last executing test programs:

3m27.426011508s ago: executing program 32 (id=1134):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x10040, &(0x7f0000000200)={[{@journal_dev}, {@nouid32}]}, 0xfe, 0x269, &(0x7f0000000780)="$eJzs3U9oHFUcB/Df7B/jJotEvQjiHxARDYR4E7zEi0JAQhARVIiIeJJEiAnesp68eNCzSkDwEkpvTXssvYReWgo9pW0O6aXQhh4aemgPW3Znt2ySDW33b9n5fGCYmbz35r0J832zLMxsAJk1GRGzEZGPiKmIKEZE0lrh7XSZbOxulLYXI6rVL+4m9XrpfqrZbiIiKhHxUUShWba29c3e/Z3P3vtjtfju/1tflwZ1fq3293Y/P/h3/vczcx+uXb56ez6J2Sg3ylrPo5eSNn8rJBGv9KOz50RSGPYIeBoLv56+Vsv9qxHxTj3/xcg1IvvnygsXivHBPye1/evOldcHOVag96rVYu0eWKkCmZOLiHIkuemISLdzuenp9DP89fx47qfllV+mflxeXfph2DMV0CvlSHY/PTd2duJI/m/l0/wDo6scsfvlwuaN2vZBftijAfqm9dv2N9JVLf9T362/H/IPmSP/kF3yD9kl/zACOsyu/EN2dZP/F/s0JmAw3P9hhBWbG5W2xfIP2SX/MKL+a/fU6WHyD9nVmn8AIFuqY8N+AhkYlmHPPwAAAAAAAAAAAAAAAAAAwHEbpe3F5jKoPi/+HbH/SUQU2vWfr/8ecfNt4+P3klq1x5K0WVe+favLA3TpVM+evi511Oqlm73qvzOX3uzPcX87vHviP2d9KaJSqzxTKBy//pLG9de5l59QXvy+yw6e0dG3An781WD7P+rh5nD7n9uJOF+bf2bazT+5eK2+bj//lFtfsdyhnx90eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG5lEAAAD//4oibec=")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000000c0)='./bus/file0\x00', 0x2)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000180)={0x0, &(0x7f0000000080)}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r2, 0x0, 0x0, 0xfecc)

3m26.767338751s ago: executing program 33 (id=1147):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
ioprio_set$pid(0x2, 0x0, 0x0)

3m21.486587822s ago: executing program 34 (id=1209):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mprotect(&(0x7f00004a4000/0x800000)=nil, 0x800000, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
close(r4)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000500)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r2, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x1c, r3, 0x0, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @void}}, ["", "", "", "", "", "", ""]}, 0x7}}, 0x4000000)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r10, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000000)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000001b80)={0x0, 0x0, {0x0, @struct, <r12=>0x0}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000780)={{r7}, r11, 0x12, @unused=[0x101, 0x7f, 0x7, 0x7fffffffffffffff], @devid=r12})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
set_mempolicy_home_node(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f0000000340)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000380)=0x1c)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r10, 0x4004f506, &(0x7f00000003c0)=0x1)

3m16.97831327s ago: executing program 7 (id=1219):
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYRESHEX=0x0, @ANYRES32, @ANYBLOB="abffffff00"/20, @ANYRESHEX=0x0, @ANYRES32, @ANYBLOB="010000000263b73c0000000000000000000065d8a88c918ff8d79446c3391b8b9904b06cfa8663947af2d3868e80239543242bcad8b9036b083d178acc7ae69d70cb6c9d87ef1021f141290e954fe9f2600051ee418a2b51eb76937aee3a2f74545d3f79289ebb234847fc6205939c754d9603cb60d8099d0f318f9bb3d4fdb188219d6c9bc2aa033b7bc1d001873e1e605dd17eef2818d92b69ca9c9927411e4fff1fa4445d620c4d5fb53162c98b48cbc2ae7af9784e0c58aad011b7636d12d6614baadd121b6945535bff6d68421409fd"], 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000001640)="e0857f9f582f0300000000000000", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000002c0)={0x5, 0x0, 0x200000, 0x0, 0x4, "a05c7b5d00008023e9c5bcf5ff7700"})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102384, 0x18ff0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001000010700000000000000000a000028060001001a"], 0x1c}}, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r3)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES8=r2, @ANYRESOCT=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
inotify_init1(0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r5, 0x0, r5)

3m14.54964607s ago: executing program 7 (id=1278):
r0 = creat(0x0, 0xd931d3864d39dcca)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa1000000000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r2}, 0x18)
unshare(0x62040200)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0xfffffffffffffffc, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000080000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe(&(0x7f0000000680)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0xf3a, 0x0)
vmsplice(r9, &(0x7f00000003c0)=[{&(0x7f00000001c0)="f8", 0x1}], 0x1, 0x0)
write(r6, &(0x7f0000001100)="94", 0x1)
tee(r5, r10, 0xaf5, 0x0)
write$binfmt_script(r10, &(0x7f0000000540)={'#! ', './file0'}, 0xb)
write(r7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='veth1_virt_wifi\x00', 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1900260004000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
mlockall(0x7)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000400)={0x0, <r11=>0x0}, 0x0)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, r11, &(0x7f0000000580))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)

3m14.171599572s ago: executing program 7 (id=1285):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
pivot_root(0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7ffffdbe}]})
add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000240)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x1101088, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

3m14.128999642s ago: executing program 7 (id=1286):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x5400, 0x0)
r2 = memfd_secret(0x0)
inotify_init1(0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r5, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb", 0x1}, {0x0}], 0x2}}, {{&(0x7f0000000580)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000600)='z', 0xfdef}], 0x1}}], 0x3, 0x0)
r6 = fcntl$dupfd(r3, 0x0, r2)
ioctl$SCSI_IOCTL_GET_PCI(r6, 0x2284, &(0x7f0000000000))
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r8}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="85202a3a2a207700"], 0x8)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r9}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r10 = syz_io_uring_setup(0x4b6, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x3d8}, &(0x7f0000ff0000), &(0x7f0000000380))
io_uring_register$IORING_REGISTER_BUFFERS(r10, 0x0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000000100)=""/77, 0x4d}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r10, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)
write$selinux_validatetrans(r6, &(0x7f0000000200)={'system_u:object_r:usbmon_device_t:s0', 0x20, 'system_u:object_r:chfn_exec_t:s0', 0x20, 0x1, 0x20, '/usr/lib/telepathy/mission-control-5\x00'}, 0x80)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x28, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x28}}, 0x0)

3m13.455092015s ago: executing program 7 (id=1295):
r0 = creat(0x0, 0xd931d3864d39dcca)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa1000000000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r2}, 0x18)
unshare(0x62040200)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0xfffffffffffffffc, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000080000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe(&(0x7f0000000680)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0xf3a, 0x0)
vmsplice(r9, &(0x7f00000003c0)=[{&(0x7f00000001c0)="f8", 0x1}], 0x1, 0x0)
write(r6, &(0x7f0000001100)="94", 0x1)
tee(r5, r10, 0xaf5, 0x0)
write$binfmt_script(r10, &(0x7f0000000540)={'#! ', './file0'}, 0xb)
write(r7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='veth1_virt_wifi\x00', 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1900260004000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
mlockall(0x7)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000400)={0x0, <r11=>0x0}, 0x0)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, r11, &(0x7f0000000580))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)

3m13.454302895s ago: executing program 35 (id=1295):
r0 = creat(0x0, 0xd931d3864d39dcca)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa1000000000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r2}, 0x18)
unshare(0x62040200)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0xfffffffffffffffc, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000080000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe(&(0x7f0000000680)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0xf3a, 0x0)
vmsplice(r9, &(0x7f00000003c0)=[{&(0x7f00000001c0)="f8", 0x1}], 0x1, 0x0)
write(r6, &(0x7f0000001100)="94", 0x1)
tee(r5, r10, 0xaf5, 0x0)
write$binfmt_script(r10, &(0x7f0000000540)={'#! ', './file0'}, 0xb)
write(r7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='veth1_virt_wifi\x00', 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1900260004000000040000000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
mlockall(0x7)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000400)={0x0, <r11=>0x0}, 0x0)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, r11, &(0x7f0000000580))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)

1m34.051386635s ago: executing program 6 (id=3023):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x2000000000000138)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, 0x0, 0x0, 0x700, 0x0, 0x0)

1m33.221989978s ago: executing program 6 (id=3061):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="09000000070000000000010005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fremovexattr(r2, &(0x7f0000000040)=@known='system.posix_acl_default\x00')

1m33.170371998s ago: executing program 6 (id=3065):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x100, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x9, 0xf}, {0x4, 0xfff3}}}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xffff}, {}, {0x2}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xba}]}}]}, 0x3c}}, 0x20008041)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m33.170067848s ago: executing program 6 (id=3068):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000001c0)={0x2, 0x2000, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000140)="080027226db4d6c1", 0x8}], 0x1, &(0x7f0000000180)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x1}}], 0x18}, 0x31c467c443849f7c)

1m33.122120609s ago: executing program 6 (id=3071):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x2000000000000138)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r0, 0x0, 0x0, 0x700, 0x0, 0x0)

1m33.049854429s ago: executing program 5 (id=3076):
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x95, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2422, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0x4010744d, 0x20000000)

1m32.987646349s ago: executing program 1 (id=3079):
socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x100, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x9, 0xf}, {0x4, 0xfff3}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffff}, {}, {0x2}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xba}]}}]}, 0x3c}}, 0x20008041)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m32.987376579s ago: executing program 2 (id=3080):
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x18)
close(r0)
socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
shutdown(r1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000200), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1])

1m32.975295189s ago: executing program 1 (id=3081):
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff0100000000000000000000000000010600040001"], 0x58}}, 0x0)

1m32.952997069s ago: executing program 5 (id=3082):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='netlink_extack\x00', r0}, 0x18)
r1 = socket(0x10, 0x2, 0x0)
sendto$inet6(r1, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406053c02040c5c000900580006020a0000000d0085a168d0bf46d32345653600648d040012000a00070849935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000407160015000a0000000000e000e218d1dd3b6ed538f6523250", 0x78, 0x0, 0x0, 0xe0ffffff)

1m32.952643019s ago: executing program 2 (id=3083):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='netlink_extack\x00'}, 0x10)
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={0x0, {0x2, 0x4e20, @broadcast}, {0x2, 0x4e23, @remote}, {0x2, 0x4e23, @broadcast}, 0x8, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000200)='dummy0\x00', 0x7fffffffffffffff, 0x7549, 0x8})

1m32.938025109s ago: executing program 1 (id=3084):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000c40)='./file1\x00', 0xc20c0, &(0x7f0000001080), 0x1, 0x4f7, &(0x7f0000000540)="$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")
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="58010000", @ANYBLOB="0100000000000000000002000000080002000500000008000700e000000208000800ac1434002c010100"], 0x158}}, 0x0)

1m32.93345448s ago: executing program 5 (id=3085):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000a40)='tasks\x00', 0x2, 0x0)
r2 = gettid()
write$cgroup_pid(r1, &(0x7f0000000f80)=r2, 0x12)

1m32.925832159s ago: executing program 2 (id=3086):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
write$binfmt_elf64(r1, 0x0, 0x78)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000500), 0x0)

1m32.90674878s ago: executing program 1 (id=3087):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9)
ioctl$TUNSETLINK(r0, 0x400454cd, 0x1)

1m32.87831137s ago: executing program 2 (id=3088):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000000180), 0xfc, 0x57c, &(0x7f00000013c0)="$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")
r0 = open(0x0, 0x46b42, 0xb8)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[], 0xfd14)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000380)='q', 0x1}], 0x1)
lseek(r1, 0x0, 0x3)

1m32.87820265s ago: executing program 5 (id=3089):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.avg_queue_size\x00', 0x26e1, 0x0)
close(r0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1202, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x2000140f)
write$cgroup_devices(r0, &(0x7f0000000000)={'b', ' *:* ', 'rw\x00'}, 0x9)

1m32.77531529s ago: executing program 2 (id=3091):
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @empty}, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673"], 0x44}}, 0x0)

1m32.77520492s ago: executing program 1 (id=3092):
socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@gettclass={0x24, 0x2a, 0x100, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x9, 0xf}, {0x4, 0xfff3}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffff}, {}, {0x2}}, [@filter_kind_options=@f_route={{0xa}, {0xc, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0xba}]}}]}, 0x3c}}, 0x20008041)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1m32.720868251s ago: executing program 5 (id=3093):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

1m32.564363061s ago: executing program 5 (id=3094):
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x18)
close(r0)
socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
shutdown(r1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000200), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1])

1m32.552757551s ago: executing program 36 (id=3094):
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x18)
close(r0)
socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
shutdown(r1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000200), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1])

1m32.507357611s ago: executing program 2 (id=3096):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000740)={0x2, 0x80, 0xbb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m32.507273361s ago: executing program 37 (id=3096):
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000740)={0x2, 0x80, 0xbb, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1m32.481145252s ago: executing program 1 (id=3098):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
wait4(0x0, 0x0, 0x40000000, 0x0)

1m32.481064012s ago: executing program 38 (id=3098):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
wait4(0x0, 0x0, 0x40000000, 0x0)

1m29.063736497s ago: executing program 6 (id=3100):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x982e}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1m29.063617366s ago: executing program 39 (id=3100):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x982e}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

2.002679462s ago: executing program 4 (id=5222):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000080000000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21085e, &(0x7f00000001c0)={[{@data_err_ignore}, {@nouid32}, {@minixdf}]}, 0x1, 0x51c, &(0x7f0000000780)="$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")
r3 = fspick(r2, &(0x7f0000000300)='./file0\x00', 0x1)
fsconfig$FSCONFIG_SET_FLAG(r3, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)
r4 = socket(0x11, 0x3, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0xff4d, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r7=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @dev}, 0x14) (async)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4) (async)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000004c0)=ANY=[@ANYBLOB="02011400012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d20680d7fdfe4b88942a31f48597e36e03b9d6579b1c599db6e466049c2d4c830345305135e65d3a895c50f80200f6c0aba61f6304000000ff"], 0xdd12}], 0x1}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
chmod(&(0x7f0000000180)='./file0\x00', 0x0) (async)
semget$private(0x0, 0x6, 0x0)

1.901968373s ago: executing program 4 (id=5224):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)={0x30, 0x3, 0x8, 0x401, 0x0, 0x0, {0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @CTA_TIMEOUT_DCCP_OPEN={0x8, 0x4, 0x1, 0x0, 0x355}]}]}, 0x30}}, 0x20000000)
r2 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x300000000000000, &(0x7f00000060c0)=ANY=[@ANYBLOB="1800000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0340000001"], 0x48)
listen(r2, 0x8)
r4 = accept4(r2, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000040)={<r5=>0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000000000)={r5}, &(0x7f00000000c0)=0x8)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0x1}, 0x18)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000002000000850000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r9}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000003e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x40, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r10=>0xffffffffffffffff}, 0x13f}}, 0x20)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000003000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000c000000850000000600000095000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r11, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(r7, &(0x7f0000000680)={0x1, 0x10, 0xfa00, {&(0x7f00000004c0), r10}}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1.852839153s ago: executing program 4 (id=5227):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100000010651fbe347b2c2b00000c00018008000100", @ANYRES32], 0x20}}, 0x0)

1.832495333s ago: executing program 3 (id=5228):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x800, &(0x7f0000000840)=ANY=[], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs\x00', 0x1ff)
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f00000007c0)='./binderfs2\x00', 0x1ff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f00000005c0)=[{0x6, 0x48, 0x65, 0x1}]})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = epoll_create(0xf)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000840)={0x5})
r6 = socket$kcm(0x2, 0xa, 0x2)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000900)={&(0x7f0000000980)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010129bd7000fedb10000000000008000300e15a2c6bb9352a9fb37e9c8bb866294e749e55ad2f6b93310cf2a6d3e04c609f75817ab1c7ae1ddc043689133c007d34c16f1c9538c00de1e2e3d729e81b3a424dde94a9f13207e2e5bda524a6acd4ccfcdad323a7926626dbe765ca9f9df7f2e3a5155b2e3899cdfe31c3c6ecf2240490458c5749680beeca631645c2008f13484b5a65aa729e34cae9104a5cf67769b3b987675686eb08366e5c6a8dac060e614f31f2d12f56c097af2ea610cd6b3e57bceb67d9456d05e273d77f01b803dad1504cb55ca3ee7e4bd8abf8af1c8616afe010e5ed51b194596bec943020a99d249c03749a93879104db2a6e3b2eb64506c8e774", @ANYRES32=0x0, @ANYBLOB="0c00990007000000560000000500d600650000000800a000640000000800270000000000050018012f0000000500180130000000080026006c090000050018010f000000050018012a000000050018010b0000000500d60002000000"], 0x78}, 0x1, 0x0, 0x0, 0x24004844}, 0x84)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r2, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
pwritev2(r3, &(0x7f0000000580)=[{&(0x7f0000000440)="f76c6e84b5428746868b116601c5d66db5c65ceca0abba4b074b7b918802c7cae0d0977952a9b3f42439383c49f9c4cd8b74528d8b301a21820990ef252b1f689f7eb12926f10d995827573a2e6de97698ce3a09a884123a387d07207f3d795f38c2835c519a0469cff1db7c30f40b3a34e04628629bc5405352038f6f01c51d3be1aac7311549ea76ba9015f23f2525108e9fff4e37c06d128de2a09ec1a257780d2e9dda160e219c61cbc785159fcb4e7ede79fc45b2d4f4d505c8c081c53dbcebcc8b9a693693bc5d8cca0ebb52eaefc908170ed92eeea2be0ae6ae4bc730b8a6162e3f031a82ff8e8d4d1fe11c", 0xef}, {&(0x7f00000003c0)="74cef3f32d74ce1d950d380d902fc52b0c32d3d3af51d7aff7f9bc8359d3a1d3f3f42cace0bd3aecf9c5232bd02c8185fb67ba9d8b25b194dc0bf7edf79d", 0x3e}], 0x2, 0x2, 0x1, 0x4)
sendmsg$nl_route(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001a00010000000000000000000200114bea0f06001d2ff6d70000000000000000"], 0x24}}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r8}, 0xc)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x23, 0x800000000004, @thr={&(0x7f0000000600)="595cba19613786bc84d5ce24e180ad60afcef8c77a9b49096d278db27b78ef7c1b8568b3e498359eff6973174e3294c884014e8c58c94d4c2b4ebec520231c6bb703557c4adb825771b96911045203e658090c2d489e02ff1e8eba7574b86fc34e4b1a37c580fef408a54c66094c1c3210457e74371cbb9a4398fa7b5b57e9c01de78f11aea153c11788ffc5bf7638f42dd0f8adc6e1211511efbcec7877f14f6c29b0bafa8fd2ec318c972bec20804250e2f61183c2e82a5813581b8917b1dc53aedd986b6fef505369862965e97f75ffb797e3a3c6346abc12643c4cb5f8a25810654ca03557fc620ebfbad21b875ff91b3db0c9e46019872f49f432b6", &(0x7f0000000700)="9b0abc7641c257a7647b5ffd63ab76cce5d10da6ed68a0dd07df5e1306accdc94f4ca9f1a18d56a3c64ee5eca9e5d9f3b353a3bd8d1c47d837e67a37cd6f0d28bdc3d1e8a96352b5fb3f9941511728a5ebe39ca4ac764798c50c6ca07453c90493eab6f479b44cea94484b8a67f795"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r9, 0x0, r10, 0x0, 0xf3a, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)

