last executing test programs:

3.45249787s ago: executing program 0 (id=555):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0, 0x0, 0x8000000000000001}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

3.399859671s ago: executing program 0 (id=558):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}}}, 0x1c}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r4)

3.229868483s ago: executing program 0 (id=559):
unshare(0x22020600)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r0 = syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x400, &(0x7f0000000100)={[{@discard}, {@errors_remount}]}, 0xfe, 0x571, &(0x7f00000003c0)="$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")
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYRES64=r0], 0x0)
mount$cgroup(0x0, &(0x7f0000000980)='./file0\x00', &(0x7f0000000a40), 0x4004, &(0x7f0000000b40)={[{@name={'name', 0x3d, '/dev/net/tun\x00'}}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
mq_notify(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702008bd4000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4f, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
syslog(0x2, &(0x7f0000000180)=""/85, 0x55)

3.229231743s ago: executing program 2 (id=560):
r0 = memfd_create(&(0x7f0000000480)='\xd1\xbd\x01\x9b\xd4\n\xa6\xb7\xa9kE\x10Bx\xd0\x05\xe9\xd57\xc9\xc3\tC8\xa0F\x91\x9e\x98\x17\xa9\xb7\xc5<V+K\xd4A\x9e\xc6:\xd8z\x05\xe0O\xf4\x0e\x91\xc9\x82oT$9\xbb\xb5g2V\x89\xdbT5d\xa8\x86\x1b\x91\xde8v\xd4~\xd224\xec\x86\xfb8\xfb[\xbd5?\x10\x18bz\x1d(\xa0o\x00\x1aE\x96\x1d\x0f\xd7\x8b\xcd\xd9\xdfG\xab\xdf\xf8 \x1c\a\xd9\xc8\xa0@\xbal\x8c#!q>\xac\xafv\xff\x81/\x00\x98\x89\xeb\xb1Ot\xc5h\xc4f\xdf\x832\xc3\x9bW\x89<7\xf9\xfc\xf8\x89\x1e\xe5\xf6.\xa0\xfc\xc7\xf3\x01,\x17\xd4\xec3\x17\xe8x\xca?H\x813\xc0o57d\x82 \x89K\x14Dr\xe4\xc0K2\xd7\x12bu\x9ao\xf8H\xa6\xbf\xea\x11T\xcf*\x10\x9d', 0x4)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x13, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
fstatfs(r0, &(0x7f00000003c0)=""/146)
bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x61980, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
inotify_init1(0x800)
r2 = io_uring_setup(0x6f2f, &(0x7f00000002c0)={0x0, 0x23dc, 0x0, 0x800002, 0x3ca})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r2, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r2, 0xe, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000040)=[{0x0, 0xffffffff00000005}], &(0x7f0000000180)=[0xffffffff, 0x7fffffff, 0x2, 0x6, 0x101, 0x1], 0x7}, 0x20)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = open(&(0x7f0000000280)='.\x00', 0x20000, 0x0)
fcntl$notify(r4, 0x402, 0x5)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0xc)

3.112917925s ago: executing program 2 (id=563):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt(r2, 0x3, 0x9, &(0x7f0000000c00)=""/4096, &(0x7f0000000180)=0x1000)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r6=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000fdffffff0c0000000c00018008000100", @ANYRES32=r6, @ANYBLOB="18000380140003800c0001800800010006000000"], 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = getpid()
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r2)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getpeername(r3, &(0x7f0000000340), &(0x7f00000001c0)=0x80)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$DEVLINK_CMD_RELOAD(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r9, 0x1, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r7}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)

3.036663286s ago: executing program 1 (id=564):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x3c56, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000740)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)='%-010d \x00'}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r1], 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0d000081ecfda60004000000132237cefc307a5bc90ca0069d04d87a7a", @ANYRES32=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r2, 0x0, 0x8000000}, 0x27)
r3 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0xf)
r7 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r7, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000530464"], 0x14}, 0x1, 0x0, 0x0, 0x24000841}, 0x4008840)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r8, &(0x7f0000000340)={0x0, 0xffffffffffffff8e, &(0x7f0000000480)={&(0x7f0000000b40)={0x24, r9, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8}]}]}]}, 0x24}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_NOTIFY(0xffffffffffffffff, &(0x7f0000000200)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x11}}, 0x10)
sendmsg$NL80211_CMD_START_AP(r5, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r9, 0x10, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x4004044)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x64, r10, 0x2, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "79ac4f73aced2e86aad38c8b8f5e8c5702f85a78b31a828c"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}], @NL80211_ATTR_4ADDR={0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0xc000)

3.035833136s ago: executing program 2 (id=565):
socket$rxrpc(0x21, 0x2, 0xa)
io_submit(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
r2 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x4})
mq_getsetattr(r2, &(0x7f0000000700)={0x800, 0x10, 0x9}, 0x0)
mq_timedreceive(r2, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdfe, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000004c0)='kfree\x00', r3}, 0x18)
r4 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_FLAG(r4, 0x6, 0x0, 0x0, 0x0)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085000000010000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xc890, 0x4002}, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000400)="67d8901bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c14498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d3abc8a75ac1f30e53a0eff506f6e6b369ba6c5306e91acaa94e89d3bff4e52cd151235f3defff171c60b91c0c5aeb29736830a09b262dbe4c7ed149885a054de1d7ff5bcecd7a50061814ceefb", 0x9d}, {&(0x7f0000000900)="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", 0x3e4}], 0x2}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
syz_init_net_socket$llc(0x1a, 0x3, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)

3.035144416s ago: executing program 1 (id=566):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r1}, 0x18)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000100)=@generic={&(0x7f00000000c0)='./file0\x00', r1}, 0x18)

3.019459636s ago: executing program 1 (id=567):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0x20000000000003c3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0xfd, 0x0, 0x1, 0xe4, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x73b0fd59, 0x1}, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x8000000, 0x0, 0x10000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x89f1, &(0x7f0000000080))
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffff000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000e, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kfree\x00', r7, 0x0, 0x101}, 0x18)
pipe2(&(0x7f0000000c40)={0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x4800)
fcntl$setpipe(r8, 0x407, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r9, &(0x7f0000000280)={0x2, 0x4e24, @broadcast}, 0x10)
listen(r9, 0x8)
r10 = accept4(r9, 0x0, 0x0, 0x0)
sendto$inet(r10, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r10, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
sendmsg$key(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[], 0xfffffffffffffd37}}, 0x40080)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYRES32=r1, @ANYRES8=r3, @ANYRES8=r6], 0x0, 0x1, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)

2.934911438s ago: executing program 1 (id=568):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x80, 0x7})
fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x80000000})

2.934298068s ago: executing program 1 (id=569):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_io_uring_setup(0x72ae, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = socket$netlink(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket(0x28, 0x5, 0x0)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
r6 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000240)={'team0\x00', <r7=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r6, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r7}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r8, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
shutdown(r8, 0x1)

