.842914][ T5159] loop4: detected capacity change from 0 to 512
[   65.853536][ T5159] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   65.871237][ T5159] EXT4-fs (loop4): 1 truncate cleaned up
[   65.964633][ T5167] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   66.118839][ T5165] loop4: detected capacity change from 0 to 4096
[   66.430963][ T5197] loop3: detected capacity change from 0 to 2048
[   66.486045][ T5177] Set syz1 is full, maxelem 65536 reached
[   66.520324][ T5203] x_tables: duplicate underflow at hook 2
[   66.542813][ T5203] SELinux:  Context system_u:object_r:hald_log_t:s0 is not valid (left unmapped).
[   66.633434][ T5211] FAULT_INJECTION: forcing a failure.
[   66.633434][ T5211] name failslab, interval 1, probability 0, space 0, times 0
[   66.646269][ T5211] CPU: 0 UID: 0 PID: 5211 Comm: syz.2.672 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   66.656975][ T5211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   66.667141][ T5211] Call Trace:
[   66.670451][ T5211]  <TASK>
[   66.673484][ T5211]  dump_stack_lvl+0xf2/0x150
[   66.674017][ T5213] loop3: detected capacity change from 0 to 512
[   66.678111][ T5211]  dump_stack+0x15/0x1a
[   66.678152][ T5211]  should_fail_ex+0x223/0x230
[   66.678184][ T5211]  should_failslab+0x8f/0xb0
[   66.685007][ T5213] ext4: Unknown parameter 'uid'
[   66.688559][ T5211]  kmem_cache_alloc_node_noprof+0x59/0x320
[   66.708552][ T5211]  ? __alloc_skb+0x10b/0x310
[   66.713257][ T5211]  __alloc_skb+0x10b/0x310
[   66.717832][ T5211]  rtmsg_ifinfo_build_skb+0x63/0x1b0
[   66.723171][ T5211]  rtmsg_ifinfo+0x6b/0x100
[   66.727702][ T5211]  netdev_state_change+0x9a/0xc0
[   66.732670][ T5211]  do_setlink+0xa46/0x22c0
[   66.737183][ T5211]  ? security_capable+0x81/0x90
[   66.742058][ T5211]  ? ns_capable+0x7d/0xb0
[   66.746413][ T5211]  ? netlink_ns_capable+0x88/0xa0
[   66.751524][ T5211]  rtnl_newlink+0xca4/0x1200
[   66.756202][ T5211]  ? __rcu_read_unlock+0x4e/0x70
[   66.761219][ T5211]  ? xa_load+0xb9/0xe0
[   66.765297][ T5211]  ? memcg_list_lru_alloc+0xce/0x4e0
[   66.770629][ T5211]  ? __memcg_slab_free_hook+0xc9/0x1e0
[   66.776102][ T5211]  ? __rcu_read_unlock+0x4e/0x70
[   66.781059][ T5211]  ? avc_has_perm_noaudit+0x1cc/0x210
[   66.786457][ T5211]  ? selinux_capable+0x1f2/0x260
[   66.791404][ T5211]  ? security_capable+0x81/0x90
[   66.796308][ T5211]  ? ns_capable+0x7d/0xb0
[   66.800714][ T5211]  ? __pfx_rtnl_newlink+0x10/0x10
[   66.805806][ T5211]  rtnetlink_rcv_msg+0x651/0x710
[   66.810753][ T5211]  ? ref_tracker_free+0x3a5/0x410
[   66.815864][ T5211]  ? __dev_queue_xmit+0x186/0x2090
[   66.821046][ T5211]  netlink_rcv_skb+0x12c/0x230
[   66.825864][ T5211]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   66.831343][ T5211]  rtnetlink_rcv+0x1c/0x30
[   66.835776][ T5211]  netlink_unicast+0x599/0x670
[   66.840619][ T5211]  netlink_sendmsg+0x5cc/0x6e0
[   66.845401][ T5211]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.850751][ T5211]  __sock_sendmsg+0x140/0x180
[   66.855448][ T5211]  ____sys_sendmsg+0x312/0x410
[   66.860261][ T5211]  __sys_sendmsg+0x19d/0x230
[   66.864918][ T5211]  __x64_sys_sendmsg+0x46/0x50
[   66.869754][ T5211]  x64_sys_call+0x2734/0x2dc0
[   66.874512][ T5211]  do_syscall_64+0xc9/0x1c0
[   66.879059][ T5211]  ? clear_bhb_loop+0x55/0xb0
[   66.883747][ T5211]  ? clear_bhb_loop+0x55/0xb0
[   66.888430][ T5211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.894387][ T5211] RIP: 0033:0x7f46168bff19
[   66.898824][ T5211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.918487][ T5211] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.926933][ T5211] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   66.934969][ T5211] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[   66.942945][ T5211] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   66.950947][ T5211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.959061][ T5211] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   66.967480][ T5211]  </TASK>
[   66.990043][ T5211] team0: left allmulticast mode
[   66.994964][ T5211] team_slave_0: left allmulticast mode
[   67.000490][ T5211] team_slave_1: left allmulticast mode
[   67.005973][ T5211] netdevsim netdevsim2 netdevsim1: left allmulticast mode
[   67.013369][ T5211] team0: left promiscuous mode
[   67.018187][ T5211] team_slave_0: left promiscuous mode
[   67.023722][ T5211] team_slave_1: left promiscuous mode
[   67.029271][ T5211] netdevsim netdevsim2 netdevsim1: left promiscuous mode
[   67.036575][ T5211] bridge0: port 3(team0) entered disabled state
[   67.109945][ T5215] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   67.117535][ T5215] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   67.125588][ T5215] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   67.165637][ T5211] bridge_slave_0: left allmulticast mode
[   67.171368][ T5211] bridge_slave_0: left promiscuous mode
[   67.177135][ T5211] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.232212][ T5211] bridge_slave_1: left allmulticast mode
[   67.238046][ T5211] bridge_slave_1: left promiscuous mode
[   67.243716][ T5211] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.420254][ T5211] bond0: (slave bond_slave_0): Releasing backup interface
[   67.451242][ T5211] bond_slave_0: left allmulticast mode
[   67.465735][ T5211] bond0: (slave bond_slave_1): Releasing backup interface
[   67.491259][ T5211] bond_slave_1: left allmulticast mode
[   67.500253][ T5211] team0: Port device team_slave_0 removed
[   67.508759][ T5211] team0: Port device team_slave_1 removed
[   67.515074][ T5211] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.522581][ T5211] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.531263][ T5211] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.538739][ T5211] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.569978][ T2962] kernel write not supported for file /326/attr/keycreate (pid: 2962 comm: kworker/0:2)
[   67.569954][ T5211] team0: Port device netdevsim1 removed
[   67.595824][ T5220] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[   67.748899][ T5246] syz.0.682[5246] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.751207][ T5246] netlink: 'syz.0.682': attribute type 4 has an invalid length.
[   67.825686][ T5246] netlink: 'syz.0.682': attribute type 4 has an invalid length.
[   67.976342][ T5259] xt_hashlimit: max too large, truncated to 1048576
[   68.207933][   T29] kauditd_printk_skb: 292 callbacks suppressed
[   68.207950][   T29] audit: type=1400 audit(1733337987.834:2503): avc:  denied  { create } for  pid=5267 comm="syz.1.694" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   68.216438][ T5242] Set syz1 is full, maxelem 65536 reached
[   68.246575][   T29] audit: type=1326 audit(1733337987.954:2504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5241 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   68.270065][   T29] audit: type=1326 audit(1733337987.954:2505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5241 comm="syz.3.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   68.320966][   T29] audit: type=1400 audit(1733337987.954:2506): avc:  denied  { bind } for  pid=5267 comm="syz.1.694" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[   68.345165][ T5279] FAULT_INJECTION: forcing a failure.