1.829028203s ago: executing program 4 (id=5229):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.idle_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="0e"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)={@multicast2, @remote, <r2=>0x0}, &(0x7f00000000c0)=0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000080), 0x10010)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="000000000087fb00b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000100)='ib_mad_send_done_handler\x00', r4}, 0x18)
socket$inet_udp(0x2, 0x2, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_setup(0x1951, &(0x7f0000000140)={0x0, 0x1e98, 0x0, 0x2, 0x2b2})
r5 = syz_open_dev$usbmon(&(0x7f0000000080), 0xdca6, 0x0)
ioctl$MON_IOCG_STATS(r5, 0x80089203, &(0x7f0000000000))
syz_clone(0x1100, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r6, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x15}, 0x1c)
openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x10080, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
recvmmsg(r6, &(0x7f00000002c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendto$inet6(r6, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000005, 0x10012, r3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=@bloom_filter={0x1e, 0x100, 0x0, 0x3, 0x710c, r1, 0x6, '\x00', r2, r3, 0x4, 0x1, 0x0, 0xa, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000280)=0x7, 0x12)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r7, 0x10d, 0x22, &(0x7f0000000000), &(0x7f0000000080)=0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000002c0)={0x0, 0x32a000, 0x800}, 0x20)

1.269803715s ago: executing program 8 (id=5236):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x398, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x2c8, 0xffffffff, 0xffffffff, 0x2c8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0={0xfc, 0x0, '\x00', 0xff}, @private1={0xfc, 0x1, '\x00', 0x1}, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x1c8, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x9, 0x4, 0x4, 0x1, 'syz1\x00', 0x2}}, @common=@inet=@socket1={{0x28}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x3f8)

1.229973655s ago: executing program 8 (id=5239):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

1.209678045s ago: executing program 8 (id=5240):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400ea00b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)
ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000000)=""/28)
unshare(0x64000600)

1.208710115s ago: executing program 0 (id=5241):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x1000, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = add_key$keyring(&(0x7f00000021c0), &(0x7f0000002200)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, &(0x7f00000002c0)="97", 0x1, r1)
r3 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r3, 0x0)
setsockopt$packet_int(r3, 0x107, 0x7, &(0x7f0000000000)=0x8, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000240)=@keyring={'key_or_keyring:', r2})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={<r8=>0x0, @remote, @multicast2}, &(0x7f0000000080)=0xc)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000140)={@ipv4={'\x00', '\xff\xff', @multicast1}, 0x27, r8})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r9}, 0x10)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELOBJ={0x14, 0x14, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x5}}, @NFT_MSG_DELFLOWTABLE={0x14, 0x18, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x3}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x50}, 0x1, 0x0, 0x0, 0x20040000}, 0x8000)

1.207364215s ago: executing program 9 (id=5242):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x7a, &(0x7f00000004c0)={@local, @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ee527a", 0x44, 0x3c, 0x0, @empty, @mcast2}}}}, 0x0)

1.178713126s ago: executing program 0 (id=5243):
clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xa, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x11, 0x2000000000000187, &(0x7f0000000040)=ANY=[@ANYBLOB="10000000000000060000000008000000850000660f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x41, 0x0, 0x0, 0x26, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x10)
clock_getres(0x3, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000007840)={r0, 0x0, 0x0}, 0x10)
r2 = open$dir(&(0x7f0000000600)='mnt\x00', 0x8000, 0x143)
statx(r2, 0x0, 0x4000, 0x200, 0x0)
msgsnd(0x0, 0x0, 0x8, 0x0)
msgctl$IPC_RMID(0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, 0x0, 0xa0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0xfffffffffffffd8f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x1800)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="900000001c001f4d154a817393278bff0a80a578020000000404840014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee", 0x87, 0x0, 0x0, 0x0)
openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x100, 0x80}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYRES16], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)

1.178327265s ago: executing program 9 (id=5244):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000001e80)={[{@nolazytime}]}, 0x1, 0x549, &(0x7f0000001800)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x14, 0x16, 0xa01}, 0x14}}, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f0000000080))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000000)='./bus/file0\x00', 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000600)={@cgroup, 0xffffffffffffffff, 0x20, 0x1, 0xffffffffffffffff, @void, @value}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xb, 0x7, 0x2, 0x4, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x1, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r4 = socket$inet(0x2, 0x2, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
setsockopt$inet_mreqsrc(r4, 0x0, 0x24, 0x0, 0x0)
fsopen(&(0x7f0000000040)='ntfs3\x00', 0x0)
rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.154364445s ago: executing program 8 (id=5245):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090200000000000000000100000008"], 0x24}}, 0x0)

1.134584955s ago: executing program 8 (id=5246):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_io_uring_setup(0x24fc, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3}, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000200)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$tipc(0x1e, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r5, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READ_FIXED)
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

952.351216ms ago: executing program 9 (id=5247):
r0 = creat(0x0, 0xd931d3864d39dcca)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a500000018010000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r2}, 0x18)
unshare(0x62040200)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f0000000000)=0xfffffffffffffffc, 0x12)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000080000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pipe(&(0x7f0000000680)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0xf3a, 0x0)
vmsplice(r9, &(0x7f00000003c0)=[{&(0x7f00000001c0)="f8", 0x1}], 0x1, 0x0)
write(r6, &(0x7f0000001100)="94", 0x1)
tee(r5, r10, 0xaf5, 0x0)
write$binfmt_script(r10, &(0x7f0000000540)={'#! ', './file0'}, 0xb)
write(r7, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='veth1_virt_wifi\x00', 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19002600040000000400", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
mlockall(0x7)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000400)={0x0, <r11=>0x0}, &(0x7f0000000480)=0xc)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, r11, &(0x7f0000000580))
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)

951.800266ms ago: executing program 3 (id=5248):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) (fail_nth: 1)

951.559526ms ago: executing program 4 (id=5249):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mprotect(&(0x7f00004a4000/0x800000)=nil, 0x800000, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
close(r4)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000500)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r3, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x1c, 0x0, 0x0, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @void}}, ["", "", "", "", "", "", ""]}, 0x7}}, 0x4000000)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = socket$nl_route(0x10, 0x3, 0x0)
pipe(&(0x7f00000001c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r10, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x54}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000000)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r11=>0x0})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000001b80)={0x0, 0x0, {0x0, @struct, <r12=>0x0}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000780)={{r7}, r11, 0x12, @unused=[0x101, 0x7f, 0x7, 0x7fffffffffffffff], @devid=r12})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
set_mempolicy_home_node(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x3, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r9, 0x84, 0x1d, &(0x7f0000000340)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000380)=0x1c)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r10, 0x4004f506, &(0x7f00000003c0)=0x1)

681.897628ms ago: executing program 3 (id=5250):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x398, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x2c8, 0xffffffff, 0xffffffff, 0x2c8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0={0xfc, 0x0, '\x00', 0xff}, @private1={0xfc, 0x1, '\x00', 0x1}, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x1c8, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x9, 0x4, 0x4, 0x1, 'syz1\x00', 0x2}}, @common=@inet=@socket1={{0x28}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x3f8)

681.297238ms ago: executing program 0 (id=5251):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

655.607398ms ago: executing program 3 (id=5252):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)={0x30, 0x3, 0x8, 0x401, 0x0, 0x0, {0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @CTA_TIMEOUT_DCCP_OPEN={0x8, 0x4, 0x1, 0x0, 0x355}]}]}, 0x30}}, 0x20000000)
r2 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r2, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x300000000000000, &(0x7f00000060c0)=ANY=[@ANYBLOB="1800000004000000410000000000000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0340000001"], 0x48)
listen(r2, 0x8)
r4 = accept4(r2, 0x0, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000040)={<r5=>0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000140)={0x1, [0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f0000000000)={r5}, &(0x7f00000000c0)=0x8)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r6, 0x0, 0x1}, 0x18)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000002000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r9}, 0x10)
statx(0xffffffffffffffff, &(0x7f0000003e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x40, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r10=>0xffffffffffffffff}, 0x13f}}, 0x20)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000000000000000000000000000850000003000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000c000000850000000600000095000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r11, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
write$RDMA_USER_CM_CMD_DESTROY_ID(r7, &(0x7f0000000680)={0x1, 0x10, 0xfa00, {&(0x7f00000004c0), r10}}, 0x18)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

619.491538ms ago: executing program 3 (id=5253):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005f40)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_script(r1, 0x0, 0x4e)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
tee(r0, r2, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000340)={[{@errors_remount}, {@dioread_lock}, {}]}, 0xfe, 0x44f, &(0x7f0000000d80)="$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")
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, @void, @value}, 0x94)
r7 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x4, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000380)={<r8=>0x0, 0x98, "c6670d8c9b8a99ac9e065f5077930820ac3f963d46311976d1c73de36d4905a9927844573c25fbd8348f32aa921010da42f24810f11629a01dbbddc881a48f55a3e7e4ce25c85dd6b854a3de8dd1aa13bcea7f4bb6cb9c6ff1b927ca1f94590006d6637f3e2e43488f4956b939f25e46de5574e7cde94af02df2f16ae623155f854f080272c6d3fb80f8c3489a207f000c32417ecbfaf69e"}, &(0x7f0000000240)=0xa0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000440)={r8, @in6={{0xa, 0x4e23, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0xc}}, 0x8, 0x7, 0x7, 0x1, 0x48, 0xa, 0x1c}, &(0x7f0000000300)=0x9c)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="48000000100001047fff00"/20, @ANYRES32=r10, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=r10], 0x48}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000"], 0x0, 0xfffffffc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0xffffffffffffffb9, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000a40), 0x25, 0x4cd, &(0x7f0000000f00)="$eJzs3U9vG2kZAPBnJn+bzW6ysBJ/BGxZFgqqaiduG1U9lQsIVZUQFScObUjcKIodR7FTmtBD+h2QqMQJPgIHJA5IPXHnBjcu5YBUoAI1SByMxp60aRonUZt6tvHvJ40874zr53nrzvvaT5N5AxhYZyNiOyJGI+J2REzlx5N8i2vdLXves6f3F3ae3l9Iot2++c+kcz47Fnv+TOa9/DXHI+JH34/4afJq3Obm1sp8rVZdz9vlVn2t3NzcurBcn1+qLlVXK5W52bmZKxcvV06srx/Xf/vke8vXf/yH33/18Z+2v/PzLK3J/NzefpykbtdHnsfJDEfE9bcRrABDeX9Gi06E15JGxOci4pPs+m8XnQ0A0A/t9lS0p/a2AYDTLu3UwJK0lNcCJiNNS6VuDe+jmEhrjWbr/J3Gxupit1Y2HSPpneVadSavFU7HSJK1Zzv7L9qVfe2LEfFhRPxi7EynXVpo1BaL/OADAAPsvX3z/3/GuvM/AHDKjRedAADQd4fN/2N9zAMA6B/f/wFg8Lz+/K86AADvKt//AWDwmP8BYPCY/wFgoPzwxo1sa+/k979evLu5sdK4e2Gx2lwp1TcWSguN9bXSUqOx1LlnT/2o16s1Gmuzl2LjXrlVbbbKzc2tW/XGxmrrVue+3reqI33pFQBwmA8/fvSXJCK2r57pbLFnLQdzNZxuadEJAIUZKjoBoDDDRScAFMZ3fOCAJXpf0vNHhB6efC5Af5z7kvo/DCr1fxhcb1L/N3bAu039HwZXu51Y8x8ABowaP9D///9363AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADefZOdLUlL+Xq+k5GmpVLE+xExHSPJneVadSYiPoiIP4+NjGXt2aKTBgDeUPr3JF//69zUp5P7z44m/+0s1DUaET/71c1f3ptvtdZns+P/en689TA/XikifwDgKLvz9O48vuvZ0/sLu1s/83ny3e7iolncnXzrnhmO4c7jeIxExMS/k7zdlX1eGTqB+NsPIuKLB/U/6dRGpvOVT/fHz2K/39f46Uvx08657mP2d/H5E8gFBs2jbPy5dtD1l8bZzuPB1/94Z4R6c7vj384r41/6fPwb6jH+nT1ujEt//EHPcw8ivjycxz8TEXvGn934SY/4nx4z/l+/8rVPep1r/zriXBzU/+SlWOVWfa3c3Ny6sFyfX6ouVVcrlbnZuZkrFy9Xyp0adXm3Uv2qf1w9/8Fh/Z/oEX/8iP5/85j9/83/bv/k64fE//Y3Dn7/PzokfjYnfuuY8ecnftdz+e4s/mKP/h/1/p8/ZvzHf9taPOZTAYA+aG5urczXatV1O33byT67fQbSsFPYTvYv4CRe5wtvMdWiRybgbXtx0RedCQAAAAAAAAAAAAAA0Es/fuGp6D4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwev0/AAD//1Me1AE=")
lsetxattr$security_selinux(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), &(0x7f0000000500)='system_u:object_r:file_context_t:s0\x00', 0x24, 0x0)

570.448588ms ago: executing program 4 (id=5254):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005f40)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_script(r1, 0x0, 0x4e)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
tee(r0, r2, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000c"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000340)={[{@errors_remount}, {@dioread_lock}, {}]}, 0xfe, 0x44f, &(0x7f0000000d80)="$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")
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, @void, @value}, 0x94)
r7 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_opts(r7, 0x0, 0x4, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000380)={<r8=>0x0, 0x98, "c6670d8c9b8a99ac9e065f5077930820ac3f963d46311976d1c73de36d4905a9927844573c25fbd8348f32aa921010da42f24810f11629a01dbbddc881a48f55a3e7e4ce25c85dd6b854a3de8dd1aa13bcea7f4bb6cb9c6ff1b927ca1f94590006d6637f3e2e43488f4956b939f25e46de5574e7cde94af02df2f16ae623155f854f080272c6d3fb80f8c3489a207f000c32417ecbfaf69e"}, &(0x7f0000000240)=0xa0)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000440)={r8, @in6={{0xa, 0x4e23, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0xc}}, 0x8, 0x7, 0x7, 0x1, 0x48, 0xa, 0x1c}, &(0x7f0000000300)=0x9c)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="48000000100001047fff00"/20, @ANYRES32=r10, @ANYBLOB="000000000000000028001280090001007665746800000000180002801400010000000000", @ANYRES32=r10], 0x48}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000070000000"], 0x0, 0xfffffffc, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0xffffffffffffffb9, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000a40), 0x25, 0x4cd, &(0x7f0000000f00)="$eJzs3U9vG2kZAPBnJn+bzW6ysBJ/BGxZFgqqaiduG1U9lQsIVZUQFScObUjcKIodR7FTmtBD+h2QqMQJPgIHJA5IPXHnBjcu5YBUoAI1SByMxp60aRonUZt6tvHvJ40874zr53nrzvvaT5N5AxhYZyNiOyJGI+J2REzlx5N8i2vdLXves6f3F3ae3l9Iot2++c+kcz47Fnv+TOa9/DXHI+JH34/4afJq3Obm1sp8rVZdz9vlVn2t3NzcurBcn1+qLlVXK5W52bmZKxcvV06srx/Xf/vke8vXf/yH33/18Z+2v/PzLK3J/NzefpykbtdHnsfJDEfE9bcRrABDeX9Gi06E15JGxOci4pPs+m8XnQ0A0A/t9lS0p/a2AYDTLu3UwJK0lNcCJiNNS6VuDe+jmEhrjWbr/J3Gxupit1Y2HSPpneVadSavFU7HSJK1Zzv7L9qVfe2LEfFhRPxi7EynXVpo1BaL/OADAAPsvX3z/3/GuvM/AHDKjRedAADQd4fN/2N9zAMA6B/f/wFg8Lz+/K86AADvKt//AWDwmP8BYPCY/wFgoPzwxo1sa+/k979evLu5sdK4e2Gx2lwp1TcWSguN9bXSUqOx1LlnT/2o16s1Gmuzl2LjXrlVbbbKzc2tW/XGxmrrVue+3reqI33pFQBwmA8/fvSXJCK2r57pbLFnLQdzNZxuadEJAIUZKjoBoDDDRScAFMZ3fOCAJXpf0vNHhB6efC5Af5z7kvo/DCr1fxhcb1L/N3bAu039HwZXu51Y8x8ABowaP9D///9363AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADefZOdLUlL+Xq+k5GmpVLE+xExHSPJneVadSYiPoiIP4+NjGXt2aKTBgDeUPr3JF//69zUp5P7z44m/+0s1DUaET/71c1f3ptvtdZns+P/en689TA/XikifwDgKLvz9O48vuvZ0/sLu1s/83ny3e7iolncnXzrnhmO4c7jeIxExMS/k7zdlX1eGTqB+NsPIuKLB/U/6dRGpvOVT/fHz2K/39f46Uvx08657mP2d/H5E8gFBs2jbPy5dtD1l8bZzuPB1/94Z4R6c7vj384r41/6fPwb6jH+nT1ujEt//EHPcw8ivjycxz8TEXvGn934SY/4nx4z/l+/8rVPep1r/zriXBzU/+SlWOVWfa3c3Ny6sFyfX6ouVVcrlbnZuZkrFy9Xyp0adXm3Uv2qf1w9/8Fh/Z/oEX/8iP5/85j9/83/bv/k64fE//Y3Dn7/PzokfjYnfuuY8ecnftdz+e4s/mKP/h/1/p8/ZvzHf9taPOZTAYA+aG5urczXatV1O33byT67fQbSsFPYTvYv4CRe5wtvMdWiRybgbXtx0RedCQAAAAAAAAAAAAAA0Es/fuGp6D4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwev0/AAD//1Me1AE=")
lsetxattr$security_selinux(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), &(0x7f0000000500)='system_u:object_r:file_context_t:s0\x00', 0x24, 0x0)

539.411468ms ago: executing program 0 (id=5255):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_emit_ethernet(0x7a, &(0x7f00000004c0)={@local, @multicast, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "ee527a", 0x44, 0x3c, 0x0, @empty, @mcast2}}}}, 0x0)

527.375628ms ago: executing program 0 (id=5256):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="090200000000000000000100000008"], 0x24}}, 0x0)

322.708409ms ago: executing program 0 (id=5257):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000600), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="000000000087fb00b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
syz_clone3(&(0x7f00000008c0)={0x0, &(0x7f0000000640), &(0x7f0000000680)=<r5=>0x0, &(0x7f00000006c0), {0x13}, &(0x7f0000000700)=""/168, 0xa8, &(0x7f00000007c0)=""/141, &(0x7f0000000880)=[0x0], 0x1, {r3}}, 0x58)
tkill(r5, 0x2c)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="03000000040001000100000c0000000000000000", @ANYRES32=0x1, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="04000000050000000400"/28], 0x50)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='mm_page_free\x00', r9}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000016c0)={0x18, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000ff030000000000007fffffff7f00000000000000"], &(0x7f00000017c0)='syzkaller\x00', 0x75c85e6b, 0x0, 0x0, 0x40f00, 0x1d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x19, &(0x7f0000000280)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @map_idx={0x18, 0x3, 0x5, 0x0, 0xc}, @alu={0x4, 0x0, 0xb, 0x5, 0x3, 0x10, 0xfffffffffffffffc}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffc}, @alu={0x4, 0x1, 0x1, 0xb, 0xb, 0x1a}, @exit, @initr0={0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0xc}, @map_idx={0x18, 0x5, 0x5, 0x0, 0xb}, @printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @alu={0x4, 0x1, 0x1, 0x3, 0x3, 0x18}], &(0x7f0000000000)='GPL\x00', 0x6, 0xa7, &(0x7f0000000380)=""/167, 0x41000, 0x12, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x8, &(0x7f0000000040)={0x5, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, r4, 0x2, &(0x7f0000000200)=[r6, r0, r7], &(0x7f00000004c0)=[{0x0, 0x3, 0x9, 0x7}, {0x2, 0x4, 0x8, 0xb}], 0x10, 0x23, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2a9, &(0x7f0000000500)="$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")
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r10, &(0x7f0000000280), 0xfea7)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x5)
r11 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r11, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)
acct(&(0x7f0000000200)='./file1\x00')
fsconfig$FSCONFIG_CMD_RECONFIGURE(r11, 0x7, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x6c, r1, 0x1, 0x0, 0x30000, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x0, @loopback={0x3a00}}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x6c}}, 0x0)

275.628899ms ago: executing program 8 (id=5258):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10)
select(0x0, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x9, 0x100, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x401}, 0x0, 0x0)