2.870151178s ago: executing program 0 (id=571):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
r0 = socket$kcm(0xa, 0x2, 0x73)
sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0x10, &(0x7f0000001240)=[{&(0x7f0000000040)="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", 0x1000}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x14, 0x29, 0x37}}, @ip_tos_u8={{0x11, 0x29, 0x3b}}, @ip_ttl={{0x14, 0x0, 0x2, 0x4}}], 0x48}, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8205, &(0x7f0000001340)={[{@bh}, {@stripe}, {@grpid}, {@block_validity}, {@data_err_ignore}, {@noblock_validity}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x13}}]}, 0x1, 0x60a, &(0x7f0000001c40)="$eJzs3c9rHNcdAPDvzEqqZKuVXYqpTUsFPdhQrB+uqduebF/qg6GG+lBCDhaW5AivbGHJEDuGyJBDAgmEkGsIvuQfyD2YXHMLgSS3nANOCA45JMEbZnbHXla78lrR/pDn84FZvXkzu+999+lp3uzo7QRQWtPZQxpxOCIuJRFTTdsmo75xurHfw+/uXM6WJGq1/32bRNLIK/Z/1Pi5P3tIIsYj4tOzEb+vbC13/dbtqwvVWt2rEbMbq2uz67duH19ZXbiydGXp2vyJf548Nfev+ZPzuxJnEde58//901uvvfSP5c+qx5M4HRdHX1mMljh2y3RMx6NGiM35IxFxKku0eV/2miKEZMD1YGcqjd/H0Yg4FFNRydfqpmLlzYFWDuipWiWiBpRUov9DSRXjgOLcvhfnwcPswZn6CdDW+Efqn43EeH5utO9h0nRmVD/fPbAL5Wdl/HznyHvZEh0+hxjZhXI62bwbEX9sF3+S1+1A/ilOFn8aadPzsvRcRIw13ot0h+VPt6z3+/fvWeJvbocs3tONn1n+2R2WP+j4ASin+2caB/LNbO3J8S8bGRbjn2gz/plsc+zaiUEf/zqP/4rj/Xj+GXnaMg7LxjwX2r/kaGvGV2+ce6dT+c3jv2zJyi/Ggv3w4G7EkZb4X88Hc8nj9k/atH+2y6Uuy/jP59+c67Rt0PHX7kUcbXv+8+SKVpaa3VhdK/Jark/OLq9Ul+bqj23L+OiTFz/oVP6g48/aPzrEv137Z3lrXZbx4YV7q522TT41/vTrseRinhpr5Ly8sLFxYz5iLDnf2KUp/8T2dSn2KV4ji//YX9v3/23izxt6s8v41/5/9WE9tfUqadftv+WvSu5Rrcs6dJLFv7jD9n+7yzJ+eOHmn1uyJorEdvFPbH2ppNv3HAAAAAAAAMooza/BJunM43SazszU5/D+Ifal1evrG39bvn7z2mLEsfz/IUfT4kr3VH09ydbnG/8PW6yfaFn/e0QcjIh3KxP5+szl69XFQQcPAAAAAAAAAAAAAAAAAAAAQ2J/Y/5/cZ/q7yv1+f9d2TjU49oBPdfLG8wBw03/h/LK+/9O7+AK7GmO/1Be+j+Ul/4P5aX/Q3np/1Be+j+Ul/4P5aX/AwAAAMBz6eBf7n+ZRMTmvyfyJTPW2DY60JoBvfbsfXy6J/UA+q/S16cBw+TxpX/T/6F0uhr//9j4csDeVwcYgKRdZj44qG3f+e+3fSYAAAAAAAAAAAAA0ANHD5v/D2WVxseDrgIwIL9iIr/vAIA9zlf/Q3k5xweeNot/vNMG8/8BAAAAAAAAAAAAoG8m8yVJZxq3AJ2MNJ2ZifhtRByI0WR5pbo0FxG/i4gvKqO/ydbnB11pAAAAAAAAAAAAAAAAAAAAeM6s37p9daFaXbrRnPhpS87znSjugjos9WlORNL/QiciYhhi701ipCknidjMWn4oKnZjPYaiGmlejQH/YQIAAAAAAAAAAAAAAAAAgBJqmnvc3pH3+1wjAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOi/J/f/33kiecrrDDpGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBv+iUAAP//q+Q5KA==")
syz_genetlink_get_family_id$nfc(&(0x7f0000001200), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_io_uring_setup(0xa0, &(0x7f0000000640)={0x0, 0x105cc6, 0x0, 0x0, 0x207}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r4 = epoll_create1(0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000001140)=<r5=>0x0)
sched_setscheduler(r5, 0x0, &(0x7f00000011c0)=0xd)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000600))
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x20040600)
r7 = memfd_secret(0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000001c000000000000002300850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = dup2(r8, r8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000000)='sys_enter\x00', r9}, 0x18)
sysinfo(0x0)
futimesat(r7, 0x0, 0x0)
ptrace(0x10, r6)
ptrace$poke(0x5, r6, &(0x7f0000000080), 0x4)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, &(0x7f0000000100))
shutdown(0xffffffffffffffff, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
setns(0xffffffffffffffff, 0x2000000)

2.451698874s ago: executing program 1 (id=576):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.swap.events\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000280)={0x0, 0x0, 0x7f})
fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x2, 0x0, 0x0, 0x4})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x101040)
readv(r3, &(0x7f0000000180)=[{&(0x7f0000000680)=""/180, 0xc0}], 0x10000000000000d2)
ioctl$EVIOCGABS20(r3, 0x40044591, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00'})
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d9a", 0x380, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x2, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, '\x00'/12}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x2, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4610001394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "00000000000000000000000200000000000000000000000000008879e66485201a0015ca837400000000000000000000001c0000000000"}, {0x0, 0x14, "5e14f0e7e72d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fa632dbf04542188b196e213408c"}, {0x3, 0x5, "d5170000dce9674a36da018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81ed"}]}}}}}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000380)=0x7ffd)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000001004000014001a8010002d800c000180080016000600000008001b"], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r6, 0x0, r8, 0x0, 0x39000, 0x0)
ioctl$PPPIOCSPASS(r8, 0x40107447, &(0x7f0000000280)={0x0, 0x0})

2.214834588s ago: executing program 2 (id=586):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r0}, &(0x7f0000000100), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x3, @perf_bp={0x0, 0x4}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x524f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x241a2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x3, @perf_bp={0x0, 0x1}, 0x0, 0x2, 0x3, 0x0, 0x4, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x1000f0, 0x82, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_bp={0x0, 0xa}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x4, 0xfffffff0, 0x1, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$RNDCLEARPOOL(0xffffffffffffffff, 0x5206, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0xffffffff, 0x0, 0x20000000000}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xec, 0x7, 0x40, 0x7, 0x0, 0x0, 0xd000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x2, @perf_bp={0x0, 0x2}, 0x986, 0xfc, 0x4, 0x0, 0x81, 0x9, 0x5, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r3 = getpgid(0x0)
perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}, 0x2050}, r3, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r4 = syz_usb_connect$cdc_ecm(0x4, 0x64, &(0x7f00000001c0)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x52, 0x1, 0x1, 0x1, 0x0, 0x2a, [{{0x9, 0x4, 0x0, 0x7, 0x2, 0x2, 0x6, 0x0, 0xa, {{0x7, 0x24, 0x6, 0x0, 0x0, "113b"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0xad, 0x2, 0x4, 0x1}, [@mbim={0xc, 0x24, 0x1b, 0x0, 0xc, 0x1, 0x8, 0x2, 0x8}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x20, 0xda, 0x0, 0x7}}], {{0x9, 0x5, 0x82, 0x2, 0x37f, 0x3, 0x1, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x5, 0x5, 0x8}}}}}]}}]}}, &(0x7f0000000780)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x201, 0x1, 0x5, 0x5, 0x8, 0x8e}, 0xe2, &(0x7f00000003c0)={0x5, 0xf, 0xe2, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x5, "8e3fa067ae2d62eb3b5d85df4ab138be"}, @generic={0xb5, 0x10, 0x1, "d27b4441bc81ef9f85919aeb44cc59cbc15ccde07f77323fd7622a0d5519af7698bcc2fc4736ce3e4ad5f29b5fcfd41d7338618a5ca8e069023f507821fb262dadce0655cb16e43da5ec3f8ea2e19e5c56fa182d01e2db7cfedcfa0e718cbf93c1c9e3b15789e281bae53e52de4290d021736197b3cec5218b14f46a088f1de7161092e49f935ad1631c0fb0237be29923c94e3e8e27f2ba365047c439452a007b9ec135823d97b00031331ac7ffb59aa194"}, @ss_container_id={0x14, 0x10, 0x4, 0x6, "c6d00156a0932220220b0c443b74558d"}]}, 0x7, [{0x4, &(0x7f00000002c0)=@lang_id={0x4}}, {0x3a, &(0x7f0000000300)=@string={0x3a, 0x3, "de0265ec3945df407a7f4551d2f0f65cf5247a26041d9329e9e9683ad80effb365de6ce65c8d5b5a8f89d5ed73846e0dd32bd5a26ca22502"}}, {0x12, &(0x7f0000000340)=@string={0x12, 0x3, "a6a11db769a26434b398bbb2b576832f"}}, {0x68, &(0x7f00000004c0)=@string={0x68, 0x3, "02960b5e6270f87991c3316fe5a0c92942db1984b2663c917c027c8241254d485ddc6c21900765b3fb5b5897cbb89971c39d077b0580a592a8b09cc2e15a6c300c50453286675eadf36afb03ddb2cca45f90052ee7c95577b6277274306840555fa9c3e3538e"}}, {0xbe, &(0x7f0000000540)=@string={0xbe, 0x3, "62d7f8cba1402749c87ecd551d5e7a20ecad599ca28b1a37869569969810e68cbd06174e76cdeb0c1960bd739fcf90949e4b013560b22648e7ee6bf65e66dbff70588dc68dac2dc134f49f1f355e13508f34e03321102b99c2e58ce79d0f4d9409523fc286feec09704fd0ae59b6601d3c54e6179c21263c2ee84bf56e089fe578611fae78ef027f32ff491d8889224369e366b72b57dfb52dea2d7f7b06cff608ca3e9cd9f1bc85c5ca053458a3b2eecc41f0ad6026240bfb6b8440"}}, {0x30, &(0x7f0000000640)=@string={0x30, 0x3, "30df6d7d82d328a88ea4e0140d62a2e6979b239d33ddb3801ef71b8a123f7dec7cf58ea3b73a118cc778725dc989"}}, {0xfa, &(0x7f0000000680)=@string={0xfa, 0x3, "7a766f8fa0a7c6d46d329f471216f64791a3a1a2e0bc52a34d55cd91b6dfc98805a69aa895f25fadbc73415cec1d028a09b097bab81c1a62116773921e57197c9ad818597f4295fce27859de226ed62e1c23a9c149d917ad10f60a52d0e38f8d3fa3d71f90cd548ec5033b450e36cb71ce04fc704eb9c1b49fc237e5d486d93452bb6148346e460800d1e08dd1271cf2ee87ac6f7e9ec9625d797935d9a03c18f541cf9bfa0fc36d739eab4598e616d67862bc095944a266300cbff5851547daba34f8ce1637abcae7985d418d1b28a550ef60c50490f258f9e09b3566cf17a464dc8a56fefd4bfb470516f1f8ae193e3d40559c7f18b5d2"}}]})
syz_usb_disconnect(r4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)="2e00000011008188040f80ec59acbc0413a1810031000000000f000000028002002d1f00"/46, 0x2e}], 0x1}, 0x0)