[   68.345165][ T5279] name failslab, interval 1, probability 0, space 0, times 0
[   68.357875][ T5279] CPU: 0 UID: 0 PID: 5279 Comm: syz.0.696 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   68.368491][ T5279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.378616][ T5279] Call Trace:
[   68.381906][ T5279]  <TASK>
[   68.385111][ T5279]  dump_stack_lvl+0xf2/0x150
[   68.389762][ T5279]  dump_stack+0x15/0x1a
[   68.394008][ T5279]  should_fail_ex+0x223/0x230
[   68.398718][ T5279]  should_failslab+0x8f/0xb0
[   68.403375][ T5279]  kmem_cache_alloc_noprof+0x52/0x320
[   68.408788][ T5279]  ? security_file_alloc+0x32/0x100
[   68.414068][ T5279]  security_file_alloc+0x32/0x100
[   68.419147][ T5279]  init_file+0x5b/0x1b0
[   68.423394][ T5279]  alloc_empty_file+0xea/0x200
[   68.428263][ T5279]  alloc_file_pseudo+0xc3/0x140
[   68.433177][ T5279]  anon_inode_getfd+0xc2/0x170
[   68.438064][ T5279]  btf_new_fd+0x667/0x790
[   68.442470][ T5279]  bpf_btf_load+0x115/0x130
[   68.446992][ T5279]  __sys_bpf+0x686/0x7a0
[   68.451272][ T5279]  __x64_sys_bpf+0x43/0x50
[   68.455736][ T5279]  x64_sys_call+0x2914/0x2dc0
[   68.460442][ T5279]  do_syscall_64+0xc9/0x1c0
[   68.465042][ T5279]  ? clear_bhb_loop+0x55/0xb0
[   68.469792][ T5279]  ? clear_bhb_loop+0x55/0xb0
[   68.474543][ T5279]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.480473][ T5279] RIP: 0033:0x7eff8da3ff19
[   68.484973][ T5279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.504798][ T5279] RSP: 002b:00007eff8c075058 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   68.513231][ T5279] RAX: ffffffffffffffda RBX: 00007eff8dc06160 RCX: 00007eff8da3ff19
[   68.521228][ T5279] RDX: 0000000000000020 RSI: 0000000020000140 RDI: 0000000000000012
[   68.529242][ T5279] RBP: 00007eff8c0750a0 R08: 0000000000000000 R09: 0000000000000000
[   68.537231][ T5279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.545226][ T5279] R13: 0000000000000000 R14: 00007eff8dc06160 R15: 00007ffd254815a8
[   68.553269][ T5279]  </TASK>
[   68.678664][ T5278] netlink: 'syz.2.698': attribute type 4 has an invalid length.
[   68.686415][ T5278] __nla_validate_parse: 4 callbacks suppressed
[   68.686431][ T5278] netlink: 17 bytes leftover after parsing attributes in process `syz.2.698'.
[   68.720219][   T29] audit: type=1326 audit(1733337988.324:2507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.1.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   68.743620][   T29] audit: type=1326 audit(1733337988.324:2508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.1.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   68.747786][ T5289] netlink: 'syz.2.698': attribute type 4 has an invalid length.
[   68.767008][   T29] audit: type=1326 audit(1733337988.324:2509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.1.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   68.767056][   T29] audit: type=1326 audit(1733337988.324:2510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.1.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   68.774673][ T5289] netlink: 17 bytes leftover after parsing attributes in process `syz.2.698'.
[   68.830527][   T29] audit: type=1326 audit(1733337988.324:2511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.1.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   68.832876][ T5290] loop3: detected capacity change from 0 to 512
[   68.853845][   T29] audit: type=1326 audit(1733337988.324:2512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5267 comm="syz.1.694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   68.886478][ T5278] netlink: 12 bytes leftover after parsing attributes in process `syz.2.698'.
[   68.895705][ T5292] FAULT_INJECTION: forcing a failure.
[   68.895705][ T5292] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.909014][ T5292] CPU: 0 UID: 0 PID: 5292 Comm: syz.4.702 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   68.919636][ T5292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   68.929720][ T5292] Call Trace:
[   68.933088][ T5292]  <TASK>
[   68.936025][ T5292]  dump_stack_lvl+0xf2/0x150
[   68.940697][ T5292]  dump_stack+0x15/0x1a
[   68.944945][ T5292]  should_fail_ex+0x223/0x230
[   68.949637][ T5292]  should_fail+0xb/0x10
[   68.953883][ T5292]  should_fail_usercopy+0x1a/0x20
[   68.958921][ T5292]  strncpy_from_user+0x25/0x210
[   68.963804][ T5292]  ? kmem_cache_alloc_noprof+0x18e/0x320
[   68.969449][ T5292]  ? getname_flags+0x81/0x3b0
[   68.974273][ T5292]  getname_flags+0xb0/0x3b0
[   68.978784][ T5292]  user_path_at+0x26/0x120
[   68.983213][ T5292]  __se_sys_mount+0x248/0x2d0
[   68.987993][ T5292]  ? fput+0x1c4/0x200
[   68.992055][ T5292]  __x64_sys_mount+0x67/0x80
[   68.996665][ T5292]  x64_sys_call+0x2c84/0x2dc0
[   69.001432][ T5292]  do_syscall_64+0xc9/0x1c0
[   69.005943][ T5292]  ? clear_bhb_loop+0x55/0xb0
[   69.010627][ T5292]  ? clear_bhb_loop+0x55/0xb0
[   69.015311][ T5292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.021289][ T5292] RIP: 0033:0x7ff0bc67ff19
[   69.025714][ T5292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.045362][ T5292] RSP: 002b:00007ff0bacf7058 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   69.053786][ T5292] RAX: ffffffffffffffda RBX: 00007ff0bc845fa0 RCX: 00007ff0bc67ff19
[   69.061855][ T5292] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000020000000
[   69.069832][ T5292] RBP: 00007ff0bacf70a0 R08: 0000000000000000 R09: 0000000000000000
[   69.077806][ T5292] R10: 0000000000001001 R11: 0000000000000246 R12: 0000000000000001
[   69.085792][ T5292] R13: 0000000000000000 R14: 00007ff0bc845fa0 R15: 00007fffa8c13888
[   69.093789][ T5292]  </TASK>
[   69.112905][ T5290] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   69.124454][ T5290] EXT4-fs (loop3): 1 truncate cleaned up
[   69.132191][ T5290] EXT4-fs mount: 38 callbacks suppressed
[   69.132210][ T5290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.243192][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.304172][ T5315] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   69.311794][ T5315] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   69.319499][ T5303] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   69.397654][ T5322] netlink: 8 bytes leftover after parsing attributes in process `syz.3.714'.
[   69.730122][ T5333] loop2: detected capacity change from 0 to 1024
[   69.779956][ T5333] EXT4-fs: Ignoring removed oldalloc option
[   69.824040][ T5333] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   69.877544][ T5333] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.975207][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.114147][ T5355] netlink: 260 bytes leftover after parsing attributes in process `syz.0.726'.
[   70.233125][ T5364] loop4: detected capacity change from 0 to 2048
[   70.269063][ T5364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.346679][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.647941][ T5390] FAULT_INJECTION: forcing a failure.