205.190649ms ago: executing program 9 (id=5259):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x7)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14)
close(r1)

166.92865ms ago: executing program 9 (id=5260):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)

89.30448ms ago: executing program 9 (id=5261):
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500))
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000209c207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f0000000080))
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES32=0x1, @ANYBLOB='\x00'/19, @ANYBLOB="00000000000000000000000000000000008e"], 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000180)={'ip_vti0\x00', &(0x7f0000000040)={'syztnl0\x00', <r4=>0x0, 0x26, 0x16, 0x401e, 0x74, {{0x5, 0x4, 0x2, 0x24, 0x14, 0x64, 0x0, 0x0, 0x29, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}}}}})
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xd, 0xfe, 0x9, 0x185, 0x920, r3, 0xc3, '\x00', r4, r5, 0x5, 0x4, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x4a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = openat$selinux_policy(0xffffff9c, &(0x7f0000001400), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r8, 0x0)
futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r9, &(0x7f00000039c0)=[{{&(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f0000001380)='C', 0x1}], 0x1}}], 0x2, 0x2000c044)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015001500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1}, 0x0)
syz_emit_ethernet(0x46, &(0x7f00000000c0)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0xff}}}}}}, 0x0)
syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg}}}}}, 0x0)
syz_emit_ethernet(0x9e, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa00090000001ccd4e7f993d6152000000000b907800000000000000000400000000000000000000000000000000000000000000000000000000000000e1ffffff00"/152], 0x0)
sendto$inet(r9, &(0x7f0000000c80)="e8", 0x6200, 0x0, 0x0, 0x0)
syz_clone(0x2c000000, 0x0, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 3 (id=5262):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000001080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x398, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x2c8, 0xffffffff, 0xffffffff, 0x2c8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0={0xfc, 0x0, '\x00', 0xff}, @private1={0xfc, 0x1, '\x00', 0x1}, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x1c8, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x9, 0x4, 0x4, 0x1, 'syz1\x00', 0x2}}, @common=@inet=@socket1={{0x28}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x3f8)

kernel console output (not intermixed with test programs):