1.922067402s ago: executing program 0 (id=590):
bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1, 0x0, 0x80000}, 0x18)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$isdn_base(0x22, 0x3, 0x0)
socket$packet(0x11, 0xa, 0x300)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r4, 0x0, 0x6}, 0x18)
socket$packet(0x11, 0xa, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
openat$cgroup_devices(r5, &(0x7f0000000380)='devices.deny\x00', 0x2, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000001c0)=ANY=[@ANYRES32, @ANYRES32=r6, @ANYRES64=r6, @ANYRES64=0x0, @ANYRESHEX=r6], 0x20)

1.808879344s ago: executing program 4 (id=593):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0)={[{@user_xattr}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@debug}, {@data_err_ignore}, {@sysvgroups}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r2, 0x0, 0xd1, &(0x7f0000000040)=0x19, 0x4)
getsockopt$MRT(r2, 0x0, 0xd0, 0x0, 0x0)
recvmsg(r1, &(0x7f0000003fc0)={&(0x7f0000000640)=@sco, 0x80, &(0x7f0000000940)=[{&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/78, 0x4e}, {&(0x7f0000001fc0)=""/4096, 0x1000}, {&(0x7f0000000800)=""/207, 0xcf}, {&(0x7f0000002fc0)=""/4096, 0x1000}], 0x5, &(0x7f00000009c0)=""/15, 0xf}, 0x21)
r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000580)=ANY=[], 0x0)
close_range(r3, 0xffffffffffffffff, 0x200000000000000)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x5)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000004000)='./cgroup/syz1\x00', 0x200002, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000004140)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES32=r0], &(0x7f0000004080)='GPL\x00', 0x20, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x4f33}, 0x18)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="54000000000801010000ffffe00000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x80000, 0x7)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000400)=@generic={&(0x7f0000000080)='./file0\x00', r6}, 0x18)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)=@generic={&(0x7f0000000200)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000020000000000000008000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701000001000000b702000008000000b70300000000000085000000ca00000095"], &(0x7f0000000300)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x87, @void, @value}, 0x94)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), r7)
fsopen(&(0x7f0000000580)='ubifs\x00', 0x1)
fallocate(r1, 0x8, 0x4000, 0x4000)
creat(&(0x7f0000004040)='./file0\x00', 0x38)
pwritev2(r1, &(0x7f0000000500)=[{&(0x7f00000001c0)="9e731f087a8da0f378432f2194efc6b2f32ac31580f2b5797a89c293a2958160881c72f16698324cf3390540aa07cdcab224c9827990a0badbb0837de5d10b720830f0b699201bbb433046ab33a84f5e87d894d6e2327a79fd9ebcf04d76098d56c424e828c4653a52296a8f38871cbffac4d78973470b99ff10c790f7117573", 0x80}, {&(0x7f0000000240)="ba6b225d5c0b61f38b73016491627e06c9b3af30b6288c68a623d53f47452955104f56bdf65a12f78a8a13067dc767d7e6c17e6c75f6898279f77b6964e75296eb7ac8dd108eab09c410a7ddc8a3e596da68fb34c4c2cffadb8b766e964546f2", 0x60}, {&(0x7f00000002c0)="deb9718f1dd494d0ae8436b91928ba2c26332f3175e2946d5bbbb721261746c9285c693cc6421a0acfe3852eb4421a42840f29b2ebe4192ed92016ab330888db6f7820f33207b1c7891ea9ad4dc40851d86fcee9c429b487023124599b8d682e8e64602efe42b090736e71df4a8878924bdeface85dd287088343d3b2b2ea8b1323dd888b866e101f9b18cdc6dbbbd37b6d08608e1d1d487c26b88094e4dbbad2a12d9d0292de82a736a80fa71f87ab089c2cd32a386e53cd882354da74dca", 0xbf}, {&(0x7f0000000380)="c637fcaa51dd0de5752ec51fb9", 0xd}, {&(0x7f00000003c0)="9ab366e167ae23070b7a841fb9d17d194da7635928c3e7fc109140624a4550ca07e0e9620aef64d0b28ff0d4458dbd5c9e5870fda4615252f6f1", 0x3a}, {&(0x7f0000000400)="f2cc4dabfdc4553d258b2bf8b3b3c934ae8a8567eb25757d65bad6912790f96504aabc531d2e82c13c919fa2ff81578335b0d1e5038347191d8588463c235997c94d2c8dcf392aaa1506723ca1db3a584b5470760e636cc11a88dd8d1a3f2cc9818cb179ea127798fd1111e291e7c4151985c4222aef19ccee237b5f0050ac215d2badc69a1c5bfb636282cdfeced354f083aa098c488bd8a1527490518bc8dd5c6705c25c4e0ffef49c7c9a70b00a18956cccf314ddd62e349a605aca24897f45a618ac83284a215b6b63aa9a17ede31ecc", 0xd2}], 0x6, 0x4, 0x5, 0x1f)

1.639834826s ago: executing program 0 (id=594):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRES16=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0c, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

1.639540296s ago: executing program 32 (id=594):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYRES16=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff0c, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

1.258979452s ago: executing program 2 (id=596):
socket$rxrpc(0x21, 0x2, 0xa)
io_submit(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
r2 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x4})
mq_getsetattr(r2, &(0x7f0000000700)={0x800, 0x10, 0x9}, 0x0)
mq_timedreceive(r2, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdfe, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000004c0)='kfree\x00', r3}, 0x18)
r4 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_FLAG(r4, 0x6, 0x0, 0x0, 0x0)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b70400000000000085000000010000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x3c0c, &(0x7f0000000400)={0x0, 0xc890, 0x4002}, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000400)="67d8901bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c14498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d3abc8a75ac1f30e53a0eff506f6e6b369ba6c5306e91acaa94e89d3bff4e52cd151235f3defff171c60b91c0c5aeb29736830a09b262dbe4c7ed149885a054de1d7ff5bcecd7a50061814ceefb", 0x9d}, {&(0x7f0000000900)="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", 0x3e4}], 0x2}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
syz_init_net_socket$llc(0x1a, 0x3, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)