[   70.647941][ T5390] name failslab, interval 1, probability 0, space 0, times 0
[   70.660689][ T5390] CPU: 1 UID: 0 PID: 5390 Comm: syz.4.738 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   70.671302][ T5390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.681900][ T5390] Call Trace:
[   70.685303][ T5390]  <TASK>
[   70.688257][ T5390]  dump_stack_lvl+0xf2/0x150
[   70.692900][ T5390]  dump_stack+0x15/0x1a
[   70.697141][ T5390]  should_fail_ex+0x223/0x230
[   70.701859][ T5390]  ? audit_log_d_path+0x96/0x250
[   70.706853][ T5390]  should_failslab+0x8f/0xb0
[   70.711520][ T5390]  __kmalloc_cache_noprof+0x4e/0x320
[   70.716885][ T5390]  audit_log_d_path+0x96/0x250
[   70.721720][ T5390]  ? __rcu_read_unlock+0x4e/0x70
[   70.726684][ T5390]  audit_log_d_path_exe+0x42/0x70
[   70.731734][ T5390]  audit_log_task+0x192/0x1c0
[   70.736626][ T5390]  audit_seccomp+0x68/0x130
[   70.741210][ T5390]  __seccomp_filter+0x6fa/0x1180
[   70.746173][ T5390]  ? __rcu_read_unlock+0x4e/0x70
[   70.751160][ T5390]  ? bpf_trace_run2+0x123/0x1d0
[   70.756107][ T5390]  ? __sys_setsockopt+0x193/0x200
[   70.761150][ T5390]  __secure_computing+0x9f/0x1c0
[   70.766228][ T5390]  syscall_trace_enter+0xd1/0x1f0
[   70.771350][ T5390]  do_syscall_64+0xaa/0x1c0
[   70.775958][ T5390]  ? clear_bhb_loop+0x55/0xb0
[   70.780695][ T5390]  ? clear_bhb_loop+0x55/0xb0
[   70.785382][ T5390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.791407][ T5390] RIP: 0033:0x7ff0bc67e92c
[   70.795929][ T5390] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   70.815556][ T5390] RSP: 002b:00007ff0bacf7050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   70.823995][ T5390] RAX: ffffffffffffffda RBX: 00007ff0bc845fa0 RCX: 00007ff0bc67e92c
[   70.832108][ T5390] RDX: 000000000000000f RSI: 00007ff0bacf70b0 RDI: 0000000000000008
[   70.840105][ T5390] RBP: 00007ff0bacf70a0 R08: 0000000000000000 R09: 0000000000000000
[   70.848129][ T5390] R10: 0000000020000600 R11: 0000000000000246 R12: 0000000000000002
[   70.856231][ T5390] R13: 0000000000000000 R14: 00007ff0bc845fa0 R15: 00007fffa8c13888
[   70.864272][ T5390]  </TASK>
[   70.975770][ T5402] loop4: detected capacity change from 0 to 2048
[   70.999746][ T5402] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.072979][ T5413] bpf_get_probe_write_proto: 5 callbacks suppressed
[   71.072996][ T5413] syz.0.747[5413] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.083373][ T5413] syz.0.747[5413] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.092242][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.095191][ T5413] syz.0.747[5413] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.119970][ T5413] netlink: 'syz.0.747': attribute type 4 has an invalid length.
[   71.139546][ T5413] netlink: 17 bytes leftover after parsing attributes in process `syz.0.747'.
[   71.151591][ T5419] FAULT_INJECTION: forcing a failure.
[   71.151591][ T5419] name failslab, interval 1, probability 0, space 0, times 0
[   71.164335][ T5419] CPU: 1 UID: 0 PID: 5419 Comm: syz.4.749 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   71.165553][ T5413] netlink: 'syz.0.747': attribute type 4 has an invalid length.
[   71.174980][ T5419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.175000][ T5419] Call Trace:
[   71.175008][ T5419]  <TASK>
[   71.175049][ T5419]  dump_stack_lvl+0xf2/0x150
[   71.175119][ T5419]  dump_stack+0x15/0x1a
[   71.175169][ T5419]  should_fail_ex+0x223/0x230
[   71.175202][ T5419]  should_failslab+0x8f/0xb0
[   71.183033][ T5413] netlink: 17 bytes leftover after parsing attributes in process `syz.0.747'.
[   71.193145][ T5419]  kmem_cache_alloc_node_noprof+0x59/0x320
[   71.193209][ T5419]  ? __alloc_skb+0x10b/0x310
[   71.193300][ T5419]  __alloc_skb+0x10b/0x310
[   71.193346][ T5419]  netlink_alloc_large_skb+0xad/0xe0
[   71.193374][ T5419]  netlink_sendmsg+0x3b4/0x6e0
[   71.251533][ T5419]  ? __pfx_netlink_sendmsg+0x10/0x10
[   71.256841][ T5419]  __sock_sendmsg+0x140/0x180
[   71.261573][ T5419]  ____sys_sendmsg+0x312/0x410
[   71.266401][ T5419]  __sys_sendmsg+0x19d/0x230
[   71.271038][ T5419]  __x64_sys_sendmsg+0x46/0x50
[   71.275834][ T5419]  x64_sys_call+0x2734/0x2dc0
[   71.280527][ T5419]  do_syscall_64+0xc9/0x1c0
[   71.285036][ T5419]  ? clear_bhb_loop+0x55/0xb0
[   71.289729][ T5419]  ? clear_bhb_loop+0x55/0xb0
[   71.294477][ T5419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.300566][ T5419] RIP: 0033:0x7ff0bc67ff19
[   71.304986][ T5419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.324903][ T5419] RSP: 002b:00007ff0bacf7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.333348][ T5419] RAX: ffffffffffffffda RBX: 00007ff0bc845fa0 RCX: 00007ff0bc67ff19
[   71.341351][ T5419] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000006
[   71.349348][ T5419] RBP: 00007ff0bacf70a0 R08: 0000000000000000 R09: 0000000000000000
[   71.357461][ T5419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.365450][ T5419] R13: 0000000000000000 R14: 00007ff0bc845fa0 R15: 00007fffa8c13888
[   71.373482][ T5419]  </TASK>
[   71.406532][ T5422] loop0: detected capacity change from 0 to 512
[   71.464586][ T5422] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.478182][ T5422] ext4 filesystem being mounted at /159/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.492436][ T5422] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #12: comm syz.0.751: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   71.492461][ T5424] FAULT_INJECTION: forcing a failure.
[   71.492461][ T5424] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.492497][ T5424] CPU: 1 UID: 0 PID: 5424 Comm: syz.1.752 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   71.519524][ T5422] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #12: comm syz.0.751: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   71.523206][ T5424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.523291][ T5424] Call Trace:
[   71.523301][ T5424]  <TASK>
[   71.523312][ T5424]  dump_stack_lvl+0xf2/0x150
[   71.523362][ T5424]  dump_stack+0x15/0x1a
[   71.535521][ T5422] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #12: comm syz.0.751: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   71.551715][ T5424]  should_fail_ex+0x223/0x230
[   71.551755][ T5424]  should_fail+0xb/0x10
[   71.551781][ T5424]  should_fail_usercopy+0x1a/0x20
[   71.551868][ T5424]  _copy_to_user+0x20/0xa0
[   71.613272][ T5424]  simple_read_from_buffer+0xa0/0x110
[   71.618693][ T5424]  proc_fail_nth_read+0xf9/0x140
[   71.623650][ T5424]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   71.629233][ T5424]  vfs_read+0x1a2/0x700
[   71.633401][ T5424]  ? __rcu_read_unlock+0x4e/0x70
[   71.638427][ T5424]  ? __fget_files+0x17c/0x1c0
[   71.643152][ T5424]  ksys_read+0xe8/0x1b0
[   71.647333][ T5424]  __x64_sys_read+0x42/0x50
[   71.651913][ T5424]  x64_sys_call+0x2874/0x2dc0
[   71.656605][ T5424]  do_syscall_64+0xc9/0x1c0
[   71.661116][ T5424]  ? clear_bhb_loop+0x55/0xb0
[   71.665902][ T5424]  ? clear_bhb_loop+0x55/0xb0
[   71.670592][ T5424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.676508][ T5424] RIP: 0033:0x7f72dce5e92c
[   71.680960][ T5424] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   71.700693][ T5424] RSP: 002b:00007f72db4d7050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   71.709175][ T5424] RAX: ffffffffffffffda RBX: 00007f72dd025fa0 RCX: 00007f72dce5e92c
[   71.717181][ T5424] RDX: 000000000000000f RSI: 00007f72db4d70b0 RDI: 0000000000000007
[   71.725199][ T5424] RBP: 00007f72db4d70a0 R08: 0000000000000000 R09: 0000000000000000
[   71.733218][ T5424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.741201][ T5424] R13: 0000000000000000 R14: 00007f72dd025fa0 R15: 00007ffe48f4d658
[   71.749205][ T5424]  </TASK>
[   71.818241][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.894815][ T5448] syz.1.761[5448] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.894908][ T5448] syz.1.761[5448] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.915331][ T5448] syz.1.761[5448] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   71.937292][ T5452] FAULT_INJECTION: forcing a failure.