000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.944961][T17787] SELinux: (dev loop8, type ext4) getxattr errno 5
[  323.951938][T17787] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.056330][T13550] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.218223][T17805] bond1: entered promiscuous mode
[  324.223327][T17805] bond1: entered allmulticast mode
[  324.229070][T17805] 8021q: adding VLAN 0 to HW filter on device bond1
[  324.240920][T17805] bond1 (unregistering): Released all slaves
[  324.330149][T17828] loop4: detected capacity change from 0 to 512
[  324.342860][T17828] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4706: bg 0: block 35: padding at end of block bitmap is not set
[  324.348749][T17834] loop3: detected capacity change from 0 to 512
[  324.374853][T17828] EXT4-fs (loop4): Remounting filesystem read-only
[  324.379057][T17834] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4708: bg 0: block 35: padding at end of block bitmap is not set
[  324.381429][T17828] EXT4-fs (loop4): 1 truncate cleaned up
[  324.396757][T17834] EXT4-fs (loop3): Remounting filesystem read-only
[  324.404787][T17828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.410506][T17834] EXT4-fs (loop3): 1 truncate cleaned up
[  324.423200][T17828] SELinux: (dev loop4, type ext4) getxattr errno 5
[  324.425831][T17834] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.433109][T17828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.453022][T17834] SELinux: (dev loop3, type ext4) getxattr errno 5
[  324.479412][T17834] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.503389][T17843] loop8: detected capacity change from 0 to 128
[  324.557577][T17843] syz.8.4712: attempt to access beyond end of device
[  324.557577][T17843] loop8: rw=2049, sector=145, nr_sectors = 896 limit=128
[  324.575907][T17850] loop3: detected capacity change from 0 to 512
[  324.592816][T17842] syz.8.4712: attempt to access beyond end of device
[  324.592816][T17842] loop8: rw=524288, sector=145, nr_sectors = 224 limit=128
[  324.608255][T17850] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4716: bg 0: block 35: padding at end of block bitmap is not set
[  324.623075][T17850] EXT4-fs (loop3): Remounting filesystem read-only
[  324.630750][T17850] EXT4-fs (loop3): 1 truncate cleaned up
[  324.681641][T17850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.694679][T17850] SELinux: (dev loop3, type ext4) getxattr errno 5
[  324.714104][T17850] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.808899][   T29] kauditd_printk_skb: 1169 callbacks suppressed
[  324.808911][   T29] audit: type=1400 audit(1731397037.500:32243): avc:  denied  { write } for  pid=17854 comm="syz.8.4717" path="socket:[50664]" dev="sockfs" ino=50664 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  324.845693][   T29] audit: type=1326 audit(1731397037.520:32244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17848 comm="syz.4.4715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b37be719 code=0x7ffc0000
[  324.850180][T17850] loop3: detected capacity change from 0 to 512
[  324.869359][   T29] audit: type=1326 audit(1731397037.520:32245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17848 comm="syz.4.4715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b37be719 code=0x7ffc0000
[  324.899234][   T29] audit: type=1326 audit(1731397037.530:32246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa7f01dd0b0 code=0x7ffc0000
[  324.916313][T17850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.922932][   T29] audit: type=1326 audit(1731397037.530:32247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa7f01de31b code=0x7ffc0000
[  324.938136][T17850] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  324.958959][   T29] audit: type=1326 audit(1731397037.530:32248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa7f01dd3aa code=0x7ffc0000
[  324.977774][T17850] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, 
[  324.992754][   T29] audit: type=1326 audit(1731397037.530:32249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  324.992824][   T29] audit: type=1326 audit(1731397037.530:32250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  325.001062][T17850] block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  325.056935][   T29] audit: type=1326 audit(1731397037.540:32251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  325.080408][   T29] audit: type=1326 audit(1731397037.540:32252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17849 comm="syz.3.4716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  325.145714][T13550] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.209496][T17869] bond1: entered promiscuous mode
[  325.214762][T17869] bond1: entered allmulticast mode
[  325.223546][T17869] 8021q: adding VLAN 0 to HW filter on device bond1
[  325.233679][T17882] __nla_validate_parse: 7 callbacks suppressed
[  325.233693][T17882] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4720'.
[  325.250480][T17869] bond1 (unregistering): Released all slaves
[  325.294576][T17892] netlink: 52 bytes leftover after parsing attributes in process `syz.8.4726'.
[  325.308874][T17894] loop3: detected capacity change from 0 to 128
[  325.352486][T17899] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4729'.
[  325.360886][T17894] syz.3.4727: attempt to access beyond end of device
[  325.360886][T17894] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128
[  325.361617][T17899] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4729'.
[  325.406981][T17893] syz.3.4727: attempt to access beyond end of device
[  325.406981][T17893] loop3: rw=524288, sector=145, nr_sectors = 224 limit=128
[  325.500475][T17907] loop0: detected capacity change from 0 to 128
[  325.712112][T17924] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=17924 comm=syz.3.4739
[  325.749621][T17924] bond1: entered promiscuous mode
[  325.754733][T17924] bond1: entered allmulticast mode
[  325.760076][T17924] 8021q: adding VLAN 0 to HW filter on device bond1
[  325.818726][T17924] bond1 (unregistering): Released all slaves
[  325.908604][T17941] loop3: detected capacity change from 0 to 128
[  325.965951][T17941] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  325.978493][T17941] ext4 filesystem being mounted at /356/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  325.993184][T17950] loop0: detected capacity change from 0 to 512
[  326.000983][T17950] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  326.029274][T13550] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  326.078343][T17950] EXT4-fs (loop0): 1 truncate cleaned up
[  326.139886][T17962] loop0: detected capacity change from 0 to 2048
[  326.229622][T17965] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4755'.
[  326.256575][T17969] FAULT_INJECTION: forcing a failure.
[  326.256575][T17969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  326.269843][T17969] CPU: 0 UID: 0 PID: 17969 Comm: syz.0.4756 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  326.280344][T17969] Tainted: [W]=WARN
[  326.284137][T17969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  326.294246][T17969] Call Trace:
[  326.297522][T17969]  <TASK>
[  326.300449][T17969]  dump_stack_lvl+0xf2/0x150
[  326.305044][T17969]  dump_stack+0x15/0x20
[  326.309226][T17969]  should_fail_ex+0x223/0x230
[  326.313910][T17969]  should_fail+0xb/0x10
[  326.318170][T17969]  should_fail_usercopy+0x1a/0x20
[  326.323194][T17969]  _copy_to_iter+0x248/0xd00
[  326.327781][T17969]  ? __virt_addr_valid+0x1ed/0x250
[  326.333025][T17969]  ? __check_object_size+0x364/0x520
[  326.338419][T17969]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  326.344035][T17969]  __skb_datagram_iter+0xc8/0x610
[  326.349041][T17969]  skb_copy_datagram_iter+0x41/0x130
[  326.354370][T17969]  netlink_recvmsg+0x1a4/0x780
[  326.359124][T17969]  ? __pfx_netlink_recvmsg+0x10/0x10
[  326.364429][T17969]  sock_recvmsg+0x13f/0x170
[  326.368913][T17969]  ____sys_recvmsg+0xf9/0x280
[  326.373598][T17969]  do_recvmmsg+0x2dc/0x740
[  326.378025][T17969]  __x64_sys_recvmmsg+0xf9/0x170
[  326.382237][T17971] netlink: 40 bytes leftover after parsing attributes in process `syz.9.4757'.
[  326.382955][T17969]  x64_sys_call+0x26e3/0x2d60
[  326.396620][T17969]  do_syscall_64+0xc9/0x1c0
[  326.401129][T17969]  ? clear_bhb_loop+0x55/0xb0
[  326.405817][T17969]  ? clear_bhb_loop+0x55/0xb0
[  326.410507][T17969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  326.416423][T17969] RIP: 0033:0x7fa9fd39e719
[  326.417461][T17978] loop9: detected capacity change from 0 to 128
[  326.420904][T17969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  326.420925][T17969] RSP: 002b:00007fa9fc011038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  326.420944][T17969] RAX: ffffffffffffffda RBX: 00007fa9fd555f80 RCX: 00007fa9fd39e719
[  326.440189][T17978] ext4 filesystem being mounted at /351/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  326.446729][T17969] RDX: 04000000000003b4 RSI: 00000000200037c0 RDI: 0000000000000003
[  326.446748][T17969] RBP: 00007fa9fc011090 R08: 0000000020003700 R09: 0000000000000000
[  326.489407][T17969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  326.497370][T17969] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  326.505340][T17969]  </TASK>
[  326.622945][T17991] loop9: detected capacity change from 0 to 512
[  326.636869][T17991] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  326.667515][T17991] EXT4-fs (loop9): 1 truncate cleaned up
[  326.805421][T17999] loop9: detected capacity change from 0 to 512
[  326.819399][T17999] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4766: bg 0: block 35: padding at end of block bitmap is not set
[  326.834186][T17999] EXT4-fs (loop9): Remounting filesystem read-only
[  326.840834][T17999] EXT4-fs (loop9): 1 truncate cleaned up
[  326.848301][T17999] SELinux: (dev loop9, type ext4) getxattr errno 5
[  326.947561][T18003] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4768'.
[  327.332703][T17999] loop9: detected capacity change from 0 to 512
[  327.348099][T18014] loop3: detected capacity change from 0 to 512
[  327.366866][T17999] ext4 filesystem being mounted at /354/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.379058][T18014] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4773: bg 0: block 35: padding at end of block bitmap is not set
[  327.395777][T17999] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  327.411691][T18014] EXT4-fs (loop3): Remounting filesystem read-only
[  327.418256][T18014] EXT4-fs (loop3): 1 truncate cleaned up
[  327.432060][T18014] SELinux: (dev loop3, type ext4) getxattr errno 5
[  327.522518][T18034] loop3: detected capacity change from 0 to 128
[  327.536772][T18038] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  327.670961][T18047] loop3: detected capacity change from 0 to 512
[  327.684577][T18047] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4787: bg 0: block 35: padding at end of block bitmap is not set
[  327.708479][T18047] EXT4-fs (loop3): Remounting filesystem read-only
[  327.716136][T18047] EXT4-fs (loop3): 1 truncate cleaned up
[  327.722403][T18047] SELinux: (dev loop3, type ext4) getxattr errno 5
[  327.783498][T18047] loop3: detected capacity change from 0 to 512
[  327.791373][T18043] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=18043 comm=syz.0.4786
[  327.808293][T18063] loop9: detected capacity change from 0 to 512
[  327.812434][T18043] bond1: entered promiscuous mode
[  327.819648][T18043] bond1: entered allmulticast mode
[  327.825171][T18043] 8021q: adding VLAN 0 to HW filter on device bond1
[  327.829136][T18063] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4793: bg 0: block 35: padding at end of block bitmap is not set
[  327.847513][T18063] EXT4-fs (loop9): Remounting filesystem read-only
[  327.854167][T18063] EXT4-fs (loop9): 1 truncate cleaned up
[  327.855803][T18043] bond1 (unregistering): Released all slaves
[  327.860187][T18063] SELinux: (dev loop9, type ext4) getxattr errno 5
[  327.879248][T18047] ext4 filesystem being mounted at /363/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  327.902231][T18047] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  328.416123][T18085] bond1: entered promiscuous mode
[  328.421183][T18085] bond1: entered allmulticast mode
[  328.458968][T18085] 8021q: adding VLAN 0 to HW filter on device bond1
[  328.529943][T18085] bond1 (unregistering): Released all slaves
[  328.656503][T18108] loop3: detected capacity change from 0 to 512
[  328.677450][T18108] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4807: bg 0: block 35: padding at end of block bitmap is not set
[  328.694079][T18108] EXT4-fs (loop3): Remounting filesystem read-only
[  328.708465][T18108] EXT4-fs (loop3): 1 truncate cleaned up
[  328.718790][T18108] SELinux: (dev loop3, type ext4) getxattr errno 5
[  328.755832][T18108] loop3: detected capacity change from 0 to 512
[  328.778811][T18108] ext4 filesystem being mounted at /367/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.792850][T18108] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  329.000874][T18133] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4818'.
[  329.027283][T18137] loop3: detected capacity change from 0 to 512
[  329.035064][T18137] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  329.062467][T18139] loop8: detected capacity change from 0 to 512
[  329.068943][T18137] EXT4-fs error (device loop3): ext4_orphan_get:1414: comm syz.3.4815: bad orphan inode 783
[  329.092691][T18139] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.4819: bg 0: block 35: padding at end of block bitmap is not set
[  329.107530][T18139] EXT4-fs (loop8): Remounting filesystem read-only
[  329.115119][T18146] FAULT_INJECTION: forcing a failure.
[  329.115119][T18146] name failslab, interval 1, probability 0, space 0, times 0
[  329.127836][T18146] CPU: 1 UID: 0 PID: 18146 Comm: syz.9.4821 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  329.138346][T18146] Tainted: [W]=WARN
[  329.142132][T18146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  329.152176][T18146] Call Trace:
[  329.155440][T18146]  <TASK>
[  329.158360][T18146]  dump_stack_lvl+0xf2/0x150
[  329.162955][T18146]  dump_stack+0x15/0x20
[  329.167100][T18146]  should_fail_ex+0x223/0x230
[  329.171783][T18146]  ? nla_strdup+0x7a/0xc0
[  329.176105][T18146]  should_failslab+0x8f/0xb0
[  329.180764][T18146]  __kmalloc_noprof+0xa5/0x370
[  329.185529][T18146]  nla_strdup+0x7a/0xc0
[  329.189712][T18146]  nf_tables_newtable+0x3e9/0xf20
[  329.194741][T18146]  nfnetlink_rcv+0xb37/0x15c0
[  329.199496][T18146]  ? kmem_cache_free+0xdc/0x2d0
[  329.204409][T18146]  netlink_unicast+0x599/0x670
[  329.209171][T18146]  netlink_sendmsg+0x5cc/0x6e0
[  329.213929][T18146]  ? __pfx_netlink_sendmsg+0x10/0x10
[  329.219205][T18146]  __sock_sendmsg+0x140/0x180
[  329.223984][T18146]  ____sys_sendmsg+0x312/0x410
[  329.228754][T18146]  __sys_sendmsg+0x1d9/0x270
[  329.233376][T18146]  __x64_sys_sendmsg+0x46/0x50
[  329.238132][T18146]  x64_sys_call+0x2689/0x2d60
[  329.242806][T18146]  do_syscall_64+0xc9/0x1c0
[  329.247300][T18146]  ? clear_bhb_loop+0x55/0xb0
[  329.252011][T18146]  ? clear_bhb_loop+0x55/0xb0
[  329.256678][T18146]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.262570][T18146] RIP: 0033:0x7ff46c37e719
[  329.267078][T18146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.286690][T18146] RSP: 002b:00007ff46aff7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  329.295093][T18146] RAX: ffffffffffffffda RBX: 00007ff46c535f80 RCX: 00007ff46c37e719
[  329.303054][T18146] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[  329.311016][T18146] RBP: 00007ff46aff7090 R08: 0000000000000000 R09: 0000000000000000
[  329.318976][T18146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.326969][T18146] R13: 0000000000000000 R14: 00007ff46c535f80 R15: 00007fff32ba47d8
[  329.334934][T18146]  </TASK>
[  329.347543][T18139] EXT4-fs (loop8): 1 truncate cleaned up
[  329.354186][T18139] SELinux: (dev loop8, type ext4) getxattr errno 5
[  329.370829][T18139] loop8: detected capacity change from 0 to 512
[  329.396019][T18139] ext4 filesystem being mounted at /185/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  329.408741][T18139] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  329.716311][T18166] loop8: detected capacity change from 0 to 128
[  330.075331][   T29] kauditd_printk_skb: 875 callbacks suppressed
[  330.075344][   T29] audit: type=1326 audit(1731397042.770:33128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.090081][T18173] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4830'.
[  330.123500][   T29] audit: type=1326 audit(1731397042.770:33129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.147180][   T29] audit: type=1326 audit(1731397042.770:33130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.170925][   T29] audit: type=1326 audit(1731397042.770:33131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.194491][   T29] audit: type=1326 audit(1731397042.770:33132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.218088][   T29] audit: type=1326 audit(1731397042.770:33133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.241687][   T29] audit: type=1326 audit(1731397042.770:33134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.265452][   T29] audit: type=1326 audit(1731397042.770:33135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.289042][   T29] audit: type=1326 audit(1731397042.770:33136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.312621][   T29] audit: type=1326 audit(1731397042.770:33137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18170 comm="syz.0.4829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  330.345582][T18176] loop0: detected capacity change from 0 to 128
[  330.392138][T18181] FAULT_INJECTION: forcing a failure.
[  330.392138][T18181] name failslab, interval 1, probability 0, space 0, times 0
[  330.404817][T18181] CPU: 1 UID: 0 PID: 18181 Comm: syz.0.4834 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  330.415381][T18181] Tainted: [W]=WARN
[  330.419207][T18181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  330.429266][T18181] Call Trace:
[  330.432563][T18181]  <TASK>
[  330.435546][T18181]  dump_stack_lvl+0xf2/0x150
[  330.440156][T18181]  dump_stack+0x15/0x20
[  330.444378][T18181]  should_fail_ex+0x223/0x230
[  330.444411][T18181]  ? __alloc_skb+0x10b/0x310
[  330.444461][T18181]  should_failslab+0x8f/0xb0
[  330.444485][T18181]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  330.444517][T18181]  __alloc_skb+0x10b/0x310
[  330.444570][T18181]  netlink_alloc_large_skb+0xad/0xe0
[  330.444596][T18181]  netlink_sendmsg+0x3b4/0x6e0
[  330.444617][T18181]  ? __pfx_netlink_sendmsg+0x10/0x10
[  330.444658][T18181]  __sock_sendmsg+0x140/0x180
[  330.444684][T18181]  ____sys_sendmsg+0x312/0x410
[  330.444706][T18181]  __sys_sendmsg+0x1d9/0x270
[  330.444733][T18181]  __x64_sys_sendmsg+0x46/0x50
[  330.444790][T18181]  x64_sys_call+0x2689/0x2d60
[  330.444828][T18181]  do_syscall_64+0xc9/0x1c0
[  330.444851][T18181]  ? clear_bhb_loop+0x55/0xb0
[  330.444873][T18181]  ? clear_bhb_loop+0x55/0xb0
[  330.444894][T18181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.444926][T18181] RIP: 0033:0x7fa9fd39e719
[  330.444942][T18181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.444961][T18181] RSP: 002b:00007fa9fc011038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  330.444981][T18181] RAX: ffffffffffffffda RBX: 00007fa9fd555f80 RCX: 00007fa9fd39e719
[  330.444995][T18181] RDX: 0000000024008000 RSI: 0000000020000840 RDI: 0000000000000004
[  330.445047][T18181] RBP: 00007fa9fc011090 R08: 0000000000000000 R09: 0000000000000000
[  330.445058][T18181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.445068][T18181] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  330.445084][T18181]  </TASK>
[  330.664846][T18209] loop3: detected capacity change from 0 to 512
[  330.671651][T18209] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4844: bg 0: block 35: padding at end of block bitmap is not set
[  330.671882][T18209] EXT4-fs (loop3): Remounting filesystem read-only
[  330.671907][T18209] EXT4-fs (loop3): 1 truncate cleaned up
[  330.672356][T18209] SELinux: (dev loop3, type ext4) getxattr errno 5
[  331.121226][T18231] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4852'.
[  331.165779][T18238] FAULT_INJECTION: forcing a failure.
[  331.165779][T18238] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  331.178921][T18238] CPU: 0 UID: 0 PID: 18238 Comm: syz.0.4855 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  331.189559][T18238] Tainted: [W]=WARN
[  331.193364][T18238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  331.203421][T18238] Call Trace:
[  331.206699][T18238]  <TASK>
[  331.209629][T18238]  dump_stack_lvl+0xf2/0x150
[  331.214231][T18238]  dump_stack+0x15/0x20
[  331.218394][T18238]  should_fail_ex+0x223/0x230
[  331.223079][T18238]  should_fail+0xb/0x10
[  331.227271][T18238]  should_fail_usercopy+0x1a/0x20
[  331.232294][T18238]  _copy_from_user+0x1e/0xb0
[  331.236906][T18238]  kstrtouint_from_user+0x76/0xe0
[  331.241957][T18238]  ? 0xffffffff81000000
[  331.246199][T18238]  ? selinux_file_permission+0x22a/0x360
[  331.251825][T18238]  proc_fail_nth_write+0x4f/0x150
[  331.256886][T18238]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  331.262567][T18238]  vfs_write+0x281/0x920
[  331.266808][T18238]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  331.272377][T18238]  ? __rcu_read_unlock+0x4e/0x70
[  331.277339][T18238]  ? __fget_files+0x1d4/0x210
[  331.282067][T18238]  ksys_write+0xeb/0x1b0
[  331.286337][T18238]  __x64_sys_write+0x42/0x50
[  331.290995][T18238]  x64_sys_call+0x27dd/0x2d60
[  331.295674][T18238]  do_syscall_64+0xc9/0x1c0
[  331.300170][T18238]  ? clear_bhb_loop+0x55/0xb0
[  331.304841][T18238]  ? clear_bhb_loop+0x55/0xb0
[  331.309543][T18238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.315438][T18238] RIP: 0033:0x7fa9fd39d1ff
[  331.319839][T18238] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  331.339440][T18238] RSP: 002b:00007fa9fc011030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  331.347878][T18238] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa9fd39d1ff
[  331.355839][T18238] RDX: 0000000000000001 RSI: 00007fa9fc0110a0 RDI: 0000000000000005
[  331.363818][T18238] RBP: 00007fa9fc011090 R08: 0000000000000000 R09: 0000000000000000
[  331.371825][T18238] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  331.379838][T18238] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  331.387806][T18238]  </TASK>
[  331.447398][T18251] syz.4.4860[18251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.447518][T18251] syz.4.4860[18251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.459985][T18255] FAULT_INJECTION: forcing a failure.