1.129646883s ago: executing program 4 (id=597):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x181, &(0x7f00000002c0)=ANY=[@ANYRES16], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet(0x2, 0x2, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f"], 0x18)

622.559521ms ago: executing program 3 (id=598):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$FIONCLEX(0xffffffffffffffff, 0x5450)
r0 = creat(&(0x7f0000000640)='./file0\x00', 0x140)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYRES64], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
chmod(&(0x7f00000004c0)='./file0\x00', 0x24)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
msgrcv(0x0, 0x0, 0x0, 0x1, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000880)={0x1e0, 0x4, 0xb, 0x3, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x6}, [@generic="3b6eab2e64a95e53c57c0812d3e9b2ace792dcc9fbea224becb3e9bf85a29fc21fd899f382e5391473dbfa35f66e95c9496a61d270532ffb7d95da934d8f2efe2a027722a01623ab9e1d9e8c58e470bb93fc5fcaa6cdc0086c0d2b001071a4710e566fbaba2607b922d70e9f57ea358a82615b867216fa0e0f606304c577c30015f973a230a3b73449395a56209da191d53e96711003067067fce5adb5201e6fd9e9d57c8b6ec4990648c6980846de6e6f1881fbb69e24ca305ac624ef1a4af2e2d03c0e7eca84", @typed={0x14, 0x14c, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @typed={0xa, 0xd0, 0x0, 0x0, @str='resgid'}, @typed={0x8, 0x65, 0x0, 0x0, @uid=0xee01}, @generic="1a9fc41f7a6d2731a82a8ae0f0faa09ffca6973558f1c1c4faf69f2230f15de2593db6b1be1ef92b733faa06f537ec844a09a710770947326cd3076515e1cda0c54cbc80cc6c14ec7911c5cd0e55706d3ae2cf8e503e65803991aefa353d7c554b4c1aaf6a1d2ca765ce4d519c9a5a9748d1a862d371bd6a0fa6a2c47389f1582edf133d3c6ffd0ae83754a63d83379927948b6841e14a7cc89cc93216f5205e79c9153d0ca07c6e986b43aa5ed6c7c04634da05345be3ba2233783b9c5fad1ef789e7d7c99799e4e42fc2be029d5f", @nested={0xc, 0x13, 0x0, 0x1, [@typed={0x8, 0xab, 0x0, 0x0, @uid}]}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x4040800}, 0x340048c4)
msgsnd(0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, 0x0, 0x8000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
r4 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r4, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x44a, &(0x7f0000000400)="$eJzs281vG0UbAPBn10n6vv1KKOWjpUCgQkR8JE1aoAcuIJA4FIEEh3IMTlpVdRvUBIlWFQ0IlQsSqgRnxBGJv4AbFwSckLjCHVWqoJcWTkG73m1t106b1rFD/ftJm8x4x555PDve2R07gIE1nv1JIrZGxG8RMVrPNhcYr/+7evls9e/LZ6tJrKy89WeSl7ty+Wy1LFo+b0uRmUgj0k+SopJmi6fPHJ+t1eZPFfmppRPvTS2ePvPssROzR+ePzp+cOXjwwP7pF56fea4rcWZxXdn94cKeXa+9c+H16uEL7/70bdbercX+xji6ZTwL/K+VXOu+J7pdWZ9ta0gnQ31sCGtSiYisu4bz8T8albjeeaPx6sd9bRywrrJz06bOu5dXgLtYEv1uAdAf5Yk+u/4ttx5NPTaESy/VL4CyuK8WW33PUKRFmeGW69tuGo+Iw8v/fJVtsU73IQAAGn1W/fJQPNNu/pfG/Q3lthdrKGMRcU9E7IiIeyNiZ0TcF5GXfSAiHlxj/a1LQzfOf9KLtxXYLcrmfy8Wa1vN879y9hdjlSK3LY9/ODlyrDa/r3hPJmJ4U5afXqWO71/59fNO+xrnf9mW1V/OBYt2XBxquUE3N7s0m09Ku+DSRxG7h9rFn1xbCUgiYldE7F7bS28vE8ee+mZPp0I3j38VXVhnWvk64sl6/y9HS/ylZPX1yan/RW1+31R5VNzo51/Ov9mp/juKvwuy/t/cfPy3FhlLGtdrF9dex/nfP+14TXO7x/9I8nbeLyPFYx/MLi2dmo4YSQ7l+abHZ64/t8yX5bP4J/a2H/87iudk9TwUEdlB/HBEPBIRjxZtfywiHo+IvavE/+PLnfdthP6fa/v5d+34b+n/tScqx3/4rlP9t9b/B/LURPFI/vl3E7fawDt57wAAAOC/Is2/A5+kk9fSaTo5Wf8O/87YnNYWFpeePrLw/sm5+nflx2I4Le90jTbcD51OlotXrOdninvF5f79xX3jLyr/z/OT1YXaXJ9jh0G3pcP4z/xR6XfrgHXXbh1tZqQPDQF6rnX8p83Zc2/0sjFAT/m9Ngyum4z/tFftAHrP+R8GV7vxf64lby0A7k7O/zC4jH8YXMY/DC7jHwbSnfyuX2KQE5FuiGZIrFOi359MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3fFvAAAA//+uEO7O")
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RATE_SET(r5, 0x0, 0x2000c010)
chdir(&(0x7f0000000400)='./file0\x00')
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, 0x0, 0x110)
setsockopt$inet_group_source_req(r6, 0x0, 0x2b, 0x0, 0x0)
setsockopt$inet_group_source_req(r6, 0x0, 0x2b, 0x0, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffebb)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)

572.389481ms ago: executing program 4 (id=599):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0x3}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x8c80)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000400)=ANY=[@ANYRESDEC=r2, @ANYRES32=r4, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010067656e6576653000000000000000000014"], 0x110}}, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
ioctl$FS_IOC_GETFSMAP(r3, 0xc0c0583b, &(0x7f0000000540)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x4, 0xc, 0x80, 0x8, 0xffffffffffff3813, 0x9}, {0x40, 0xd9f, 0x60000, 0x7, 0x12, 0x7}], ['\x00', '\x00', '\x00', '\x00']})
r8 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x28c81, 0x0)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r8, 0x3304)
sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0x3e1, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081084e81f782db44b904021d080006067c09e8fe55a10a0015400a00142603600e120800160000001001a8000400a400014003000000036004fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1, 0x0, 0x0, 0x6000}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=ANY=[], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r9}, 0x10)
r10 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r10, 0x40082406, &(0x7f0000000380)='delalloc')
syz_emit_ethernet(0x4e, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffcd2a9af62857c20000018681ff2e5cea00183800fc000000000000000000000000000000000001fffc4e2100189078e000"/78], 0x0)
keyctl$restrict_keyring(0x1d, 0xfffffffffffffffc, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP(r9, 0xd0009412, &(0x7f0000001780))
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200080, &(0x7f00000000c0)={[{@errors_remount}, {@delalloc}, {@bsdgroups}]}, 0x3, 0x56d, &(0x7f0000000c00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x511001, 0x488)

567.846531ms ago: executing program 3 (id=600):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {0x0, 0x6}}}, 0x1c}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000280)=[{0x200000000006, 0x0, 0xfd, 0x7ffc0002}]})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r4)

