last executing test programs:

1m11.646798376s ago: executing program 1 (id=1435):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000340)={{{@in=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@empty}, 0x0, @in=@initdev}}, &(0x7f0000000100)=0xe8)
setuid(r4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
listen(r0, 0x0)
shutdown(r0, 0x0)
r5 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000700)={{{@in=@dev, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@private0}, 0x0, @in=@dev}}, &(0x7f0000000540)=0xe8)
stat(&(0x7f0000000600)='./file0\x00', &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
getresgid(&(0x7f0000000680), &(0x7f0000000880)=<r10=>0x0, &(0x7f00000008c0))
newfstatat(0xffffffffffffff9c, &(0x7f0000000900)='./file0\x00', &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}, 0x100)
getgroups(0x3, &(0x7f00000009c0)=[0x0, <r12=>0xee01, 0x0])
statx(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0x1500, 0x10, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r14=>0x0}, 0x0)
setregid(0xffffffffffffffff, r14)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000500)='system.posix_acl_default\x00', &(0x7f0000000c00)={{}, {0x1, 0x4}, [{0x2, 0x4, r4}, {0x2, 0x6, r4}, {0x2, 0x5, r4}, {0x2, 0xc37a3959c4463e53, r8}, {0x2, 0x2, r9}, {0x2, 0x0, r4}, {0x2, 0x3, r4}], {0x4, 0x1}, [{0x8, 0x1, r10}, {0x8, 0x6, r11}, {0x8, 0x0, r12}, {0x8, 0x5, r13}, {0x8, 0x4, r14}], {0x10, 0x1}, {0x20, 0x4}}, 0x84, 0x0)
r15 = socket$netlink(0x10, 0x3, 0x14)
r16 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r16}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r15, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="380000000314010000000000000008000900020073797a310000000008004100736977001400330073797a6b616c6c657230"], 0x38}}, 0x0)
r17 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_group_source_req(r17, 0x0, 0x2e, &(0x7f0000000140)={0x24, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {{0x2, 0x0, @local}}}, 0x108)
sendmsg$802154_raw(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)="0b9200", 0x3}, 0x1, 0x0, 0x0, 0x5}, 0x20008004)

1m11.331975525s ago: executing program 1 (id=1438):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$can_raw(0x1d, 0x3, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYRES16=r0], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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")
mknod(&(0x7f0000000140)='./file0\x00', 0x8001420, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)

1m11.042456114s ago: executing program 1 (id=1446):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r1, 0x408c5333, &(0x7f0000000080))
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x3, 0xffff, 0x0, 0x0, 0xfffffffa}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, @perf_bp={0x0, 0x2}, 0x104001, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r4}, 0x10)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r5, &(0x7f0000000000)="14000000140005b7ffccca38b90000", 0xf)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r7, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r7, 0x8)
r8 = accept4(r7, 0x0, 0x0, 0x0)
sendto$inet(r8, &(0x7f0000000000)="e3", 0x1, 0x0, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r9}, &(0x7f0000000380), &(0x7f00000003c0)=r10}, 0x20)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r11, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x34, r12, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0)
syz_usb_disconnect(r2)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f0000000040)={0x0, 0x44, &(0x7f0000000140)={&(0x7f0000000280)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_LINK={0x8, 0x1, 0x1}]}}}]}, 0x3c}}, 0x0)

1m10.492736252s ago: executing program 1 (id=1458):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000b40)={[{@nouid32}, {@dioread_lock}, {@user_xattr}, {@jqfmt_vfsv0}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x200005}}, {@nogrpid}, {@data_err_abort}]}, 0x1, 0x614, &(0x7f0000002080)="$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")
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f0000000780)={0x9, 0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)=""/103, 0x67}, {&(0x7f0000000000)=""/55, 0x37}, {&(0x7f0000000180)}, {&(0x7f0000000300)=""/187, 0xbb}, {&(0x7f00000003c0)=""/191, 0xbf}, {&(0x7f0000000480)=""/225, 0xe1}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000000600)=""/83, 0x53}, {&(0x7f00000026c0)=""/4096, 0x1000}], &(0x7f0000000580)=[0x0, 0x6, 0xa7c, 0x62, 0x6, 0x1]}, 0x20)
quotactl_fd$Q_SETINFO(r1, 0x8000000040000501, 0x0, 0x0)
r2 = io_uring_setup(0x5013, &(0x7f00000000c0)={0x0, 0xfffffffc, 0x3681, 0x0, 0x10000000})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000040), 0x208e24b)
io_uring_enter(r2, 0x0, 0x0, 0x7, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
mkdir(&(0x7f00000002c0)='./file0\x00', 0xa0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x200000, 0x0)

1m10.302112581s ago: executing program 1 (id=1463):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, 0x0, 0x0)
recvmmsg$unix(r0, &(0x7f0000002a40), 0x0, 0x0, 0x0)
write(r0, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r5, 0x0, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x6)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})

1m9.402300749s ago: executing program 1 (id=1475):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)
sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r5, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
setsockopt$PNPIPE_ENCAP(r5, 0x113, 0x1, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000000)={0x9, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="0209000902"], 0x10}}, 0x0)

1m9.402013738s ago: executing program 32 (id=1475):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r3)
sendmsg$NFC_CMD_DEP_LINK_UP(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r5, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10)
setsockopt$PNPIPE_ENCAP(r5, 0x113, 0x1, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000000)={0x9, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="0209000902"], 0x10}}, 0x0)

2.7384063s ago: executing program 2 (id=2861):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000085"], &(0x7f00000002c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000004c0)='net_dev_start_xmit\x00', r0, 0x0, 0x4}, 0x18)
semctl$IPC_INFO(0x0, 0x4, 0x3, &(0x7f0000000440)=""/106)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000980)=ANY=[@ANYRESOCT=r1, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRESDEC=r1, @ANYRESOCT], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg(r2, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)

2.70990615s ago: executing program 2 (id=2863):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
pipe(&(0x7f0000000100))
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r4, @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

2.582642899s ago: executing program 2 (id=2868):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}, 0x1c)
r1 = syz_open_procfs(0x0, &(0x7f0000000400)='stack\x00')
pread64(r1, &(0x7f000001a240)=""/102386, 0x18ff2, 0x0)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r3, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000480)={'team0\x00', <r4=>0x0})
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0xb, [@volatile={0xd, 0x0, 0x0, 0x9, 0x2}, @union={0x10, 0x4, 0x0, 0x5, 0x1, 0x7, [{0xf}, {0x7, 0x1, 0x5}, {0xc, 0x2, 0x4}, {0x10, 0x1, 0x7fffffff}]}]}, {0x0, [0x0, 0x30, 0x5f, 0x0, 0x2e, 0x61, 0x61, 0x5f, 0x61]}}, &(0x7f00000007c0)=""/120, 0x6b, 0x78, 0x0, 0x1, 0xbe5bd0943ad4ccc4, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0xd, &(0x7f00000011c0)=ANY=[@ANYBLOB="180000000200b5785334e6d05700000018000000263800000000000006000000180100002020702500000000002020207b1af8ff00000000bfa1e9c500000000000007010000f8ffffffb702000008000000b70300000020000085000000060000009500000000000000e97cdd91e915dfcee730ecec89ca7783db194efb2329b1daa125feea92df245bedf2c8da999a789ef8c5e0a2ad20376b85d443f068ec9321f27354f300e67075f6279cc844de05b415624bd04bcf8a53317369ea2f7112b2113ab479b6f7478db4b7b9333369b310809ba4f7e348655778aca725023edbf4525509666b346b7c77a59e6d97f2a838d7"], &(0x7f0000000440)='syzkaller\x00', 0x8, 0xb2, &(0x7f0000000580)=""/178, 0x41000, 0x1, '\x00', r4, 0x0, r5, 0x8, &(0x7f0000000840)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000880)={0x4, 0x6, 0xffffffff, 0x6e7}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000008c0)=[0xffffffffffffffff], &(0x7f0000000900)=[{0x1, 0x1, 0x10, 0x7}, {0x2, 0x5, 0x9, 0xc}, {0x0, 0x4, 0x9, 0xd}, {0x3, 0x1, 0x1, 0x2}, {0x4, 0x4, 0x10, 0xa}, {0x5, 0x3, 0xe, 0xc}, {0x2, 0x5, 0x7, 0x5}], 0x10, 0x6, @void, @value}, 0x94)
sendmsg$inet6(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="c0de71ef0982e9cc6cea5ce0ba2aa4bac28fcf453c35d707b8dcf0e527bf47db436d6c8dde350255e6f98d9a83ebc2f928681cad5f247d5b4080699b1e2f9119f276a42714a60b5ad2f78a300f0b7b5dc1e051743989b6", 0x57}, {&(0x7f0000000100)="0d5c5556eabc0efeaa4a6704f01308b379ba563e30426605fe9c6eca439db005942ba0ae6053e3222a957416f0b7260dda5051efe8662f7b83a4c5ebea0ea54ec58f28686a36307abc7b38566eb9b34574a5675ab461f1709dc44a57668721a3fd8120aaa3b30f3600c82572719aaef8d93baca3f96943190f70250346baa70a9472ca49eac45b667a7c50fc2431de476cba3e07", 0x94}], 0x2, &(0x7f0000000440)=[@hopopts={{0xa0, 0x29, 0x36, {0x32, 0x10, '\x00', [@ra={0x5, 0x2, 0x8}, @generic={0x0, 0x2f, "ce689e45228cb4edda85a2b1bd1c7370686c33e478976ca3896802286ddb8e739088faa680e7c3059af5978ae6a948"}, @calipso={0x7, 0x48, {0x0, 0x10, 0xe, 0x6, [0x14a4, 0xe0, 0x4, 0x8, 0x8, 0x3be, 0x40, 0x6]}}, @enc_lim={0x4, 0x1, 0x4}]}}}, @rthdr={{0x28, 0x29, 0x39, {0xc, 0x2, 0x1, 0xff, 0x0, [@empty]}}}, @hopopts_2292={{0xc0, 0x29, 0x36, {0x29, 0x14, '\x00', [@ra={0x5, 0x2, 0x8000}, @calipso={0x7, 0x18, {0x0, 0x4, 0x6, 0x15, [0x80, 0xc]}}, @enc_lim, @jumbo, @enc_lim={0x4, 0x1, 0xe8}, @calipso={0x7, 0x50, {0x0, 0x12, 0x3, 0x13, [0x6, 0x2, 0xaa, 0x5, 0x7f, 0x9a, 0x800, 0x4, 0x200000]}}, @calipso={0x7, 0x18, {0x1, 0x4, 0xd0, 0x9, [0x200, 0x0]}}, @jumbo={0xc2, 0x4, 0x2}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0xb}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8001}}, @hopopts={{0x28, 0x29, 0x36, {0x88, 0x1, '\x00', [@pad1, @enc_lim, @enc_lim={0x4, 0x1, 0x7f}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x3}}, @hopopts_2292={{0x30, 0x29, 0x36, {0x87, 0x2, '\x00', [@hao={0xc9, 0x10, @mcast1}]}}}, @rthdr_2292={{0xa8, 0x29, 0x39, {0x0, 0x12, 0x1, 0x9, 0x0, [@dev={0xfe, 0x80, '\x00', 0x3e}, @loopback, @loopback, @empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, @local, @mcast2, @local]}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1, r4}}}], 0x2f8}, 0x4000000)
connect$qrtr(r1, &(0x7f0000000000)={0x2a, 0xffffffff, 0xffff7ffb}, 0xc)

2.506643259s ago: executing program 2 (id=2869):
sendmsg$IPVS_CMD_GET_INFO(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000b00)=ANY=[@ANYBLOB="6f5e3810d9c3000000", @ANYRES16=0x0, @ANYBLOB="000026bd7000fcdbdf250f00000054000180060002006200000008000500030000000800080006000000080009002d0000000600010002000000060001000a000000080005000000000008000b007369700008000b0073697000060004004e2000000c0003800800010002000000"], 0x74}, 0x1, 0x0, 0x0, 0x20000000}, 0x4001)
socket$igmp6(0xa, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='cachefiles_tmpfile\x00'}, 0x18)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x29040)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f00000000c0)={[{@grpid}, {@dioread_lock}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
read$char_usb(r1, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000000)=0x4, 0x4)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f00000004c0), 0x4)
preadv(r0, &(0x7f0000000ac0)=[{&(0x7f0000000280)=""/8, 0x8}], 0x1, 0x0, 0x0)
r3 = socket$qrtr(0x2a, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = perf_event_open(&(0x7f0000000440)={0x5, 0x80, 0xec, 0xe, 0x40, 0x7, 0x0, 0xffffffff, 0x22077, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffffffff, 0x2, @perf_bp={0x0, 0x4}, 0x101008, 0x7ff, 0x7, 0x0, 0x81, 0x2, 0x5, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x4, 0x12011, r5, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x7ff, 0x6000})
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="160000000000000004000000ff00000000000000", @ANYRES8, @ANYRESDEC=r4, @ANYRES32=0x0, @ANYRESOCT=r3], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000240), r1)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r1, &(0x7f0000000a80)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000d00)={0x274, r6, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x8000}, {0x8, 0x15, 0x7}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x10000}, {0x6, 0x11, 0x5}, {0x8, 0x15, 0xaa7}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0xff81}, {0x8, 0x15, 0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x1}, {0x8, 0x15, 0x2ad7}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x57c}, {0x6, 0x11, 0x1000}, {0x8, 0x15, 0xba}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x20a}, {0x8, 0x15, 0xfffffffe}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x401}, {0x6, 0x11, 0x3}, {0x8, 0x15, 0x6}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x1279}, {0x8, 0x15, 0x3}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x2}, {0x6}, {0x8, 0x15, 0xa}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0xb14}, {0x6, 0x11, 0x1}, {0x8, 0x15, 0x6}}]}, 0x274}, 0x1, 0x0, 0x0, 0x50}, 0x20008001)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0xf, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000, 0x2c, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403bda0a, @void, @value}, 0x94)
r7 = socket(0x1e, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
sendmsg$tipc(r7, &(0x7f0000000200)={&(0x7f0000000000)=@id={0x1e, 0x3, 0x1, {0xe24}}, 0x10, 0x0}, 0x0)