[   71.937292][ T5452] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.956430][ T5450] loop0: detected capacity change from 0 to 2048
[   71.961748][ T5452] CPU: 1 UID: 0 PID: 5452 Comm: syz.3.762 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   71.978714][ T5452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.988830][ T5452] Call Trace:
[   71.992113][ T5452]  <TASK>
[   71.995046][ T5452]  dump_stack_lvl+0xf2/0x150
[   71.999740][ T5452]  dump_stack+0x15/0x1a
[   72.003918][ T5452]  should_fail_ex+0x223/0x230
[   72.008684][ T5452]  should_fail+0xb/0x10
[   72.012892][ T5452]  should_fail_usercopy+0x1a/0x20
[   72.017929][ T5452]  _copy_from_user+0x1e/0xb0
[   72.022538][ T5452]  move_addr_to_kernel+0x82/0x120
[   72.027657][ T5452]  copy_msghdr_from_user+0x271/0x2a0
[   72.032984][ T5452]  __sys_sendmsg+0x13e/0x230
[   72.037674][ T5452]  __x64_sys_sendmsg+0x46/0x50
[   72.042496][ T5452]  x64_sys_call+0x2734/0x2dc0
[   72.047183][ T5452]  do_syscall_64+0xc9/0x1c0
[   72.051727][ T5452]  ? clear_bhb_loop+0x55/0xb0
[   72.056409][ T5452]  ? clear_bhb_loop+0x55/0xb0
[   72.061163][ T5452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.067155][ T5452] RIP: 0033:0x7ff76978ff19
[   72.071576][ T5452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.091256][ T5452] RSP: 002b:00007ff767e07058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.099683][ T5452] RAX: ffffffffffffffda RBX: 00007ff769955fa0 RCX: 00007ff76978ff19
[   72.107662][ T5452] RDX: 0000000000000000 RSI: 0000000020000b00 RDI: 0000000000000006
[   72.115669][ T5452] RBP: 00007ff767e070a0 R08: 0000000000000000 R09: 0000000000000000
[   72.123723][ T5452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.131727][ T5452] R13: 0000000000000000 R14: 00007ff769955fa0 R15: 00007ffc1a8f8b88
[   72.139822][ T5452]  </TASK>
[   72.152211][ T5448] netlink: 'syz.1.761': attribute type 4 has an invalid length.
[   72.159954][ T5448] netlink: 17 bytes leftover after parsing attributes in process `syz.1.761'.
[   72.180100][ T5448] netlink: 'syz.1.761': attribute type 4 has an invalid length.
[   72.187896][ T5448] netlink: 17 bytes leftover after parsing attributes in process `syz.1.761'.
[   72.220232][ T5450] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.253802][ T5465] loop3: detected capacity change from 0 to 512
[   72.273657][ T5465] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #2: comm syz.3.764: corrupted xattr block 255: invalid header
[   72.287000][ T5465] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[   72.294555][ T5444] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   72.303949][ T5465] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.317016][ T5465] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #2: comm syz.3.764: corrupted xattr block 255: invalid header
[   72.330651][ T5465] SELinux: (dev loop3, type ext4) getxattr errno 117
[   72.331273][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.340007][ T5465] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.444965][ T5474] loop3: detected capacity change from 0 to 512
[   72.457631][ T5474] EXT4-fs (loop3): SIPHASH is not a valid default hash value
[   72.464327][ T5477] loop0: detected capacity change from 0 to 512
[   72.480256][ T5477] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec01c, mo2=0002]
[   72.489191][ T5477] System zones: 0-2, 18-18, 34-34
[   72.495264][ T5477] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.769: bg 0: block 248: padding at end of block bitmap is not set
[   72.510495][ T5477] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.769: Failed to acquire dquot type 1
[   72.523635][ T5477] EXT4-fs (loop0): 1 truncate cleaned up
[   72.534202][ T5480] netlink: 8 bytes leftover after parsing attributes in process `syz.3.768'.
[   72.544352][ T5477] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.559183][ T5477] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.571857][ T5477] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.769: Failed to acquire dquot type 1
[   72.583709][ T5480] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   72.657434][ T5477] syz.0.769 (5477) used greatest stack depth: 9304 bytes left
[   72.678921][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.761783][ T5490] FAULT_INJECTION: forcing a failure.
[   72.761783][ T5490] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.775163][ T5490] CPU: 0 UID: 0 PID: 5490 Comm: syz.3.774 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   72.785855][ T5490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   72.796071][ T5490] Call Trace:
[   72.799374][ T5490]  <TASK>
[   72.802327][ T5490]  dump_stack_lvl+0xf2/0x150
[   72.807011][ T5490]  dump_stack+0x15/0x1a
[   72.811315][ T5490]  should_fail_ex+0x223/0x230
[   72.816102][ T5490]  should_fail+0xb/0x10
[   72.820338][ T5490]  should_fail_usercopy+0x1a/0x20
[   72.825553][ T5490]  _copy_to_user+0x20/0xa0
[   72.829998][ T5490]  simple_read_from_buffer+0xa0/0x110
[   72.835469][ T5490]  proc_fail_nth_read+0xf9/0x140
[   72.840540][ T5490]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.846107][ T5490]  vfs_read+0x1a2/0x700
[   72.850722][ T5490]  ? __rcu_read_unlock+0x4e/0x70
[   72.855755][ T5490]  ? __fget_files+0x17c/0x1c0
[   72.860466][ T5490]  ksys_read+0xe8/0x1b0
[   72.864641][ T5490]  __x64_sys_read+0x42/0x50
[   72.869221][ T5490]  x64_sys_call+0x2874/0x2dc0
[   72.873982][ T5490]  do_syscall_64+0xc9/0x1c0
[   72.878563][ T5490]  ? clear_bhb_loop+0x55/0xb0
[   72.883247][ T5490]  ? clear_bhb_loop+0x55/0xb0
[   72.887938][ T5490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.893935][ T5490] RIP: 0033:0x7ff76978e92c
[   72.898419][ T5490] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   72.918050][ T5490] RSP: 002b:00007ff767e07050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.926507][ T5490] RAX: ffffffffffffffda RBX: 00007ff769955fa0 RCX: 00007ff76978e92c
[   72.934640][ T5490] RDX: 000000000000000f RSI: 00007ff767e070b0 RDI: 0000000000000007
[   72.942628][ T5490] RBP: 00007ff767e070a0 R08: 0000000000000000 R09: 0000000000000000
[   72.950657][ T5490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.958797][ T5490] R13: 0000000000000000 R14: 00007ff769955fa0 R15: 00007ffc1a8f8b88
[   72.966790][ T5490]  </TASK>
[   72.981150][ T5492] syz.2.775[5492] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.981288][ T5492] syz.2.775[5492] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   72.993626][ T5492] syz.2.775[5492] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.012072][ T5492] netlink: 'syz.2.775': attribute type 4 has an invalid length.
[   73.033886][ T5492] netlink: 'syz.2.775': attribute type 4 has an invalid length.