515.774062ms ago: executing program 3 (id=601):
r0 = fsopen(&(0x7f0000000100)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
openat(r1, &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0xc6)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'netdevsim0\x00'})
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1000002, &(0x7f0000000bc0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c646973636172640061727365743d63703835322c757466383d202c6e6f6e756d7461696c3d302c6e6f6e75617461696c3d302c7574663c3d302c696f6368619615f9a9d8bc34fd234143727365743d69736f383835392d322c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c757466383d312c756e695f786c6174653d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c726f6469722c756e695f786c", @ANYRESOCT=0x0], 0x1, 0x369, &(0x7f00000041c0)="$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")
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x10)
fadvise64(r2, 0x8, 0xb098, 0x5)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000080), 0x80)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYRESDEC=r3], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2ab}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="2100000000000000000000000000100000040000", @ANYRES32, @ANYBLOB="28d50000000000000000000000000000000900f1", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000002"], 0x50)

275.568266ms ago: executing program 4 (id=602):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000001d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd020f4c0c8c56147d66527da307bf731fef97861750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3665f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447c2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72e7ead0509d380578673f8b6e74ce23877a6b24db0000000000000003629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d7b90dfae158b94f50adab988dd8e12b1b56073d0d10f7067c881434af5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf77bfc95769a9294df517d90bdc01e73835efd98ad5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b31592479ecf2392548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbe1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5646ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4766e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec859c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f250057931d828ec78e116ae46c4897e2795b6ff92e9a1f63a6ed8fb4f8f3a6ec4e76f8621e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403f02734137ff47257f164391c673b6071b6ad0f05eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb79f5589829b6b0679b5d65a81826fc9b38f791c8f1892b51ad65a89bc84646ebf78f5d5d4804d9abb071fd711b5e7cc163b42a6510b8f5ee6747df0b560eabe0499bf1fef7c18bb9f55effa018679845c6598fb78bf1b8d9d9f04a5f6062c2bbb91952755b3f7c948268cb647d0a0bb1286480615941154a01d23734bcafe3b164474e2f2efa77850686ee4541f3e79efa63545a7ae53d5f0c40cc86473f7eb093980bd0d97bb4750128d9c519984c5f731ea259e71b2f12d67ce12e52c283e74594dfc933e625737ed231d61263721d46daf093f770357cd78fe1431aef52b4a0a933f1a5334ad03f3876fc8a8e187f80318427b4c922075cf829e3cc49d71d52137b48e1fb6b05dd1c7b251a7059f0a4b4f3431f67fc65b75c202e43816e34ff41db85bacd77b25242830b788ae1e00"/2566], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
readlink(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)=""/92, 0x5c)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
pipe(0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @multicast2}, 0x4, 0x0, 0x3}}, 0x2e)
ioctl$PPPIOCGCHAN(r5, 0x80047437, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x4c, &(0x7f0000000140)={@random="99177fa54f29", @random="ece65fbcee55", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x16, 0x11, 0xff, @remote, @local, {[], {0x0, 0xe22, 0x16, 0x0, @gue={{0x2, 0x0, 0x0, 0x3}, "30b00afe4e70"}}}}}}}, 0x0)

227.546417ms ago: executing program 3 (id=603):
r0 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x3c56, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000740)={{r0, <r2=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)='%-010d \x00'}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r2], 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0d000081ecfda60004000000132237cefc307a5bc90ca0069d04d87a7a", @ANYRES32=r1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r3, 0x0, 0x8000000}, 0x27)
r4 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0xf)
r8 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000530464"], 0x14}, 0x1, 0x0, 0x0, 0x24000841}, 0x4008840)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000000340)={0x0, 0xffffffffffffff8e, &(0x7f0000000480)={&(0x7f0000000b40)={0x24, r10, 0xc4fc9e906872338b, 0x20, 0x0, {{0x15}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8}]}]}]}, 0x24}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_NOTIFY(0xffffffffffffffff, &(0x7f0000000200)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x11}}, 0x10)
sendmsg$NL80211_CMD_START_AP(r6, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r10, 0x10, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x4004044)
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f00000005c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f00000003c0)={0x64, r11, 0x2, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}, @NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "79ac4f73aced2e86aad38c8b8f5e8c5702f85a78b31a828c"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}], @NL80211_ATTR_4ADDR={0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0xc000)

192.303777ms ago: executing program 4 (id=604):
r0 = socket$rds(0x15, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3ff, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000cc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x65, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
poll(0x0, 0x0, 0x6)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[])
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x8004}, 0x0)

181.541697ms ago: executing program 3 (id=605):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@newtfilter={0x17c, 0x28, 0xd27, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, r5}, [@filter_kind_options=@f_flow={{0x9}, {0x144, 0x2, [@TCA_FLOW_RSHIFT={0x8, 0x4, 0x8f}, @TCA_FLOW_KEYS={0x8, 0x1, 0xdd96}, @TCA_FLOW_XOR={0x8, 0x7, 0x1}, @TCA_FLOW_EMATCHES={0x128, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_LIST={0x104, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x8, 0x1, 0x6}, {0x2, 0xa7a, 0x5, 0x5, 0xf, 0x2, 0x1}}}, @TCF_EM_IPT={0x20, 0x1, 0x0, 0x0, {{0x2, 0x9, 0xa}, [@TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x3}]}}, @TCF_EM_CONTAINER={0x70, 0x2, 0x0, 0x0, {{0x7, 0x0, 0x200}, "f951a46b47500678738197b2aaa1df31465b98cc4a1f68bc70703dae2cc6cfc86f04a83653d5649f86bd98d551684f1f1480026ae4a53dcf51dccfc502b40d6299cdce89af454adea8687338ea24b7a2ac103e1ca8941ea9faf8d91a348ff94673c3b535"}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x1000, 0x8, 0xa99}, {0x0, 0x5}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x6, 0x1, 0x3}, {0x1c0000, 0x10001, 0x8, 0x2, 0x3, 0x3, 0x3}}}, @TCF_EM_NBYTE={0x14, 0x3, 0x0, 0x0, {{0x8, 0x2, 0xfff0}, {0x4, 0x1, 0x2, 'p'}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x8}, {0x6, 0xfff, 0x6, 0x4}}}]}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x800}}]}]}}, @TCA_RATE={0x6, 0x5, {0xb8, 0x1}}]}, 0x17c}}, 0x0)

61.657289ms ago: executing program 2 (id=606):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000071123d000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000240), 0x3, 0x4e6, &(0x7f0000001240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x200000c, 0x3032, 0xffffffffffffffff, 0x0)
read(r0, &(0x7f0000000400)=""/4096, 0x1000)

61.427769ms ago: executing program 4 (id=607):
unshare(0x22020600)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
r0 = syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x400, &(0x7f0000000100)={[{@discard}, {@errors_remount}]}, 0xfe, 0x571, &(0x7f00000003c0)="$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")
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYRES64=r0], 0x0)
mount$cgroup(0x0, &(0x7f0000000980)='./file0\x00', &(0x7f0000000a40), 0x4004, &(0x7f0000000b40)={[{@name={'name', 0x3d, '/dev/net/tun\x00'}}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
mq_notify(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffd84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702008bd4000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4f, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000700)='kfree\x00', r1}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
syslog(0x2, &(0x7f0000000180)=""/85, 0x55)

0s ago: executing program 3 (id=608):
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x29c)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r0 = creat(&(0x7f0000000080)='./file0\x00', 0xc7)
close(r0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00'})
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000000200)=0x2000, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
bind$rds(r5, &(0x7f0000000ec0)={0x2, 0x4e24, @local}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r6}, 0x10)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@delchain={0x3c, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0xa, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x8, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4000)

kernel console output (not intermixed with test programs):