2.069781478s ago: executing program 4 (id=2881):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYRES16=r0], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r5=>0x0})
bind$can_raw(r3, &(0x7f0000000140)={0x1d, r5}, 0x10)
close(r3)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r6}, 0x10)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
shutdown(r7, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$eJzs3c9vI1cdAPDvTH65222zCz1ABewChQWt1t5421XVS8sFhKpKiIoD4rANiTcKseMQO6UJkUj/BpBA4gR/AgckDkg9ceDGEYkDQpQDUoEItEHiYDRjJ+smNmtqx+7Gn480O/Pmzcz3PWdn3vNz4hfA1LoeEQcRMR8Rb0TEYmd/0lnilfaSHffgcH/l6HB/JYlW6/W/J3l+ti+6zsk82blmISK+/pWIbydn4zZ29zaWq9XKdiddata2So3dvVvrteW1ylpls1y+u3T39ot3XiiPrK7Xar9478vrr37j17/65Lu/O/ji97NiXe7kdddjlNpVnzuJk5mNiFfPI9gEzHTW8xMuBx9MGhEfiYjP5Pf/Yszk/zsBgIus1VqM1mJ3GgC46NJ8DCxJixGRpp1OQLE9hvdMXEqr9Ubz5v36zuZqe6zsSsyl99erldtXF/7w3fzguSRLL+V5eX6eLp9K34mIqxHxo4Un8nRxpV5dnUyXBwCm3pPd7X9E/GshTYvFgU7t8akeAPDYKEy6AADA2Gn/AWD6aP8BYPoM0P53Puw/OPeyAADj4f0/AEwf7T8ATB/tPwBMla+99lq2tI4633+9+ubuzkb9zVurlcZGsbazUlypb28V1+r1tfw7e2qPul61Xt9aej523io1K41mqbG7d69W39ls3su/1/teZW4stQIA/per1975fRIRBy89kS/RNZeDthoutnSERwGPl5lhTtZBgMea2b5geg3UhOedhN+ee1mAyej5Zd6Fnpvv95P/I4jfM4IPlRsfH3z83xzPcLEY2Yfp9cHG/18eeTmA8TP+D9Or1UpOz/k/f5IFAFxIQ/wKX+sHo+qEABP1qMm8R/L5PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwwlyPiO5GkxXwu8DT7Ny0WI56KiCsxl9xfr1ZuR8TTcS0i5hay9NKkCw0ADCn9a9KZ/+vG4nOXT+fOJ/9eyNcR8b2fvv7jt5abze2lbP8/TvYvHE8fVn543hDzCgIAg/vzIAfl7Xe5s+56I//gcH/leDnHMp7x3pdOJh9dOTrcz5d2zmy0Wq1WRCHvS1z6ZxKznXMKEfFsRMyMIP7B2xHxsV71T/KxkSudmU+740cn9lNjjZ++L36a57XX2cv30RGUBabNO9nz55Ve918a1/N17/u/kD+hhpc//woRx8++o674s51IMz3iZ/f89UFjPP+br57Z2Vps570d8exsr/jJSfykT/znBoz/x0986ocv98lr/SziRvSO3x2r1KxtlRq7e7fWa8trlbXKZrl8d+nu7RfvvFAu5WPUpeOR6rP+9tLNp/uVLav/pT7xCz3rP39y7ucGrP/P//PGtz79MLlwOv4XPtv75/9Mz/htWZv4+QHjL1/6Zd/pu7P4q33q/6if/80B47/7l73VAQ8FAMagsbu3sVytVraH2sjehY7iOmc2siIOdvBxd3G4oH+KfGNEL0ufjawzNsjBc+f1qp77xuxJX3G0V/5mdsUxVycdeS2G2ngwrliTeyYB4/Hwpp90SQAAAAAAAAAAAAAAgH7G8adLk64jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF9d/AwAA//8+JMPM")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x84}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r9}, 0x10)
mknod(&(0x7f0000000140)='./file0\x00', 0x8001420, 0x0)
lsetxattr$security_selinux(&(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), &(0x7f0000000300)='system_u:object_r:gpg_exec_t:s0\x00', 0x20, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
fsetxattr$system_posix_acl(r10, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="020000000100010000000009040001000000000010000200000000002000000000000000"], 0x24, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)

1.824869377s ago: executing program 4 (id=2886):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000110000002"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="c0521547"], 0x24}}, 0x0)
recvmmsg$unix(r2, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/249, 0xf9}, {&(0x7f0000002a80)=""/4111, 0x100f}, {&(0x7f0000000500)=""/17, 0x11}, {&(0x7f00000007c0)=""/109, 0x6d}, {&(0x7f0000000840)=""/95, 0x5f}, {&(0x7f0000000300)=""/25, 0x19}, {&(0x7f0000000900)=""/134, 0x86}], 0x7}}], 0x1, 0x0, 0x0)
write(r2, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000003fffffe218110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r7, 0x0, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x6)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r8 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x1c1)
mkdirat(r8, &(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})

1.781383256s ago: executing program 3 (id=2887):
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000dc0), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)

1.761082357s ago: executing program 3 (id=2888):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="edffffff04000000e27f000001000002ae000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1420f582c1da4ac300000000000000001832000003000000000000000000"], &(0x7f0000000240)='GPL\x00', 0x5591, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
unlink(&(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00')
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xbe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x53be, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x181000, 0x100)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x298, 0x270, 0x168, 0x0, 0x0, 0xa, 0x348, 0x250, 0x250, 0x348, 0x250, 0x3, 0x0, {[{{@ipv6={@mcast2, @dev={0xfe, 0x80, '\x00', 0x33}, [0xff, 0x0, 0xff, 0xff000000], [0xffffff00, 0xffffff00, 0xff, 0xff000000], 'ip6erspan0\x00', 'veth1_to_bond\x00', {}, {0xff}, 0x0, 0x3, 0x2}, 0x0, 0xa8, 0xf0, 0x0, {0x0, 0x28e}}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x1c5, 'syz1\x00', {0x3}}}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{}, {0x0, 0x8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f8)
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000040))
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r4 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_buf(r4, 0x1, 0x2d, &(0x7f0000000180)=""/42, &(0x7f00000001c0)=0x2a)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0xf)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xf, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000040)=@generic={&(0x7f0000000000)='./file0\x00', r6}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r7, 0x0, r7)

1.654621396s ago: executing program 2 (id=2889):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
mknod$loop(0x0, 0x100000000000600d, 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
r1 = syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000140)='./bus\x00', 0x3010006, &(0x7f00000007c0)=ANY=[@ANYRESDEC, @ANYRES64, @ANYRESOCT, @ANYRES8, @ANYRESHEX, @ANYRESDEC, @ANYRES64, @ANYRES64, @ANYBLOB="14a8d0ca3386858350717bda500a6e0d271cba7c24404f4fdd13b1b5922dc27fae2bb7656c2c9cf00076db74ad9da398465c271f3c99f9c8b75aa628562a36eae8e60442812741be1793c1486650f74ba8ad8536070000000000000065f3bc92da1e56d7ffa95c91b5c58ba55f9245a209ef24b8348e9ff4cb9b84333e1a13"], 0xdb, 0x0, &(0x7f0000000000))
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xb7d2f1cd992d91b7, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000280)={{0x1, 0x1, 0x18}, './file0\x00'})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r3, &(0x7f00000002c0)='./bus/file0\x00', 0x40)
write$binfmt_script(r3, &(0x7f0000000300)={'#! ', './bus/file0', [{0x20, '^'}, {0x20, '+'}, {}, {0x20, 'msdos\x00'}, {0x20, '@(\x10'}], 0xa, "ae942049cb5140a15661e9003fed206141d37f9ac800a7502a5d776ed4f8af068124d02a9424d73ac872e9669c84da25b6290a51da14d3dc5ee77a5b54822688a1a77c2c59564b8ede5c6228093f8beece8259849a5dcc8e79fc97c626fc988c7015f9277b77df987705b06196c05d29264eee9acf67cd1a190e3df266a261992a"}, 0xa0)
renameat2(r3, &(0x7f0000000240)='./bus/file0\x00', r3, &(0x7f00000001c0)='./file0\x00', 0x0)
lseek(r1, 0x100, 0x4)
r4 = io_uring_setup(0x67bb, &(0x7f00000004c0)={0x0, 0xfffffffe, 0x1, 0x2, 0xfffffffc})
io_uring_enter(r4, 0x0, 0x0, 0xb, 0x0, 0x0)

1.590327836s ago: executing program 4 (id=2891):
r0 = socket(0x15, 0x5, 0x0)
connect$unix(r0, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffd}]})
r1 = msgget$private(0x0, 0x0)
msgctl$IPC_RMID(r1, 0x1000000)

1.578292126s ago: executing program 2 (id=2892):
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x57, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffdffff18d6, 0x6}, 0x1206c, 0x80, 0xb, 0x7, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x7, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
r3 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000780)={'vxcan1\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000000040)={0x1d, r4, 0x3}, 0x18)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), r3)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
pread64(r2, &(0x7f0000000080)=""/237, 0xed, 0x5)
getpid()
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r8}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)

1.386163455s ago: executing program 4 (id=2893):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES64=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='block_plug\x00', r1, 0x0, 0x5}, 0x18)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRES8=0x0, @ANYRESOCT], 0x2, 0x699, &(0x7f0000000140)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_read_part_table(0x60d, &(0x7f0000002240)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@filename='./file0\x00', &(0x7f00000002c0)='./bus\x00', 0x0, 0x1800, 0x0)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x1)
preadv2(r3, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x500, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r4}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
close(0xffffffffffffffff)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r6, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

1.297249715s ago: executing program 3 (id=2895):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000003c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x7, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000000a50a000000000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x50)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r3, 0x0, 0x100000}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6(0xa, 0x6, 0x0)
io_uring_setup(0x696a, &(0x7f0000000340)={0x0, 0x7828, 0x2, 0x3})
r4 = syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10100, 0x0, 0x201}, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000180)=ANY=[@ANYRES64=r7], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x48, 0x0, 0xffffffffffffffff, 0x0, r4, 0x2, 0x0, 0x1})
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.226340294s ago: executing program 3 (id=2897):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x4008031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r0 = syz_open_procfs$pagemap(0x0, &(0x7f00000001c0))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f000013b000/0x4000)=nil, &(0x7f0000ac8000/0x2000)=nil, 0x44, 0x0, 0x0, 0x1, 0x4, 0x48, 0x62, 0x1b}) (fail_nth: 1)

866.919183ms ago: executing program 4 (id=2899):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xb, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0, 0x7}, 0x120, 0x5dd8, 0x1000003, 0x0, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, 0x0})
close(r2)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xa000000, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

760.780503ms ago: executing program 3 (id=2900):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000b, 0x4008031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='map_files\x00')
getdents64(r0, 0xffffffffffffffff, 0x43)
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x1, 0xe, 0x5}, {0x4, 0xf, 0x1, 0x10001}]})
r1 = syz_open_procfs$pagemap(0x0, &(0x7f00000001c0))
ioctl$PAGEMAP_SCAN(r1, 0xc0606610, &(0x7f0000000100)={0x60, 0x0, &(0x7f000013b000/0x4000)=nil, &(0x7f0000ac8000/0x2000)=nil, 0x44, 0x0, 0x0, 0x1, 0x4, 0x48, 0x62, 0x1b})

719.275193ms ago: executing program 5 (id=2901):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="f8000000160001000000000000000000ff01000000000000000000000000000100000000000000000000ffff000000009ebcb6883df5c65f0000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000ffffac14142000000000330000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1ffffffffffffff03000000000000000000000000000000000000000000000000000000000000000000000000000000feffffffffffffff000000000000000000000000000000000000000000000000000000000000000000000000b1a00100"], 0xf8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)
getxattr(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000040)=@random={'security.', 'GPL\x00'}, &(0x7f0000000080)=""/102, 0x66)
r2 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
r3 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r4 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41100, 0x15, '\x00', 0x0, @fallback=0x4, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000013c0)='svcsock_tcp_state\x00', r6, 0x0, 0x8000}, 0x18)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff00000000000000008500000041000000850000007d00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x0, 0x0, 0x0, &(0x7f0000001380), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001300)=<r8=>0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x66)
r9 = socket$caif_seqpacket(0x25, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$CAIFSO_LINK_SELECT(r9, 0x116, 0x7f, &(0x7f00000000c0)=0x7, 0x4)
fcntl$lock(r2, 0x0, &(0x7f0000001340)={0x1, 0x3, 0x100000000, 0x5, r8})

636.631672ms ago: executing program 5 (id=2902):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000110000002"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="c0521547"], 0x24}}, 0x0)
recvmmsg$unix(r2, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/249, 0xf9}, {&(0x7f0000002a80)=""/4111, 0x100f}, {&(0x7f0000000500)=""/17, 0x11}, {&(0x7f00000007c0)=""/109, 0x6d}, {&(0x7f0000000840)=""/95, 0x5f}, {&(0x7f0000000300)=""/25, 0x19}, {&(0x7f0000000900)=""/134, 0x86}], 0x7}}], 0x1, 0x0, 0x0)
write(r2, &(0x7f0000000100)="1400000052004f7fb3e4bf80a000080000000000", 0x14)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r4}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000003fffffe218110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c30000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = syz_clone(0x80, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, r7, 0x0, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x6)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r8 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x1c1)
mkdirat(r8, &(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})

548.098772ms ago: executing program 3 (id=2903):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="2400000020000103e4ff0000000000000200"], 0x24}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xfe, 0x46d, &(0x7f0000000f00)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0x8004587d, &(0x7f0000000080))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000180), 0xff, 0x42f, &(0x7f0000000940)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="00000000000000002800128009000100766574680000000018000280140001000000", @ANYRES32=r5], 0x48}}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)

536.439922ms ago: executing program 5 (id=2905):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})

475.390292ms ago: executing program 5 (id=2906):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
timer_getoverrun(0x0)

430.094412ms ago: executing program 0 (id=2907):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f00000003c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x7, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000000a50a000000000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x50)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r3, 0x0, 0x100000}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6(0xa, 0x6, 0x0)
io_uring_setup(0x696a, &(0x7f0000000340)={0x0, 0x7828, 0x2, 0x3})
r4 = syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10100, 0x0, 0x201}, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000180)=ANY=[@ANYRES64=r7], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x48, 0x0, 0xffffffffffffffff, 0x0, r4, 0x2, 0x0, 0x1})
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

427.282892ms ago: executing program 5 (id=2908):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd71, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xb7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.controllers\x00', 0x275a, 0x0)
pread64(r2, &(0x7f0000000180)=""/29, 0x1d, 0x7fffffffffffffff)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pread64(r3, &(0x7f0000000380)=""/183, 0xb7, 0x9)

405.373352ms ago: executing program 0 (id=2909):
r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0x7000042)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000060000000000000000000000850000004100000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{0x0, 0x114}], 0x1}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28)
sendto$inet6(r4, &(0x7f0000000700)="bb3a", 0x2, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "0daf7461cfccf6ce"}, 0x28)
recvmsg(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0), 0x13}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r5, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r7], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
recvmmsg(r8, &(0x7f0000000d00)=[{{0x0, 0x0, 0x0}, 0xfffffffe}], 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r8, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r9, @ANYBLOB="030704707900000000000100040004000180"], 0x18}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000340))