[   73.043592][ T5498] loop3: detected capacity change from 0 to 2048
[   73.096262][ T5498] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.126090][ T5509] loop6: detected capacity change from 0 to 7
[   73.133009][ T5509] Buffer I/O error on dev loop6, logical block 0, async page read
[   73.141578][ T5509] Buffer I/O error on dev loop6, logical block 0, async page read
[   73.149471][ T5509]  loop6: unable to read partition table
[   73.164140][ T5509] loop_reread_partitions: partition scan of loop6 (�被x������ڬ��dƤ����ݡ�����
[   73.164140][ T5509] 
) failed (rc=-5)
[   73.183848][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.244287][   T29] kauditd_printk_skb: 440 callbacks suppressed
[   73.244307][   T29] audit: type=1326 audit(1733337992.954:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5507 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff8da3ff19 code=0x7ffc0000
[   73.302294][ T5509] veth0_to_team: entered promiscuous mode
[   73.308320][ T5509] veth0_to_team: entered allmulticast mode
[   73.344860][   T29] audit: type=1400 audit(1733337993.044:2950): avc:  denied  { read } for  pid=5517 comm="syz.1.785" name="ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   73.349247][ T5512] loop4: detected capacity change from 0 to 128
[   73.368323][   T29] audit: type=1400 audit(1733337993.044:2951): avc:  denied  { open } for  pid=5517 comm="syz.1.785" path="/dev/ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   73.398214][   T29] audit: type=1400 audit(1733337993.044:2952): avc:  denied  { ioctl } for  pid=5517 comm="syz.1.785" path="/dev/ptp0" dev="devtmpfs" ino=246 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   73.423176][   T29] audit: type=1400 audit(1733337993.134:2953): avc:  denied  { mount } for  pid=5506 comm="syz.4.780" name="/" dev="loop4" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   73.481163][   T29] audit: type=1400 audit(1733337993.194:2954): avc:  denied  { append } for  pid=5515 comm="syz.3.783" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   73.504209][   T29] audit: type=1326 audit(1733337993.194:2955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5515 comm="syz.3.783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   73.527649][   T29] audit: type=1326 audit(1733337993.194:2956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5515 comm="syz.3.783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   73.551082][   T29] audit: type=1326 audit(1733337993.194:2957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5515 comm="syz.3.783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   73.574610][   T29] audit: type=1326 audit(1733337993.194:2958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5515 comm="syz.3.783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   73.647396][ T5528] syz.1.789[5528] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.648148][ T5528] netlink: 'syz.1.789': attribute type 4 has an invalid length.
[   73.667820][ T5528] netlink: 'syz.1.789': attribute type 4 has an invalid length.
[   73.715365][ T5532] Process accounting resumed
[   73.766473][ T5524] netlink: 'syz.2.788': attribute type 4 has an invalid length.
[   73.817252][ T5538] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   73.829435][ T5538] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   73.837825][ T5536] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   74.061443][ T5548] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5548 comm=syz.2.796
[   74.081608][ T5560] netlink: 'syz.1.800': attribute type 4 has an invalid length.
[   74.089340][ T5560] __nla_validate_parse: 6 callbacks suppressed
[   74.089354][ T5560] netlink: 17 bytes leftover after parsing attributes in process `syz.1.800'.
[   74.165017][ T5571] FAULT_INJECTION: forcing a failure.
[   74.165017][ T5571] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.178316][ T5571] CPU: 1 UID: 0 PID: 5571 Comm: syz.2.802 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   74.188993][ T5571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   74.199078][ T5571] Call Trace:
[   74.202372][ T5571]  <TASK>
[   74.205333][ T5571]  dump_stack_lvl+0xf2/0x150
[   74.209966][ T5571]  dump_stack+0x15/0x1a
[   74.214308][ T5571]  should_fail_ex+0x223/0x230
[   74.219004][ T5571]  should_fail+0xb/0x10
[   74.223171][ T5571]  should_fail_usercopy+0x1a/0x20
[   74.228246][ T5571]  _copy_from_user+0x1e/0xb0
[   74.232942][ T5571]  cmsghdr_from_user_compat_to_kern+0x29c/0x590
[   74.239203][ T5571]  ____sys_sendmsg+0xd6/0x410
[   74.243900][ T5571]  ? __rcu_read_unlock+0x4e/0x70
[   74.249014][ T5571]  __sys_sendmsg_sock+0x29/0x40
[   74.253882][ T5571]  io_sendmsg+0x153/0x490
[   74.258339][ T5571]  io_issue_sqe+0x181/0xc10
[   74.262860][ T5571]  ? io_sendmsg_prep+0x3a5/0x600
[   74.267817][ T5571]  io_submit_sqes+0x64d/0x1090
[   74.272732][ T5571]  __se_sys_io_uring_enter+0x1b9/0x1ba0
[   74.278410][ T5571]  ? 0xffffffff81000000
[   74.282580][ T5571]  ? selinux_file_permission+0x22a/0x360
[   74.288324][ T5571]  ? get_pid_task+0x8e/0xc0
[   74.292881][ T5571]  ? proc_fail_nth_write+0x12a/0x150
[   74.298184][ T5571]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   74.303887][ T5571]  ? vfs_write+0x596/0x920
[   74.308326][ T5571]  ? __fget_files+0x17c/0x1c0
[   74.313029][ T5571]  ? fput+0x1c4/0x200
[   74.317022][ T5571]  ? ksys_write+0x176/0x1b0
[   74.321544][ T5571]  __x64_sys_io_uring_enter+0x78/0x90
[   74.326958][ T5571]  x64_sys_call+0xb5e/0x2dc0
[   74.331571][ T5571]  do_syscall_64+0xc9/0x1c0
[   74.336103][ T5571]  ? clear_bhb_loop+0x55/0xb0
[   74.340875][ T5571]  ? clear_bhb_loop+0x55/0xb0
[   74.345585][ T5571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.351558][ T5571] RIP: 0033:0x7f46168bff19
[   74.355980][ T5571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.375733][ T5571] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[   74.384171][ T5571] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   74.392190][ T5571] RDX: 0000000000000000 RSI: 0000000000000092 RDI: 0000000000000003
[   74.400277][ T5571] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   74.408340][ T5571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.416386][ T5571] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   74.424474][ T5571]  </TASK>
[   74.618489][ T5585] sch_tbf: burst 0 is lower than device lo mtu (11337746) !
[   74.894211][ T5606] loop4: detected capacity change from 0 to 512
[   75.271623][ T5607] loop3: detected capacity change from 0 to 512
[   75.786813][ T5606] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.796869][ T5607] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   77.037483][ T5614] loop0: detected capacity change from 0 to 512
[   77.044253][ T5614] ext4: Unknown parameter 'uid'
[   78.008237][ T5606] EXT4-fs: error -4 creating inode table initialization thread
[   78.015977][ T5606] EXT4-fs (loop4): mount failed
[   78.107413][ T5607] EXT4-fs: error -4 creating inode table initialization thread
[   78.115120][ T5607] EXT4-fs (loop3): mount failed
[   78.246658][ T5628] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   78.274623][   T29] kauditd_printk_skb: 49 callbacks suppressed
[   78.274643][   T29] audit: type=1400 audit(1733337997.984:3008): avc:  denied  { write } for  pid=5629 comm="syz.4.825" path="socket:[11704]" dev="sockfs" ino=11704 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   78.310149][ T5628] netlink: 'syz.3.824': attribute type 6 has an invalid length.
[   78.330074][   T29] audit: type=1400 audit(1733337998.024:3009): avc:  denied  { getopt } for  pid=5627 comm="syz.3.824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   78.349555][   T29] audit: type=1326 audit(1733337998.024:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.373000][   T29] audit: type=1326 audit(1733337998.024:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.396452][   T29] audit: type=1326 audit(1733337998.024:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.419920][   T29] audit: type=1326 audit(1733337998.024:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.443419][   T29] audit: type=1326 audit(1733337998.024:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.467490][   T29] audit: type=1326 audit(1733337998.034:3015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.490827][   T29] audit: type=1326 audit(1733337998.034:3016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.514546][   T29] audit: type=1326 audit(1733337998.034:3017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5627 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff76978ff19 code=0x7ffc0000
[   78.649350][ T5645] loop4: detected capacity change from 0 to 764
[   78.734793][ T5653] netlink: 24 bytes leftover after parsing attributes in process `syz.2.833'.