 until 2038-01-19 (0x7fffffff)
[   37.748598][ T3791] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   37.760278][ T3791] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #18: comm +}[@: mark_inode_dirty error
[   37.813428][ T3798] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.78: bg 0: block 345: padding at end of block bitmap is not set
[   37.937157][ T3791] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   37.949825][ T3791] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm +}[@: mark_inode_dirty error
[   37.963251][ T3791] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm +}[@: mark inode dirty (error -117)
[   37.984787][ T3804] loop4: detected capacity change from 0 to 512
[   38.042979][ T3804] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.055836][ T3804] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   38.083421][   T41] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 669 with error 117
[   38.096046][   T41] EXT4-fs (loop1): This should not happen!! Data will be lost
[   38.096046][   T41] 
[   38.149909][ T3798] EXT4-fs error (device loop1): ext4_lookup:1787: inode #14: comm syz.1.78: invalid fast symlink length 39
[   38.189393][ T3791] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   38.250879][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.440834][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.496856][ T3818] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   38.506824][ T3820] loop1: detected capacity change from 0 to 1024
[   38.519559][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.537443][ T3820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.560354][ T3820] cgroup: Invalid name
[   38.569347][ T3820] netlink: 72 bytes leftover after parsing attributes in process `syz.1.84'.
[   38.617692][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.657458][ T3828] loop4: detected capacity change from 0 to 256
[   38.720933][ T3833] loop4: detected capacity change from 0 to 2048
[   38.749367][ T3833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.758436][ T3820] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.762785][ T3833] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.803594][ T3833] netlink: 40 bytes leftover after parsing attributes in process `syz.4.91'.
[   38.815626][ T3843] loop1: detected capacity change from 0 to 2048
[   38.838117][ T3843] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   38.852525][ T3843] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.874517][ T3843] netlink: 40 bytes leftover after parsing attributes in process `syz.1.92'.
[   38.906419][ T3850] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.91: bg 0: block 345: padding at end of block bitmap is not set
[   38.931777][   T31] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1259 with error 117
[   38.944530][   T31] EXT4-fs (loop4): This should not happen!! Data will be lost
[   38.944530][   T31] 
[   39.007161][ T3852] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.92: bg 0: block 345: padding at end of block bitmap is not set
[   39.054849][ T3833] EXT4-fs error (device loop4): ext4_lookup:1787: inode #14: comm syz.4.91: invalid fast symlink length 39
[   39.069892][   T31] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1758 with error 117
[   39.082627][   T31] EXT4-fs (loop1): This should not happen!! Data will be lost
[   39.082627][   T31] 
[   39.107248][   T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1275 with max blocks 1 with error 28
[   39.119854][   T12] EXT4-fs (loop4): This should not happen!! Data will be lost
[   39.119854][   T12] 
[   39.129569][   T12] EXT4-fs (loop4): Total free blocks count 0
[   39.135664][   T12] EXT4-fs (loop4): Free/Dirty block details
[   39.141592][   T12] EXT4-fs (loop4): free_blocks=0
[   39.146676][   T12] EXT4-fs (loop4): dirty_blocks=16
[   39.151969][   T12] EXT4-fs (loop4): Block reservation details
[   39.158851][ T3843] EXT4-fs error (device loop1): ext4_lookup:1787: inode #14: comm syz.1.92: invalid fast symlink length 39
[   39.219411][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.312996][ T3862] loop1: detected capacity change from 0 to 256
[   39.349094][ T3864] team_slave_0: entered promiscuous mode
[   39.354837][ T3864] team_slave_1: entered promiscuous mode
[   39.361744][ T3864] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   39.370104][ T3864] team0: Device macvtap1 is already an upper device of the team interface
[   39.426262][ T3864] team_slave_0: left promiscuous mode
[   39.431719][ T3864] team_slave_1: left promiscuous mode
[   39.467096][ T3870] loop3: detected capacity change from 0 to 256
[   39.566678][ T3878] loop2: detected capacity change from 0 to 512
[   39.697371][ T3878] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.710246][ T3878] ext4 filesystem being mounted at /24/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.740137][ T3878] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   39.751821][ T3878] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm +}[@: mark_inode_dirty error
[   39.764105][ T3878] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   39.777843][ T3878] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm +}[@: mark_inode_dirty error
[   39.792282][ T3878] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm +}[@: mark inode dirty (error -117)
[   39.804761][ T3878] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   39.940456][   T29] kauditd_printk_skb: 617 callbacks suppressed
[   39.940545][   T29] audit: type=1400 audit(2000000001.130:1422): avc:  denied  { create } for  pid=3886 comm="syz.0.105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   39.967843][   T29] audit: type=1400 audit(2000000001.130:1423): avc:  denied  { setopt } for  pid=3886 comm="syz.0.105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   40.049776][ T3889] mmap: +}[@ (3889) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   40.090036][   T29] audit: type=1326 audit(2000000001.280:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.122798][   T29] audit: type=1326 audit(2000000001.300:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.146398][   T29] audit: type=1326 audit(2000000001.300:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.169759][   T29] audit: type=1326 audit(2000000001.310:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.193287][   T29] audit: type=1326 audit(2000000001.310:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.213321][ T3904] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   40.216708][   T29] audit: type=1326 audit(2000000001.310:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.250352][   T29] audit: type=1326 audit(2000000001.310:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.252786][ T3907] loop0: detected capacity change from 0 to 512
[   40.273750][   T29] audit: type=1326 audit(2000000001.310:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3902 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a48e929 code=0x7ffc0000
[   40.339607][ T3911] netlink: 240 bytes leftover after parsing attributes in process `syz.1.115'.
[   40.353290][ T3907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.366206][ T3907] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.380986][ T3911] netlink: 16215 bytes leftover after parsing attributes in process `syz.1.115'.
[   40.391575][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.400882][ T3911] loop1: detected capacity change from 0 to 512
[   40.412506][ T3911] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   40.437537][ T3911] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.450470][ T3911] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.459555][ T3914] team_slave_0: entered promiscuous mode
[   40.466407][ T3911] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.115: failed to insert inode 16: doubly allocated?
[   40.466599][ T3914] team_slave_1: entered promiscuous mode
[   40.485909][ T3914] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   40.494159][ T3914] team0: Device macvtap1 is already an upper device of the team interface
[   40.503105][ T3914] team_slave_0: left promiscuous mode
[   40.503513][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.508543][ T3914] team_slave_1: left promiscuous mode
[   40.715420][ T3924] loop2: detected capacity change from 0 to 512
[   40.726454][ T3924] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.739513][ T3924] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   40.753012][ T3924] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.118: corrupted inode contents