[  331.459985][T18255] name failslab, interval 1, probability 0, space 0, times 0
[  331.467732][T18251] syz.4.4860[18251] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  331.471490][T18255] CPU: 1 UID: 0 PID: 18255 Comm: syz.9.4861 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  331.505817][T18255] Tainted: [W]=WARN
[  331.509607][T18255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  331.519650][T18255] Call Trace:
[  331.522962][T18255]  <TASK>
[  331.525884][T18255]  dump_stack_lvl+0xf2/0x150
[  331.530473][T18255]  dump_stack+0x15/0x20
[  331.534621][T18255]  should_fail_ex+0x223/0x230
[  331.539403][T18255]  ? __kvmalloc_node_noprof+0x72/0x170
[  331.544864][T18255]  should_failslab+0x8f/0xb0
[  331.549448][T18255]  __kmalloc_node_noprof+0xa8/0x380
[  331.554727][T18255]  __kvmalloc_node_noprof+0x72/0x170
[  331.560010][T18255]  simple_xattr_set+0x6e/0x2a0
[  331.564766][T18255]  ? strlen+0x19/0x30
[  331.568746][T18255]  shmem_xattr_handler_set+0x129/0x220
[  331.574249][T18255]  ? __pfx_shmem_xattr_handler_set+0x10/0x10
[  331.580221][T18255]  __vfs_setxattr+0x2e5/0x310
[  331.584920][T18255]  __vfs_setxattr_noperm+0xed/0x420
[  331.590118][T18255]  __vfs_setxattr_locked+0x1af/0x1d0
[  331.595450][T18255]  vfs_setxattr+0x140/0x290
[  331.599985][T18255]  __se_sys_fsetxattr+0x2aa/0x360
[  331.605051][T18255]  __x64_sys_fsetxattr+0x67/0x80
[  331.610055][T18255]  x64_sys_call+0x16a5/0x2d60
[  331.614731][T18255]  do_syscall_64+0xc9/0x1c0
[  331.619302][T18255]  ? clear_bhb_loop+0x55/0xb0
[  331.623996][T18255]  ? clear_bhb_loop+0x55/0xb0
[  331.628665][T18255]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.634560][T18255] RIP: 0033:0x7ff46c37e719
[  331.638966][T18255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.658579][T18255] RSP: 002b:00007ff46aff7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[  331.667025][T18255] RAX: ffffffffffffffda RBX: 00007ff46c535f80 RCX: 00007ff46c37e719
[  331.675061][T18255] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000005
[  331.683087][T18255] RBP: 00007ff46aff7090 R08: 0000000000000000 R09: 0000000000000000
[  331.691048][T18255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  331.699012][T18255] R13: 0000000000000000 R14: 00007ff46c535f80 R15: 00007fff32ba47d8
[  331.707059][T18255]  </TASK>
[  331.711934][T18259] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4862'.
[  331.722940][T18258] netlink: 256 bytes leftover after parsing attributes in process `syz.8.4857'.
[  331.733193][T18259] bond2: entered promiscuous mode
[  331.738287][T18259] bond2: entered allmulticast mode
[  331.746293][T18259] 8021q: adding VLAN 0 to HW filter on device bond2
[  331.761303][T18259] bond2 (unregistering): Released all slaves
[  331.805584][T18272] loop9: detected capacity change from 0 to 512
[  331.825927][T18272] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.4867: bg 0: block 35: padding at end of block bitmap is not set
[  331.843791][T18277] loop8: detected capacity change from 0 to 512
[  331.846860][T18272] EXT4-fs (loop9): Remounting filesystem read-only
[  331.857793][T18272] EXT4-fs (loop9): 1 truncate cleaned up
[  331.861004][T18251] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4860'.
[  331.863891][T18272] SELinux: (dev loop9, type ext4) getxattr errno 5
[  331.882903][T18277] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.4868: bg 0: block 35: padding at end of block bitmap is not set
[  331.908036][T18277] EXT4-fs (loop8): Remounting filesystem read-only
[  331.915920][T18277] EXT4-fs (loop8): 1 truncate cleaned up
[  331.933134][T18272] loop9: detected capacity change from 0 to 512
[  331.933762][T18277] SELinux: (dev loop8, type ext4) getxattr errno 5
[  331.978176][T18293] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4873'.
[  331.988511][T18272] ext4 filesystem being mounted at /376/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.006364][T18272] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  332.009345][T18295] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4874'.
[  332.039330][T18300] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  332.048521][T18295] bond1: entered promiscuous mode
[  332.055077][T18295] bond1: entered allmulticast mode
[  332.060513][T18295] 8021q: adding VLAN 0 to HW filter on device bond1
[  332.066236][T18303] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4877'.
[  332.080509][T18304] loop8: detected capacity change from 0 to 512
[  332.090656][T18295] bond1 (unregistering): Released all slaves
[  332.097995][T18309] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4878'.
[  332.116057][T18304] ext4 filesystem being mounted at /191/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.133216][T18315] IPv6: Can't replace route, no match found
[  332.135889][T18277] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  332.214587][T18335] loop3: detected capacity change from 0 to 512
[  332.220157][T18338] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4887'.
[  332.240500][T18335] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4886: bg 0: block 35: padding at end of block bitmap is not set
[  332.243014][T18341] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4888'.
[  332.255680][T18335] EXT4-fs (loop3): Remounting filesystem read-only
[  332.270345][T18335] EXT4-fs (loop3): 1 truncate cleaned up
[  332.277659][T18335] SELinux: (dev loop3, type ext4) getxattr errno 5
[  332.310534][T18335] loop3: detected capacity change from 0 to 512
[  332.325702][T18335] ext4 filesystem being mounted at /384/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.340270][T18335] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  332.363442][T18352] bond1: entered promiscuous mode
[  332.366234][T18358] hub 8-0:1.0: USB hub found
[  332.368643][T18352] bond1: entered allmulticast mode
[  332.373229][T18358] hub 8-0:1.0: 8 ports detected
[  332.378775][T18352] 8021q: adding VLAN 0 to HW filter on device bond1
[  332.397348][T18352] bond1 (unregistering): Released all slaves
[  332.422645][T18364] loop4: detected capacity change from 0 to 2048
[  332.426245][T18366] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  332.499665][T18381] FAULT_INJECTION: forcing a failure.
[  332.499665][T18381] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  332.512974][T18381] CPU: 0 UID: 0 PID: 18381 Comm: syz.8.4903 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  332.523489][T18381] Tainted: [W]=WARN
[  332.527289][T18381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  332.537450][T18381] Call Trace:
[  332.540725][T18381]  <TASK>
[  332.543649][T18381]  dump_stack_lvl+0xf2/0x150
[  332.548317][T18381]  dump_stack+0x15/0x20
[  332.552527][T18381]  should_fail_ex+0x223/0x230
[  332.557336][T18381]  should_fail_alloc_page+0xfd/0x110
[  332.562652][T18381]  __alloc_pages_noprof+0x109/0x340
[  332.567845][T18381]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  332.573220][T18381]  vma_alloc_folio_noprof+0x1a0/0x2f0
[  332.578660][T18381]  handle_mm_fault+0xdbe/0x2aa0
[  332.583587][T18381]  exc_page_fault+0x3b9/0x650
[  332.588266][T18381]  asm_exc_page_fault+0x26/0x30
[  332.593235][T18381] RIP: 0033:0x7f056813f2b2
[  332.597638][T18381] Code: 00 48 8d 35 a2 36 1a 00 31 c0 4c 89 ef e8 d6 71 0d 00 66 0f 6f 05 4e 82 1b 00 ba 80 00 00 00 4c 89 ee 48 8d bc 24 f0 10 00 00 <0f> 29 84 24 70 10 00 00 66 0f ef c0 0f 29 84 24 80 10 00 00 0f 29
[  332.617239][T18381] RSP: 002b:00007f0566ee4f70 EFLAGS: 00010202
[  332.623299][T18381] RAX: 000000000000000b RBX: 0000000000000004 RCX: 0000000000000001
[  332.631348][T18381] RDX: 0000000000000080 RSI: 00007f0566ee4fb0 RDI: 00007f0566ee6060
[  332.639346][T18381] RBP: 00007f0566ee5fe0 R08: 000000000000000b R09: 00007f0566ee4d07
[  332.647316][T18381] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  332.655349][T18381] R13: 00007f0566ee4fb0 R14: 0000000020000000 R15: 00007f0568550320
[  332.663316][T18381]  </TASK>
[  332.666433][T18381] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  332.674566][T18381] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  332.681208][T18386] loop3: detected capacity change from 0 to 512
[  332.683061][T18381] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  332.702405][T18386] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4904: bg 0: block 35: padding at end of block bitmap is not set
[  332.717454][T18386] EXT4-fs (loop3): Remounting filesystem read-only
[  332.724062][T18386] EXT4-fs (loop3): 1 truncate cleaned up
[  332.730199][T18386] SELinux: (dev loop3, type ext4) getxattr errno 5
[  332.752236][T18386] loop3: detected capacity change from 0 to 512
[  332.764993][T18386] ext4 filesystem being mounted at /390/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.777102][T18386] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  332.809791][T18396] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  332.828750][T18395] netlink: 'syz.3.4906': attribute type 4 has an invalid length.
[  332.875607][T18406] FAULT_INJECTION: forcing a failure.
[  332.875607][T18406] name failslab, interval 1, probability 0, space 0, times 0
[  332.888396][T18406] CPU: 0 UID: 0 PID: 18406 Comm: syz.3.4910 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  332.898959][T18406] Tainted: [W]=WARN
[  332.900001][T18399] bond2: entered promiscuous mode
[  332.902764][T18406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  332.902777][T18406] Call Trace:
[  332.907798][T18399] bond2: entered allmulticast mode
[  332.917805][T18406]  <TASK>
[  332.917814][T18406]  dump_stack_lvl+0xf2/0x150
[  332.933784][T18406]  dump_stack+0x15/0x20
[  332.934739][T18399] 8021q: adding VLAN 0 to HW filter on device bond2
[  332.938008][T18406]  should_fail_ex+0x223/0x230
[  332.949337][T18406]  ? security_inode_alloc+0x37/0x100
[  332.954629][T18406]  should_failslab+0x8f/0xb0
[  332.959295][T18406]  kmem_cache_alloc_noprof+0x4c/0x290
[  332.964680][T18406]  security_inode_alloc+0x37/0x100
[  332.969846][T18406]  inode_init_always_gfp+0x444/0x490
[  332.975197][T18406]  ? __pfx_proc_alloc_inode+0x10/0x10
[  332.980653][T18406]  alloc_inode+0x82/0x160
[  332.985036][T18406]  new_inode+0x1e/0x100
[  332.989253][T18406]  proc_pid_make_inode+0x1d/0xd0
[  332.994193][T18406]  proc_ns_dir_lookup+0x138/0x220
[  332.999224][T18406]  __lookup_slow+0x184/0x250
[  333.003823][T18406]  lookup_slow+0x3c/0x60
[  333.008083][T18406]  walk_component+0x1f5/0x230
[  333.012886][T18406]  ? path_lookupat+0xfd/0x2b0
[  333.017718][T18406]  path_lookupat+0x10a/0x2b0
[  333.022332][T18406]  filename_lookup+0x127/0x300
[  333.027109][T18406]  do_readlinkat+0x89/0x210
[  333.031628][T18406]  __x64_sys_readlinkat+0x53/0x60
[  333.036656][T18406]  x64_sys_call+0x2a35/0x2d60
[  333.041341][T18406]  do_syscall_64+0xc9/0x1c0
[  333.045851][T18406]  ? clear_bhb_loop+0x55/0xb0
[  333.050539][T18406]  ? clear_bhb_loop+0x55/0xb0
[  333.055279][T18406]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.061204][T18406] RIP: 0033:0x7fa7f01de719
[  333.065633][T18406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.085247][T18406] RSP: 002b:00007fa7eee57038 EFLAGS: 00000246 ORIG_RAX: 000000000000010b
[  333.093718][T18406] RAX: ffffffffffffffda RBX: 00007fa7f0395f80 RCX: 00007fa7f01de719
[  333.101689][T18406] RDX: 0000000020002780 RSI: 0000000020000040 RDI: 0000000000000005
[  333.109727][T18406] RBP: 00007fa7eee57090 R08: 0000000000000000 R09: 0000000000000000
[  333.117771][T18406] R10: 0000000000001010 R11: 0000000000000246 R12: 0000000000000001
[  333.125744][T18406] R13: 0000000000000000 R14: 00007fa7f0395f80 R15: 00007ffce70b76a8
[  333.133859][T18406]  </TASK>
[  333.140852][T18399] bond2 (unregistering): Released all slaves
[  333.156614][T18409] 9pnet_fd: Insufficient options for proto=fd
[  333.239425][T18421] loop8: detected capacity change from 0 to 512
[  333.253007][T18426] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  333.273897][T18421] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.4917: bg 0: block 35: padding at end of block bitmap is not set
[  333.308149][T18421] EXT4-fs (loop8): Remounting filesystem read-only
[  333.321336][T18433] lo speed is unknown, defaulting to 1000
[  333.331821][T18421] EXT4-fs (loop8): 1 truncate cleaned up
[  333.349949][T18433] lo speed is unknown, defaulting to 1000
[  333.360229][T18421] SELinux: (dev loop8, type ext4) getxattr errno 5
[  333.385856][T18433] lo speed is unknown, defaulting to 1000
[  333.392431][T18433] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  333.422410][T18421] loop8: detected capacity change from 0 to 512
[  333.450392][T18433] lo speed is unknown, defaulting to 1000
[  333.479505][T18433] lo speed is unknown, defaulting to 1000
[  333.490600][T18421] ext4 filesystem being mounted at /199/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  333.498114][T18433] lo speed is unknown, defaulting to 1000
[  333.517761][T18433] lo speed is unknown, defaulting to 1000
[  333.523860][T18433] lo speed is unknown, defaulting to 1000
[  333.529968][T18433] lo speed is unknown, defaulting to 1000
[  333.532944][T18421] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  333.544171][T18433] lo speed is unknown, defaulting to 1000
[  333.636360][T18447] bond2: entered promiscuous mode
[  333.641424][T18447] bond2: entered allmulticast mode
[  333.655994][T18447] 8021q: adding VLAN 0 to HW filter on device bond2
[  333.667941][T18447] bond2 (unregistering): Released all slaves
[  333.676957][T18433] lo speed is unknown, defaulting to 1000
[  333.762967][T18462] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  333.868474][T18472] 9pnet_fd: Insufficient options for proto=fd
[  333.899019][T18469] loop3: detected capacity change from 0 to 128
[  333.925926][T18474] FAULT_INJECTION: forcing a failure.
[  333.925926][T18474] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  333.939013][T18474] CPU: 1 UID: 0 PID: 18474 Comm: syz.8.4927 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  333.949640][T18474] Tainted: [W]=WARN
[  333.953435][T18474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  333.963522][T18474] Call Trace:
[  333.966833][T18474]  <TASK>
[  333.969766][T18474]  dump_stack_lvl+0xf2/0x150
[  333.974418][T18474]  dump_stack+0x15/0x20
[  333.978610][T18474]  should_fail_ex+0x223/0x230
[  333.983366][T18474]  should_fail+0xb/0x10
[  333.987673][T18474]  should_fail_usercopy+0x1a/0x20
[  333.992747][T18474]  strncpy_from_user+0x25/0x210
[  333.997631][T18474]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  334.003276][T18474]  getname_flags+0xb0/0x3b0
[  334.007860][T18474]  __se_sys_newlstat+0x4c/0x280
[  334.012757][T18474]  ? fput+0x14e/0x190
[  334.016758][T18474]  ? ksys_write+0x17a/0x1b0
[  334.021280][T18474]  __x64_sys_newlstat+0x31/0x40
[  334.026149][T18474]  x64_sys_call+0x1d1e/0x2d60
[  334.030878][T18474]  do_syscall_64+0xc9/0x1c0
[  334.035410][T18474]  ? clear_bhb_loop+0x55/0xb0
[  334.040153][T18474]  ? clear_bhb_loop+0x55/0xb0
[  334.044833][T18474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.050812][T18474] RIP: 0033:0x7f056826e719
[  334.055228][T18474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.074890][T18474] RSP: 002b:00007f0566ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
[  334.083376][T18474] RAX: ffffffffffffffda RBX: 00007f0568425f80 RCX: 00007f056826e719
[  334.087442][T18435] syz.9.4922 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  334.091338][T18474] RDX: 0000000000000000 RSI: 0000000020009900 RDI: 00000000200098c0
[  334.113426][T18474] RBP: 00007f0566ee7090 R08: 0000000000000000 R09: 0000000000000000
[  334.121466][T18474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.129427][T18474] R13: 0000000000000000 R14: 00007f0568425f80 R15: 00007ffd49ebf4e8
[  334.137405][T18474]  </TASK>
[  334.140420][T18435] CPU: 0 UID: 0 PID: 18435 Comm: syz.9.4922 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  334.150944][T18435] Tainted: [W]=WARN
[  334.154739][T18435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  334.164785][T18435] Call Trace:
[  334.168145][T18435]  <TASK>
[  334.171136][T18435]  dump_stack_lvl+0xf2/0x150
[  334.175726][T18435]  dump_stack+0x15/0x20
[  334.179911][T18435]  dump_header+0x83/0x2d0
[  334.184244][T18435]  oom_kill_process+0x341/0x4c0
[  334.189098][T18435]  out_of_memory+0x9af/0xbe0
[  334.193823][T18435]  ? css_next_descendant_pre+0x11c/0x140
[  334.199498][T18435]  mem_cgroup_out_of_memory+0x13e/0x190
[  334.205062][T18435]  try_charge_memcg+0x51b/0x810
[  334.209977][T18435]  obj_cgroup_charge_pages+0xbd/0x1a0
[  334.215351][T18435]  __memcg_kmem_charge_page+0x9d/0x170
[  334.220856][T18435]  __alloc_pages_noprof+0x1bc/0x340
[  334.226125][T18435]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  334.231499][T18435]  alloc_pages_noprof+0xe1/0x100
[  334.236438][T18435]  __vmalloc_node_range_noprof+0x72e/0xec0
[  334.242319][T18435]  __kvmalloc_node_noprof+0x121/0x170
[  334.247753][T18435]  ? ip_set_alloc+0x1f/0x30
[  334.252316][T18435]  ip_set_alloc+0x1f/0x30
[  334.256638][T18435]  hash_netiface_create+0x273/0x730
[  334.261879][T18435]  ? __nla_parse+0x40/0x60
[  334.266374][T18435]  ? __pfx_hash_netiface_create+0x10/0x10
[  334.272096][T18435]  ip_set_create+0x359/0x8a0
[  334.276692][T18435]  ? strnstr+0xf1/0x100
[  334.280933][T18435]  ? __nla_parse+0x40/0x60
[  334.285342][T18435]  nfnetlink_rcv_msg+0x4a9/0x570
[  334.290286][T18435]  netlink_rcv_skb+0x12c/0x230
[  334.295092][T18435]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  334.300548][T18435]  nfnetlink_rcv+0x16c/0x15c0
[  334.305225][T18435]  ? kmem_cache_free+0xdc/0x2d0
[  334.310076][T18435]  ? nlmon_xmit+0x51/0x60
[  334.314426][T18435]  ? __kfree_skb+0x102/0x150
[  334.319017][T18435]  ? consume_skb+0x49/0x160
[  334.323560][T18435]  ? nlmon_xmit+0x51/0x60
[  334.327916][T18435]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  334.333208][T18435]  ? __dev_queue_xmit+0xb4c/0x2040
[  334.338399][T18435]  ? ref_tracker_free+0x3a5/0x410
[  334.343512][T18435]  ? __dev_queue_xmit+0x161/0x2040
[  334.348623][T18435]  ? ref_tracker_alloc+0x1f5/0x2f0
[  334.353751][T18435]  ? __netlink_deliver_tap+0x495/0x4c0
[  334.359279][T18435]  netlink_unicast+0x599/0x670
[  334.364072][T18435]  netlink_sendmsg+0x5cc/0x6e0
[  334.368881][T18435]  ? __pfx_netlink_sendmsg+0x10/0x10
[  334.374157][T18435]  __sock_sendmsg+0x140/0x180
[  334.378915][T18435]  ____sys_sendmsg+0x312/0x410
[  334.383680][T18435]  __sys_sendmsg+0x1d9/0x270
[  334.388273][T18435]  __x64_sys_sendmsg+0x46/0x50
[  334.393057][T18435]  x64_sys_call+0x2689/0x2d60
[  334.397772][T18435]  do_syscall_64+0xc9/0x1c0
[  334.402272][T18435]  ? clear_bhb_loop+0x55/0xb0
[  334.406944][T18435]  ? clear_bhb_loop+0x55/0xb0
[  334.411614][T18435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.417529][T18435] RIP: 0033:0x7ff46c37e719
[  334.421938][T18435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.441541][T18435] RSP: 002b:00007ff46aff7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  334.449948][T18435] RAX: ffffffffffffffda RBX: 00007ff46c535f80 RCX: 00007ff46c37e719
[  334.457914][T18435] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  334.465952][T18435] RBP: 00007ff46c3f1616 R08: 0000000000000000 R09: 0000000000000000
[  334.473984][T18435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  334.481987][T18435] R13: 0000000000000000 R14: 00007ff46c535f80 R15: 00007fff32ba47d8
[  334.489997][T18435]  </TASK>
[  334.493301][T18435] memory: usage 307200kB, limit 307200kB, failcnt 96
[  334.500203][T18435] memory+swap: usage 307360kB, limit 9007199254740988kB, failcnt 0
[  334.506593][T18482] geneve3: entered promiscuous mode
[  334.508108][T18435] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[  334.508123][T18435] Memory cgroup stats for /syz9:
[  334.513350][T18482] geneve3: entered allmulticast mode
[  334.554641][T18435] cache 0
[  334.557604][T18435] rss 4096
[  334.560830][T18435] shmem 0
[  334.563830][T18435] mapped_file 0
[  334.567400][T18435] dirty 0
[  334.570338][T18435] writeback 16384
[  334.574009][T18435] workingset_refault_anon 232
[  334.578693][T18435] workingset_refault_file 217
[  334.583359][T18435] swap 163840
[  334.586743][T18435] swapcached 32768
[  334.590759][T18435] pgpgin 240540
[  334.594282][T18435] pgpgout 240532
[  334.597857][T18435] pgfault 99661
[  334.601313][T18435] pgmajfault 51
[  334.605034][T18435] inactive_anon 32768
[  334.609142][T18435] active_anon 0
[  334.612672][T18435] inactive_file 0
[  334.616386][T18435] active_file 0
[  334.619841][T18435] unevictable 0
[  334.623302][T18435] hierarchical_memory_limit 314572800
[  334.627698][T18494] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  334.628703][T18435] hierarchical_memsw_limit 9223372036854771712
[  334.645612][T18435] total_cache 0
[  334.649097][T18435] total_rss 4096
[  334.652947][T18435] total_shmem 0
[  334.656094][T18497] loop0: detected capacity change from 0 to 128
[  334.656494][T18435] total_mapped_file 0
[  334.665853][T18497] ext4 filesystem being mounted at /356/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  334.666795][T18435] total_dirty 0
[  334.680579][T18435] total_writeback 16384
[  334.684776][T18435] total_workingset_refault_anon 232
[  334.689973][T18435] total_workingset_refault_file 217
[  334.695279][T18435] total_swap 163840
[  334.699084][T18435] total_swapcached 32768
[  334.703397][T18435] total_pgpgin 240540
[  334.707404][T18435] total_pgpgout 240532
[  334.711450][T18435] total_pgfault 99661
[  334.715529][T18435] total_pgmajfault 51
[  334.719548][T18435] total_inactive_anon 32768
[  334.724081][T18435] total_active_anon 0
[  334.728048][T18435] total_inactive_file 0
[  334.732181][T18435] total_active_file 0
[  334.736214][T18435] total_unevictable 0
[  334.740171][T18435] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz9,task_memcg=/syz9,task=syz.9.4922,pid=18434,uid=0
[  334.754801][T18435] Memory cgroup out of memory: Killed process 18434 (syz.9.4922) total-vm:86988kB, anon-rss:612kB, file-rss:16036kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000
[  334.772025][T18434] syz.9.4922 (18434) used greatest stack depth: 9016 bytes left
[  334.792784][T18500] FAULT_INJECTION: forcing a failure.
[  334.792784][T18500] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.805934][T18500] CPU: 1 UID: 0 PID: 18500 Comm: syz.4.4945 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  334.816442][T18500] Tainted: [W]=WARN
[  334.820293][T18500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  334.830341][T18500] Call Trace:
[  334.833619][T18500]  <TASK>
[  334.836542][T18500]  dump_stack_lvl+0xf2/0x150
[  334.841155][T18500]  dump_stack+0x15/0x20
[  334.845341][T18500]  should_fail_ex+0x223/0x230