[   78.738710][ T5651] loop3: detected capacity change from 0 to 2048
[   78.768839][ T5645] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   78.817976][ T5656] loop0: detected capacity change from 0 to 512
[   78.826944][ T5656] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   79.041102][ T5656] EXT4-fs (loop0): 1 truncate cleaned up
[   79.047563][ T5656] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.073854][ T5651] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.362342][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.262105][ T5706] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   80.274569][ T5706] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   80.282509][ T5706] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   80.289970][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.454046][ T5715] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.467806][ T5722] dvmrp1: entered allmulticast mode
[   80.476891][ T5715] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   80.495912][ T5722] dvmrp1: left allmulticast mode
[   80.588258][ T5733] netlink: 'syz.3.866': attribute type 4 has an invalid length.
[   80.595954][ T5733] netlink: 17 bytes leftover after parsing attributes in process `syz.3.866'.
[   80.724755][ T5751] netlink: 92 bytes leftover after parsing attributes in process `syz.3.869'.
[   80.748299][ T5751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.869'.
[   80.757353][ T5751] netlink: 24 bytes leftover after parsing attributes in process `syz.3.869'.
[   80.899759][ T5764] netlink: 'syz.1.879': attribute type 4 has an invalid length.
[   80.907551][ T5764] netlink: 17 bytes leftover after parsing attributes in process `syz.1.879'.
[   81.077417][ T5783] netlink: 24 bytes leftover after parsing attributes in process `syz.1.886'.
[   81.089737][ T5783] af_packet: tpacket_rcv: packet too big, clamped from 86 to 4294967286. macoff=82
[   81.110501][ T5785] FAULT_INJECTION: forcing a failure.
[   81.110501][ T5785] name failslab, interval 1, probability 0, space 0, times 0
[   81.123193][ T5785] CPU: 1 UID: 0 PID: 5785 Comm: syz.2.887 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   81.133806][ T5785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   81.144039][ T5785] Call Trace:
[   81.147340][ T5785]  <TASK>
[   81.150280][ T5785]  dump_stack_lvl+0xf2/0x150
[   81.154983][ T5785]  dump_stack+0x15/0x1a
[   81.159251][ T5785]  should_fail_ex+0x223/0x230
[   81.163972][ T5785]  ? io_sqe_buffer_register+0x83/0x1460
[   81.169545][ T5785]  should_failslab+0x8f/0xb0
[   81.174181][ T5785]  __kmalloc_cache_noprof+0x4e/0x320
[   81.179506][ T5785]  io_sqe_buffer_register+0x83/0x1460
[   81.184936][ T5785]  ? mntput+0x49/0x70
[   81.188992][ T5785]  ? terminate_walk+0x260/0x280
[   81.193869][ T5785]  ? should_fail_ex+0xd7/0x230
[   81.198677][ T5785]  __io_register_rsrc_update+0x320/0xa30
[   81.204420][ T5785]  io_register_rsrc_update+0x108/0x120
[   81.209918][ T5785]  __se_sys_io_uring_register+0x71d/0x21d0
[   81.215806][ T5785]  ? get_pid_task+0x8e/0xc0
[   81.220327][ T5785]  ? proc_fail_nth_write+0x12a/0x150
[   81.225693][ T5785]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   81.231368][ T5785]  ? vfs_write+0x596/0x920
[   81.235822][ T5785]  ? putname+0xcf/0xf0
[   81.239987][ T5785]  ? __fget_files+0x17c/0x1c0
[   81.244764][ T5785]  ? fput+0x1c4/0x200
[   81.248847][ T5785]  ? ksys_write+0x176/0x1b0
[   81.253415][ T5785]  __x64_sys_io_uring_register+0x55/0x70
[   81.259347][ T5785]  x64_sys_call+0x2c52/0x2dc0
[   81.264123][ T5785]  do_syscall_64+0xc9/0x1c0
[   81.268701][ T5785]  ? clear_bhb_loop+0x55/0xb0
[   81.273411][ T5785]  ? clear_bhb_loop+0x55/0xb0
[   81.278249][ T5785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.284208][ T5785] RIP: 0033:0x7f46168bff19
[   81.288643][ T5785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.308525][ T5785] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   81.317050][ T5785] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   81.325051][ T5785] RDX: 0000000020000600 RSI: 0000000000000010 RDI: 0000000000000006
[   81.333041][ T5785] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   81.341089][ T5785] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   81.349549][ T5785] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   81.357556][ T5785]  </TASK>
[   81.397823][ T5793] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   81.410829][ T5793] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[   81.840443][ T5825] Illegal XDP return value 219108063 on prog  (id 611) dev N/A, expect packet loss!
[   81.852845][ T5829] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   81.864254][ T5825] netlink: 24 bytes leftover after parsing attributes in process `syz.3.905'.
[   81.867744][ T5829] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   81.911427][ T5819] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   81.938603][ T5835] SELinux:  policydb version 0 does not match my version range 15-33
[   81.946786][ T5835] SELinux: failed to load policy
[   81.969453][ T5838] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.978164][ T5838] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.012269][ T5842] loop0: detected capacity change from 0 to 128
[   82.027412][ T5846] SELinux:  policydb version 0 does not match my version range 15-33
[   82.035650][ T5846] SELinux: failed to load policy
[   82.042832][ T5842] EXT4-fs: Ignoring removed nobh option
[   82.098703][ T5842] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.136847][ T5842] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   82.194424][ T5857] netlink: 'syz.1.917': attribute type 4 has an invalid length.
[   82.206754][ T3297] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.221020][ T5857] netlink: 'syz.1.917': attribute type 4 has an invalid length.
[   82.262782][ T5863] FAULT_INJECTION: forcing a failure.
[   82.262782][ T5863] name failslab, interval 1, probability 0, space 0, times 0
[   82.275470][ T5863] CPU: 0 UID: 0 PID: 5863 Comm: syz.1.920 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   82.286079][ T5863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   82.296189][ T5863] Call Trace:
[   82.299601][ T5863]  <TASK>
[   82.302566][ T5863]  dump_stack_lvl+0xf2/0x150
[   82.307212][ T5863]  dump_stack+0x15/0x1a
[   82.311403][ T5863]  should_fail_ex+0x223/0x230
[   82.316143][ T5863]  ? bpf_prog_alloc_no_stats+0xc3/0x380
[   82.321736][ T5863]  should_failslab+0x8f/0xb0
[   82.326353][ T5863]  __kmalloc_cache_noprof+0x4e/0x320
[   82.331693][ T5863]  ? bpf_prog_alloc_no_stats+0x49/0x380
[   82.337292][ T5863]  bpf_prog_alloc_no_stats+0xc3/0x380
[   82.342689][ T5863]  bpf_prog_alloc+0x3a/0x150
[   82.347295][ T5863]  bpf_prog_create+0x69/0x120
[   82.352035][ T5863]  ppp_get_filter+0x114/0x160
[   82.356830][ T5863]  ppp_ioctl+0xbdd/0x11b0
[   82.361176][ T5863]  ? __fget_files+0x17c/0x1c0
[   82.365962][ T5863]  ? __pfx_ppp_ioctl+0x10/0x10
[   82.370792][ T5863]  __se_sys_ioctl+0xc9/0x140
[   82.375533][ T5863]  __x64_sys_ioctl+0x43/0x50
[   82.380156][ T5863]  x64_sys_call+0x1690/0x2dc0
[   82.384928][ T5863]  do_syscall_64+0xc9/0x1c0
[   82.389480][ T5863]  ? clear_bhb_loop+0x55/0xb0
[   82.394255][ T5863]  ? clear_bhb_loop+0x55/0xb0
[   82.398965][ T5863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.404998][ T5863] RIP: 0033:0x7f72dce5ff19
[   82.409456][ T5863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.429142][ T5863] RSP: 002b:00007f72db4d7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   82.429806][ T5861] loop0: detected capacity change from 0 to 1024
[   82.437625][ T5863] RAX: ffffffffffffffda RBX: 00007f72dd025fa0 RCX: 00007f72dce5ff19
[   82.437646][ T5863] RDX: 0000000020000280 RSI: 0000000040107446 RDI: 0000000000000006
[   82.437661][ T5863] RBP: 00007f72db4d70a0 R08: 0000000000000000 R09: 0000000000000000
[   82.468057][ T5863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.476071][ T5863] R13: 0000000000000000 R14: 00007f72dd025fa0 R15: 00007ffe48f4d658
[   82.484072][ T5863]  </TASK>
[   82.520103][ T5861] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.550626][ T5868] loop4: detected capacity change from 0 to 512
[   82.581719][ T5868] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.595587][ T5868] ext4 filesystem being mounted at /185/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.608019][ T5872] bpf_get_probe_write_proto: 5 callbacks suppressed
[   82.608037][ T5872] syz.1.922[5872] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.614755][ T5872] syz.1.922[5872] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.631082][ T5873] netlink: 'syz.0.919': attribute type 13 has an invalid length.