[   40.765012][ T3924] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm syz.2.118: mark_inode_dirty error
[   40.776421][ T3924] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm syz.2.118: corrupted inode contents
[   40.788459][ T3924] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.118: mark_inode_dirty error
[   40.800468][ T3924] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.118: mark inode dirty (error -117)
[   40.813222][ T3924] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   40.925137][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.983870][ T3935] @: renamed from vlan0 (while UP)
[   41.018965][ T3941] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   41.018965][ T3941]    program syz.4.124 not setting count and/or reply_len properly
[   41.038588][ T3943] loop0: detected capacity change from 0 to 2048
[   41.049010][ T3941] netlink: 24 bytes leftover after parsing attributes in process `syz.4.124'.
[   41.050252][ T3945] tipc: Started in network mode
[   41.063053][ T3945] tipc: Node identity 4, cluster identity 4711
[   41.069288][ T3945] tipc: Node number set to 4
[   41.078696][ T3945] netlink: 24 bytes leftover after parsing attributes in process `syz.3.126'.
[   41.099181][ T3943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.115530][ T3945] netlink: 4 bytes leftover after parsing attributes in process `syz.3.126'.
[   41.133473][ T3943] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.152671][ T3943] netlink: 8 bytes leftover after parsing attributes in process `syz.0.125'.
[   41.196262][ T3953] loop3: detected capacity change from 0 to 512
[   41.204469][ T3953] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   41.270083][ T3955] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.125: bg 0: block 345: padding at end of block bitmap is not set
[   41.302650][   T12] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1591 with error 117
[   41.316198][   T12] EXT4-fs (loop0): This should not happen!! Data will be lost
[   41.316198][   T12] 
[   41.335860][ T3953] EXT4-fs (loop3): 1 orphan inode deleted
[   41.342206][ T3953] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.357016][ T3961] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   41.364103][   T41] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1
[   41.378893][ T3953] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.395266][ T3943] EXT4-fs error (device loop0): ext4_lookup:1787: inode #14: comm syz.0.125: invalid fast symlink length 39
[   41.420264][ T3963] FAULT_INJECTION: forcing a failure.
[   41.420264][ T3963] name failslab, interval 1, probability 0, space 0, times 1
[   41.433136][ T3963] CPU: 1 UID: 0 PID: 3963 Comm: syz.1.131 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   41.433215][ T3963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.433229][ T3963] Call Trace:
[   41.433236][ T3963]  <TASK>
[   41.433246][ T3963]  __dump_stack+0x1d/0x30
[   41.433272][ T3963]  dump_stack_lvl+0xe8/0x140
[   41.433296][ T3963]  dump_stack+0x15/0x1b
[   41.433345][ T3963]  should_fail_ex+0x265/0x280
[   41.433378][ T3963]  ? p9_client_create+0x59/0xbc0
[   41.433413][ T3963]  should_failslab+0x8c/0xb0
[   41.433440][ T3963]  __kmalloc_cache_noprof+0x4c/0x320
[   41.433524][ T3963]  p9_client_create+0x59/0xbc0
[   41.433598][ T3963]  ? should_failslab+0x8c/0xb0
[   41.433691][ T3963]  ? __kmalloc_node_track_caller_noprof+0x1e5/0x410
[   41.433791][ T3963]  ? v9fs_session_init+0x78/0xde0
[   41.433827][ T3963]  v9fs_session_init+0xf7/0xde0
[   41.433859][ T3963]  ? obj_cgroup_charge_account+0x122/0x1a0
[   41.433954][ T3963]  ? __rcu_read_unlock+0x4f/0x70
[   41.433979][ T3963]  ? should_fail_ex+0xdb/0x280
[   41.434014][ T3963]  ? v9fs_mount+0x51/0x590
[   41.434049][ T3963]  ? should_failslab+0x8c/0xb0
[   41.434151][ T3963]  ? __kmalloc_cache_noprof+0x189/0x320
[   41.434185][ T3963]  v9fs_mount+0x67/0x590
[   41.434244][ T3963]  ? __pfx_v9fs_mount+0x10/0x10
[   41.434282][ T3963]  legacy_get_tree+0x75/0xd0
[   41.434306][ T3963]  vfs_get_tree+0x54/0x1d0
[   41.434407][ T3963]  do_new_mount+0x207/0x680
[   41.434433][ T3963]  path_mount+0x4a4/0xb20
[   41.434457][ T3963]  ? user_path_at+0x109/0x130
[   41.434509][ T3963]  __se_sys_mount+0x28f/0x2e0
[   41.434528][ T3963]  ? fput+0x8f/0xc0
[   41.434610][ T3963]  __x64_sys_mount+0x67/0x80
[   41.434631][ T3963]  x64_sys_call+0xd36/0x2fb0
[   41.434656][ T3963]  do_syscall_64+0xd2/0x200
[   41.434681][ T3963]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.434740][ T3963]  ? clear_bhb_loop+0x40/0x90
[   41.434766][ T3963]  ? clear_bhb_loop+0x40/0x90
[   41.434903][ T3963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.434929][ T3963] RIP: 0033:0x7f43c3c1e929
[   41.434949][ T3963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.434971][ T3963] RSP: 002b:00007f43c2287038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   41.435114][ T3963] RAX: ffffffffffffffda RBX: 00007f43c3e45fa0 RCX: 00007f43c3c1e929
[   41.435128][ T3963] RDX: 0000200000000180 RSI: 0000200000000000 RDI: 0000000000000000
[   41.435140][ T3963] RBP: 00007f43c2287090 R08: 0000200000000340 R09: 0000000000000000
[   41.435153][ T3963] R10: 0000000000800000 R11: 0000000000000246 R12: 0000000000000002
[   41.435168][ T3963] R13: 0000000000000000 R14: 00007f43c3e45fa0 R15: 00007ffecbefe7f8
[   41.435191][ T3963]  </TASK>
[   41.437368][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.742309][ T1740] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1607 with max blocks 1 with error 28
[   41.754902][ T1740] EXT4-fs (loop0): This should not happen!! Data will be lost
[   41.754902][ T1740] 
[   41.764616][ T1740] EXT4-fs (loop0): Total free blocks count 0
[   41.770662][ T1740] EXT4-fs (loop0): Free/Dirty block details
[   41.776764][ T1740] EXT4-fs (loop0): free_blocks=0
[   41.781800][ T1740] EXT4-fs (loop0): dirty_blocks=16
[   41.787051][ T1740] EXT4-fs (loop0): Block reservation details
[   41.811067][ T3970] loop3: detected capacity change from 0 to 256
[   41.821014][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.838033][ T3973] FAULT_INJECTION: forcing a failure.
[   41.838033][ T3973] name failslab, interval 1, probability 0, space 0, times 0
[   41.850767][ T3973] CPU: 1 UID: 0 PID: 3973 Comm: syz.1.138 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   41.850848][ T3973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.850861][ T3973] Call Trace:
[   41.850869][ T3973]  <TASK>
[   41.850878][ T3973]  __dump_stack+0x1d/0x30
[   41.850974][ T3973]  dump_stack_lvl+0xe8/0x140
[   41.850996][ T3973]  dump_stack+0x15/0x1b
[   41.851014][ T3973]  should_fail_ex+0x265/0x280
[   41.851051][ T3973]  should_failslab+0x8c/0xb0
[   41.851093][ T3973]  kmem_cache_alloc_lru_noprof+0x55/0x310
[   41.851173][ T3973]  ? __d_alloc+0x3d/0x350
[   41.851196][ T3973]  ? __d_alloc+0x25/0x350
[   41.851232][ T3973]  __d_alloc+0x3d/0x350
[   41.851258][ T3973]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   41.851284][ T3973]  d_alloc_pseudo+0x1e/0x80
[   41.851313][ T3973]  alloc_file_pseudo+0x71/0x160
[   41.851507][ T3973]  ? alloc_fd+0x38a/0x3c0
[   41.851526][ T3973]  anon_inode_getfile_fmode+0xa5/0x140
[   41.851623][ T3973]  __se_sys_timerfd_create+0x1f6/0x260
[   41.851677][ T3973]  __x64_sys_timerfd_create+0x31/0x40
[   41.851710][ T3973]  x64_sys_call+0x29d0/0x2fb0
[   41.851748][ T3973]  do_syscall_64+0xd2/0x200
[   41.851772][ T3973]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.851870][ T3973]  ? clear_bhb_loop+0x40/0x90
[   41.851893][ T3973]  ? clear_bhb_loop+0x40/0x90
[   41.851918][ T3973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.851953][ T3973] RIP: 0033:0x7f43c3c1e929
[   41.851969][ T3973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.851990][ T3973] RSP: 002b:00007f43c2287038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b
[   41.852029][ T3973] RAX: ffffffffffffffda RBX: 00007f43c3e45fa0 RCX: 00007f43c3c1e929
[   41.852114][ T3973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   41.852128][ T3973] RBP: 00007f43c2287090 R08: 0000000000000000 R09: 0000000000000000
[   41.852141][ T3973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.852155][ T3973] R13: 0000000000000000 R14: 00007f43c3e45fa0 R15: 00007ffecbefe7f8
[   41.852236][ T3973]  </TASK>
[   42.197276][ T3992] netlink: 240 bytes leftover after parsing attributes in process `syz.3.145'.
[   42.210471][ T3990] loop2: detected capacity change from 0 to 2048
[   42.222691][ T3992] netlink: 16215 bytes leftover after parsing attributes in process `syz.3.145'.