[  334.850059][T18500]  should_fail+0xb/0x10
[  334.854224][T18500]  should_fail_usercopy+0x1a/0x20
[  334.859253][T18500]  _copy_from_user+0x1e/0xb0
[  334.863986][T18500]  memdup_user+0x64/0xc0
[  334.868254][T18500]  strndup_user+0x68/0xa0
[  334.872588][T18500]  keyctl_restrict_keyring+0x153/0x1b0
[  334.878058][T18500]  __se_sys_keyctl+0x20f/0xbb0
[  334.882832][T18500]  ? __rcu_read_unlock+0x4e/0x70
[  334.887780][T18500]  ? __fget_files+0x1d4/0x210
[  334.892460][T18500]  ? fput+0x14e/0x190
[  334.896447][T18500]  ? ksys_write+0x17a/0x1b0
[  334.901016][T18500]  __x64_sys_keyctl+0x67/0x80
[  334.905738][T18500]  x64_sys_call+0x971/0x2d60
[  334.910424][T18500]  do_syscall_64+0xc9/0x1c0
[  334.914930][T18500]  ? clear_bhb_loop+0x55/0xb0
[  334.919605][T18500]  ? clear_bhb_loop+0x55/0xb0
[  334.924312][T18500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.930285][T18500] RIP: 0033:0x7f32b37be719
[  334.934699][T18500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.954338][T18500] RSP: 002b:00007f32b2431038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[  334.962754][T18500] RAX: ffffffffffffffda RBX: 00007f32b3975f80 RCX: 00007f32b37be719
[  334.970741][T18500] RDX: 0000000020000240 RSI: 000000000727a8ac RDI: 000000000000001d
[  334.978711][T18500] RBP: 00007f32b2431090 R08: 0000000000000000 R09: 0000000000000000
[  334.986792][T18500] R10: 0000000020000440 R11: 0000000000000246 R12: 0000000000000001
[  334.994753][T18500] R13: 0000000000000000 R14: 00007f32b3975f80 R15: 00007ffe72408f48
[  335.002721][T18500]  </TASK>
[  335.013395][T18435] syz.9.4922 (18435) used greatest stack depth: 7384 bytes left
[  335.034699][T18506] loop4: detected capacity change from 0 to 512
[  335.041946][T18506] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  335.055748][T18510] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  335.064353][T18510] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  335.065924][T18506] EXT4-fs (loop4): 1 truncate cleaned up
[  335.092463][   T29] kauditd_printk_skb: 804 callbacks suppressed
[  335.092476][   T29] audit: type=1326 audit(1731397047.780:33940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.101159][T18517] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=18517 comm=syz.0.4952
[  335.122924][   T29] audit: type=1326 audit(1731397047.780:33941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.158381][   T29] audit: type=1326 audit(1731397047.780:33942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.182011][   T29] audit: type=1326 audit(1731397047.790:33943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.188345][T18521] loop0: detected capacity change from 0 to 128
[  335.205592][   T29] audit: type=1326 audit(1731397047.790:33944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.205618][   T29] audit: type=1326 audit(1731397047.790:33945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.205640][   T29] audit: type=1326 audit(1731397047.790:33946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.224536][T18521] ext4 filesystem being mounted at /363/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.235435][   T29] audit: type=1326 audit(1731397047.790:33947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.235458][   T29] audit: type=1326 audit(1731397047.790:33948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.278602][T18524] syz.8.4955[18524] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.282556][   T29] audit: type=1326 audit(1731397047.790:33949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18516 comm="syz.0.4952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  335.296898][T18524] syz.8.4955[18524] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.376841][T18524] syz.8.4955[18524] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.383449][T18527] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  335.478025][T18539] loop3: detected capacity change from 0 to 512
[  335.479505][T18544] loop0: detected capacity change from 0 to 512
[  335.493352][T18544] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  335.501997][T18539] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4958: bg 0: block 35: padding at end of block bitmap is not set
[  335.519880][T18539] EXT4-fs (loop3): Remounting filesystem read-only
[  335.522575][T18554] loop4: detected capacity change from 0 to 128
[  335.527605][T18539] EXT4-fs (loop3): 1 truncate cleaned up
[  335.539018][T18539] SELinux: (dev loop3, type ext4) getxattr errno 5
[  335.549397][T18544] EXT4-fs (loop0): 1 truncate cleaned up
[  335.554491][T18554] ext4 filesystem being mounted at /313/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.590693][T18539] loop3: detected capacity change from 0 to 512
[  335.601584][T18563] syz.4.4970[18563] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.601757][T18563] syz.4.4970[18563] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.613332][T18563] syz.4.4970[18563] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  335.628439][T18569] FAULT_INJECTION: forcing a failure.
[  335.628439][T18569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.636180][T18539] ext4 filesystem being mounted at /404/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.639942][T18569] CPU: 0 UID: 0 PID: 18569 Comm: +}[@ Tainted: G        W          6.12.0-rc7-syzkaller #0
[  335.666399][T18539] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, 
[  335.673191][T18569] Tainted: [W]=WARN
[  335.673200][T18569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  335.673212][T18569] Call Trace:
[  335.673219][T18569]  <TASK>
[  335.681432][T18539] block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  335.685201][T18569]  dump_stack_lvl+0xf2/0x150
[  335.714485][T18569]  dump_stack+0x15/0x20
[  335.718645][T18569]  should_fail_ex+0x223/0x230
[  335.723330][T18569]  should_fail+0xb/0x10
[  335.727608][T18569]  should_fail_usercopy+0x1a/0x20
[  335.732623][T18569]  _copy_from_user+0x1e/0xb0
[  335.737234][T18569]  memdup_user+0x64/0xc0
[  335.741472][T18569]  strndup_user+0x68/0xa0
[  335.745795][T18569]  __se_sys_add_key+0x11b/0x320
[  335.750784][T18569]  ? fput+0x14e/0x190
[  335.754820][T18569]  __x64_sys_add_key+0x67/0x80
[  335.759629][T18569]  x64_sys_call+0x157d/0x2d60
[  335.764300][T18569]  do_syscall_64+0xc9/0x1c0
[  335.768839][T18569]  ? clear_bhb_loop+0x55/0xb0
[  335.773505][T18569]  ? clear_bhb_loop+0x55/0xb0
[  335.778182][T18569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.784147][T18569] RIP: 0033:0x7fa9fd39e719
[  335.788613][T18569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.808216][T18569] RSP: 002b:00007fa9fc011038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  335.816676][T18569] RAX: ffffffffffffffda RBX: 00007fa9fd555f80 RCX: 00007fa9fd39e719
[  335.824706][T18569] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000020000000
[  335.832669][T18569] RBP: 00007fa9fc011090 R08: ffffffffffffffff R09: 0000000000000000
[  335.840653][T18569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.848655][T18569] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  335.856681][T18569]  </TASK>
[  335.936770][T18587] loop3: detected capacity change from 0 to 512
[  335.943633][T18585] loop4: detected capacity change from 0 to 512
[  335.948478][T18587] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  335.966226][T18589] loop0: detected capacity change from 0 to 128
[  335.973149][T18585] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4978: bg 0: block 35: padding at end of block bitmap is not set
[  335.973860][T18589] EXT4-fs: Ignoring removed bh option
[  335.992132][T18587] EXT4-fs (loop3): 1 truncate cleaned up
[  335.993410][T18585] EXT4-fs (loop4): Remounting filesystem read-only
[  336.006354][T18589] ext4 filesystem being mounted at /370/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  336.007766][T18585] EXT4-fs (loop4): 1 truncate cleaned up
[  336.045811][T18585] SELinux: (dev loop4, type ext4) getxattr errno 5
[  336.069956][T18602] syz.9.4984[18602] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  336.095790][T18585] loop4: detected capacity change from 0 to 512
[  336.098204][T18606] FAULT_INJECTION: forcing a failure.
[  336.098204][T18606] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.110038][T18608] loop9: detected capacity change from 0 to 128
[  336.113524][T18606] CPU: 1 UID: 0 PID: 18606 Comm: syz.3.4986 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  336.143143][T18610] loop0: detected capacity change from 0 to 512
[  336.143254][T18606] Tainted: [W]=WARN
[  336.153322][T18606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  336.163365][T18606] Call Trace:
[  336.166634][T18606]  <TASK>
[  336.169583][T18606]  dump_stack_lvl+0xf2/0x150
[  336.174173][T18606]  dump_stack+0x15/0x20
[  336.178317][T18606]  should_fail_ex+0x223/0x230
[  336.182991][T18606]  should_fail+0xb/0x10
[  336.187145][T18606]  should_fail_usercopy+0x1a/0x20
[  336.192232][T18606]  _copy_to_user+0x20/0xa0
[  336.196640][T18606]  simple_read_from_buffer+0xa0/0x110
[  336.202065][T18606]  proc_fail_nth_read+0xf9/0x140
[  336.207015][T18606]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  336.212559][T18606]  vfs_read+0x1a2/0x700
[  336.216711][T18606]  ? __fget_files+0x1d4/0x210
[  336.221456][T18606]  ksys_read+0xeb/0x1b0
[  336.225669][T18606]  __x64_sys_read+0x42/0x50
[  336.230222][T18606]  x64_sys_call+0x27d3/0x2d60
[  336.234893][T18606]  do_syscall_64+0xc9/0x1c0
[  336.239413][T18606]  ? clear_bhb_loop+0x55/0xb0
[  336.244080][T18606]  ? clear_bhb_loop+0x55/0xb0
[  336.248838][T18606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.254766][T18606] RIP: 0033:0x7fa7f01dd15c
[  336.259305][T18606] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  336.278990][T18606] RSP: 002b:00007fa7eee57030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  336.287411][T18606] RAX: ffffffffffffffda RBX: 00007fa7f0395f80 RCX: 00007fa7f01dd15c
[  336.295397][T18606] RDX: 000000000000000f RSI: 00007fa7eee570a0 RDI: 0000000000000004
[  336.303414][T18606] RBP: 00007fa7eee57090 R08: 0000000000000000 R09: 0000000000000000
[  336.311376][T18606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.319339][T18606] R13: 0000000000000000 R14: 00007fa7f0395f80 R15: 00007ffce70b76a8
[  336.327331][T18606]  </TASK>
[  336.345781][T18610] ext4 filesystem being mounted at /372/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.358071][T18585] ext4 filesystem being mounted at /318/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  336.359596][T18610] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.4988: corrupted inode contents
[  336.371960][T18585] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  336.394971][T18610] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.4988: mark_inode_dirty error
[  336.413640][T18610] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.4988: corrupted inode contents
[  336.427649][T18610] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.4988: mark_inode_dirty error
[  336.464255][T18626] __nla_validate_parse: 19 callbacks suppressed
[  336.464269][T18626] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4993'.
[  336.486539][T18630] loop3: detected capacity change from 0 to 512
[  336.493383][T18630] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  336.503899][T18633] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4995'.
[  336.531376][T18630] EXT4-fs (loop3): 1 truncate cleaned up
[  336.534026][T18637] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4997'.
[  336.558417][T18641] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  336.589341][T18648] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  336.596014][T18648] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  336.603441][T18648] vhci_hcd vhci_hcd.0: Device attached
[  336.609716][T18644] bond1: entered promiscuous mode
[  336.611593][T18649] vhci_hcd: connection closed
[  336.614816][T18644] bond1: entered allmulticast mode
[  336.624895][T18644] 8021q: adding VLAN 0 to HW filter on device bond1
[  336.625787][   T40] vhci_hcd: stop threads
[  336.635903][   T40] vhci_hcd: release socket
[  336.640318][   T40] vhci_hcd: disconnect device
[  336.648460][T18644] bond1 (unregistering): Released all slaves
[  336.658641][T18657] FAULT_INJECTION: forcing a failure.
[  336.658641][T18657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  336.671785][T18657] CPU: 1 UID: 0 PID: 18657 Comm: syz.9.5003 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  336.682345][T18657] Tainted: [W]=WARN
[  336.686126][T18657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  336.696190][T18657] Call Trace:
[  336.699458][T18657]  <TASK>
[  336.702372][T18657]  dump_stack_lvl+0xf2/0x150
[  336.707013][T18657]  dump_stack+0x15/0x20
[  336.711152][T18657]  should_fail_ex+0x223/0x230
[  336.715892][T18657]  should_fail+0xb/0x10
[  336.720034][T18657]  should_fail_usercopy+0x1a/0x20
[  336.725111][T18657]  _copy_to_user+0x20/0xa0
[  336.729621][T18657]  simple_read_from_buffer+0xa0/0x110
[  336.735120][T18657]  proc_fail_nth_read+0xf9/0x140
[  336.740073][T18657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  336.745742][T18657]  vfs_read+0x1a2/0x700
[  336.749948][T18657]  ? __fget_files+0x1d4/0x210
[  336.754604][T18657]  ksys_read+0xeb/0x1b0
[  336.758760][T18657]  __x64_sys_read+0x42/0x50
[  336.763275][T18657]  x64_sys_call+0x27d3/0x2d60
[  336.767936][T18657]  do_syscall_64+0xc9/0x1c0
[  336.772423][T18657]  ? clear_bhb_loop+0x55/0xb0
[  336.777081][T18657]  ? clear_bhb_loop+0x55/0xb0
[  336.781811][T18657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.787704][T18657] RIP: 0033:0x7ff46c37d15c
[  336.792097][T18657] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  336.811725][T18657] RSP: 002b:00007ff46aff7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  336.820167][T18657] RAX: ffffffffffffffda RBX: 00007ff46c535f80 RCX: 00007ff46c37d15c
[  336.828200][T18657] RDX: 000000000000000f RSI: 00007ff46aff70a0 RDI: 0000000000000007
[  336.836193][T18657] RBP: 00007ff46aff7090 R08: 0000000000000000 R09: 0000000000000000
[  336.844179][T18657] R10: 000000000000fe44 R11: 0000000000000246 R12: 0000000000000001
[  336.852207][T18657] R13: 0000000000000000 R14: 00007ff46c535f80 R15: 00007fff32ba47d8
[  336.860165][T18657]  </TASK>
[  336.926255][T18664] loop8: detected capacity change from 0 to 128
[  336.947435][T18664] ext4 filesystem being mounted at /213/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  336.980334][T18664] FAULT_INJECTION: forcing a failure.
[  336.980334][T18664] name failslab, interval 1, probability 0, space 0, times 0
[  336.980358][T18664] CPU: 1 UID: 0 PID: 18664 Comm: syz.8.5006 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  336.980383][T18664] Tainted: [W]=WARN
[  336.980452][T18664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  336.980463][T18664] Call Trace:
[  336.980469][T18664]  <TASK>
[  336.980476][T18664]  dump_stack_lvl+0xf2/0x150
[  336.980566][T18664]  dump_stack+0x15/0x20
[  336.980585][T18664]  should_fail_ex+0x223/0x230
[  336.980612][T18664]  ? __iomap_dio_rw+0x148/0x1090
[  336.980651][T18664]  should_failslab+0x8f/0xb0
[  337.045678][T18666] netlink: 'syz.9.5004': attribute type 32 has an invalid length.
[  337.046451][T18664]  __kmalloc_cache_noprof+0x4b/0x2a0
[  337.054267][T18666] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5004'.
[  337.059480][T18664]  ? mod_objcg_state+0x2ea/0x4f0
[  337.069159][T18666] (unnamed net_device) (uninitialized): option coupled_control: invalid value (6)
[  337.073207][T18664]  __iomap_dio_rw+0x148/0x1090
[  337.087245][T18664]  ? __rcu_read_unlock+0x4e/0x70
[  337.087275][T18664]  ? avc_has_perm_noaudit+0x1cc/0x210
[  337.087320][T18664]  ? avc_has_perm+0xd4/0x160
[  337.087347][T18664]  iomap_dio_rw+0x40/0x90
[  337.087370][T18664]  ext4_file_read_iter+0x214/0x290
[  337.087403][T18664]  copy_splice_read+0x3a0/0x5d0
[  337.087434][T18664]  ? __pfx_ext4_file_splice_read+0x10/0x10
[  337.087458][T18664]  splice_direct_to_actor+0x28b/0x670
[  337.087479][T18664]  ? __pfx_direct_splice_actor+0x10/0x10
[  337.087505][T18664]  do_splice_direct+0xd7/0x150
[  337.087588][T18664]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  337.087684][T18664]  do_sendfile+0x39b/0x970
[  337.087735][T18664]  __x64_sys_sendfile64+0x110/0x150
[  337.087762][T18664]  x64_sys_call+0xed5/0x2d60
[  337.087791][T18664]  do_syscall_64+0xc9/0x1c0
[  337.087873][T18664]  ? clear_bhb_loop+0x55/0xb0
[  337.087929][T18664]  ? clear_bhb_loop+0x55/0xb0
[  337.087946][T18664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  337.088033][T18664] RIP: 0033:0x7f056826e719
[  337.088046][T18664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  337.202453][T18664] RSP: 002b:00007f0566ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  337.202475][T18664] RAX: ffffffffffffffda RBX: 00007f0568425f80 RCX: 00007f056826e719
[  337.202488][T18664] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  337.226778][T18664] RBP: 00007f0566ee7090 R08: 0000000000000000 R09: 0000000000000000
[  337.234738][T18664] R10: 0000000800000009 R11: 0000000000000246 R12: 0000000000000001
[  337.242769][T18664] R13: 0000000000000000 R14: 00007f0568425f80 R15: 00007ffd49ebf4e8
[  337.250780][T18664]  </TASK>
[  337.269542][T18668] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5007'.
[  337.279050][T18671] netlink: 'syz.9.5009': attribute type 21 has an invalid length.
[  337.280866][T18672] loop8: detected capacity change from 0 to 128
[  337.286932][T18671] netlink: 128 bytes leftover after parsing attributes in process `syz.9.5009'.
[  337.287076][T18671] netlink: 'syz.9.5009': attribute type 4 has an invalid length.
[  337.293506][T18672] ext4: Bad value for 'journal_dev'
[  337.302231][T18671] netlink: 'syz.9.5009': attribute type 5 has an invalid length.
[  337.323295][T18671] netlink: 3 bytes leftover after parsing attributes in process `syz.9.5009'.
[  337.329748][T18674] loop0: detected capacity change from 0 to 512
[  337.342271][T18671] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5132 sclass=netlink_route_socket pid=18671 comm=syz.9.5009
[  337.354490][T18674] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  337.357198][T18671] netlink: 'syz.9.5009': attribute type 1 has an invalid length.
[  337.386225][T18676] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5011'.
[  337.400947][T18674] EXT4-fs (loop0): 1 truncate cleaned up
[  337.444450][T18682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5014'.
[  337.445982][T18683] loop9: detected capacity change from 0 to 128
[  337.481777][T18687] siw: device registration error -23
[  337.487521][T18689] netlink: 'syz.3.5017': attribute type 32 has an invalid length.
[  337.495433][T18689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5017'.
[  337.515983][T18683] ext4 filesystem being mounted at /394/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.536973][T18689] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  337.562799][T18692] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  337.730110][T18714] loop8: detected capacity change from 0 to 512
[  337.737017][T18714] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  337.758218][T18714] EXT4-fs (loop8): 1 truncate cleaned up
[  337.784319][T18720] loop9: detected capacity change from 0 to 128
[  337.792264][T18720] ext4 filesystem being mounted at /398/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.796703][T18723] loop8: detected capacity change from 0 to 128
[  337.810658][T18723] FAT-fs (loop8): FAT read failed (blocknr 252)
[  337.934863][T18734] FAULT_INJECTION: forcing a failure.
[  337.934863][T18734] name failslab, interval 1, probability 0, space 0, times 0
[  337.947686][T18734] CPU: 1 UID: 0 PID: 18734 Comm: syz.8.5034 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  337.958206][T18734] Tainted: [W]=WARN
[  337.962017][T18734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  337.972084][T18734] Call Trace:
[  337.975423][T18734]  <TASK>
[  337.978360][T18734]  dump_stack_lvl+0xf2/0x150
[  337.982970][T18734]  dump_stack+0x15/0x20
[  337.987150][T18734]  should_fail_ex+0x223/0x230
[  337.991849][T18734]  ? bpf_prog_alloc_no_stats+0xc3/0x360
[  337.997474][T18734]  should_failslab+0x8f/0xb0
[  338.002144][T18734]  __kmalloc_cache_noprof+0x4b/0x2a0
[  338.007524][T18734]  ? __vmalloc_noprof+0x5e/0x70
[  338.012414][T18734]  bpf_prog_alloc_no_stats+0xc3/0x360
[  338.017857][T18734]  bpf_prog_alloc+0x3a/0x150
[  338.022468][T18734]  bpf_prog_load+0x4d1/0x1070
[  338.027156][T18734]  ? __rcu_read_unlock+0x4e/0x70
[  338.032179][T18734]  __sys_bpf+0x463/0x7a0
[  338.036435][T18734]  __x64_sys_bpf+0x43/0x50
[  338.040864][T18734]  x64_sys_call+0x2625/0x2d60
[  338.045599][T18734]  do_syscall_64+0xc9/0x1c0
[  338.050099][T18734]  ? clear_bhb_loop+0x55/0xb0
[  338.054773][T18734]  ? clear_bhb_loop+0x55/0xb0
[  338.059500][T18734]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.065444][T18734] RIP: 0033:0x7f056826e719
[  338.069851][T18734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.089480][T18734] RSP: 002b:00007f0566ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  338.097907][T18734] RAX: ffffffffffffffda RBX: 00007f0568425f80 RCX: 00007f056826e719
[  338.105998][T18734] RDX: 00000000000000a0 RSI: 0000000020000680 RDI: 0000000000000005
[  338.114068][T18734] RBP: 00007f0566ee7090 R08: 0000000000000000 R09: 0000000000000000
[  338.122064][T18734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.130099][T18734] R13: 0000000000000000 R14: 00007f0568425f80 R15: 00007ffd49ebf4e8
[  338.138068][T18734]  </TASK>
[  338.276641][T18748] loop9: detected capacity change from 0 to 128
[  338.284430][T18748] ext4 filesystem being mounted at /403/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.351711][T18692] 9pnet_fd: p9_fd_create_tcp (18692): problem connecting socket to 127.0.0.1
[  338.381866][T18761] loop0: detected capacity change from 0 to 512
[  338.401817][T18761] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5046: bg 0: block 35: padding at end of block bitmap is not set
[  338.417600][T18761] EXT4-fs (loop0): Remounting filesystem read-only
[  338.424544][T18761] EXT4-fs (loop0): 1 truncate cleaned up
[  338.430664][T18761] SELinux: (dev loop0, type ext4) getxattr errno 5
[  338.466387][T18763] netlink: 'syz.9.5045': attribute type 10 has an invalid length.
[  338.479923][T18763] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  338.508321][T18763] usb usb9: usbfs: process 18763 (syz.9.5045) did not claim interface 0 before use
[  338.565372][T18769] loop0: detected capacity change from 0 to 512
[  338.602271][T18774] FAULT_INJECTION: forcing a failure.
[  338.602271][T18774] name failslab, interval 1, probability 0, space 0, times 0