404.613712ms ago: executing program 5 (id=2910):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="2400000020000103e4ff0000000000000200"], 0x24}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xfe, 0x46d, &(0x7f0000000f00)="$eJzs3M1vFOUfAPDvTF94+/FrRXwBQapoJL60tLzIwYtGEw6amOgB46m2hVQKNbQmQohWD3g0JN6N/4XxpBejXjTxqndDQgwXUC9rZmemLMtu2aXbLnQ/n2S6zzPzdJ/nOzPP7jPz7G4APWsk+5NE/C8ifo+IoTx7a4GR/OHGtYtTf1+7OJVEpfLWX0m13PVrF6fKouX/bcszlUqR39Sg3kvvRkzOzc2cK/Jji2c+GFs4f+GF2TOTp2ZOzZydOHbs8KG9g0cnjnQkziyu67s/nt+z6/g7l9+YOnH5vZ+S/sjjjro4OmUk37sNPd3pyrpse026umOX7fvlZrrRmUA39UVEdrgGqv1/KPpiy/K2oXjts642DlhTlUqlssKr8lIF2MCS6HYLgO4o3+iz699yWaehxz3h6sv5BVAW941iybf0R5on9g3UXd920khEnFj656tsiTW6DwEAUOu7bPzzfKPxXxoP54nB7M//izmU4Yh4ICJ2RMSDEbEzIh6KqJZ9JCIebbP++hmS28c/6ZW7Dq4F2fjvpWJu69bxX1oWGe4rctur8Q8kJ2fnZg4W++RADGw6OZvMjK9Qx/ev/vZFs221479syeovx4JFO670192gm55cnFxNzLWufhqxu79R/EmU0zhJROyKiN13Wcfss/1Nt905/hU0f9qWVb6OeCY//ktRF38paTo/Of7i0YkjY5tjbubgWHlW3O7nXy+92az+VcXfAdnx39rw/F+OfzjZHLFw/sLp6nztQvt1XPrj86bXNG2e/8e3F+f/YPJ2dcVgseGjycXFc+MRg8nrt6+fuPlsZb4sn8V/YH/j/r8jbu6JxyJiT0TsjYjHs4vCou1PRMSTEbF/hfh/fOWp99uPf33mSrP4p+90/KP2+Lef6Dv9w7d3jn9zRDQ7/oerqQPFmlZe/1pt4Gr2HQAAANwv0upn4JN0dDmdpqOj+Wf4d8bWdG5+YfG5k/Mfnp3OPys/HANpeadrqOZ+6Hhxb7jMT9TlDxX3jb/s21LNj07Nz013O3jocdua9P/Mn33dbh2w5jowjwbcp/R/6F36P/SmRP+Hnqb/Q+9q1P8/aVp69Js1bQywrrz/Q+9qof8v5Q/NRwXA/cn7P/Qu/R96UtPvxqer+sr/uif+LX7P8F5pz8ZPRHpPNGPjJ/pb/jGLNhKVobz/Z2s2NSzT7VcmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAzvgvAAD//w3J5b0=")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r3, 0x8004587d, &(0x7f0000000080))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000180), 0xff, 0x42f, &(0x7f0000000940)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='H\x00\x00', @ANYRES32=r5, @ANYBLOB="00000000000000002800128009000100766574680000000018000280140001000000", @ANYRES32=r5], 0x48}}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
recvmsg(r0, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700)

297.621781ms ago: executing program 0 (id=2911):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000000004000000000049c5", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$caif_seqpacket(0x25, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000b484b9a7a1c8f1cd7e629e8b376dd98dac99dfd2575040391ebc562ef99d3665fd88133ceceaee651f6b51f5770629ce21dc9d627aae767c4e74aa2fe1cf06125b833c3ee10869be7c257d5e772bfff1766d"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1720000000000000040000000300000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}, 0x1, 0x0, 0x0, 0x20008001}, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r6, 0x0, 0x8}, 0x18)
get_mempolicy(0x0, 0xfffffffffffffffe, 0x80, &(0x7f0000ffb000/0x3000)=nil, 0x2)
close_range(r5, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x3, 0x0)
connect$netlink(r7, 0x0, 0x0)
r8 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r9=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r9)
lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0})
lstat(&(0x7f0000000400)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
setresgid(r9, r10, r11)

261.026621ms ago: executing program 0 (id=2912):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
pipe(&(0x7f0000000100))
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r4, @ANYBLOB, @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

199.121321ms ago: executing program 0 (id=2913):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000040)=0x1)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xd, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000034000000bca30000000000002403000040feffff720af0ff0000000071a4f0ff000000001f030000000000002e0a0200000000002600000000ff000e61141800000000001d430000000000007a0a00fe00581c1f6114140000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f30002af51efd601b6bf01c8e8b1fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7d06a59ff616236fd9aa58f0177184b6a89adaf17b0a6041bdef728f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10076443d643649393bf52d2105bd901128c7e0e"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000879a729041f73ec3d03f1df0fd00", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
r5 = dup3(r4, r3, 0x0)
sendmsg$key(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="021300000500000000000000000000000300"], 0x28}}, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000002, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc018937e, 0x0)
ioprio_set$pid(0x1, 0x0, 0x6000)
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0x2, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x8, 0x0, 0x8, 0x0, 0x0, 0x1}}}}]}, 0x58}}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
r10 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r11=>0x0})
sendmsg$nl_route(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="3400000011000500020000000200000007000000", @ANYRES32=r11, @ANYBLOB="004002000000000014001a80100005800c000280080001"], 0x34}}, 0x0)
sendmsg$IPVS_CMD_GET_INFO(r5, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000080)={0x14, 0x0, 0x122, 0x70bd2b, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x20004084)
syz_clone3(&(0x7f0000000500)={0x8a0100, 0x0, 0x0, 0x0, {0x17}, 0x0, 0x0, 0x0, &(0x7f0000000480)=[0x0], 0x1}, 0x58)
close(0x3)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd6060626000102c00fe8000000000000000000000000000bbfe8000000000000000000000000000aa11000001"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000010001000900000001000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000ee5900", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socket(0x2b, 0x3, 0x40800000)

155.177171ms ago: executing program 0 (id=2914):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xf, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000040), 0x7, 0x4ec, &(0x7f0000000c40)="$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")
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000c80)={'lo\x00', <r4=>0x0})
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@jqfmt_vfsold}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
r5 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8), 0x8)
read(r5, &(0x7f00000002c0)=""/199, 0xc7)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_DEFAULT_RATE={0x10, 0x11, 0xf1ff}, @TCA_FQ_QUANTUM={0x9, 0x3, 0x4}]}}]}, 0x40}}, 0x0)

0s ago: executing program 4 (id=2915):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xffffffffffffeffc}, 0x18)
signalfd4(0xffffffffffffffff, &(0x7f0000000500), 0x8, 0x0)
syz_io_uring_setup(0x39, &(0x7f0000000580)={0x0, 0xe7b7, 0x13500}, &(0x7f0000000240), &(0x7f0000001880))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f0000000280)='./bus/file0\x00', 0x0)
renameat2(r2, &(0x7f00000001c0)='./bus/file0\x00', r2, &(0x7f0000000140)='./file0\x00', 0x4)
ioctl$BLKFRASET(r2, 0x1264, &(0x7f0000000000)=0x3)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x1, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getresuid(&(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000300)=<r5=>0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000000))
pwritev2(r6, &(0x7f0000000600)=[{&(0x7f0000000080)='W', 0x473b3cf43ac28f1f}], 0x1, 0x800be6b, 0x0, 0x0)
fchown(r6, 0x0, 0x0)
fchownat(r2, &(0x7f0000000080)='./file1\x00', r5, 0x0, 0x100)
r7 = creat(&(0x7f0000000240)='./bus\x00', 0x0)
pwritev2(r7, &(0x7f00000015c0)=[{&(0x7f00000002c0)='\f', 0x1}], 0x1, 0xfffff, 0x0, 0x0)
r8 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r8, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)

kernel console output (not intermixed with test programs):