[   82.650189][ T5873] netlink: 152 bytes leftover after parsing attributes in process `syz.0.919'.
[   82.661285][ T5872] syz.1.922[5872] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.672738][ T5868] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.711990][ T5873] erspan0: refused to change device tx_queue_len
[   82.719202][ T5873] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[   82.830904][ T5886] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   82.842645][ T5886] vhci_hcd: default hub control req: d300 v0000 i0000 l0
[   82.850743][ T5880] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[   82.921190][ T5891] veth0_to_team: entered promiscuous mode
[   82.927015][ T5891] veth0_to_team: entered allmulticast mode
[   82.954804][ T5891] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   82.999832][ T5899] loop2: detected capacity change from 0 to 512
[   83.008642][ T5899] EXT4-fs: Ignoring removed mblk_io_submit option
[   83.022798][ T5899] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   83.040636][ T5899] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   83.046030][ T5904] FAULT_INJECTION: forcing a failure.
[   83.046030][ T5904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.061694][ T5904] CPU: 1 UID: 0 PID: 5904 Comm: syz.1.935 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   83.072389][ T5904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.073569][ T5899] System zones: 
[   83.082445][ T5904] Call Trace:
[   83.082460][ T5904]  <TASK>
[   83.082469][ T5904]  dump_stack_lvl+0xf2/0x150
[   83.082517][ T5904]  dump_stack+0x15/0x1a
[   83.082559][ T5904]  should_fail_ex+0x223/0x230
[   83.082593][ T5904]  should_fail+0xb/0x10
[   83.082688][ T5904]  should_fail_usercopy+0x1a/0x20
[   83.082721][ T5904]  _copy_to_user+0x20/0xa0
[   83.086417][ T5899] 1-12
[   83.089533][ T5904]  simple_read_from_buffer+0xa0/0x110
[   83.089575][ T5904]  proc_fail_nth_read+0xf9/0x140
[   83.089661][ T5904]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   83.089757][ T5904]  vfs_read+0x1a2/0x700
[   83.089783][ T5904]  ? __rcu_read_unlock+0x4e/0x70
[   83.092866][ T5899] 
[   83.097291][ T5904]  ? __fget_files+0x17c/0x1c0
[   83.097348][ T5904]  ksys_read+0xe8/0x1b0
[   83.097386][ T5904]  __x64_sys_read+0x42/0x50
[   83.097422][ T5904]  x64_sys_call+0x2874/0x2dc0
[   83.097452][ T5904]  do_syscall_64+0xc9/0x1c0
[   83.097495][ T5904]  ? clear_bhb_loop+0x55/0xb0
[   83.097517][ T5904]  ? clear_bhb_loop+0x55/0xb0
[   83.181945][ T5904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.187870][ T5904] RIP: 0033:0x7f72dce5e92c
[   83.192309][ T5904] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   83.211987][ T5904] RSP: 002b:00007f72db4d7050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   83.220419][ T5904] RAX: ffffffffffffffda RBX: 00007f72dd025fa0 RCX: 00007f72dce5e92c
[   83.228403][ T5904] RDX: 000000000000000f RSI: 00007f72db4d70b0 RDI: 0000000000000004
[   83.236393][ T5904] RBP: 00007f72db4d70a0 R08: 0000000000000000 R09: 0000000000000000
[   83.244368][ T5904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   83.252346][ T5904] R13: 0000000000000000 R14: 00007f72dd025fa0 R15: 00007ffe48f4d658
[   83.260331][ T5904]  </TASK>
[   83.266155][ T5899] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.933: corrupted in-inode xattr: bad e_name length
[   83.280021][ T5899] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.933: couldn't read orphan inode 15 (err -117)
[   83.292576][   T29] kauditd_printk_skb: 244 callbacks suppressed
[   83.292613][   T29] audit: type=1326 audit(1733338003.004:3260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5903 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f72dce5e9cf code=0x7ffc0000
[   83.301071][ T5899] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.322393][   T29] audit: type=1326 audit(1733338003.004:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5903 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f72dce5e9cf code=0x7ffc0000
[   83.357743][   T29] audit: type=1326 audit(1733338003.004:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5903 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f72dce5ff19 code=0x7ffc0000
[   83.401871][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.401917][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.467896][ T5909] netlink: 'syz.2.938': attribute type 4 has an invalid length.
[   83.478454][ T5909] netlink: 'syz.2.938': attribute type 4 has an invalid length.
[   83.562503][ T5922] FAULT_INJECTION: forcing a failure.
[   83.562503][ T5922] name failslab, interval 1, probability 0, space 0, times 0
[   83.575289][ T5922] CPU: 1 UID: 0 PID: 5922 Comm: syz.2.942 Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   83.585946][ T5922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   83.596031][ T5922] Call Trace:
[   83.599430][ T5922]  <TASK>
[   83.602420][ T5922]  dump_stack_lvl+0xf2/0x150
[   83.607141][ T5922]  dump_stack+0x15/0x1a
[   83.611335][ T5922]  should_fail_ex+0x223/0x230
[   83.616092][ T5922]  ? find_get_context+0x99/0x540
[   83.621113][ T5922]  should_failslab+0x8f/0xb0
[   83.625729][ T5922]  __kmalloc_cache_noprof+0x4e/0x320
[   83.631102][ T5922]  find_get_context+0x99/0x540
[   83.635886][ T5922]  __se_sys_perf_event_open+0xbf5/0x2230
[   83.641537][ T5922]  ? vfs_write+0x531/0x920
[   83.646049][ T5922]  ? putname+0xcf/0xf0
[   83.650144][ T5922]  __x64_sys_perf_event_open+0x67/0x80
[   83.655707][ T5922]  x64_sys_call+0x1deb/0x2dc0
[   83.660447][ T5922]  do_syscall_64+0xc9/0x1c0
[   83.665044][ T5922]  ? clear_bhb_loop+0x55/0xb0
[   83.669801][ T5922]  ? clear_bhb_loop+0x55/0xb0
[   83.674501][ T5922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.680414][ T5922] RIP: 0033:0x7f46168bff19
[   83.684880][ T5922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.704640][ T5922] RSP: 002b:00007f4614f37058 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[   83.713145][ T5922] RAX: ffffffffffffffda RBX: 00007f4616a85fa0 RCX: 00007f46168bff19
[   83.721146][ T5922] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[   83.729202][ T5922] RBP: 00007f4614f370a0 R08: 0000000000000000 R09: 0000000000000000
[   83.737293][ T5922] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000002
[   83.745268][ T5922] R13: 0000000000000000 R14: 00007f4616a85fa0 R15: 00007ffd7b078eb8
[   83.753254][ T5922]  </TASK>
[   83.791800][   T29] audit: type=1326 audit(1733338003.504:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   83.828623][ T5934] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.844730][ T5934] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.854326][   T29] audit: type=1326 audit(1733338003.534:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   83.877769][   T29] audit: type=1326 audit(1733338003.534:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   83.901129][   T29] audit: type=1326 audit(1733338003.534:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   83.924686][   T29] audit: type=1326 audit(1733338003.534:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   83.948073][   T29] audit: type=1326 audit(1733338003.534:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   83.971623][   T29] audit: type=1326 audit(1733338003.534:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5933 comm="syz.4.946" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0bc67ff19 code=0x7ffc0000
[   84.060955][ T5940] loop0: detected capacity change from 0 to 164
[   84.080616][ T5940] iso9660: Unknown parameter '0000000000000000000618446744073709551615'
[   84.160853][ T5947] netlink: 'syz.3.952': attribute type 4 has an invalid length.