[  338.614995][T18774] CPU: 0 UID: 0 PID: 18774 Comm: syz.9.5050 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  338.625492][T18774] Tainted: [W]=WARN
[  338.629281][T18774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  338.639466][T18774] Call Trace:
[  338.642744][T18774]  <TASK>
[  338.645670][T18774]  dump_stack_lvl+0xf2/0x150
[  338.650268][T18774]  dump_stack+0x15/0x20
[  338.654413][T18774]  should_fail_ex+0x223/0x230
[  338.659117][T18774]  ? alloc_pipe_info+0xb0/0x360
[  338.663989][T18774]  should_failslab+0x8f/0xb0
[  338.668577][T18774]  __kmalloc_cache_noprof+0x4b/0x2a0
[  338.673922][T18774]  alloc_pipe_info+0xb0/0x360
[  338.678594][T18774]  create_pipe_files+0x67/0x3b0
[  338.683508][T18774]  ? bpf_trace_run2+0x123/0x1d0
[  338.688400][T18774]  __do_pipe_flags+0x46/0x190
[  338.693142][T18774]  do_pipe2+0x64/0x130
[  338.697251][T18774]  ? __bpf_trace_sys_enter+0x9/0x10
[  338.702458][T18774]  __x64_sys_pipe+0x21/0x30
[  338.706956][T18774]  x64_sys_call+0xd0/0x2d60
[  338.711569][T18774]  do_syscall_64+0xc9/0x1c0
[  338.716065][T18774]  ? clear_bhb_loop+0x55/0xb0
[  338.720735][T18774]  ? clear_bhb_loop+0x55/0xb0
[  338.725418][T18774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.731337][T18774] RIP: 0033:0x7ff46c37e719
[  338.735756][T18774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.755360][T18774] RSP: 002b:00007ff46aff7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  338.763799][T18774] RAX: ffffffffffffffda RBX: 00007ff46c535f80 RCX: 00007ff46c37e719
[  338.771761][T18774] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000240
[  338.779724][T18774] RBP: 00007ff46aff7090 R08: 0000000000000000 R09: 0000000000000000
[  338.787707][T18774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.795726][T18774] R13: 0000000000000000 R14: 00007ff46c535f80 R15: 00007fff32ba47d8
[  338.803690][T18774]  </TASK>
[  338.812837][T18776] loop3: detected capacity change from 0 to 128
[  338.816198][T18769] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5049: bg 0: block 35: padding at end of block bitmap is not set
[  338.833684][T18777] ref_ctr_offset mismatch. inode: 0x6de offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x82
[  338.837828][T18776] ext4 filesystem being mounted at /419/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  338.845200][T18769] EXT4-fs (loop0): Remounting filesystem read-only
[  338.861854][T18769] EXT4-fs (loop0): 1 truncate cleaned up
[  338.868947][T18769] SELinux: (dev loop0, type ext4) getxattr errno 5
[  338.888820][T18777] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  338.896269][T18777] batman_adv: batadv0: Removing interface: batadv_slave_0
[  338.911184][T18777] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  338.918753][T18777] batman_adv: batadv0: Removing interface: batadv_slave_1
[  338.959290][T18793] loop9: detected capacity change from 0 to 128
[  338.970370][T18793] ext4 filesystem being mounted at /411/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  339.008454][T18796] loop0: detected capacity change from 0 to 512
[  339.025832][T18801] FAULT_INJECTION: forcing a failure.
[  339.025832][T18801] name failslab, interval 1, probability 0, space 0, times 0
[  339.026797][T18796] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5060: bg 0: block 35: padding at end of block bitmap is not set
[  339.038495][T18801] CPU: 0 UID: 0 PID: 18801 Comm: syz.3.5062 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  339.061013][T18796] EXT4-fs (loop0): Remounting filesystem read-only
[  339.063056][T18801] Tainted: [W]=WARN
[  339.063063][T18801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  339.063072][T18801] Call Trace:
[  339.063078][T18801]  <TASK>
[  339.069620][T18796] EXT4-fs (loop0): 1 truncate cleaned up
[  339.073346][T18801]  dump_stack_lvl+0xf2/0x150
[  339.083841][T18796] SELinux: (dev loop0, type ext4) getxattr errno 5
[  339.086637][T18801]  dump_stack+0x15/0x20
[  339.086657][T18801]  should_fail_ex+0x223/0x230
[  339.086684][T18801]  ? proc_self_get_link+0x94/0x100
[  339.120268][T18801]  should_failslab+0x8f/0xb0
[  339.124885][T18801]  __kmalloc_cache_noprof+0x4b/0x2a0
[  339.130169][T18801]  proc_self_get_link+0x94/0x100
[  339.135152][T18801]  ? __pfx_proc_self_get_link+0x10/0x10
[  339.140699][T18801]  pick_link+0x4a0/0x7e0
[  339.144937][T18801]  step_into+0x725/0x810
[  339.149232][T18801]  link_path_walk+0x54c/0x820
[  339.153911][T18801]  path_openat+0x1af/0x1fa0
[  339.158563][T18801]  ? _parse_integer_limit+0x167/0x180
[  339.163940][T18801]  ? kstrtouint_from_user+0xb0/0xe0
[  339.169138][T18801]  do_filp_open+0xf7/0x200
[  339.173642][T18801]  do_sys_openat2+0xab/0x120
[  339.178297][T18801]  __x64_sys_openat+0xf3/0x120
[  339.183055][T18801]  x64_sys_call+0x1025/0x2d60
[  339.187754][T18801]  do_syscall_64+0xc9/0x1c0
[  339.192249][T18801]  ? clear_bhb_loop+0x55/0xb0
[  339.196917][T18801]  ? clear_bhb_loop+0x55/0xb0
[  339.201587][T18801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.207519][T18801] RIP: 0033:0x7fa7f01dd0b0
[  339.211998][T18801] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  339.231607][T18801] RSP: 002b:00007fa7eee56f70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  339.240033][T18801] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa7f01dd0b0
[  339.247997][T18801] RDX: 0000000000000000 RSI: 00007fa7f025172e RDI: 00000000ffffff9c
[  339.255958][T18801] RBP: 00007fa7f025172e R08: 0000000000000000 R09: 0000000000000000
[  339.263987][T18801] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  339.272052][T18801] R13: 0000000000000000 R14: 00007fa7f0395f80 R15: 00007ffce70b76a8
[  339.280019][T18801]  </TASK>
[  339.298993][T18804] loop8: detected capacity change from 0 to 128
[  339.319640][T18804] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  339.364682][T18820] xt_hashlimit: max too large, truncated to 1048576
[  339.383172][T18822] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  339.396872][T18824] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  339.399285][T18814] lo speed is unknown, defaulting to 1000
[  339.492002][T18846] FAULT_INJECTION: forcing a failure.
[  339.492002][T18846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.505120][T18846] CPU: 1 UID: 0 PID: 18846 Comm: syz.8.5082 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  339.505361][ T3389] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  339.515663][T18846] Tainted: [W]=WARN
[  339.515671][T18846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  339.515682][T18846] Call Trace:
[  339.515689][T18846]  <TASK>
[  339.515707][T18846]  dump_stack_lvl+0xf2/0x150
[  339.547770][T18846]  dump_stack+0x15/0x20
[  339.552006][T18846]  should_fail_ex+0x223/0x230
[  339.555732][T18856] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  339.556769][T18846]  should_fail+0xb/0x10
[  339.571642][T18846]  should_fail_usercopy+0x1a/0x20
[  339.576666][T18846]  _copy_from_iter+0xd5/0xd00
[  339.581471][T18846]  ? kmalloc_reserve+0x16e/0x190
[  339.586416][T18846]  ? __build_skb_around+0x196/0x1f0
[  339.591699][T18846]  ? __alloc_skb+0x21f/0x310
[  339.596347][T18846]  ? __virt_addr_valid+0x1ed/0x250
[  339.601502][T18846]  ? __check_object_size+0x364/0x520
[  339.606787][T18846]  netlink_sendmsg+0x460/0x6e0
[  339.611545][T18846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  339.616851][T18846]  __sock_sendmsg+0x140/0x180
[  339.621524][T18846]  ____sys_sendmsg+0x312/0x410
[  339.626338][T18846]  __sys_sendmsg+0x1d9/0x270
[  339.630927][T18846]  __x64_sys_sendmsg+0x46/0x50
[  339.635681][T18846]  x64_sys_call+0x2689/0x2d60
[  339.640448][T18846]  do_syscall_64+0xc9/0x1c0
[  339.644945][T18846]  ? clear_bhb_loop+0x55/0xb0
[  339.649612][T18846]  ? clear_bhb_loop+0x55/0xb0
[  339.654282][T18846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.660178][T18846] RIP: 0033:0x7f056826e719
[  339.664582][T18846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  339.684211][T18846] RSP: 002b:00007f0566ee7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  339.692668][T18846] RAX: ffffffffffffffda RBX: 00007f0568425f80 RCX: 00007f056826e719
[  339.700630][T18846] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  339.708658][T18846] RBP: 00007f0566ee7090 R08: 0000000000000000 R09: 0000000000000000
[  339.716622][T18846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  339.724582][T18846] R13: 0000000000000000 R14: 00007f0568425f80 R15: 00007ffd49ebf4e8
[  339.732657][T18846]  </TASK>
[  339.735927][ T3389] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  339.757330][T18862] netdevsim netdevsim9 netdevsim2: Unsupported IPsec algorithm
[  339.765366][T18862] netlink: 'syz.9.5088': attribute type 1 has an invalid length.
[  339.880253][T18881] loop3: detected capacity change from 0 to 512
[  339.905572][T18881] ext4 filesystem being mounted at /435/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  339.911716][T18887] loop9: detected capacity change from 0 to 2048
[  340.125359][   T29] kauditd_printk_skb: 1068 callbacks suppressed
[  340.125373][   T29] audit: type=1326 audit(1731397052.820:35016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  340.156991][T18924] FAULT_INJECTION: forcing a failure.
[  340.156991][T18924] name failslab, interval 1, probability 0, space 0, times 0
[  340.169748][T18924] CPU: 1 UID: 0 PID: 18924 Comm: syz.0.5113 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  340.180261][T18924] Tainted: [W]=WARN
[  340.180486][   T29] audit: type=1326 audit(1731397052.850:35017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  340.184051][T18924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  340.207613][   T29] audit: type=1326 audit(1731397052.850:35018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  340.217611][T18924] Call Trace:
[  340.217620][T18924]  <TASK>
[  340.217627][T18924]  dump_stack_lvl+0xf2/0x150
[  340.217652][T18924]  dump_stack+0x15/0x20
[  340.241193][   T29] audit: type=1326 audit(1731397052.850:35019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  340.244420][T18924]  should_fail_ex+0x223/0x230
[  340.244457][T18924]  ? __alloc_skb+0x10b/0x310
[  340.247429][   T29] audit: type=1326 audit(1731397052.850:35020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  340.251987][T18924]  should_failslab+0x8f/0xb0
[  340.256144][   T29] audit: type=1326 audit(1731397052.850:35021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9fd39e719 code=0x7ffc0000
[  340.279627][T18924]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  340.284384][   T29] audit: type=1326 audit(1731397052.850:35022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa9fd39d0b0 code=0x7ffc0000
[  340.288901][T18924]  __alloc_skb+0x10b/0x310
[  340.312476][   T29] audit: type=1326 audit(1731397052.850:35023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18923 comm="syz.0.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa9fd39d1ff code=0x7ffc0000
[  340.316957][T18924]  audit_log_start+0x368/0x6b0
[  340.316983][T18924]  audit_seccomp+0x4b/0x130
[  340.317000][T18924]  __seccomp_filter+0x6fa/0x1180
[  340.412085][T18924]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  340.417811][T18924]  ? vfs_write+0x596/0x920
[  340.422324][T18924]  ? __rcu_read_unlock+0x4e/0x70
[  340.427317][T18924]  ? __fget_files+0x1d4/0x210
[  340.432073][T18924]  __secure_computing+0x9f/0x1c0
[  340.437057][T18924]  syscall_trace_enter+0xd1/0x1f0
[  340.442110][T18924]  ? fpregs_assert_state_consistent+0x83/0xa0
[  340.448195][T18924]  do_syscall_64+0xaa/0x1c0
[  340.452739][T18924]  ? clear_bhb_loop+0x55/0xb0
[  340.457431][T18924]  ? clear_bhb_loop+0x55/0xb0
[  340.462156][T18924]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.468124][T18924] RIP: 0033:0x7fa9fd39e719
[  340.472544][T18924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.492153][T18924] RSP: 002b:00007fa9fc011038 EFLAGS: 00000246 ORIG_RAX: 0000000000000016
[  340.500559][T18924] RAX: ffffffffffffffda RBX: 00007fa9fd555f80 RCX: 00007fa9fd39e719
[  340.508541][T18924] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200000c0
[  340.516570][T18924] RBP: 00007fa9fc011090 R08: 0000000000000000 R09: 0000000000000000
[  340.524544][T18924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.532515][T18924] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  340.540535][T18924]  </TASK>
[  340.543116][   T29] audit: type=1326 audit(1731397053.230:35024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18925 comm="syz.4.5114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32b37be719 code=0x7ffc0000
[  340.543678][T18924] audit: audit_lost=8 audit_rate_limit=0 audit_backlog_limit=64
[  340.614199][T18932] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  340.675942][T18938] loop4: detected capacity change from 0 to 512
[  340.689489][T18941] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  340.693938][T18938] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5121: bg 0: block 35: padding at end of block bitmap is not set
[  340.718512][T18938] EXT4-fs (loop4): Remounting filesystem read-only
[  340.726392][T18938] EXT4-fs (loop4): 1 truncate cleaned up
[  340.732660][T18938] SELinux: (dev loop4, type ext4) getxattr errno 5
[  340.827189][T18954] loop8: detected capacity change from 0 to 512
[  340.870146][T18956] bond3: entered promiscuous mode
[  340.875338][T18956] bond3: entered allmulticast mode
[  340.880832][T18956] 8021q: adding VLAN 0 to HW filter on device bond3
[  340.891948][T18956] bond3 (unregistering): Released all slaves
[  340.950241][T18986] loop4: detected capacity change from 0 to 128
[  340.958759][T18986] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.969889][T18987] lo speed is unknown, defaulting to 1000
[  341.062543][T18998] loop4: detected capacity change from 0 to 512
[  341.071414][T18998] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5140: bg 0: block 35: padding at end of block bitmap is not set
[  341.086650][T18998] EXT4-fs (loop4): Remounting filesystem read-only
[  341.096856][T18998] EXT4-fs (loop4): 1 truncate cleaned up
[  341.102838][T18998] SELinux: (dev loop4, type ext4) getxattr errno 5
[  341.137257][T18998] loop4: detected capacity change from 0 to 512
[  341.161604][T19002] loop9: detected capacity change from 0 to 128
[  341.169743][T18998] ext4 filesystem being mounted at /352/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.182152][T18998] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  341.227136][T19010] loop4: detected capacity change from 0 to 2048
[  341.246691][T19010] FAULT_INJECTION: forcing a failure.
[  341.246691][T19010] name failslab, interval 1, probability 0, space 0, times 0
[  341.259349][T19010] CPU: 0 UID: 0 PID: 19010 Comm: syz.4.5144 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  341.269882][T19010] Tainted: [W]=WARN
[  341.273676][T19010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  341.283788][T19010] Call Trace:
[  341.287066][T19010]  <TASK>
[  341.289995][T19010]  dump_stack_lvl+0xf2/0x150
[  341.294597][T19010]  dump_stack+0x15/0x20
[  341.298779][T19010]  should_fail_ex+0x223/0x230
[  341.303545][T19010]  ? ext4_mb_new_blocks+0x2fc/0x2020
[  341.308851][T19010]  should_failslab+0x8f/0xb0
[  341.313444][T19010]  kmem_cache_alloc_noprof+0x4c/0x290
[  341.318835][T19010]  ? ext4_mb_new_blocks+0x1031/0x2020
[  341.324216][T19010]  ext4_mb_new_blocks+0x2fc/0x2020
[  341.329367][T19010]  ? __kmalloc_noprof+0x165/0x370
[  341.334496][T19010]  ? ext4_inode_to_goal_block+0x1cb/0x1f0
[  341.340230][T19010]  ext4_ext_map_blocks+0x1008/0x35c0
[  341.345559][T19010]  ? from_kprojid+0x102/0x390
[  341.350240][T19010]  ? mark_buffer_dirty+0x122/0x250
[  341.355420][T19010]  ? ext4_map_query_blocks+0x10e/0x180
[  341.360911][T19010]  ext4_map_blocks+0x592/0xcf0
[  341.365697][T19010]  ext4_convert_inline_data_nolock+0x2b2/0x780
[  341.371855][T19010]  ? ext4_journal_check_start+0xf3/0x180
[  341.377478][T19010]  ? __ext4_journal_start_sb+0x130/0x340
[  341.383130][T19010]  ext4_convert_inline_data+0x2c2/0x370
[  341.388715][T19010]  ext4_fallocate+0xac/0x1170
[  341.393382][T19010]  vfs_fallocate+0x368/0x3b0
[  341.397996][T19010]  __x64_sys_fallocate+0x79/0xc0
[  341.402945][T19010]  x64_sys_call+0x2783/0x2d60
[  341.407628][T19010]  do_syscall_64+0xc9/0x1c0
[  341.412151][T19010]  ? clear_bhb_loop+0x55/0xb0
[  341.416830][T19010]  ? clear_bhb_loop+0x55/0xb0
[  341.421568][T19010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.427564][T19010] RIP: 0033:0x7f32b37be719
[  341.432098][T19010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.451734][T19010] RSP: 002b:00007f32b2431038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  341.454855][T19017] loop0: detected capacity change from 0 to 512
[  341.460134][T19010] RAX: ffffffffffffffda RBX: 00007f32b3975f80 RCX: 00007f32b37be719
[  341.460151][T19010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  341.460164][T19010] RBP: 00007f32b2431090 R08: 0000000000000000 R09: 0000000000000000
[  341.467599][T19017] EXT4-fs: Ignoring removed nomblk_io_submit option
[  341.474328][T19010] R10: 00000000001001f0 R11: 0000000000000246 R12: 0000000000000001
[  341.474343][T19010] R13: 0000000000000000 R14: 00007f32b3975f80 R15: 00007ffe72408f48
[  341.498197][T19020] loop9: detected capacity change from 0 to 128
[  341.504857][T19010]  </TASK>
[  341.511721][T19017] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  341.530289][T19017] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842c01c, mo2=0002]
[  341.537445][T19020] ext4 filesystem being mounted at /431/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.539733][T19017] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  341.558148][T19017] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[  341.567866][T19017] FAULT_INJECTION: forcing a failure.
[  341.567866][T19017] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  341.580949][T19017] CPU: 1 UID: 0 PID: 19017 Comm: syz.0.5145 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  341.591497][T19017] Tainted: [W]=WARN
[  341.595285][T19017] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  341.605376][T19017] Call Trace:
[  341.608648][T19017]  <TASK>
[  341.611572][T19017]  dump_stack_lvl+0xf2/0x150
[  341.616158][T19017]  dump_stack+0x15/0x20
[  341.620359][T19017]  should_fail_ex+0x223/0x230
[  341.625067][T19017]  should_fail+0xb/0x10
[  341.629220][T19017]  should_fail_usercopy+0x1a/0x20
[  341.634293][T19017]  _copy_to_user+0x20/0xa0
[  341.638835][T19017]  simple_read_from_buffer+0xa0/0x110
[  341.644206][T19017]  proc_fail_nth_read+0xf9/0x140
[  341.649142][T19017]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  341.654768][T19017]  vfs_read+0x1a2/0x700
[  341.658941][T19017]  ? __fget_files+0x1d4/0x210
[  341.663689][T19017]  ksys_read+0xeb/0x1b0
[  341.667945][T19017]  __x64_sys_read+0x42/0x50
[  341.672445][T19017]  x64_sys_call+0x27d3/0x2d60
[  341.677118][T19017]  do_syscall_64+0xc9/0x1c0
[  341.681614][T19017]  ? clear_bhb_loop+0x55/0xb0
[  341.686286][T19017]  ? clear_bhb_loop+0x55/0xb0
[  341.690953][T19017]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.696859][T19017] RIP: 0033:0x7fa9fd39d15c
[  341.701267][T19017] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  341.720945][T19017] RSP: 002b:00007fa9fc011030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  341.729349][T19017] RAX: ffffffffffffffda RBX: 00007fa9fd555f80 RCX: 00007fa9fd39d15c
[  341.737316][T19017] RDX: 000000000000000f RSI: 00007fa9fc0110a0 RDI: 0000000000000005
[  341.745334][T19017] RBP: 00007fa9fc011090 R08: 0000000000000000 R09: 0000000000000000
[  341.753300][T19017] R10: 00000000200001c0 R11: 0000000000000246 R12: 0000000000000001
[  341.761334][T19017] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  341.769303][T19017]  </TASK>
[  341.813303][T19032] loop9: detected capacity change from 0 to 128
[  341.819429][T19026] lo speed is unknown, defaulting to 1000
[  341.829608][T19028] __nla_validate_parse: 29 callbacks suppressed
[  341.829625][T19028] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5151'.
[  341.869622][T19028] loop3: detected capacity change from 0 to 512
[  341.872874][T19036] loop0: detected capacity change from 0 to 512
[  341.902708][T19045] FAULT_INJECTION: forcing a failure.
[  341.902708][T19045] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  341.904470][T19044] loop4: detected capacity change from 0 to 512
[  341.915873][T19045] CPU: 1 UID: 0 PID: 19045 Comm: syz.9.5156 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  341.932562][T19045] Tainted: [W]=WARN
[  341.936362][T19045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  341.937291][T19036] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5155: bg 0: block 35: padding at end of block bitmap is not set
[  341.946409][T19045] Call Trace:
[  341.961438][T19044] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.5157: corrupted xattr block 255: invalid header
[  341.963814][T19045]  <TASK>
[  341.963824][T19045]  dump_stack_lvl+0xf2/0x150
[  341.977938][T19036] EXT4-fs (loop0): Remounting filesystem read-only
[  341.979834][T19045]  dump_stack+0x15/0x20
[  341.984735][T19044] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  341.990868][T19045]  should_fail_ex+0x223/0x230
[  341.990902][T19045]  should_fail+0xb/0x10
[  341.995811][T19036] EXT4-fs (loop0): 1 truncate cleaned up
[  342.003196][T19045]  should_fail_usercopy+0x1a/0x20
[  342.008511][T19044] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.5157: corrupted xattr block 255: invalid header
[  342.011976][T19045]  _copy_from_user+0x1e/0xb0
[  342.018704][T19036] SELinux: (dev loop0, type ext4) getxattr errno 5
[  342.022583][T19045]  __se_sys_add_key+0x1ec/0x320
[  342.022648][T19045]  ? fput+0x14e/0x190
[  342.036858][T19044] SELinux: (dev loop4, type ext4) getxattr errno 117
[  342.040278][T19045]  __x64_sys_add_key+0x67/0x80
[  342.067239][T19045]  x64_sys_call+0x157d/0x2d60
[  342.071915][T19045]  do_syscall_64+0xc9/0x1c0
[  342.076416][T19045]  ? clear_bhb_loop+0x55/0xb0
[  342.081086][T19045]  ? clear_bhb_loop+0x55/0xb0
[  342.085885][T19045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.091831][T19045] RIP: 0033:0x7ff46c37e719
[  342.096236][T19045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.115833][T19045] RSP: 002b:00007ff46aff7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  342.124251][T19045] RAX: ffffffffffffffda RBX: 00007ff46c535f80 RCX: 00007ff46c37e719
[  342.132312][T19045] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000020000100
[  342.140274][T19045] RBP: 00007ff46aff7090 R08: 0000000017d49ba1 R09: 0000000000000000
[  342.148292][T19045] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  342.156280][T19045] R13: 0000000000000000 R14: 00007ff46c535f80 R15: 00007fff32ba47d8
[  342.164308][T19045]  </TASK>
[  342.186844][T19051] netlink: 52 bytes leftover after parsing attributes in process `syz.8.5158'.