mp_stack+0x15/0x1a
[  159.398311][T10352]  should_fail_ex+0x223/0x230
[  159.403016][T10352]  should_failslab+0x8f/0xb0
[  159.407652][T10352]  kmem_cache_alloc_noprof+0x52/0x320
[  159.413057][T10352]  ? getname_flags+0x81/0x3b0
[  159.417876][T10352]  getname_flags+0x81/0x3b0
[  159.422432][T10352]  user_path_at+0x26/0x120
[  159.426949][T10352]  __se_sys_mount+0x248/0x2d0
[  159.431671][T10352]  __x64_sys_mount+0x67/0x80
[  159.436410][T10352]  x64_sys_call+0x2c84/0x2dc0
[  159.441208][T10352]  do_syscall_64+0xc9/0x1c0
[  159.445738][T10352]  ? clear_bhb_loop+0x55/0xb0
[  159.450537][T10352]  ? clear_bhb_loop+0x55/0xb0
[  159.455300][T10352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.461243][T10352] RIP: 0033:0x7f34d55f5d29
[  159.465743][T10352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.485469][T10352] RSP: 002b:00007f34d3c61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  159.493919][T10352] RAX: ffffffffffffffda RBX: 00007f34d57e5fa0 RCX: 00007f34d55f5d29
[  159.501912][T10352] RDX: 0000000020000400 RSI: 00000000200003c0 RDI: 0000000000000000
[  159.509965][T10352] RBP: 00007f34d3c61090 R08: 0000000020000440 R09: 0000000000000000
[  159.517947][T10352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.525933][T10352] R13: 0000000000000000 R14: 00007f34d57e5fa0 R15: 00007ffc2ece2c28
[  159.533955][T10352]  </TASK>
[  159.582604][T10364] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  159.591442][T10364] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  159.600196][T10364] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  159.608953][T10364] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  159.618031][T10364] vxlan0: entered promiscuous mode
[  159.623379][T10364] vxlan0: entered allmulticast mode
[  159.635800][T10364] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  159.644796][T10364] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  159.653729][T10364] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  159.662673][T10364] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  159.674353][T10373] rdma_op ffff888116ab2d80 conn xmit_rdma 0000000000000000
[  159.882717][T10372] netlink: 'syz.4.2279': attribute type 10 has an invalid length.
[  159.946608][T10396] loop3: detected capacity change from 0 to 512
[  159.963916][T10400] FAULT_INJECTION: forcing a failure.
[  159.963916][T10400] name failslab, interval 1, probability 0, space 0, times 0
[  159.976606][T10400] CPU: 0 UID: 0 PID: 10400 Comm: +}[@ Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  159.986938][T10400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  159.997100][T10400] Call Trace:
[  160.000398][T10400]  <TASK>
[  160.003355][T10400]  dump_stack_lvl+0xf2/0x150
[  160.008038][T10400]  dump_stack+0x15/0x1a
[  160.012304][T10400]  should_fail_ex+0x223/0x230
[  160.017052][T10400]  ? alloc_fdtable+0x74/0x1b0
[  160.021773][T10400]  should_failslab+0x8f/0xb0
[  160.026411][T10400]  __kmalloc_cache_noprof+0x4e/0x320
[  160.031724][T10400]  alloc_fdtable+0x74/0x1b0
[  160.036248][T10400]  dup_fd+0x60d/0x6a0
[  160.040307][T10400]  copy_files+0x98/0xe0
[  160.044474][T10400]  copy_process+0xcbf/0x1f90
[  160.049113][T10400]  kernel_clone+0x167/0x5e0
[  160.053657][T10400]  __se_sys_clone3+0x1ba/0x200
[  160.058444][T10400]  __x64_sys_clone3+0x31/0x40
[  160.063200][T10400]  x64_sys_call+0x2d56/0x2dc0
[  160.067976][T10400]  do_syscall_64+0xc9/0x1c0
[  160.072569][T10400]  ? clear_bhb_loop+0x55/0xb0
[  160.077256][T10400]  ? clear_bhb_loop+0x55/0xb0
[  160.082009][T10400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.087992][T10400] RIP: 0033:0x7fa212e55d29
[  160.092412][T10400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.112065][T10400] RSP: 002b:00007fa2114c6f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  160.120539][T10400] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa212e55d29
[  160.128577][T10400] RDX: 00007fa2114c6f20 RSI: 0000000000000058 RDI: 00007fa2114c6f20
[  160.136556][T10400] RBP: 00007fa2114c7090 R08: 0000000000000000 R09: 0000000000000058
[  160.144580][T10400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.152604][T10400] R13: 0000000000000000 R14: 00007fa213045fa0 R15: 00007ffe557a56b8
[  160.160596][T10400]  </TASK>
[  160.202624][T10409] ip_vti0: entered promiscuous mode
[  160.221497][T10409] vlan2: entered promiscuous mode
[  160.230772][T10413] FAULT_INJECTION: forcing a failure.
[  160.230772][T10413] name failslab, interval 1, probability 0, space 0, times 0
[  160.243501][T10413] CPU: 0 UID: 0 PID: 10413 Comm: syz.2.2293 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  160.254298][T10413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  160.264450][T10413] Call Trace:
[  160.267743][T10413]  <TASK>
[  160.270691][T10413]  dump_stack_lvl+0xf2/0x150
[  160.275366][T10413]  dump_stack+0x15/0x1a
[  160.279608][T10413]  should_fail_ex+0x223/0x230
[  160.284534][T10413]  should_failslab+0x8f/0xb0
[  160.289159][T10413]  kmem_cache_alloc_noprof+0x52/0x320
[  160.294562][T10413]  ? audit_log_start+0x34c/0x6b0
[  160.299624][T10413]  audit_log_start+0x34c/0x6b0
[  160.304505][T10413]  audit_seccomp+0x4b/0x130
[  160.309083][T10413]  __seccomp_filter+0x6fa/0x1180
[  160.314141][T10413]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  160.319814][T10413]  ? vfs_write+0x596/0x920
[  160.324351][T10413]  __secure_computing+0x9f/0x1c0
[  160.329406][T10413]  syscall_trace_enter+0xd1/0x1f0
[  160.334467][T10413]  ? fpregs_assert_state_consistent+0x83/0xa0
[  160.340612][T10413]  do_syscall_64+0xaa/0x1c0
[  160.345224][T10413]  ? clear_bhb_loop+0x55/0xb0
[  160.349946][T10413]  ? clear_bhb_loop+0x55/0xb0
[  160.354714][T10413]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.360646][T10413] RIP: 0033:0x7f548b415d29
[  160.365084][T10413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.384751][T10413] RSP: 002b:00007f5489a87038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a8
[  160.393204][T10413] RAX: ffffffffffffffda RBX: 00007f548b605fa0 RCX: 00007f548b415d29
[  160.401274][T10413] RDX: 0000000000000000 RSI: 000000000000001f RDI: ffffffffffffffff
[  160.409279][T10413] RBP: 00007f5489a87090 R08: 0000000000000000 R09: 0000000000000000
[  160.417285][T10413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.425292][T10413] R13: 0000000000000000 R14: 00007f548b605fa0 R15: 00007ffe87f0f8b8
[  160.433295][T10413]  </TASK>
[  160.463356][T10409] ip_vti0: left promiscuous mode
[  160.480447][T10396] EXT4-fs mount: 121 callbacks suppressed
[  160.480465][T10396] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000040000 r/w without journal. Quota mode: writeback.
[  160.505189][T10424] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10424 comm=syz.2.2297
[  160.530666][T10424] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  160.538929][T10424] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  160.574567][T10396] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 ro. Quota mode: writeback.
[  160.625854][T10397] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[  160.643240][T10428] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000040000 r/w. Quota mode: writeback.
[  160.716639][T10438] netlink: 'syz.2.2301': attribute type 10 has an invalid length.
[  160.724566][T10438] __nla_validate_parse: 6 callbacks suppressed
[  160.724581][T10438] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2301'.
[  160.728315][T10440] loop0: detected capacity change from 0 to 2048
[  160.775125][T10440] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.784990][T10436] loop4: detected capacity change from 0 to 8192
[  160.795855][T10440] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2 with error 28
[  160.808118][T10440] EXT4-fs (loop0): This should not happen!! Data will be lost
[  160.808118][T10440] 
[  160.817893][T10440] EXT4-fs (loop0): Total free blocks count 0
[  160.823984][T10440] EXT4-fs (loop0): Free/Dirty block details
[  160.829906][T10440] EXT4-fs (loop0): free_blocks=0
[  160.834911][T10440] EXT4-fs (loop0): dirty_blocks=0
[  160.840022][T10440] EXT4-fs (loop0): Block reservation details
[  160.846058][T10440] EXT4-fs (loop0): i_reserved_data_blocks=0
[  160.859682][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000040000.
[  160.882601][T10436]  loop4: p1 p2 p3 p4[EZD]
[  160.890829][T10436] loop4: p1 size 16128 extends beyond EOD, truncated
[  160.919378][T10436] loop4: p3 start 458783 is beyond EOD, truncated
[  160.925964][T10436] loop4: p4 size 65536 extends beyond EOD, truncated
[  160.957883][T10451] rdma_op ffff888117d9fd80 conn xmit_rdma 0000000000000000
[  160.974944][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.024245][T10455] FAULT_INJECTION: forcing a failure.
[  161.024245][T10455] name failslab, interval 1, probability 0, space 0, times 0
[  161.036965][T10455] CPU: 0 UID: 0 PID: 10455 Comm: syz.0.2308 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  161.047761][T10455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  161.057882][T10455] Call Trace:
[  161.061180][T10455]  <TASK>
[  161.064136][T10455]  dump_stack_lvl+0xf2/0x150
[  161.068769][T10455]  dump_stack+0x15/0x1a
[  161.072985][T10455]  should_fail_ex+0x223/0x230
[  161.077717][T10455]  should_failslab+0x8f/0xb0
[  161.082376][T10455]  __kmalloc_noprof+0xab/0x3f0
[  161.087171][T10455]  ? usb_alloc_urb+0x36/0xb0
[  161.091811][T10455]  usb_alloc_urb+0x36/0xb0
[  161.096278][T10455]  usb_control_msg+0xd2/0x240
[  161.100984][T10455]  hub_ext_port_status+0xbf/0x480
[  161.106068][T10455]  hub_activate+0x4c8/0xf40
[  161.110687][T10455]  hub_resume+0x48/0x1e0
[  161.115112][T10455]  ? mutex_lock+0xd/0x40
[  161.119396][T10455]  usb_resume_both+0x3ed/0x5b0
[  161.124184][T10455]  ? __pfx_usb_runtime_resume+0x10/0x10
[  161.129786][T10455]  usb_runtime_resume+0x21/0x30
[  161.134663][T10455]  __rpm_callback+0x299/0x720
[  161.139404][T10455]  ? __pfx_usb_runtime_resume+0x10/0x10
[  161.145079][T10455]  rpm_resume+0x8e6/0xd00
[  161.149483][T10455]  ? klist_dec_and_del+0xb8/0x260
[  161.154587][T10455]  __pm_runtime_resume+0xdc/0x100
[  161.159723][T10455]  usb_autoresume_device+0x25/0xd0
[  161.164865][T10455]  usbdev_open+0xfe/0x480
[  161.169222][T10455]  chrdev_open+0x2f9/0x370
[  161.173803][T10455]  ? __pfx_chrdev_open+0x10/0x10
[  161.178783][T10455]  do_dentry_open+0x621/0xa20
[  161.183476][T10455]  vfs_open+0x38/0x1f0
[  161.187600][T10455]  path_openat+0x1ac2/0x1fa0
[  161.192329][T10455]  ? _raw_spin_lock_irqsave+0x3c/0xb0
[  161.197799][T10455]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  161.199459][T10459] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10459 comm=syz.2.2311
[  161.203636][T10455]  ? cgroup_rstat_updated+0x9f/0x570
[  161.221805][T10455]  do_filp_open+0x107/0x230
[  161.226357][T10455]  do_sys_openat2+0xab/0x120
[  161.230985][T10455]  __x64_sys_openat+0xf3/0x120
[  161.235794][T10455]  x64_sys_call+0x2b30/0x2dc0
[  161.240510][T10455]  do_syscall_64+0xc9/0x1c0
[  161.245065][T10455]  ? clear_bhb_loop+0x55/0xb0
[  161.249907][T10455]  ? clear_bhb_loop+0x55/0xb0
[  161.254619][T10455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.260555][T10455] RIP: 0033:0x7fa212e54690
[  161.265043][T10455] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  161.284772][T10455] RSP: 002b:00007fa2114c6b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  161.293217][T10455] RAX: ffffffffffffffda RBX: 0000000000101301 RCX: 00007fa212e54690
[  161.301203][T10455] RDX: 0000000000101301 RSI: 00007fa2114c6c10 RDI: 00000000ffffff9c
[  161.309189][T10455] RBP: 00007fa2114c6c10 R08: 0000000000000000 R09: 0000000000000000
[  161.317172][T10455] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  161.325168][T10455] R13: 0000000000000000 R14: 00007fa213045fa0 R15: 00007ffe557a56b8
[  161.333157][T10455]  </TASK>
[  161.336364][T10455] hub 5-0:1.0: hub_ext_port_status failed (err = -12)
[  161.370062][T10463] ip_vti0: entered promiscuous mode
[  161.392075][T10463] vlan2: entered promiscuous mode
[  161.399177][T10463] ip_vti0: left promiscuous mode
[  161.431996][T10465] FAULT_INJECTION: forcing a failure.
[  161.431996][T10465] name failslab, interval 1, probability 0, space 0, times 0
[  161.444829][T10465] CPU: 0 UID: 0 PID: 10465 Comm: syz.3.2313 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  161.455623][T10465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  161.465739][T10465] Call Trace:
[  161.469032][T10465]  <TASK>
[  161.471988][T10465]  dump_stack_lvl+0xf2/0x150
[  161.476737][T10465]  dump_stack+0x15/0x1a
[  161.480925][T10465]  should_fail_ex+0x223/0x230
[  161.485703][T10465]  should_failslab+0x8f/0xb0
[  161.490341][T10465]  kmem_cache_alloc_noprof+0x52/0x320
[  161.495816][T10465]  ? radix_tree_node_alloc+0x8b/0x1e0
[  161.501337][T10465]  radix_tree_node_alloc+0x8b/0x1e0
[  161.506598][T10465]  idr_get_free+0x1f5/0x550
[  161.511310][T10465]  idr_alloc_u32+0xcb/0x180
[  161.515840][T10465]  tcf_idr_check_alloc+0x171/0x270
[  161.521006][T10465]  tcf_pedit_init+0x1dc/0x8e0
[  161.525772][T10465]  ? should_fail_ex+0xd7/0x230
[  161.530578][T10465]  tcf_action_init_1+0x339/0x490
[  161.535608][T10465]  tcf_action_init+0x1cc/0x610
[  161.540497][T10465]  tc_ctl_action+0x292/0x840
[  161.545386][T10465]  ? __pfx_tc_ctl_action+0x10/0x10
[  161.550564][T10465]  rtnetlink_rcv_msg+0x6aa/0x710
[  161.555535][T10465]  ? ref_tracker_free+0x3a5/0x410
[  161.560651][T10465]  ? __dev_queue_xmit+0x186/0x2090
[  161.565916][T10465]  netlink_rcv_skb+0x12c/0x230
[  161.570784][T10465]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  161.576348][T10465]  rtnetlink_rcv+0x1c/0x30
[  161.580796][T10465]  netlink_unicast+0x599/0x670
[  161.585631][T10465]  netlink_sendmsg+0x5cc/0x6e0
[  161.590539][T10465]  ? __pfx_netlink_sendmsg+0x10/0x10
[  161.595932][T10465]  __sock_sendmsg+0x140/0x180
[  161.600677][T10465]  ____sys_sendmsg+0x312/0x410
[  161.605482][T10465]  __sys_sendmsg+0x19d/0x230
[  161.610173][T10465]  __x64_sys_sendmsg+0x46/0x50
[  161.614970][T10465]  x64_sys_call+0x2734/0x2dc0
[  161.619693][T10465]  do_syscall_64+0xc9/0x1c0
[  161.624259][T10465]  ? clear_bhb_loop+0x55/0xb0
[  161.629020][T10465]  ? clear_bhb_loop+0x55/0xb0
[  161.633773][T10465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.639791][T10465] RIP: 0033:0x7f1633c35d29
[  161.644230][T10465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.663869][T10465] RSP: 002b:00007f16322a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  161.672332][T10465] RAX: ffffffffffffffda RBX: 00007f1633e25fa0 RCX: 00007f1633c35d29
[  161.680420][T10465] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[  161.688459][T10465] RBP: 00007f16322a7090 R08: 0000000000000000 R09: 0000000000000000
[  161.696476][T10465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.704463][T10465] R13: 0000000000000000 R14: 00007f1633e25fa0 R15: 00007fff06c4a658
[  161.712492][T10465]  </TASK>
[  161.716668][T10459] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  161.724942][T10459] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  161.737896][T10468] lo speed is unknown, defaulting to 1000
[  161.744824][T10470] loop0: detected capacity change from 0 to 512
[  161.776074][T10471] netlink: 'syz.5.2314': attribute type 29 has an invalid length.
[  161.795158][T10470] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.840746][T10481] netlink: 'syz.5.2314': attribute type 29 has an invalid length.
[  161.867758][T10479] loop3: detected capacity change from 0 to 512
[  161.901463][T10479] EXT4-fs: Ignoring removed mblk_io_submit option
[  161.908018][T10479] EXT4-fs: Ignoring removed orlov option
[  161.929586][T10483] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10483 comm=syz.4.2319
[  161.963848][   T29] kauditd_printk_skb: 446 callbacks suppressed
[  161.963866][   T29] audit: type=1400 audit(162.008:6125): avc:  denied  { setopt } for  pid=10466 comm="syz.5.2314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  161.989570][   T29] audit: type=1400 audit(162.018:6126): avc:  denied  { setopt } for  pid=10466 comm="syz.5.2314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  162.025116][   T29] audit: type=1400 audit(162.068:6127): avc:  denied  { read } for  pid=10487 comm="syz.4.2322" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  162.047610][   T29] audit: type=1400 audit(162.068:6128): avc:  denied  { open } for  pid=10487 comm="syz.4.2322" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  162.066788][T10493] loop4: detected capacity change from 0 to 8192
[  162.070258][   T29] audit: type=1400 audit(162.068:6129): avc:  denied  { read } for  pid=10487 comm="syz.4.2322" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  162.100603][   T29] audit: type=1400 audit(162.068:6130): avc:  denied  { open } for  pid=10487 comm="syz.4.2322" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  162.124915][   T29] audit: type=1400 audit(162.068:6131): avc:  denied  { ioctl } for  pid=10487 comm="syz.4.2322" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  162.208117][T10479] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.265612][   T29] audit: type=1400 audit(162.218:6132): avc:  denied  { mounton } for  pid=10486 comm="syz.2.2321" path="/proc/1161/cgroup" dev="proc" ino=25459 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  162.288178][   T29] audit: type=1400 audit(162.278:6133): avc:  denied  { watch } for  pid=10487 comm="syz.4.2322" path="/418/file0/file1" dev="loop4" ino=23 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[  162.332891][   T29] audit: type=1400 audit(162.358:6134): avc:  denied  { setattr } for  pid=10478 comm="syz.3.2318" path="/497/bus/cpuset.effective_mems" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  162.333869][T10503] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  162.368204][T10505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10505 comm=syz.2.2327
[  162.391298][T10479] bond0: (slave bond_slave_0): Releasing backup interface
[  162.421580][T10479] bond0: (slave bond_slave_1): Releasing backup interface
[  162.464051][T10479] infiniband syz!: set down
[  162.468914][T10479] team0: Port device team_slave_0 removed
[  162.540658][T10479] team0: Port device team_slave_1 removed
[  162.567561][T10509] loop4: detected capacity change from 0 to 8192
[  162.589328][T10479] team0: Port device geneve1 removed
[  162.630828][T10507] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  162.639229][T10507] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  162.693969][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.813895][T10532] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10532 comm=syz.4.2337
[  162.880672][T10520] netlink: 'syz.5.2332': attribute type 10 has an invalid length.
[  162.888720][T10520] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2332'.
[  162.907769][T10520] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  163.109168][T10547] syz.4.2344[10547] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.109250][T10547] syz.4.2344[10547] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.121007][T10547] syz.4.2344[10547] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  163.133744][T10547] FAULT_INJECTION: forcing a failure.
[  163.133744][T10547] name failslab, interval 1, probability 0, space 0, times 0
[  163.158043][T10547] CPU: 1 UID: 0 PID: 10547 Comm: syz.4.2344 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  163.168913][T10547] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  163.179044][T10547] Call Trace:
[  163.182418][T10547]  <TASK>
[  163.185363][T10547]  dump_stack_lvl+0xf2/0x150
[  163.190064][T10547]  dump_stack+0x15/0x1a
[  163.194261][T10547]  should_fail_ex+0x223/0x230
[  163.198967][T10547]  should_failslab+0x8f/0xb0
[  163.203652][T10547]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[  163.210015][T10547]  ? v9fs_session_init+0x4c/0xda0
[  163.215147][T10547]  kstrdup+0x38/0x80
[  163.219071][T10547]  v9fs_session_init+0x4c/0xda0
[  163.223990][T10547]  ? should_fail_ex+0xd7/0x230
[  163.228789][T10547]  ? v9fs_mount+0x53/0x570
[  163.233271][T10547]  ? should_failslab+0x8f/0xb0
[  163.238125][T10547]  ? __kmalloc_cache_noprof+0x186/0x320
[  163.243856][T10547]  v9fs_mount+0x69/0x570
[  163.248272][T10547]  ? __pfx_v9fs_mount+0x10/0x10
[  163.253162][T10547]  legacy_get_tree+0x77/0xd0
[  163.257874][T10547]  vfs_get_tree+0x56/0x1e0
[  163.262410][T10547]  do_new_mount+0x227/0x690
[  163.266956][T10547]  path_mount+0x49b/0xb30
[  163.271340][T10547]  __se_sys_mount+0x27c/0x2d0
[  163.276116][T10547]  __x64_sys_mount+0x67/0x80
[  163.280820][T10547]  x64_sys_call+0x2c84/0x2dc0
[  163.285524][T10547]  do_syscall_64+0xc9/0x1c0
[  163.290077][T10547]  ? clear_bhb_loop+0x55/0xb0
[  163.294772][T10547]  ? clear_bhb_loop+0x55/0xb0
[  163.299464][T10547]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.305523][T10547] RIP: 0033:0x7f2ef1c05d29
[  163.309952][T10547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.329739][T10547] RSP: 002b:00007f2ef0277038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  163.338190][T10547] RAX: ffffffffffffffda RBX: 00007f2ef1df5fa0 RCX: 00007f2ef1c05d29
[  163.346229][T10547] RDX: 00000000200002c0 RSI: 0000000020000080 RDI: 0000000000000000