[   84.164300][ T5948] loop2: detected capacity change from 0 to 512
[   84.175325][ T5948] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.183557][ T5947] netlink: 'syz.3.952': attribute type 4 has an invalid length.
[   84.188385][ T5948] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   84.195611][ T5939] loop0: detected capacity change from 0 to 8192
[   84.209587][ T5948] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   84.217958][ T5948] System zones: 1-12
[   84.222294][ T5948] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.951: corrupted in-inode xattr: bad e_name length
[   84.257026][ T5948] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.951: couldn't read orphan inode 15 (err -117)
[   84.297118][ T5948] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.371733][ T5956] netlink: 'syz.3.954': attribute type 1 has an invalid length.
[   84.380630][ T5959] syz.0.955[5959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.380740][ T5959] syz.0.955[5959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.392152][ T5959] syz.0.955[5959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.409749][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.421263][ T5959] netlink: 'syz.0.955': attribute type 4 has an invalid length.
[   84.437697][ T5959] netlink: 17 bytes leftover after parsing attributes in process `syz.0.955'.
[   84.451881][ T5956] loop3: detected capacity change from 0 to 512
[   84.501356][ T5956] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   84.576572][ T5956] EXT4-fs (loop3): 1 truncate cleaned up
[   84.584106][ T5956] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.586561][ T5973] netlink: 16 bytes leftover after parsing attributes in process `syz.1.960'.
[   84.654885][ T5956] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.954: inode #1073372648: comm syz.3.954: iget: illegal inode #
[   84.675413][ T5956] EXT4-fs error (device loop3): ext4_xattr_inode_iget:445: comm syz.3.954: error while reading EA inode 1073372648 err=-117
[   84.698461][ T5984] loop0: detected capacity change from 0 to 512
[   84.706469][ T5956] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2977: inode #15: comm syz.3.954: corrupted xattr block 33: invalid header
[   84.721790][ T5963] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=5963 comm=syz.3.954
[   84.725485][ T5984] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.741231][ T5956] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   84.753500][ T5987] netlink: 'syz.1.965': attribute type 4 has an invalid length.
[   84.769163][ T5984] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   84.778080][ T5987] netlink: 'syz.1.965': attribute type 4 has an invalid length.
[   84.792675][ T5985] loop2: detected capacity change from 0 to 2048
[   84.802106][ T5984] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   84.839839][ T5985] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.841846][ T5984] System zones: 1-12
[   84.871270][ T5984] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.964: corrupted in-inode xattr: bad e_name length
[   84.926288][ T5984] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.964: couldn't read orphan inode 15 (err -117)
[   84.984864][ T5984] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.023024][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.036266][ T6002] tmpfs: Bad value for 'mpol'
[   85.071605][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.214835][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.224985][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.232474][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.239990][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.244123][ T6024] loop0: detected capacity change from 0 to 512
[   85.247416][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.247445][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.247467][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.255505][ T6024] EXT4-fs: inline encryption not supported
[   85.261236][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.289359][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.296890][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.304291][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.305872][ T6024] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.311750][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.331687][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.339423][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.346868][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.354342][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.362057][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.363820][ T6024] ext4 filesystem being mounted at /192/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.369492][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.387501][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.395011][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.402475][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.403847][ T6036] loop3: detected capacity change from 0 to 1024
[   85.409943][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.417118][ T6036] ext4: Unknown parameter ''
[   85.423662][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.435854][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.443459][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.451253][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.458837][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.466252][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.473798][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   85.482795][ T3374] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   85.499250][ T6024] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   85.508056][ T6024] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   85.516927][ T6024] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   85.525664][ T6024] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   85.534580][ T6024] vxlan0: entered promiscuous mode
[   85.539834][ T6024] vxlan0: entered allmulticast mode
[   85.549845][ T6024] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   85.550692][ T6040] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.979: corrupted inode contents
[   85.558916][ T6024] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   85.558964][ T6024] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   85.574526][ T6040] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.979: mark_inode_dirty error
[   85.579577][ T6024] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   85.613810][ T6022] netlink: 96 bytes leftover after parsing attributes in process `syz.2.978'.
[   85.621746][ T6040] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.979: corrupted inode contents
[   85.655099][ T6040] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.979: mark_inode_dirty error
[   85.758474][ T3297] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.780431][ T2999] ==================================================================
[   85.788628][ T2999] BUG: KCSAN: data-race in set_nlink / set_nlink
[   85.795115][ T2999] 
[   85.797456][ T2999] read to 0xffff888106562780 of 4 bytes by task 3290 on cpu 0:
[   85.805015][ T2999]  set_nlink+0x2b/0xb0
[   85.809124][ T2999]  kernfs_iop_permission+0x1c8/0x210
[   85.814450][ T2999]  inode_permission+0x18c/0x300
[   85.819336][ T2999]  link_path_walk+0x14b/0x820
[   85.824046][ T2999]  path_openat+0x1af/0x1fa0
[   85.828588][ T2999]  do_filp_open+0x107/0x230
[   85.833124][ T2999]  do_sys_openat2+0xab/0x120
[   85.837750][ T2999]  __x64_sys_openat+0xf3/0x120
[   85.842546][ T2999]  x64_sys_call+0x2b30/0x2dc0
[   85.847260][ T2999]  do_syscall_64+0xc9/0x1c0
[   85.851783][ T2999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.857692][ T2999] 
[   85.860030][ T2999] write to 0xffff888106562780 of 4 bytes by task 2999 on cpu 1:
[   85.867678][ T2999]  set_nlink+0x98/0xb0
[   85.871780][ T2999]  kernfs_iop_permission+0x1c8/0x210
[   85.877094][ T2999]  inode_permission+0x18c/0x300
[   85.881945][ T2999]  link_path_walk+0x14b/0x820
[   85.886630][ T2999]  path_lookupat+0x72/0x2b0
[   85.891162][ T2999]  filename_lookup+0x150/0x340
[   85.895950][ T2999]  vfs_statx+0x9a/0x170
[   85.900126][ T2999]  __se_sys_newfstatat+0xdc/0x300
[   85.905153][ T2999]  __x64_sys_newfstatat+0x55/0x70
[   85.910179][ T2999]  x64_sys_call+0x236d/0x2dc0
[   85.914855][ T2999]  do_syscall_64+0xc9/0x1c0
[   85.919356][ T2999]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.925279][ T2999] 
[   85.927600][ T2999] value changed: 0x00000009 -> 0x00000008
[   85.933322][ T2999] 
[   85.935662][ T2999] Reported by Kernel Concurrency Sanitizer on:
[   85.941813][ T2999] CPU: 1 UID: 0 PID: 2999 Comm: udevd Not tainted 6.13.0-rc1-syzkaller-00025-gfeffde684ac2 #0
[   85.952060][ T2999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   85.962549][ T2999] ==================================================================