[  342.197600][T19044] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5157'.
[  342.206655][T19044] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5157'.
[  342.222380][T19044] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5157'.
[  342.248944][T19053] lo speed is unknown, defaulting to 1000
[  342.253235][T19059] loop8: detected capacity change from 0 to 512
[  342.261347][T19059] EXT4-fs: Ignoring removed i_version option
[  342.286061][T19059] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  342.288393][T19053] loop3: detected capacity change from 0 to 512
[  342.302483][T19059] EXT4-fs (loop8): 1 truncate cleaned up
[  342.321613][T19059] FAULT_INJECTION: forcing a failure.
[  342.321613][T19059] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  342.334755][T19059] CPU: 0 UID: 0 PID: 19059 Comm: syz.8.5162 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  342.340693][T19053] EXT4-fs: Ignoring removed i_version option
[  342.345275][T19059] Tainted: [W]=WARN
[  342.345283][T19059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  342.345294][T19059] Call Trace:
[  342.345307][T19059]  <TASK>
[  342.345314][T19059]  dump_stack_lvl+0xf2/0x150
[  342.345340][T19059]  dump_stack+0x15/0x20
[  342.345418][T19059]  should_fail_ex+0x223/0x230
[  342.353722][T19067] loop9: detected capacity change from 0 to 512
[  342.355111][T19059]  should_fail+0xb/0x10
[  342.395214][T19059]  should_fail_usercopy+0x1a/0x20
[  342.400233][T19059]  _copy_to_user+0x20/0xa0
[  342.404710][T19059]  simple_read_from_buffer+0xa0/0x110
[  342.410128][T19059]  proc_fail_nth_read+0xf9/0x140
[  342.415120][T19059]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  342.420708][T19059]  vfs_read+0x1a2/0x700
[  342.424862][T19059]  ? __fget_files+0x1d4/0x210
[  342.429531][T19059]  ksys_read+0xeb/0x1b0
[  342.433690][T19059]  __x64_sys_read+0x42/0x50
[  342.438234][T19059]  x64_sys_call+0x27d3/0x2d60
[  342.442955][T19059]  do_syscall_64+0xc9/0x1c0
[  342.447487][T19059]  ? clear_bhb_loop+0x55/0xb0
[  342.452158][T19059]  ? clear_bhb_loop+0x55/0xb0
[  342.456825][T19059]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.462723][T19059] RIP: 0033:0x7f056826d15c
[  342.467126][T19059] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  342.486827][T19059] RSP: 002b:00007f0566ee7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  342.495411][T19059] RAX: ffffffffffffffda RBX: 00007f0568425f80 RCX: 00007f056826d15c
[  342.503381][T19059] RDX: 000000000000000f RSI: 00007f0566ee70a0 RDI: 0000000000000009
[  342.511343][T19059] RBP: 00007f0566ee7090 R08: 0000000000000000 R09: 0000000000000000
[  342.519304][T19059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.527269][T19059] R13: 0000000000000000 R14: 00007f0568425f80 R15: 00007ffd49ebf4e8
[  342.535264][T19059]  </TASK>
[  342.550631][T19053] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  342.553100][T19067] ext4 filesystem being mounted at /434/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  342.581587][T19075] loop8: detected capacity change from 0 to 128
[  342.601854][T19053] EXT4-fs (loop3): 1 truncate cleaned up
[  342.609180][T19070] netlink: 52 bytes leftover after parsing attributes in process `syz.4.5166'.
[  342.620396][T19067] atomic_op ffff888104de1528 conn xmit_atomic 0000000000000000
[  342.658178][T19070] bond1: entered promiscuous mode
[  342.659468][T19083] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5169'.
[  342.663208][T19070] bond1: entered allmulticast mode
[  342.666511][T19070] 8021q: adding VLAN 0 to HW filter on device bond1
[  342.690138][T19070] bond1 (unregistering): Released all slaves
[  342.728505][T19089] FAULT_INJECTION: forcing a failure.
[  342.728505][T19089] name failslab, interval 1, probability 0, space 0, times 0
[  342.741287][T19089] CPU: 0 UID: 0 PID: 19089 Comm: syz.8.5172 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  342.751846][T19089] Tainted: [W]=WARN
[  342.755665][T19089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  342.765717][T19089] Call Trace:
[  342.768994][T19089]  <TASK>
[  342.772031][T19089]  dump_stack_lvl+0xf2/0x150
[  342.776630][T19089]  dump_stack+0x15/0x20
[  342.780856][T19089]  should_fail_ex+0x223/0x230
[  342.785581][T19089]  ? audit_log_d_path+0x96/0x250
[  342.790520][T19089]  should_failslab+0x8f/0xb0
[  342.795108][T19089]  __kmalloc_cache_noprof+0x4b/0x2a0
[  342.800405][T19089]  audit_log_d_path+0x96/0x250
[  342.805245][T19089]  ? get_file_rcu+0xeb/0x100
[  342.809915][T19089]  ? __rcu_read_unlock+0x4e/0x70
[  342.814864][T19089]  audit_log_d_path_exe+0x42/0x70
[  342.819966][T19089]  audit_log_task+0x155/0x180
[  342.824652][T19089]  audit_seccomp+0x68/0x130
[  342.829154][T19089]  __seccomp_filter+0x6fa/0x1180
[  342.834097][T19089]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  342.839733][T19089]  ? vfs_write+0x596/0x920
[  342.844166][T19089]  ? __schedule+0x6fa/0x930
[  342.848685][T19089]  __secure_computing+0x9f/0x1c0
[  342.853631][T19089]  syscall_trace_enter+0xd1/0x1f0
[  342.858670][T19089]  do_syscall_64+0xaa/0x1c0
[  342.863212][T19089]  ? clear_bhb_loop+0x55/0xb0
[  342.867934][T19089]  ? clear_bhb_loop+0x55/0xb0
[  342.872617][T19089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.878586][T19089] RIP: 0033:0x7f056826e719
[  342.883070][T19089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.902685][T19089] RSP: 002b:00007f0566ee7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  342.911103][T19089] RAX: ffffffffffffffda RBX: 00007f0568425f80 RCX: 00007f056826e719
[  342.919071][T19089] RDX: 0000000020000040 RSI: 0000000000000001 RDI: 0000000000000000
[  342.927065][T19089] RBP: 00007f0566ee7090 R08: 0000000020000000 R09: 0000000000000000
[  342.935043][T19089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.943013][T19089] R13: 0000000000000000 R14: 00007f0568425f80 R15: 00007ffd49ebf4e8
[  342.950981][T19089]  </TASK>
[  342.994387][T19093] netlink: 52 bytes leftover after parsing attributes in process `syz.3.5171'.
[  343.089585][T19111] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5181'.
[  343.090808][T19109] loop8: detected capacity change from 0 to 128
[  343.104888][T19108] loop4: detected capacity change from 0 to 512
[  343.127083][T19108] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5180: bg 0: block 35: padding at end of block bitmap is not set
[  343.163692][T19108] EXT4-fs (loop4): Remounting filesystem read-only
[  343.171435][T19116] loop8: detected capacity change from 0 to 128
[  343.178521][T19114] loop0: detected capacity change from 0 to 512
[  343.195660][T19108] EXT4-fs (loop4): 1 truncate cleaned up
[  343.201707][T19108] SELinux: (dev loop4, type ext4) getxattr errno 5
[  343.229497][T19114] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5182: bg 0: block 35: padding at end of block bitmap is not set
[  343.251164][T19114] EXT4-fs (loop0): Remounting filesystem read-only
[  343.261874][T19114] EXT4-fs (loop0): 1 truncate cleaned up
[  343.265014][T19108] loop4: detected capacity change from 0 to 512
[  343.268130][T19114] EXT4-fs mount: 132 callbacks suppressed
[  343.268143][T19114] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  343.292364][T19114] SELinux: (dev loop0, type ext4) getxattr errno 5
[  343.300129][T19108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.305710][T19114] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.320308][T19108] ext4 filesystem being mounted at /361/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.336407][T19108] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  343.370154][T19121] netlink: 52 bytes leftover after parsing attributes in process `syz.3.5184'.
[  343.389588][T13592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.396221][T19122] syz.8.5183: attempt to access beyond end of device
[  343.396221][T19122] loop8: rw=2049, sector=129, nr_sectors = 128 limit=128
[  343.404265][T19121] bond2: entered promiscuous mode
[  343.417264][T19121] bond2: entered allmulticast mode
[  343.422565][T19121] 8021q: adding VLAN 0 to HW filter on device bond2
[  343.426857][T19129] SELinux:  Context :yz1 is not valid (left unmapped).
[  343.439073][T19121] bond2 (unregistering): Released all slaves
[  343.444301][T19131] loop0: detected capacity change from 0 to 512
[  343.465512][T19131] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.478407][T19131] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  343.498512][T19114] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  343.526975][T13587] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.601391][T19152] lo speed is unknown, defaulting to 1000
[  343.626112][T19154] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  343.632676][T19154] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  343.640107][T19154] vhci_hcd vhci_hcd.0: Device attached
[  343.647277][T19155] vhci_hcd: connection closed
[  343.647491][ T3424] vhci_hcd: stop threads
[  343.656487][ T3424] vhci_hcd: release socket
[  343.660958][ T3424] vhci_hcd: disconnect device
[  343.680120][T19158] bond2: entered promiscuous mode
[  343.685291][T19158] bond2: entered allmulticast mode
[  343.690644][T19158] 8021q: adding VLAN 0 to HW filter on device bond2
[  343.700297][T19158] bond2 (unregistering): Released all slaves
[  343.837596][T19178] tipc: Started in network mode
[  343.842495][T19178] tipc: Node identity 0000000000003a000000000000000001, cluster identity 4711
[  343.851446][T19178] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  344.075396][   T40] kworker/u8:2: attempt to access beyond end of device
[  344.075396][   T40] loop8: rw=1, sector=257, nr_sectors = 784 limit=128
[  344.102793][T19199] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  344.183036][T19211] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  344.237431][T19220] loop4: detected capacity change from 0 to 512
[  344.257320][T19220] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  344.270077][T19220] ext4 filesystem being mounted at /368/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.307793][T13592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.337571][T19229] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  344.409485][T19239] loop3: detected capacity change from 0 to 128
[  344.467395][T19247] FAULT_INJECTION: forcing a failure.
[  344.467395][T19247] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.480597][T19247] CPU: 1 UID: 0 PID: 19247 Comm: syz.0.5232 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  344.491149][T19247] Tainted: [W]=WARN
[  344.494965][T19247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  344.505048][T19247] Call Trace:
[  344.508327][T19247]  <TASK>
[  344.511261][T19247]  dump_stack_lvl+0xf2/0x150
[  344.515868][T19247]  dump_stack+0x15/0x20
[  344.520119][T19247]  should_fail_ex+0x223/0x230
[  344.524813][T19247]  should_fail+0xb/0x10
[  344.529075][T19247]  should_fail_usercopy+0x1a/0x20
[  344.534155][T19247]  _copy_from_user+0x1e/0xb0
[  344.538749][T19247]  copy_msghdr_from_user+0x54/0x2a0
[  344.544003][T19247]  __sys_sendmsg+0x171/0x270
[  344.548627][T19247]  __x64_sys_sendmsg+0x46/0x50
[  344.553398][T19247]  x64_sys_call+0x2689/0x2d60
[  344.558094][T19247]  do_syscall_64+0xc9/0x1c0
[  344.562613][T19247]  ? clear_bhb_loop+0x55/0xb0
[  344.567338][T19247]  ? clear_bhb_loop+0x55/0xb0
[  344.572026][T19247]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.577986][T19247] RIP: 0033:0x7fa9fd39e719
[  344.582400][T19247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.602065][T19247] RSP: 002b:00007fa9fc011038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.610488][T19247] RAX: ffffffffffffffda RBX: 00007fa9fd555f80 RCX: 00007fa9fd39e719
[  344.618466][T19247] RDX: 0000000000008000 RSI: 0000000020000100 RDI: 0000000000000006
[  344.626440][T19247] RBP: 00007fa9fc011090 R08: 0000000000000000 R09: 0000000000000000
[  344.634415][T19247] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.642394][T19247] R13: 0000000000000000 R14: 00007fa9fd555f80 R15: 00007fff0966e638
[  344.650380][T19247]  </TASK>
[  344.708531][T19258] lo speed is unknown, defaulting to 1000
[  344.847077][T19186] loop9: detected capacity change from 0 to 8192
[  344.859343][T19186] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  344.977890][T19268] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  345.036857][T19276] lo speed is unknown, defaulting to 1000
[  345.060821][T19284] loop9: detected capacity change from 0 to 512
[  345.075342][T19284] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.087929][T19284] ext4 filesystem being mounted at /445/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  345.113845][T19284] EXT4-fs error (device loop9): ext4_do_update_inode:5121: inode #2: comm syz.9.5244: corrupted inode contents
[  345.126564][T19284] EXT4-fs error (device loop9): ext4_dirty_inode:5984: inode #2: comm syz.9.5244: mark_inode_dirty error
[  345.138138][T19284] EXT4-fs error (device loop9): ext4_do_update_inode:5121: inode #2: comm syz.9.5244: corrupted inode contents
[  345.151560][T19284] EXT4-fs error (device loop9): __ext4_ext_dirty:207: inode #2: comm syz.9.5244: mark_inode_dirty error
[  345.191239][   T29] kauditd_printk_skb: 894 callbacks suppressed
[  345.191259][   T29] audit: type=1400 audit(1731397057.880:35918): avc:  denied  { rename } for  pid=19283 comm="syz.9.5244" name="file0" dev="loop9" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  345.232683][T13532] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.258474][   T40] kworker/u8:2: attempt to access beyond end of device
[  345.258474][   T40] loop3: rw=1, sector=129, nr_sectors = 912 limit=128
[  345.296150][T19298] FAULT_INJECTION: forcing a failure.
[  345.296150][T19298] name failslab, interval 1, probability 0, space 0, times 0
[  345.308831][T19298] CPU: 0 UID: 0 PID: 19298 Comm: syz.3.5248 Tainted: G        W          6.12.0-rc7-syzkaller #0
[  345.319343][T19298] Tainted: [W]=WARN
[  345.323179][T19298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  345.333239][T19298] Call Trace:
[  345.336526][T19298]  <TASK>
[  345.339454][T19298]  dump_stack_lvl+0xf2/0x150
[  345.344051][T19298]  dump_stack+0x15/0x20
[  345.348227][T19298]  should_fail_ex+0x223/0x230
[  345.352961][T19298]  ? getname_flags+0x81/0x3b0
[  345.357647][T19298]  should_failslab+0x8f/0xb0
[  345.362287][T19298]  kmem_cache_alloc_noprof+0x4c/0x290
[  345.367698][T19298]  getname_flags+0x81/0x3b0
[  345.372220][T19298]  user_path_at+0x26/0x110
[  345.376698][T19298]  __se_sys_move_mount+0xfd/0x730
[  345.381804][T19298]  ? fput+0x14e/0x190
[  345.385827][T19298]  __x64_sys_move_mount+0x67/0x80
[  345.390999][T19298]  x64_sys_call+0x1b80/0x2d60
[  345.395760][T19298]  do_syscall_64+0xc9/0x1c0
[  345.400278][T19298]  ? clear_bhb_loop+0x55/0xb0
[  345.404949][T19298]  ? clear_bhb_loop+0x55/0xb0
[  345.409698][T19298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.415615][T19298] RIP: 0033:0x7fa7f01de719
[  345.420034][T19298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.439641][T19298] RSP: 002b:00007fa7eee57038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[  345.448094][T19298] RAX: ffffffffffffffda RBX: 00007fa7f0395f80 RCX: 00007fa7f01de719
[  345.456106][T19298] RDX: ffffffffffffff9c RSI: 0000000020000140 RDI: 0000000000000004
[  345.464138][T19298] RBP: 00007fa7eee57090 R08: 0000000000000000 R09: 0000000000000000
[  345.472112][T19298] R10: 0000000020000180 R11: 0000000000000246 R12: 0000000000000001
[  345.480165][T19298] R13: 0000000000000000 R14: 00007fa7f0395f80 R15: 00007ffce70b76a8
[  345.488147][T19298]  </TASK>
[  345.526309][T19302] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  345.618976][   T29] audit: type=1326 audit(1731397058.310:35919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.636858][T19312] lo speed is unknown, defaulting to 1000
[  345.666553][T19309] loop3: detected capacity change from 0 to 512
[  345.674572][   T29] audit: type=1326 audit(1731397058.340:35920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.698229][   T29] audit: type=1326 audit(1731397058.340:35921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.721967][   T29] audit: type=1326 audit(1731397058.340:35922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.745637][   T29] audit: type=1326 audit(1731397058.340:35923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.752387][T19309] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5253: bg 0: block 35: padding at end of block bitmap is not set
[  345.769267][   T29] audit: type=1326 audit(1731397058.340:35924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.784400][T19309] EXT4-fs (loop3): Remounting filesystem read-only
[  345.806748][   T29] audit: type=1326 audit(1731397058.340:35925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.814516][T19309] EXT4-fs (loop3): 1 truncate cleaned up
[  345.836838][   T29] audit: type=1326 audit(1731397058.340:35926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.843629][T19309] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  345.865898][   T29] audit: type=1326 audit(1731397058.340:35927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19308 comm="syz.3.5253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f01de719 code=0x7ffc0000
[  345.893545][T19314] loop4: detected capacity change from 0 to 512
[  345.908983][T19324] bpf_get_probe_write_proto: 2 callbacks suppressed
[  345.908995][T19324] syz.0.5257[19324] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.910379][T19309] SELinux: (dev loop3, type ext4) getxattr errno 5
[  345.915803][T19324] syz.0.5257[19324] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.934772][T19309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.949473][T19324] syz.0.5257[19324] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  345.973182][T19314] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5254: bg 0: block 35: padding at end of block bitmap is not set
[  346.012908][T19314] EXT4-fs (loop4): Remounting filesystem read-only
[  346.019583][T19314] EXT4-fs (loop4): 1 truncate cleaned up
[  346.025910][T19314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  346.036806][T19324] loop0: detected capacity change from 0 to 256
[  346.038208][T19314] SELinux: (dev loop4, type ext4) getxattr errno 5
[  346.053935][T19331] loop3: detected capacity change from 0 to 512
[  346.061369][T19314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.074781][T19324] Process accounting resumed
[  346.079518][T19324] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.083360][T19331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.089625][T19324] FAT-fs (loop0): Filesystem has been set read-only
[  346.113630][T19331] ext4 filesystem being mounted at /473/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.143207][T19324] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.157945][T19309] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  346.165769][T19314] loop4: detected capacity change from 0 to 512
[  346.179907][T19338] tipc: Started in network mode
[  346.184838][T19338] tipc: Node identity 0000000000003a000000000000000001, cluster identity 4711
[  346.193726][T19338] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  346.205107][T19314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  346.220232][T19314] ext4 filesystem being mounted at /373/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.231636][T13550] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.234174][T19314] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  346.255258][T13550] ==================================================================
[  346.263347][T13550] BUG: KCSAN: data-race in __find_get_block / has_bh_in_lru
[  346.270654][T13550] 
[  346.272971][T13550] read-write to 0xffff888237c2bb10 of 8 bytes by task 19314 on cpu 0:
[  346.281109][T13550]  __find_get_block+0x434/0x8a0
[  346.285957][T13550]  bdev_getblk+0x30/0x3b0
[  346.290278][T13550]  ext4_getblk+0x1b4/0x500
[  346.294687][T13550]  ext4_bread+0x2c/0x110
[  346.298921][T13550]  ext4_quota_write+0x15a/0x370
[  346.303775][T13550]  qtree_write_dquot+0x14f/0x320
[  346.308701][T13550]  v2_write_dquot+0xd3/0x130
[  346.313289][T13550]  dquot_commit+0x219/0x260
[  346.317785][T13550]  ext4_write_dquot+0x129/0x1d0
[  346.322642][T13550]  ext4_mark_dquot_dirty+0x94/0xd0
[  346.327741][T13550]  __dquot_free_space+0x4f1/0x7f0
[  346.332760][T13550]  ext4_mb_new_blocks+0x1641/0x2020
[  346.337959][T13550]  ext4_new_meta_blocks+0xc1/0x1a0
[  346.343068][T13550]  ext4_xattr_block_set+0x1349/0x1ca0
[  346.348434][T13550]  ext4_xattr_set_handle+0x8ac/0xbf0
[  346.353711][T13550]  ext4_xattr_set+0x197/0x250
[  346.358377][T13550]  ext4_xattr_security_set+0x3c/0x50
[  346.363660][T13550]  __vfs_setxattr+0x2e5/0x310
[  346.368334][T13550]  __vfs_setxattr_noperm+0xed/0x420
[  346.373532][T13550]  __vfs_setxattr_locked+0x1af/0x1d0
[  346.378812][T13550]  vfs_setxattr+0x140/0x290
[  346.383313][T13550]  path_setxattr+0x26d/0x360
[  346.387893][T13550]  __x64_sys_lsetxattr+0x6a/0x80
[  346.392829][T13550]  x64_sys_call+0x2931/0x2d60
[  346.397499][T13550]  do_syscall_64+0xc9/0x1c0
[  346.401994][T13550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.407888][T13550] 
[  346.410202][T13550] read to 0xffff888237c2bb10 of 8 bytes by task 13550 on cpu 1:
[  346.417829][T13550]  has_bh_in_lru+0x35/0x1f0
[  346.422331][T13550]  __lru_add_drain_all+0x23f/0x3f0
[  346.427444][T13550]  lru_add_drain_all+0x10/0x20
[  346.432206][T13550]  invalidate_bdev+0x47/0x70
[  346.436796][T13550]  ext4_put_super+0x571/0x840
[  346.441505][T13550]  generic_shutdown_super+0xe5/0x220
[  346.446788][T13550]  kill_block_super+0x2a/0x70
[  346.451472][T13550]  ext4_kill_sb+0x44/0x80
[  346.455799][T13550]  deactivate_locked_super+0x7d/0x1c0
[  346.461170][T13550]  deactivate_super+0x9f/0xb0
[  346.465847][T13550]  cleanup_mnt+0x268/0x2e0
[  346.470255][T13550]  __cleanup_mnt+0x19/0x20
[  346.474662][T13550]  task_work_run+0x13a/0x1a0
[  346.479247][T13550]  syscall_exit_to_user_mode+0xbe/0x130
[  346.484784][T13550]  do_syscall_64+0xd6/0x1c0
[  346.489283][T13550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.495179][T13550] 
[  346.497488][T13550] value changed: 0x0000000000000000 -> 0xffff888106893c30
[  346.504580][T13550] 
[  346.506890][T13550] Reported by Kernel Concurrency Sanitizer on:
[  346.513025][T13550] CPU: 1 UID: 0 PID: 13550 Comm: syz-executor Tainted: G        W          6.12.0-rc7-syzkaller #0
[  346.523690][T13550] Tainted: [W]=WARN
[  346.527478][T13550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  346.537519][T13550] ==================================================================
[  346.556337][T19343] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT
[  346.578787][T13592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.