[  163.354292][T10547] RBP: 00007f2ef0277090 R08: 0000000020000400 R09: 0000000000000000
[  163.362262][T10547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  163.370324][T10547] R13: 0000000000000000 R14: 00007f2ef1df5fa0 R15: 00007ffd40802968
[  163.378304][T10547]  </TASK>
[  163.392876][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.435204][T10557] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10557 comm=syz.4.2348
[  163.440343][T10560] loop0: detected capacity change from 0 to 512
[  163.455951][T10560] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  163.467752][T10560] EXT4-fs (loop0): 1 truncate cleaned up
[  163.471157][T10561] vhci_hcd: invalid port number 254
[  163.474707][T10560] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.514001][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.543756][T10566] loop4: detected capacity change from 0 to 8192
[  163.555477][T10570] loop0: detected capacity change from 0 to 164
[  163.613649][T10574] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10574 comm=syz.4.2353
[  163.637082][T10574] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  163.645333][T10574] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  163.674750][T10579] netlink: 'syz.4.2356': attribute type 8 has an invalid length.
[  163.739155][T10570] iso9660: Corrupted directory entry in block 4 of inode 1792
[  163.743079][T10587] loop4: detected capacity change from 0 to 512
[  163.749009][T10570] netlink: 'syz.0.2352': attribute type 10 has an invalid length.
[  163.759841][T10587] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  163.760751][T10570] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2352'.
[  163.771729][T10587] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[  163.792575][T10570] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  163.802801][T10590] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10590 comm=syz.2.2360
[  163.808486][T10587] System zones: 1-12
[  163.836712][T10587] EXT4-fs (loop4): 1 truncate cleaned up
[  163.848162][T10593] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10593 comm=syz.2.2361
[  163.849522][T10587] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.883500][T10587] EXT4-fs error (device loop4): ext4_search_dir:1505: inode #2: block 13: comm syz.4.2359: bad entry in directory: rec_len % 4 != 0 - offset=76, inode=16, rec_len=13, size=1024 fake=0
[  163.911004][T10593] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  163.919289][T10593] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  163.922498][T10587] EXT4-fs (loop4): Remounting filesystem read-only
[  163.946927][T10599] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  163.965400][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.992151][T10603] +}[@: attempt to access beyond end of device
[  163.992151][T10603] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  164.008891][T10603] loop0: detected capacity change from 0 to 512
[  164.024224][T10603] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.040416][T10603] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  164.048697][T10603] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  164.062570][T10603] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm +}[@: corrupted xattr block 33: invalid header
[  164.079021][T10603] EXT4-fs (loop0): Remounting filesystem read-only
[  164.085664][T10603] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop0 ino=15
[  164.103628][T10603] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[  164.113075][T10603] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop0 ino=15
[  164.136271][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.340521][T10631] netlink: 'syz.2.2377': attribute type 10 has an invalid length.
[  164.847815][T10647] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2382'.
[  164.917188][T10649] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2383'.
[  165.180149][T10659] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  165.188901][T10659] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  165.436364][T10732] vhci_hcd: invalid port number 254
[  165.487447][T10733] loop0: detected capacity change from 0 to 8192
[  165.644873][T10738] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2392'.
[  165.706306][T10740] loop0: detected capacity change from 0 to 512
[  165.713609][T10736] netlink: 'syz.5.2390': attribute type 10 has an invalid length.
[  165.721572][T10736] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2390'.
[  165.725085][T10740] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2393: invalid indirect mapped block 256 (level 2)
[  165.730715][T10736] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  165.744829][T10740] EXT4-fs (loop0): 2 truncates cleaned up
[  165.775849][T10740] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.807896][T10745] netlink: 133492 bytes leftover after parsing attributes in process `syz.3.2394'.
[  165.829684][T10740] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.0.2393: path /480/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  165.870422][T10750] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  165.878745][T10750] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  165.888481][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.906325][T10753] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10753 comm=syz.3.2399
[  165.929291][T10753] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  165.937612][T10753] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  166.073751][T10768] netlink: 'syz.2.2400': attribute type 10 has an invalid length.
[  166.081641][T10768] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2400'.
[  166.124329][T10771] loop4: detected capacity change from 0 to 164
[  166.259932][T10776] iso9660: Corrupted directory entry in block 4 of inode 1792
[  166.279646][T10771] netlink: 'syz.4.2405': attribute type 10 has an invalid length.
[  166.287570][T10771] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2405'.
[  166.375470][T10780] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  166.383723][T10780] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  166.412781][T10784] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10784 comm=syz.0.2411
[  166.453774][T10789] loop4: detected capacity change from 0 to 128
[  166.461312][T10784] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  166.469603][T10784] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  166.486661][T10789] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  166.490544][T10793] syz.5.2414[10793] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.503904][T10793] syz.5.2414[10793] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.508142][T10773] netlink: 'syz.2.2406': attribute type 10 has an invalid length.
[  166.515549][T10793] syz.5.2414[10793] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.526885][T10773] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2406'.
[  166.555766][T10795] syz.0.2415[10795] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.555855][T10795] syz.0.2415[10795] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.561716][T10796] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  166.567717][T10795] syz.0.2415[10795] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.598086][T10795] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  166.605978][T10793] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=5123 sclass=netlink_xfrm_socket pid=10793 comm=syz.5.2414
[  166.631964][ T3301] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  166.632124][T10795] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=5123 sclass=netlink_xfrm_socket pid=10795 comm=syz.0.2415
[  166.739897][T10811] +}[@: attempt to access beyond end of device
[  166.739897][T10811] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  166.764358][T10813] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  166.772675][T10813] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  166.840703][T10819] pimreg: entered allmulticast mode
[  166.866052][T10819] pimreg: left allmulticast mode
[  166.871409][T10821] syz.3.2427[10821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.889735][T10821] syz!: rxe_newlink: already configured on team_slave_0
[  166.940683][T10826] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=5123 sclass=netlink_xfrm_socket pid=10826 comm=syz.3.2427
[  166.972534][   T29] kauditd_printk_skb: 498 callbacks suppressed
[  166.972627][   T29] audit: type=1326 audit(167.008:6633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.5.2429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d55f5d29 code=0x7ffc0000
[  167.002076][   T29] audit: type=1326 audit(167.018:6634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.5.2429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d55f5d29 code=0x7ffc0000
[  167.083183][   T29] audit: type=1326 audit(167.018:6635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.5.2429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f34d55f5d29 code=0x7ffc0000
[  167.106168][   T29] audit: type=1326 audit(167.068:6636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10804 comm="syz.0.2421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa212e55d29 code=0x7ffc0000
[  167.112109][T10817] netlink: 'syz.2.2426': attribute type 10 has an invalid length.
[  167.129165][   T29] audit: type=1326 audit(167.098:6637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.5.2429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d55f5d29 code=0x7ffc0000
[  167.137094][T10817] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2426'.
[  167.159891][   T29] audit: type=1326 audit(167.098:6638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10827 comm="syz.5.2429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f34d55f5d29 code=0x7ffc0000
[  167.202501][T10835] loop3: detected capacity change from 0 to 512
[  167.213425][   T29] audit: type=1326 audit(167.238:6639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10834 comm="syz.3.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  167.236378][   T29] audit: type=1326 audit(167.238:6640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10834 comm="syz.3.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  167.254205][T10828] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  167.259302][   T29] audit: type=1326 audit(167.238:6641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10834 comm="syz.3.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  167.290766][   T29] audit: type=1326 audit(167.238:6642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10834 comm="syz.3.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1633c35d63 code=0x7ffc0000
[  167.326278][T10835] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.362303][T10839] loop0: detected capacity change from 0 to 512
[  167.378745][T10835] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2431: corrupted inode contents
[  167.393776][T10841] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2433'.
[  167.399885][T10835] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2431: mark_inode_dirty error
[  167.408326][T10839] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.428614][T10835] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2431: corrupted inode contents
[  167.447366][T10835] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2431: mark_inode_dirty error
[  167.464138][T10839] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2432: corrupted inode contents
[  167.481227][T10839] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2432: mark_inode_dirty error
[  167.486460][T10835] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  167.486460][T10835] n'º|$@OOݱµ’-®+·el'
[  167.500755][T10851] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  167.520282][T10851] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  167.529489][T10839] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2432: corrupted inode contents
[  167.541444][T10839] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2432: mark_inode_dirty error
[  167.555536][T10852] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2432: corrupted inode contents
[  167.579045][T10852] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2432: mark_inode_dirty error
[  167.590990][T10852] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2432: corrupted inode contents
[  167.603167][T10839] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2432: corrupted inode contents
[  167.607204][T10856] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10856 comm=syz.2.2437
[  167.615874][T10839] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2432: mark_inode_dirty error
[  167.645162][T10839] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2432: corrupted inode contents
[  167.662840][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.689660][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.730248][T10864] batadv_slave_1: entered promiscuous mode
[  167.757026][T10862] batadv_slave_1: left promiscuous mode
[  167.763483][T10866] loop4: detected capacity change from 0 to 512
[  167.796653][T10866] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  167.826910][T10875] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.2445'.
[  167.851553][T10866] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  167.864112][T10881] FAULT_INJECTION: forcing a failure.
[  167.864112][T10881] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.871104][T10866] System zones: 
[  167.877253][T10881] CPU: 1 UID: 0 PID: 10881 Comm: syz.2.2449 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  167.880822][T10866] 0-2
[  167.891562][T10881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  167.891584][T10881] Call Trace:
[  167.891592][T10881]  <TASK>
[  167.891601][T10881]  dump_stack_lvl+0xf2/0x150
[  167.894237][T10866] , 18-18
[  167.904258][T10881]  dump_stack+0x15/0x1a
[  167.907568][T10866] , 34-35
[  167.910490][T10881]  should_fail_ex+0x223/0x230
[  167.915100][T10866] 
[  167.917999][T10881]  should_fail+0xb/0x10
[  167.924012][T10866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.925070][T10881]  should_fail_usercopy+0x1a/0x20
[  167.954002][T10881]  _copy_from_user+0x1e/0xb0
[  167.958657][T10881]  __sys_bpf+0x14e/0x7a0
[  167.962938][T10881]  __x64_sys_bpf+0x43/0x50
[  167.967421][T10881]  x64_sys_call+0x2914/0x2dc0
[  167.972129][T10881]  do_syscall_64+0xc9/0x1c0
[  167.976661][T10881]  ? clear_bhb_loop+0x55/0xb0
[  167.981367][T10881]  ? clear_bhb_loop+0x55/0xb0
[  167.986092][T10881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.992093][T10881] RIP: 0033:0x7f548b415d29
[  167.996524][T10881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.016274][T10881] RSP: 002b:00007f5489a87038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  168.024714][T10881] RAX: ffffffffffffffda RBX: 00007f548b605fa0 RCX: 00007f548b415d29
[  168.032786][T10881] RDX: 0000000000000048 RSI: 0000000020000140 RDI: 2000000000000000
[  168.040780][T10881] RBP: 00007f5489a87090 R08: 0000000000000000 R09: 0000000000000000
[  168.048791][T10881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.056792][T10881] R13: 0000000000000000 R14: 00007f548b605fa0 R15: 00007ffe87f0f8b8
[  168.060209][T10866] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.2444: path /446/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  168.064872][T10881]  </TASK>
[  168.109187][T10866] EXT4-fs (loop4): Remounting filesystem read-only
[  168.234957][T10896] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10896 comm=syz.0.2452
[  168.304128][T10903] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2454'.
[  168.366401][T10907] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  168.446127][T10917] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  168.446127][T10917] n'º|$@OOݱµ’-®+·el'
[  168.503185][T10921] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2461'.
[  168.533968][T10923] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10923 comm=syz.5.2463
[  168.616278][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.634095][T10932] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2467'.
[  168.653042][T10932] loop3: detected capacity change from 0 to 512
[  168.666112][T10932] EXT4-fs: Ignoring removed mblk_io_submit option
[  168.681329][T10932] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  168.687051][T10923] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  168.697799][T10923] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  168.707003][T10932] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  168.719334][T10932] System zones: 1-12
[  168.725428][T10932] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2467: corrupted in-inode xattr: e_value size too large
[  168.751899][T10930] loop0: detected capacity change from 0 to 8192
[  168.757120][T10936] loop4: detected capacity change from 0 to 8192
[  168.774177][T10932] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2467: couldn't read orphan inode 15 (err -117)
[  168.812261][T10932] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.815641][T10930] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  168.849107][T10932] EXT4-fs (loop3): shut down requested (0)
[  168.898052][T10936] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  168.905379][T10943] loop0: detected capacity change from 0 to 512
[  168.929524][T10943] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.2470: corrupted in-inode xattr: invalid ea_ino
[  168.955357][T10943] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.2470: couldn't read orphan inode 15 (err -117)
[  168.968704][T10943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.996567][T10949] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  168.996567][T10949] n'º|$@OOݱµ’-®+·el'
[  169.041292][T10953] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=10953 comm=syz.5.2475
[  169.070240][T10957] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10957 comm=syz.0.2470
[  169.126395][T10960] loop4: detected capacity change from 0 to 512
[  169.134602][T10960] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.156001][T10960] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  169.164258][T10960] System zones: 0-2, 18-18, 34-35
[  169.170531][T10960] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.179110][T10962] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  169.185480][T10960] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.2478: path /449/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  169.191242][T10962] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  169.220547][T10960] EXT4-fs (loop4): Remounting filesystem read-only
[  169.308550][T10978] bpf_get_probe_write_proto: 2 callbacks suppressed
[  169.308572][T10978] syz.5.2484[10978] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.316663][T10978] syz.5.2484[10978] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.328338][T10978] syz.5.2484[10978] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.344790][T10978] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  169.415690][T10985] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  169.415690][T10985] n'º|$@OOݱµ’-®+·el'
[  169.485731][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.564984][T10995] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  169.573372][T10995] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  169.613445][T10996] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  169.621693][T10996] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  169.718767][T11002] lo speed is unknown, defaulting to 1000
[  169.770559][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.857520][T11015] loop0: detected capacity change from 0 to 512
[  169.897398][T11017] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  169.897398][T11017] n'º|$@OOݱµ’-®+·el'
[  169.922815][T11015] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.977726][T11015] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2497: corrupted inode contents
[  169.994856][T11024] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  169.995091][T11015] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2497: mark_inode_dirty error
[  170.003184][T11024] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  170.023685][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.036738][T11015] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2497: corrupted inode contents
[  170.056682][T11015] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2497: mark_inode_dirty error
[  170.073818][T11026] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2497: corrupted inode contents
[  170.086771][T11026] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2497: mark_inode_dirty error
[  170.134866][T11026] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2497: corrupted inode contents
[  170.155056][T11030] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2497: corrupted inode contents
[  170.172283][T11030] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2497: mark_inode_dirty error
[  170.197681][T11030] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2497: corrupted inode contents
[  170.243581][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.265079][T11037] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  170.279924][T11048] syz.3.2514[11048] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.280024][T11048] syz.3.2514[11048] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.293324][T11048] syz.3.2514[11048] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.309989][T11048] syz!: rxe_newlink: already configured on team_slave_0
[  170.318307][T11050] loop0: detected capacity change from 0 to 512
[  170.368899][T11050] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.408022][T11050] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2513: corrupted inode contents
[  170.426992][T11050] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2513: mark_inode_dirty error
[  170.448525][T11050] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2513: corrupted inode contents
[  170.474425][T11050] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2513: mark_inode_dirty error
[  170.487736][T11065] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  170.495982][T11065] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  170.507905][T11050] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  170.507905][T11050] n'º|$@OOݱµ’-®+·el'
[  170.578542][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.591664][T11076] loop3: detected capacity change from 0 to 512
[  170.623702][T11082] syz.0.2525[11082] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.623844][T11082] syz.0.2525[11082] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.642697][T11076] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.671884][T11082] syz.0.2525[11082] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  170.675270][T11076] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2523: corrupted inode contents
[  170.679362][T11082] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  170.699392][T11076] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2523: mark_inode_dirty error
[  170.707124][T11078] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  170.724923][T11078] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  170.735866][T11076] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2523: corrupted inode contents
[  170.752919][T11076] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2523: mark_inode_dirty error
[  170.766315][T11086] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2523: corrupted inode contents
[  170.794171][T11086] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2523: mark_inode_dirty error
[  170.825899][T11086] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2523: corrupted inode contents
[  170.852603][T11076] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2523: corrupted inode contents
[  170.893360][T11076] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2523: mark_inode_dirty error
[  170.895014][T11088] loop0: detected capacity change from 0 to 8192
[  170.912599][T11076] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2523: corrupted inode contents
[  170.926824][T11092] __nla_validate_parse: 7 callbacks suppressed
[  170.926841][T11092] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.2528'.
[  170.961853][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.973228][T11088] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  171.103238][T11104] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2533'.
[  171.155419][T11110] syz.3.2536[11110] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  171.157901][T11110] syz!: rxe_newlink: already configured on team_slave_0
[  171.173149][T11111] loop0: detected capacity change from 0 to 512
[  171.188991][T11100] netlink: 'syz.5.2532': attribute type 10 has an invalid length.
[  171.197081][T11100] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2532'.
[  171.206703][T11100] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  171.225050][T11111] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.245962][T11111] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2535: corrupted inode contents
[  171.272991][T11111] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2535: mark_inode_dirty error
[  171.281584][T11117] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  171.292607][T11117] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  171.295777][T11111] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2535: corrupted inode contents
[  171.316298][T11111] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2535: mark_inode_dirty error
[  171.344911][T11111] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  171.344911][T11111] n'º|$@OOݱµ’-®+·el'
[  171.396732][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.414976][T11130] loop3: detected capacity change from 0 to 512
[  171.433397][T11132] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2544'.
[  171.464931][T11130] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2542: bg 0: block 5: invalid block bitmap
[  171.478046][T11130] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  171.487311][T11130] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.2542: invalid indirect mapped block 3 (level 2)
[  171.509514][T11130] EXT4-fs (loop3): 1 orphan inode deleted
[  171.515341][T11130] EXT4-fs (loop3): 1 truncate cleaned up
[  171.526585][T11130] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.555051][T11141] loop0: detected capacity change from 0 to 512
[  171.562109][T11141] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  171.583481][T11141] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  171.591666][T11141] System zones: 0-2, 18-18, 34-35
[  171.593322][T11145] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  171.598030][T11141] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.634701][T11141] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 3: comm syz.0.2546: path /504/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  171.655998][T11141] EXT4-fs (loop0): Remounting filesystem read-only
[  171.752274][T11148] netlink: 'syz.5.2548': attribute type 10 has an invalid length.
[  171.760294][T11148] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2548'.
[  171.769329][T11148] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  171.895159][T11153] vhci_hcd: invalid port number 254
[  172.258514][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.341193][T11158] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  172.349491][T11158] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  172.358175][   T29] kauditd_printk_skb: 1147 callbacks suppressed
[  172.358189][   T29] audit: type=1326 audit(172.378:7790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.387400][   T29] audit: type=1326 audit(172.378:7791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.410332][   T29] audit: type=1326 audit(172.388:7792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.433315][   T29] audit: type=1326 audit(172.388:7793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.456247][   T29] audit: type=1326 audit(172.388:7794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.479167][   T29] audit: type=1326 audit(172.388:7795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.502421][   T29] audit: type=1326 audit(172.388:7796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.525385][   T29] audit: type=1326 audit(172.388:7797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.548338][   T29] audit: type=1326 audit(172.388:7798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.571325][   T29] audit: type=1326 audit(172.408:7799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.2552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  172.571667][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.645988][T11170] loop3: detected capacity change from 0 to 512
[  172.664535][T11170] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.693498][T11170] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2556: corrupted inode contents
[  172.709764][T11170] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2556: mark_inode_dirty error
[  172.722155][T11170] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2556: corrupted inode contents
[  172.736439][T11170] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2556: mark_inode_dirty error
[  172.763120][T11177] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2556: corrupted inode contents
[  172.764499][T11171] netlink: 'syz.2.2557': attribute type 10 has an invalid length.
[  172.775735][T11177] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2556: mark_inode_dirty error
[  172.782950][T11171] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2557'.
[  172.795357][T11177] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2556: corrupted inode contents
[  172.818667][T11170] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2556: corrupted inode contents
[  172.850520][T11170] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2556: mark_inode_dirty error
[  172.883944][T11170] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2556: corrupted inode contents
[  172.894263][T11180] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2553'.
[  172.925466][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.954831][T11179] netlink: 'syz.5.2559': attribute type 10 has an invalid length.
[  172.962783][T11179] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2559'.
[  172.973194][T11179] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  172.975834][T11185] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  173.045163][T11182] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  173.060138][T11189] loop3: detected capacity change from 0 to 512
[  173.067678][T11189] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  173.095119][T11189] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  173.103546][T11189] System zones: 0-2, 18-18, 34-35
[  173.109388][T11189] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.124124][T11197] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2566'.
[  173.133006][T11189] EXT4-fs error (device loop3): ext4_readdir:261: inode #2: block 3: comm syz.3.2563: path /531/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  173.133209][T11189] EXT4-fs (loop3): Remounting filesystem read-only
[  173.443787][T11206] netlink: 'syz.2.2570': attribute type 10 has an invalid length.
[  173.451740][T11206] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2570'.
[  173.553332][T11210] loop4: detected capacity change from 0 to 512
[  173.586411][T11210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.620664][T11210] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2572: corrupted inode contents
[  173.662767][T11210] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2572: mark_inode_dirty error
[  173.694331][T11210] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2572: corrupted inode contents
[  173.726649][T11210] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2572: mark_inode_dirty error
[  173.760701][T11223] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  173.760701][T11223] n'º|$@OOݱµ’-®+·el'
[  173.819631][T11214] netlink: 'syz.2.2573': attribute type 10 has an invalid length.
[  173.855019][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.911423][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.959393][T11238] loop3: detected capacity change from 0 to 512
[  173.985077][T11238] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.001141][T11238] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2580: corrupted inode contents
[  174.013614][T11238] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2580: mark_inode_dirty error
[  174.030270][T11238] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2580: corrupted inode contents
[  174.060307][T11238] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2580: mark_inode_dirty error
[  174.084085][T11256] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2580: corrupted inode contents
[  174.101779][T11256] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2580: mark_inode_dirty error
[  174.105362][T11261] loop4: detected capacity change from 0 to 512
[  174.120521][T11256] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2580: corrupted inode contents
[  174.134603][T11261] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.147289][T11238] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2580: corrupted inode contents
[  174.165459][T11261] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2589: corrupted inode contents
[  174.177638][T11264] vhci_hcd: invalid port number 254
[  174.188071][T11238] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2580: mark_inode_dirty error
[  174.208949][T11238] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2580: corrupted inode contents
[  174.210981][T11261] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2589: mark_inode_dirty error
[  174.242412][T11261] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2589: corrupted inode contents
[  174.256033][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.262408][T11261] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2589: mark_inode_dirty error
[  174.279261][T11267] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  174.279261][T11267] n'º|$@OOݱµ’-®+·el'
[  174.344550][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.386431][T11273] loop4: detected capacity change from 0 to 512
[  174.394548][T11273] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  174.425485][T11273] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  174.441239][T11273] System zones: 0-2, 18-18, 34-35
[  174.447923][T11273] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.462282][T11273] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.2591: path /460/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  174.483441][T11273] EXT4-fs (loop4): Remounting filesystem read-only
[  174.562261][T11275] netlink: 'syz.5.2593': attribute type 10 has an invalid length.
[  174.570431][T11275] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  174.679109][T11281] loop3: detected capacity change from 0 to 8192
[  174.719752][T11281] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  174.867821][T11302] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  174.867821][T11302] n'º|$@OOݱµ’-®+·el'
[  174.919600][T11304] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  174.927895][T11304] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  174.996666][T11307] loop3: detected capacity change from 0 to 512
[  175.014795][T11307] EXT4-fs: Ignoring removed mblk_io_submit option
[  175.029025][T11307] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  175.057895][T11307] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  175.065992][T11307] System zones: 1-12
[  175.071147][T11307] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2603: corrupted in-inode xattr: e_value size too large
[  175.105771][T11307] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2603: couldn't read orphan inode 15 (err -117)
[  175.143557][T11307] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.177151][T11307] EXT4-fs (loop3): shut down requested (0)
[  175.187250][T11309] netlink: 'syz.2.2606': attribute type 10 has an invalid length.
[  175.228331][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.340521][T11330] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  175.340521][T11330] n'º|$@OOݱµ’-®+·el'
[  175.383761][T11334] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  175.392152][T11334] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  175.405793][T11336] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  175.416265][T11337] vhci_hcd: invalid port number 254
[  175.569951][T11346] netlink: 'syz.2.2621': attribute type 10 has an invalid length.
[  175.759632][T11362] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  175.759632][T11362] n'º|$@OOݱµ’-®+·el'
[  175.802735][T11364] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  175.811005][T11364] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  175.825815][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.892243][T11372] loop3: detected capacity change from 0 to 164
[  176.056105][T11387] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  176.069342][T11372] iso9660: Corrupted directory entry in block 4 of inode 1792
[  176.083481][T11372] netlink: 'syz.3.2632': attribute type 10 has an invalid length.
[  176.091437][T11372] __nla_validate_parse: 9 callbacks suppressed
[  176.091453][T11372] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2632'.
[  176.110503][T11372] team0: Port device geneve1 added
[  176.194703][T11391] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  176.202981][T11391] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  176.228152][T11393] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  176.231787][T11395] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2640'.
[  176.251554][T11395] loop3: detected capacity change from 0 to 512
[  176.259075][T11395] EXT4-fs: Ignoring removed mblk_io_submit option
[  176.266613][T11395] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  176.278206][T11395] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  176.287228][T11395] System zones: 1-12
[  176.291483][T11395] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2640: corrupted in-inode xattr: e_value size too large
[  176.308616][T11395] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2640: couldn't read orphan inode 15 (err -117)
[  176.321850][T11395] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.336135][T11395] EXT4-fs (loop3): shut down requested (0)
[  176.354271][T11399] loop0: detected capacity change from 0 to 8192
[  176.411760][T11402] loop4: detected capacity change from 0 to 8192
[  176.468494][T11409] loop0: detected capacity change from 0 to 512
[  176.494444][T11409] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.511180][T11409] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2648: corrupted inode contents
[  176.523795][T11409] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2648: mark_inode_dirty error
[  176.537303][T11409] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2648: corrupted inode contents
[  176.559419][T11409] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2648: mark_inode_dirty error
[  176.575104][T11416] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2648: corrupted inode contents
[  176.588683][T11416] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2648: mark_inode_dirty error
[  176.609123][T11416] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2648: corrupted inode contents
[  176.626572][T11409] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2648: corrupted inode contents
[  176.655403][T11409] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2648: mark_inode_dirty error
[  176.678119][T11409] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2648: corrupted inode contents
[  176.709083][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.750734][T11422] vhci_hcd: invalid port number 254
[  176.783718][T11426] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  176.791992][T11426] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  176.870793][T11429] loop0: detected capacity change from 0 to 128
[  176.879203][T11429] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  176.903047][T11429] lo speed is unknown, defaulting to 1000
[  177.036189][T11447] loop4: detected capacity change from 0 to 512
[  177.045689][T11449] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  177.054841][T11447] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.073337][T11447] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2661: corrupted inode contents
[  177.086972][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.097742][T11447] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2661: mark_inode_dirty error
[  177.115078][T11447] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2661: corrupted inode contents
[  177.141471][T11447] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2661: mark_inode_dirty error
[  177.153702][T11456] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2661: corrupted inode contents
[  177.166129][T11455] loop3: detected capacity change from 0 to 8192
[  177.166823][T11456] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2661: mark_inode_dirty error
[  177.185228][T11456] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2661: corrupted inode contents
[  177.197264][T11447] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2661: corrupted inode contents
[  177.209654][T11447] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2661: mark_inode_dirty error
[  177.221455][T11447] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2661: corrupted inode contents
[  177.248030][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.539366][   T29] kauditd_printk_skb: 881 callbacks suppressed
[  177.539382][   T29] audit: type=1326 audit(177.578:8681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.569800][   T29] audit: type=1326 audit(177.608:8682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.593322][   T29] audit: type=1326 audit(177.638:8683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.616280][   T29] audit: type=1326 audit(177.638:8684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.639328][   T29] audit: type=1326 audit(177.638:8685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.663956][   T29] audit: type=1326 audit(177.708:8686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.687045][   T29] audit: type=1326 audit(177.708:8687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.710317][   T29] audit: type=1326 audit(177.708:8688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.740466][ T3299] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  177.781360][   T29] audit: type=1326 audit(177.818:8689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.804337][   T29] audit: type=1326 audit(177.818:8690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11462 comm="syz.2.2666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  177.922628][T11468] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  177.930840][T11468] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  177.944586][T11482] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2674'.
[  177.957354][T11482] vlan2: entered promiscuous mode
[  177.999534][T11485] loop3: detected capacity change from 0 to 512
[  178.032903][T11495] vhci_hcd: invalid port number 254
[  178.043700][T11485] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2675: corrupted inode contents
[  178.074827][T11485] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2675: mark_inode_dirty error
[  178.076327][T11496] loop0: detected capacity change from 0 to 8192
[  178.103273][T11485] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2675: corrupted inode contents
[  178.117104][T11500] loop4: detected capacity change from 0 to 128
[  178.124135][T11485] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2675: mark_inode_dirty error
[  178.152767][T11501] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2675: corrupted inode contents
[  178.169546][T11500] lo speed is unknown, defaulting to 1000
[  178.172428][T11501] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2675: mark_inode_dirty error
[  178.200750][T11501] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2675: corrupted inode contents
[  178.244894][T11485] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2675: corrupted inode contents
[  178.272729][T11485] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2675: mark_inode_dirty error
[  178.285520][T11485] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2675: corrupted inode contents
[  178.459195][T11523] loop3: detected capacity change from 0 to 8192
[  178.616182][T11529] loop0: detected capacity change from 0 to 512
[  178.624092][T11529] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  178.645981][T11529] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  178.667175][T11529] System zones: 0-2, 18-18, 34-35
[  178.682014][T11529] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 3: comm syz.0.2688: path /524/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  178.703051][T11529] EXT4-fs (loop0): Remounting filesystem read-only
[  178.972971][T11542] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  179.206817][T11559] netlink: 'syz.5.2697': attribute type 10 has an invalid length.
[  179.214741][T11559] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2697'.
[  179.222076][T11554] loop4: detected capacity change from 0 to 8192
[  179.228914][T11560] vhci_hcd: invalid port number 254
[  179.242318][T11559] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  179.295615][T11554] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  179.338020][T11565] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2702'.
[  179.367937][T11568] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.2703'.
[  179.384282][T11569] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  179.392645][T11569] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  179.477788][T11577] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  179.488412][T11579] FAULT_INJECTION: forcing a failure.
[  179.488412][T11579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.501762][T11579] CPU: 1 UID: 0 PID: 11579 Comm: syz.5.2709 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  179.512568][T11579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  179.522718][T11579] Call Trace:
[  179.526008][T11579]  <TASK>
[  179.528946][T11579]  dump_stack_lvl+0xf2/0x150
[  179.533624][T11579]  dump_stack+0x15/0x1a
[  179.537997][T11579]  should_fail_ex+0x223/0x230
[  179.542734][T11579]  should_fail+0xb/0x10
[  179.546909][T11579]  should_fail_usercopy+0x1a/0x20
[  179.551986][T11579]  strncpy_from_user+0x25/0x210
[  179.556866][T11579]  ? kstrtouint_from_user+0xb0/0xe0
[  179.562141][T11579]  path_setxattrat+0xed/0x310
[  179.566875][T11579]  __x64_sys_lsetxattr+0x71/0x90
[  179.571934][T11579]  x64_sys_call+0x29c8/0x2dc0
[  179.576643][T11579]  do_syscall_64+0xc9/0x1c0
[  179.581210][T11579]  ? clear_bhb_loop+0x55/0xb0
[  179.585898][T11579]  ? clear_bhb_loop+0x55/0xb0
[  179.590613][T11579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.596532][T11579] RIP: 0033:0x7f34d55f5d29
[  179.601030][T11579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.620654][T11579] RSP: 002b:00007f34d3c61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  179.629103][T11579] RAX: ffffffffffffffda RBX: 00007f34d57e5fa0 RCX: 00007f34d55f5d29
[  179.637162][T11579] RDX: 00000000200001c0 RSI: 0000000020000240 RDI: 0000000020000140
[  179.645220][T11579] RBP: 00007f34d3c61090 R08: 0000000000000000 R09: 0000000000000000
[  179.653283][T11579] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  179.661269][T11579] R13: 0000000000000000 R14: 00007f34d57e5fa0 R15: 00007ffc2ece2c28
[  179.669266][T11579]  </TASK>
[  179.757498][T11588] loop4: detected capacity change from 0 to 512
[  179.793192][T11590] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2714'.
[  179.797079][T11588] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2713: corrupted inode contents
[  179.827386][T11588] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2713: mark_inode_dirty error
[  179.839466][T11588] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2713: corrupted inode contents
[  179.852819][T11588] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2713: mark_inode_dirty error
[  179.865322][T11596] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2713: corrupted inode contents
[  179.894989][T11596] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2713: mark_inode_dirty error
[  179.916068][T11596] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2713: corrupted inode contents
[  179.919369][T11599] 9pnet_fd: Insufficient options for proto=fd
[  179.957473][T11588] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2713: corrupted inode contents
[  179.983811][T11604] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  179.990326][T11588] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2713: mark_inode_dirty error
[  179.992120][T11604] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  180.032746][T11588] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2713: corrupted inode contents
[  180.086286][T11612] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  180.129959][T11610] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  180.146846][T11618] netlink: 133492 bytes leftover after parsing attributes in process `syz.4.2725'.
[  180.259393][T11633] FAULT_INJECTION: forcing a failure.
[  180.259393][T11633] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.272600][T11633] CPU: 0 UID: 0 PID: 11633 Comm: syz.0.2730 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  180.283494][T11633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  180.290606][T11620] loop3: detected capacity change from 0 to 8192
[  180.293556][T11633] Call Trace:
[  180.293567][T11633]  <TASK>
[  180.293578][T11633]  dump_stack_lvl+0xf2/0x150
[  180.301612][T11631] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2731'.
[  180.303207][T11633]  dump_stack+0x15/0x1a
[  180.324108][T11633]  should_fail_ex+0x223/0x230
[  180.328825][T11633]  should_fail+0xb/0x10
[  180.333062][T11633]  should_fail_usercopy+0x1a/0x20
[  180.338129][T11633]  _copy_from_user+0x1e/0xb0
[  180.342762][T11633]  copy_clone_args_from_user+0x145/0x460
[  180.348436][T11633]  ? audit_log_end+0x1d0/0x1e0
[  180.353314][T11633]  __se_sys_clone3+0x6e/0x200
[  180.358087][T11633]  __x64_sys_clone3+0x31/0x40
[  180.362776][T11633]  x64_sys_call+0x2d56/0x2dc0
[  180.367910][T11633]  do_syscall_64+0xc9/0x1c0
[  180.372502][T11633]  ? clear_bhb_loop+0x55/0xb0
[  180.377182][T11633]  ? clear_bhb_loop+0x55/0xb0
[  180.381898][T11633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.387900][T11633] RIP: 0033:0x7fa212e55d29
[  180.392326][T11633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.412189][T11633] RSP: 002b:00007fa2114c6f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  180.420630][T11633] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa212e55d29
[  180.428642][T11633] RDX: 00007fa2114c6f20 RSI: 0000000000000058 RDI: 00007fa2114c6f20
[  180.436680][T11633] RBP: 00007fa2114c7090 R08: 0000000000000000 R09: 0000000000000058
[  180.444712][T11633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.452721][T11633] R13: 0000000000000000 R14: 00007fa213045fa0 R15: 00007ffe557a56b8
[  180.460743][T11633]  </TASK>
[  180.534668][T11646] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  180.542980][T11646] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  180.601251][T11655] netlink: 133492 bytes leftover after parsing attributes in process `syz.0.2738'.
[  180.694965][T11662] FAULT_INJECTION: forcing a failure.
[  180.694965][T11662] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  180.708428][T11662] CPU: 1 UID: 0 PID: 11662 Comm: syz.2.2741 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  180.719280][T11662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  180.729368][T11662] Call Trace:
[  180.732668][T11662]  <TASK>
[  180.735619][T11662]  dump_stack_lvl+0xf2/0x150
[  180.740435][T11662]  dump_stack+0x15/0x1a
[  180.744666][T11662]  should_fail_ex+0x223/0x230
[  180.749392][T11662]  should_fail_alloc_page+0xfd/0x110
[  180.754734][T11662]  __alloc_pages_noprof+0x109/0x340
[  180.760026][T11662]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  180.765518][T11662]  alloc_pages_noprof+0xe1/0x100
[  180.770608][T11662]  pte_alloc_one+0x31/0x110
[  180.775217][T11662]  __pte_alloc+0x33/0x2a0
[  180.779595][T11662]  handle_mm_fault+0x1b4a/0x2ac0
[  180.784587][T11662]  exc_page_fault+0x3b9/0x650
[  180.789314][T11662]  asm_exc_page_fault+0x26/0x30
[  180.794211][T11662] RIP: 0033:0x7f548b2d8c46
[  180.798676][T11662] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  180.818354][T11662] RSP: 002b:00007f5489a863f0 EFLAGS: 00010246
[  180.824455][T11662] RAX: 0000000000000001 RBX: 00007f5489a86490 RCX: 0000000000000101
[  180.832441][T11662] RDX: 0000000000000007 RSI: 0000000000000001 RDI: 00007f5489a86530
[  180.840423][T11662] RBP: 0000000000000102 R08: 00007f5481667000 R09: 0000000000000000
[  180.848489][T11662] R10: 0000000000000000 R11: 00007f5489a864a0 R12: 0000000000000001
[  180.856472][T11662] R13: 00007f548b4a9040 R14: 0000000000000000 R15: 00007f5489a86530
[  180.864461][T11662]  </TASK>
[  180.867590][T11662] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  180.880583][T11660] sd 0:0:1:0: device reset
[  180.885584][T11666] xt_hashlimit: max too large, truncated to 1048576
[  180.935080][T11672] vlan2: entered promiscuous mode
[  181.231178][T11685] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  181.239438][T11685] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  181.367448][T11699] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  181.388877][T11701] loop4: detected capacity change from 0 to 512
[  181.409548][T11701] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2755: corrupted inode contents
[  181.421684][T11701] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2755: mark_inode_dirty error
[  181.435149][T11701] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2755: corrupted inode contents
[  181.465913][T11701] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2755: mark_inode_dirty error
[  181.477518][T11710] FAULT_INJECTION: forcing a failure.
[  181.477518][T11710] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.490717][T11710] CPU: 1 UID: 0 PID: 11710 Comm: syz.3.2757 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  181.501554][T11710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  181.511744][T11710] Call Trace:
[  181.515089][T11710]  <TASK>
[  181.518133][T11710]  dump_stack_lvl+0xf2/0x150
[  181.522814][T11710]  dump_stack+0x15/0x1a
[  181.527002][T11710]  should_fail_ex+0x223/0x230
[  181.531719][T11710]  should_fail+0xb/0x10
[  181.535928][T11710]  should_fail_usercopy+0x1a/0x20
[  181.540971][T11710]  _copy_from_user+0x1e/0xb0
[  181.545584][T11710]  autofs_dev_ioctl+0xd6/0x660
[  181.550427][T11710]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[  181.555854][T11710]  __se_sys_ioctl+0xc9/0x140
[  181.560567][T11710]  __x64_sys_ioctl+0x43/0x50
[  181.565214][T11710]  x64_sys_call+0x1690/0x2dc0
[  181.569941][T11710]  do_syscall_64+0xc9/0x1c0
[  181.574527][T11710]  ? clear_bhb_loop+0x55/0xb0
[  181.579219][T11710]  ? clear_bhb_loop+0x55/0xb0
[  181.583988][T11710]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.589952][T11710] RIP: 0033:0x7f1633c35d29
[  181.594418][T11710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.614145][T11710] RSP: 002b:00007f16322a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  181.622580][T11710] RAX: ffffffffffffffda RBX: 00007f1633e25fa0 RCX: 00007f1633c35d29
[  181.630685][T11710] RDX: 0000000020000240 RSI: 00000000c0189374 RDI: 0000000000000005
[  181.638667][T11710] RBP: 00007f16322a7090 R08: 0000000000000000 R09: 0000000000000000
[  181.646813][T11710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.654799][T11710] R13: 0000000000000000 R14: 00007f1633e25fa0 R15: 00007fff06c4a658
[  181.662795][T11710]  </TASK>
[  181.713328][T11708] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2755: corrupted inode contents
[  181.728082][T11708] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2755: mark_inode_dirty error
[  181.740377][T11708] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2755: corrupted inode contents
[  181.763798][T11711] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2755: corrupted inode contents
[  181.776183][T11711] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2755: mark_inode_dirty error
[  181.801807][T11719] loop3: detected capacity change from 0 to 8192
[  181.813849][T11711] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2755: corrupted inode contents
[  181.886834][T11728] loop4: detected capacity change from 0 to 512
[  181.900956][T11728] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  181.934702][T11728] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  181.957553][T11728] System zones: 0-2, 18-18, 34-35
[  181.976948][T11728] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.2764: path /493/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  181.998235][T11728] EXT4-fs (loop4): Remounting filesystem read-only
[  182.128188][T11731] netlink: 'syz.5.2765': attribute type 10 has an invalid length.
[  182.136101][T11731] __nla_validate_parse: 2 callbacks suppressed
[  182.136115][T11731] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2765'.
[  182.213688][T11731] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  182.227591][T11746] loop0: detected capacity change from 0 to 8192
[  182.283604][T11748] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  182.291839][T11748] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  182.452012][T11756] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  182.460290][T11756] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  182.575321][T11762] lo speed is unknown, defaulting to 1000
[  182.622146][T11768] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2778'.
[  182.650041][T11771] loop3: detected capacity change from 0 to 512
[  182.664726][   T29] kauditd_printk_skb: 430 callbacks suppressed
[  182.664744][   T29] audit: type=1400 audit(182.708:9121): avc:  denied  { write } for  pid=11766 comm="syz.2.2777" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  182.721032][T11771] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2774: corrupted inode contents
[  182.746631][   T29] audit: type=1326 audit(182.758:9122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  182.754784][T11771] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2774: mark_inode_dirty error
[  182.769842][   T29] audit: type=1326 audit(182.758:9123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  182.782519][T11776] loop0: detected capacity change from 0 to 1024
[  182.804009][   T29] audit: type=1326 audit(182.758:9124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  182.833632][   T29] audit: type=1326 audit(182.758:9125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  182.845852][T11776] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  182.856658][   T29] audit: type=1326 audit(182.758:9126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  182.868656][T11771] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2774: corrupted inode contents
[  182.888052][   T29] audit: type=1326 audit(182.758:9127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  182.980503][T11771] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2774: mark_inode_dirty error
[  182.996028][T11782] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  183.001124][   T29] audit: type=1326 audit(183.038:9128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  183.004293][T11782] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  183.027129][   T29] audit: type=1326 audit(183.038:9129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11770 comm="syz.3.2774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1633c35d29 code=0x7ffc0000
[  183.058967][T11778] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2774: corrupted inode contents
[  183.088478][T11785] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  183.091807][T11778] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2774: mark_inode_dirty error
[  183.092040][T11778] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2774: corrupted inode contents
[  183.092200][T11779] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2774: corrupted inode contents
[  183.092349][T11779] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2774: mark_inode_dirty error
[  183.092902][T11779] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2774: corrupted inode contents
[  183.246365][T11793] loop3: detected capacity change from 0 to 512
[  183.264367][T11793] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  183.296053][T11793] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  183.304360][T11793] System zones: 0-2, 18-18, 34-35
[  183.326468][T11793] EXT4-fs error (device loop3): ext4_readdir:261: inode #2: block 3: comm syz.3.2786: path /562/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  183.348270][T11793] EXT4-fs (loop3): Remounting filesystem read-only
[  183.355125][T11795] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  183.363354][T11795] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  183.395264][T11786] netlink: 'syz.2.2783': attribute type 10 has an invalid length.
[  183.403186][T11786] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2783'.
[  183.457929][T11805] loop0: detected capacity change from 0 to 1024
[  183.483048][T11805] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  183.503337][   T29] audit: type=1326 audit(183.538:9130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11808 comm="syz.2.2790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  183.533213][T11804] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.0.2788: corrupted in-inode xattr: bad magic number in in-inode xattr
[  183.608472][T11817] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  183.616837][T11817] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  183.665408][T11821] loop0: detected capacity change from 0 to 512
[  183.687965][T11821] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2795: corrupted inode contents
[  183.688311][T11815] loop4: detected capacity change from 0 to 8192
[  183.709005][T11821] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2795: mark_inode_dirty error
[  183.742229][T11821] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2795: corrupted inode contents
[  183.791448][T11821] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2795: mark_inode_dirty error
[  183.821630][T11826] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2795: corrupted inode contents
[  183.860700][T11826] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2795: mark_inode_dirty error
[  183.894747][T11826] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2795: corrupted inode contents
[  183.943538][T11829] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2795: corrupted inode contents
[  183.957934][T11828] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  183.968621][T11829] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2795: mark_inode_dirty error
[  183.980383][T11829] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2795: corrupted inode contents
[  184.019787][T11839] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.2800'.
[  184.038502][T11836] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.2800'.
[  184.135442][T11848] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  184.143700][T11848] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  184.154814][T11844] pim6reg: left allmulticast mode
[  184.216285][T11854] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  184.226649][T11856] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  184.226649][T11856] n'º|$@OOݱµ’-®+·el'
[  184.227015][T11852] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  184.260473][T11858] loop4: detected capacity change from 0 to 512
[  184.267623][T11858] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  184.299628][T11858] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c028, mo2=0002]
[  184.307951][T11858] System zones: 0-2, 18-18, 34-35
[  184.316793][T11858] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.2810: path /500/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  184.351404][T11858] EXT4-fs (loop4): Remounting filesystem read-only
[  184.355459][T11867] loop3: detected capacity change from 0 to 8192
[  184.368367][T11860] netlink: '+}[@': attribute type 5 has an invalid length.
[  184.376068][T11869] vhci_hcd: invalid port number 254
[  184.402929][T11867] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  184.538042][T11876] bpf_get_probe_write_proto: 5 callbacks suppressed
[  184.538059][T11876] syz.3.2815[11876] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  184.544902][T11876] syz.3.2815[11876] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  184.562398][T11876] syz.3.2815[11876] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  184.582055][T11876] syz!: rxe_newlink: already configured on team_slave_0
[  184.633539][T11880] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  184.641844][T11880] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  185.109191][T11900] loop0: detected capacity change from 0 to 512
[  185.128041][T11900] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.2824: bg 0: block 5: invalid block bitmap
[  185.141038][T11900] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  185.162825][T11900] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2824: invalid indirect mapped block 3 (level 2)
[  185.200052][T11900] EXT4-fs (loop0): 1 orphan inode deleted
[  185.205931][T11900] EXT4-fs (loop0): 1 truncate cleaned up
[  185.278314][T11907] syz.5.2827[11907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  185.278471][T11907] syz.5.2827[11907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  185.293208][T11909] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  185.298892][T11907] syz.5.2827[11907] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  185.304835][T11909] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  185.329887][T11905] loop4: detected capacity change from 0 to 8192
[  185.335414][T11911] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  185.389538][T11905] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  185.459009][T11919] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2832'.
[  185.538701][T11929] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2837'.
[  185.543790][T11919] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2832'.
[  185.560049][T11929] vlan2: entered promiscuous mode
[  185.582870][T11932] vhci_hcd: invalid port number 254
[  185.625834][T11937] syz.3.2840[11937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  185.625999][T11937] syz.3.2840[11937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  185.637992][T11937] syz.3.2840[11937] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  185.652222][T11937] syz!: rxe_newlink: already configured on team_slave_0
[  185.696212][T11940] loop3: detected capacity change from 0 to 164
[  185.823828][T11940] iso9660: Corrupted directory entry in block 4 of inode 1792
[  185.833859][T11945] loop4: detected capacity change from 0 to 8192
[  185.834181][T11940] netlink: 'syz.3.2841': attribute type 10 has an invalid length.
[  185.848095][T11940] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2841'.
[  185.863511][T11945] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[  185.928525][T11948] selinux_netlink_send: 2 callbacks suppressed
[  185.928544][T11948] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=11948 comm=syz.3.2844
[  186.012582][T11948] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  186.015382][T11950] loop0: detected capacity change from 0 to 8192
[  186.020886][T11948] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  186.068991][T11957] loop3: detected capacity change from 0 to 512
[  186.089236][T11963] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2850'.
[  186.097536][T11965] syz.4.2851[11965] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  186.101451][T11957] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2848: corrupted inode contents
[  186.104536][T11965] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  186.115506][T11957] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.2848: mark_inode_dirty error
[  186.126281][T11963] vlan2: entered promiscuous mode
[  186.131936][T11957] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.2848: corrupted inode contents
[  186.168824][T11957] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.2848: mark_inode_dirty error
[  186.186200][T11966] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  186.186200][T11966] n'º|$@OOݱµ’-®+·el'
[  186.284789][T11972] loop3: detected capacity change from 0 to 512
[  186.285997][T11974] loop0: detected capacity change from 0 to 164
[  186.291633][T11972] EXT4-fs: Ignoring removed mblk_io_submit option
[  186.334255][T11972] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  186.363056][T11972] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  186.371034][T11972] System zones: 1-12
[  186.389407][T11977] loop4: detected capacity change from 0 to 512
[  186.397219][T11972] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2854: corrupted in-inode xattr: e_value size too large
[  186.407040][T11977] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2856: bg 0: block 5: invalid block bitmap
[  186.425147][T11972] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2854: couldn't read orphan inode 15 (err -117)
[  186.431402][T11977] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  186.448515][T11977] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2856: invalid indirect mapped block 3 (level 2)
[  186.450710][T11982] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=11982 comm=syz.2.2858
[  186.462149][T11977] EXT4-fs (loop4): 1 orphan inode deleted
[  186.478808][T11972] EXT4-fs (loop3): shut down requested (0)
[  186.480308][T11977] EXT4-fs (loop4): 1 truncate cleaned up
[  186.534491][T11974] iso9660: Corrupted directory entry in block 4 of inode 1792
[  186.547065][T11982] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22
[  186.554803][T11974] netlink: 'syz.0.2855': attribute type 10 has an invalid length.
[  186.555365][T11982] netdevsim netdevsim2: Direct firmware load for . failed with error -22
[  186.575859][T11974] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  186.623672][T11995] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  186.654585][T11997] vlan2: entered promiscuous mode
[  186.670974][T11999] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  186.670974][T11999] n'º|$@OOݱµ’-®+·el'
[  186.734823][T12003] loop0: detected capacity change from 0 to 512
[  186.757296][T12008] netlink: 'syz.2.2868': attribute type 29 has an invalid length.
[  186.759062][T12003] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2866: corrupted inode contents
[  186.784435][T12003] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2866: mark_inode_dirty error
[  186.797856][T12003] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2866: corrupted inode contents
[  186.814230][T12003] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.2866: mark_inode_dirty error
[  186.827210][T12012] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2866: corrupted inode contents
[  186.839866][T12012] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2866: mark_inode_dirty error
[  186.853831][T12012] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2866: corrupted inode contents
[  186.867666][T12003] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2866: corrupted inode contents
[  186.880020][T12003] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #2: comm syz.0.2866: mark_inode_dirty error
[  186.891892][T12003] EXT4-fs error (device loop0): ext4_do_update_inode:5153: inode #2: comm syz.0.2866: corrupted inode contents
[  186.969315][T12019] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=12019 comm=syz.5.2872
[  187.015060][T12024] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  187.024929][T12019] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  187.033344][T12019] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  187.045407][T12027] loop0: detected capacity change from 0 to 164
[  187.086017][T12031] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  187.086017][T12031] n'º|$@OOݱµ’-®+·el'
[  187.144894][T12033] __nla_validate_parse: 3 callbacks suppressed
[  187.144912][T12033] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2878'.
[  187.164573][T12033] vlan2: entered promiscuous mode
[  187.189798][T12035] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  187.213682][T12027] iso9660: Corrupted directory entry in block 4 of inode 1792
[  187.229653][T12027] netlink: 'syz.0.2875': attribute type 10 has an invalid length.
[  187.237572][T12027] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2875'.
[  187.247085][T12027] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  187.279513][T12040] loop4: detected capacity change from 0 to 512
[  187.321385][T12040] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2881: corrupted inode contents
[  187.334438][T12040] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2881: mark_inode_dirty error
[  187.346480][T12040] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2881: corrupted inode contents
[  187.359808][T12040] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.2881: mark_inode_dirty error
[  187.375755][T12040] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2881: corrupted inode contents
[  187.388314][T12040] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2881: mark_inode_dirty error
[  187.403301][T12040] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2881: corrupted inode contents
[  187.433217][T12047] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2881: corrupted inode contents
[  187.445762][T12047] EXT4-fs error (device loop4): ext4_dirty_inode:6041: inode #2: comm syz.4.2881: mark_inode_dirty error
[  187.451618][T12052] loop0: detected capacity change from 0 to 128
[  187.458325][T12047] EXT4-fs error (device loop4): ext4_do_update_inode:5153: inode #2: comm syz.4.2881: corrupted inode contents
[  187.540034][T12054] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=12054 comm=syz.4.2886
[  187.641714][T12054] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  187.646426][T12061] msdos: Unknown parameter '18446744073709551615ÿÿÿÿÿÿÿÿ01777777777777777777777ÿ0xffffffffffffffff18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ¨ÐÊ3†…ƒPq{ÚP
[  187.646426][T12061] n'º|$@OOݱµ’-®+·el'
[  187.649959][T12054] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  187.677977][   T29] kauditd_printk_skb: 1122 callbacks suppressed
[  187.677991][   T29] audit: type=1326 audit(187.688:10253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.707353][   T29] audit: type=1326 audit(187.688:10254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.730517][   T29] audit: type=1326 audit(187.688:10255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.754058][   T29] audit: type=1326 audit(187.688:10256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.777176][   T29] audit: type=1326 audit(187.688:10257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.800446][   T29] audit: type=1326 audit(187.688:10258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.823349][   T29] audit: type=1326 audit(187.688:10259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.846345][   T29] audit: type=1326 audit(187.688:10260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f548b415d29 code=0x7ffc0000
[  187.869471][   T29] audit: type=1326 audit(187.688:10261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f548b414597 code=0x7ffc0000
[  187.892541][   T29] audit: type=1326 audit(187.688:10262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12060 comm="syz.2.2889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f548b4174ca code=0x7ffc0000
[  187.939585][T12070] loop0: detected capacity change from 0 to 512
[  187.948630][T12070] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.2890: bg 0: block 5: invalid block bitmap
[  187.961959][T12073] loop4: detected capacity change from 0 to 164
[  187.962075][T12070] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  187.979705][T12070] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2890: invalid indirect mapped block 3 (level 2)
[  187.997572][T12070] EXT4-fs (loop0): 1 orphan inode deleted
[  188.003424][T12070] EXT4-fs (loop0): 1 truncate cleaned up
[  188.079502][T12081] vlan2: entered allmulticast mode
[  188.127683][T12073] iso9660: Corrupted directory entry in block 4 of inode 1792
[  188.144323][T12081] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2896'.
[  188.154471][T12088] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0
[  188.166610][T12073] netlink: 'syz.4.2893': attribute type 10 has an invalid length.
[  188.174521][T12073] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2893'.
[  188.270800][T12086] FAULT_INJECTION: forcing a failure.
[  188.270800][T12086] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.284080][T12086] CPU: 0 UID: 0 PID: 12086 Comm: syz.3.2897 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  188.294921][T12086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  188.305029][T12086] Call Trace:
[  188.308322][T12086]  <TASK>
[  188.311271][T12086]  dump_stack_lvl+0xf2/0x150
[  188.315957][T12086]  dump_stack+0x15/0x1a
[  188.320184][T12086]  should_fail_ex+0x223/0x230
[  188.324954][T12086]  should_fail+0xb/0x10
[  188.329123][T12086]  should_fail_usercopy+0x1a/0x20
[  188.334166][T12086]  _copy_from_user+0x1e/0xb0
[  188.338898][T12086]  do_pagemap_cmd+0x78/0x9a0
[  188.343509][T12086]  ? do_vfs_ioctl+0x1166/0x1530
[  188.348387][T12086]  ? __pfx_do_pagemap_cmd+0x10/0x10
[  188.353612][T12086]  __se_sys_ioctl+0xc9/0x140
[  188.358290][T12086]  __x64_sys_ioctl+0x43/0x50
[  188.363025][T12086]  x64_sys_call+0x1690/0x2dc0
[  188.367799][T12086]  do_syscall_64+0xc9/0x1c0
[  188.372342][T12086]  ? clear_bhb_loop+0x55/0xb0
[  188.377033][T12086]  ? clear_bhb_loop+0x55/0xb0
[  188.381784][T12086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.387796][T12086] RIP: 0033:0x7f1633c35d29
[  188.392247][T12086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.411879][T12086] RSP: 002b:00007f16322a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  188.420311][T12086] RAX: ffffffffffffffda RBX: 00007f1633e25fa0 RCX: 00007f1633c35d29
[  188.428333][T12086] RDX: 0000000020000100 RSI: 00000000c0606610 RDI: 0000000000000003
[  188.436331][T12086] RBP: 00007f16322a7090 R08: 0000000000000000 R09: 0000000000000000
[  188.444315][T12086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.452298][T12086] R13: 0000000000000000 R14: 00007f1633e25fa0 R15: 00007fff06c4a658
[  188.460406][T12086]  </TASK>
[  188.619516][T12099] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2901'.
[  188.704471][T12102] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=21184 sclass=netlink_route_socket pid=12102 comm=syz.5.2902
[  188.757419][T12104] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2903'.
[  188.767037][T12102] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  188.775276][T12102] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  188.783370][T12104] loop3: detected capacity change from 0 to 512
[  188.799340][T12104] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.808174][T12104] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  188.819649][T12104] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  188.827857][T12109] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  188.836161][T12109] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  188.836675][T12104] System zones: 1-12
[  188.863930][T12104] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2903: corrupted in-inode xattr: e_value size too large
[  188.883684][T12104] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2903: couldn't read orphan inode 15 (err -117)
[  188.917713][T12104] EXT4-fs (loop3): shut down requested (0)
[  188.941495][T12121] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2910'.
[  189.079353][T12130] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2912'.
[  189.090924][T12130] vlan2: entered promiscuous mode
[  189.186917][T12134] loop0: detected capacity change from 0 to 512
[  189.195471][T12134] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.2914: bg 0: block 5: invalid block bitmap
[  189.208382][T12134] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  189.217696][T12134] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2914: invalid indirect mapped block 3 (level 2)
[  189.231548][T12134] EXT4-fs (loop0): 1 orphan inode deleted
[  189.237396][T12134] EXT4-fs (loop0): 1 truncate cleaned up
[  189.371589][T12138] loop4: detected capacity change from 0 to 8192
[  189.518865][T12138] ==================================================================
[  189.527024][T12138] BUG: KCSAN: data-race in mark_buffer_dirty_inode / mark_buffer_dirty_inode
[  189.535848][T12138] 
[  189.538192][T12138] write to 0xffff888126cf9330 of 8 bytes by task 12140 on cpu 0:
[  189.545928][T12138]  mark_buffer_dirty_inode+0x18d/0x1c0
[  189.551436][T12138]  fat_mirror_bhs+0x241/0x330
[  189.556151][T12138]  fat_alloc_clusters+0x994/0xa80
[  189.561229][T12138]  fat_get_block+0x25c/0x5e0
[  189.565871][T12138]  __block_write_begin_int+0x417/0xfa0
[  189.571379][T12138]  cont_write_begin+0x546/0x860
[  189.576289][T12138]  fat_write_begin+0x51/0xe0
[  189.580999][T12138]  cont_write_begin+0x18b/0x860
[  189.585901][T12138]  fat_write_begin+0x51/0xe0
[  189.590518][T12138]  generic_perform_write+0x1a8/0x4a0
[  189.595841][T12138]  __generic_file_write_iter+0xa1/0x120
[  189.601438][T12138]  generic_file_write_iter+0x77/0x1c0
[  189.606849][T12138]  do_iter_readv_writev+0x394/0x450
[  189.612094][T12138]  vfs_writev+0x2d4/0x880
[  189.616455][T12138]  __se_sys_pwritev2+0x100/0x1c0
[  189.621438][T12138]  __x64_sys_pwritev2+0x78/0x90
[  189.626344][T12138]  x64_sys_call+0x2afe/0x2dc0
[  189.631052][T12138]  do_syscall_64+0xc9/0x1c0
[  189.635586][T12138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.641525][T12138] 
[  189.643866][T12138] read to 0xffff888126cf9330 of 8 bytes by task 12138 on cpu 1:
[  189.651520][T12138]  mark_buffer_dirty_inode+0x96/0x1c0
[  189.656937][T12138]  fat_mirror_bhs+0x241/0x330
[  189.661647][T12138]  fat_alloc_clusters+0x994/0xa80
[  189.666686][T12138]  fat_get_block+0x25c/0x5e0
[  189.671309][T12138]  __block_write_begin_int+0x417/0xfa0
[  189.676782][T12138]  cont_write_begin+0x546/0x860
[  189.681676][T12138]  fat_write_begin+0x51/0xe0
[  189.686271][T12138]  cont_write_begin+0x18b/0x860
[  189.691137][T12138]  fat_write_begin+0x51/0xe0
[  189.695730][T12138]  generic_perform_write+0x1a8/0x4a0
[  189.701036][T12138]  __generic_file_write_iter+0xa1/0x120
[  189.706603][T12138]  generic_file_write_iter+0x77/0x1c0
[  189.711986][T12138]  do_iter_readv_writev+0x394/0x450
[  189.717215][T12138]  vfs_writev+0x2d4/0x880
[  189.721551][T12138]  __se_sys_pwritev2+0x100/0x1c0
[  189.726522][T12138]  __x64_sys_pwritev2+0x78/0x90
[  189.731391][T12138]  x64_sys_call+0x2afe/0x2dc0
[  189.736096][T12138]  do_syscall_64+0xc9/0x1c0
[  189.740626][T12138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.746559][T12138] 
[  189.748895][T12138] value changed: 0x0000000000000000 -> 0xffff8881061d6008
[  189.756000][T12138] 
[  189.758321][T12138] Reported by Kernel Concurrency Sanitizer on:
[  189.764478][T12138] CPU: 1 UID: 0 PID: 12138 Comm: syz.4.2915 Not tainted 6.13.0-rc4-syzkaller-00054-gd6ef8b40d075 #0
[  189.775393][T12138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  189.785478][T12138] ==================================================================
[  189.797886][T12143] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.2916'.