[   42.236059][ T3992] loop3: detected capacity change from 0 to 512
[   42.245055][ T3990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.257736][ T3992] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   42.273901][ T3990] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.315417][ T3992] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.353673][ T3992] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.416051][ T4000] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.144: bg 0: block 345: padding at end of block bitmap is not set
[   42.458084][ T3992] EXT4-fs error (device loop3): __ext4_new_inode:1279: comm syz.3.145: failed to insert inode 16: doubly allocated?
[   42.475917][   T41] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1182 with error 117
[   42.488732][   T41] EXT4-fs (loop2): This should not happen!! Data will be lost
[   42.488732][   T41] 
[   42.506089][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.529903][ T3990] EXT4-fs error (device loop2): ext4_lookup:1787: inode #14: comm syz.2.144: invalid fast symlink length 39
[   42.588326][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.618608][ T4017] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   42.632386][ T4019] loop0: detected capacity change from 0 to 512
[   42.644959][ T4019] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   42.668646][ T4013] Invalid ELF header magic: != ELF
[   42.700299][ T4023] loop2: detected capacity change from 0 to 256
[   42.790083][ T4031] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   42.998132][ T4038] loop4: detected capacity change from 0 to 1024
[   43.015657][ T4038] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.029667][ T4038] cgroup: Invalid name
[   43.064820][ T4036] netlink: 14 bytes leftover after parsing attributes in process `syz.1.156'.
[   43.074061][ T4036] hsr_slave_0: left promiscuous mode
[   43.079715][ T4036] hsr_slave_1: left promiscuous mode
[   43.319976][ T4042] FAULT_INJECTION: forcing a failure.
[   43.319976][ T4042] name failslab, interval 1, probability 0, space 0, times 0
[   43.332863][ T4042] CPU: 0 UID: 0 PID: 4042 Comm: syz.0.158 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   43.333036][ T4042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   43.333047][ T4042] Call Trace:
[   43.333111][ T4042]  <TASK>
[   43.333117][ T4042]  __dump_stack+0x1d/0x30
[   43.333133][ T4042]  dump_stack_lvl+0xe8/0x140
[   43.333147][ T4042]  dump_stack+0x15/0x1b
[   43.333160][ T4042]  should_fail_ex+0x265/0x280
[   43.333190][ T4042]  should_failslab+0x8c/0xb0
[   43.333277][ T4042]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   43.333306][ T4042]  ? kstrdup_const+0x3e/0x50
[   43.333402][ T4042]  kstrdup+0x3e/0xd0
[   43.333424][ T4042]  kstrdup_const+0x3e/0x50
[   43.333445][ T4042]  alloc_vfsmnt+0xe7/0x360
[   43.333477][ T4042]  clone_mnt+0x41/0x750
[   43.333555][ T4042]  copy_tree+0x2f1/0x820
[   43.333595][ T4042]  copy_mnt_ns+0x120/0x5e0
[   43.333626][ T4042]  ? kmem_cache_alloc_noprof+0x220/0x310
[   43.333655][ T4042]  ? create_new_namespaces+0x3c/0x3d0
[   43.333828][ T4042]  create_new_namespaces+0x83/0x3d0
[   43.333896][ T4042]  unshare_nsproxy_namespaces+0xe8/0x120
[   43.333978][ T4042]  ksys_unshare+0x3d0/0x6d0
[   43.333997][ T4042]  ? ksys_write+0x192/0x1a0
[   43.334011][ T4042]  __x64_sys_unshare+0x1f/0x30
[   43.334030][ T4042]  x64_sys_call+0x2d4b/0x2fb0
[   43.334100][ T4042]  do_syscall_64+0xd2/0x200
[   43.334114][ T4042]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.334132][ T4042]  ? clear_bhb_loop+0x40/0x90
[   43.334195][ T4042]  ? clear_bhb_loop+0x40/0x90
[   43.334210][ T4042]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.334224][ T4042] RIP: 0033:0x7f2de9aee929
[   43.334236][ T4042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.334306][ T4042] RSP: 002b:00007f2de8157038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   43.334321][ T4042] RAX: ffffffffffffffda RBX: 00007f2de9d15fa0 RCX: 00007f2de9aee929
[   43.334330][ T4042] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020060400
[   43.334339][ T4042] RBP: 00007f2de8157090 R08: 0000000000000000 R09: 0000000000000000
[   43.334411][ T4042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   43.334419][ T4042] R13: 0000000000000000 R14: 00007f2de9d15fa0 R15: 00007fff58cc31d8
[   43.334432][ T4042]  </TASK>
[   43.579924][ T4038] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.608153][ T4044] netlink: 240 bytes leftover after parsing attributes in process `syz.0.159'.
[   43.626839][ T4044] netlink: 16215 bytes leftover after parsing attributes in process `syz.0.159'.
[   43.631428][ T4050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.650685][ T4050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.659148][ T4044] loop0: detected capacity change from 0 to 512
[   43.672059][ T4044] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   43.693633][ T4050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.702181][ T4050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.716442][ T4044] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.733236][ T4044] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.752912][ T4052] loop4: detected capacity change from 0 to 256
[   43.760739][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.763204][ T4055] vhci_hcd: invalid port number 0
[   43.806089][ T4059] loop0: detected capacity change from 0 to 128
[   43.819801][ T4059] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   43.852876][ T4059] ext4 filesystem being mounted at /29/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   43.914811][ T4067] netlink: 'syz.1.168': attribute type 1 has an invalid length.
[   43.935316][ T4067] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   43.990224][ T4072] loop4: detected capacity change from 0 to 764
[   44.009146][ T4072] Symlink component flag not implemented
[   44.023585][ T4072] Symlink component flag not implemented (7)
[   44.075631][ T3306] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   44.089098][ T4075] FAULT_INJECTION: forcing a failure.
[   44.089098][ T4075] name failslab, interval 1, probability 0, space 0, times 0
[   44.101839][ T4075] CPU: 0 UID: 0 PID: 4075 Comm: syz.4.171 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   44.101869][ T4075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   44.101883][ T4075] Call Trace:
[   44.101892][ T4075]  <TASK>
[   44.101901][ T4075]  __dump_stack+0x1d/0x30
[   44.101923][ T4075]  dump_stack_lvl+0xe8/0x140
[   44.101942][ T4075]  dump_stack+0x15/0x1b
[   44.101967][ T4075]  should_fail_ex+0x265/0x280
[   44.102024][ T4075]  should_failslab+0x8c/0xb0
[   44.102053][ T4075]  __kmalloc_noprof+0xa5/0x3e0
[   44.102083][ T4075]  ? process_preds+0x2ce/0x2bb0
[   44.102107][ T4075]  process_preds+0x2ce/0x2bb0
[   44.102125][ T4075]  ? terminate_walk+0x27f/0x2a0
[   44.102217][ T4075]  ? path_openat+0x1bf8/0x2170
[   44.102329][ T4075]  ? avc_has_perm_noaudit+0x1b1/0x200
[   44.102360][ T4075]  ? should_fail_ex+0xdb/0x280
[   44.102457][ T4075]  ? ftrace_profile_set_filter+0xc2/0x190
[   44.102478][ T4075]  ? should_failslab+0x8c/0xb0
[   44.102500][ T4075]  ? __kmalloc_cache_noprof+0x189/0x320
[   44.102529][ T4075]  ftrace_profile_set_filter+0xff/0x190
[   44.102554][ T4075]  perf_ioctl+0x7b3/0x12e0
[   44.102611][ T4075]  ? ioctl_has_perm+0x289/0x2a0
[   44.102638][ T4075]  ? do_vfs_ioctl+0xd1e/0x11d0
[   44.102673][ T4075]  ? selinux_file_ioctl+0x2e3/0x370
[   44.102702][ T4075]  ? __fget_files+0x184/0x1c0
[   44.102750][ T4075]  ? __pfx_perf_ioctl+0x10/0x10
[   44.102774][ T4075]  __se_sys_ioctl+0xce/0x140
[   44.102803][ T4075]  __x64_sys_ioctl+0x43/0x50
[   44.102985][ T4075]  x64_sys_call+0x19a8/0x2fb0
[   44.103010][ T4075]  do_syscall_64+0xd2/0x200
[   44.103034][ T4075]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.103079][ T4075]  ? clear_bhb_loop+0x40/0x90
[   44.103101][ T4075]  ? clear_bhb_loop+0x40/0x90
[   44.103122][ T4075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.103190][ T4075] RIP: 0033:0x7f8b632be929
[   44.103208][ T4075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.103304][ T4075] RSP: 002b:00007f8b61927038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   44.103327][ T4075] RAX: ffffffffffffffda RBX: 00007f8b634e5fa0 RCX: 00007f8b632be929
[   44.103341][ T4075] RDX: 00002000000001c0 RSI: 0000000040082406 RDI: 0000000000000003
[   44.103354][ T4075] RBP: 00007f8b61927090 R08: 0000000000000000 R09: 0000000000000000
[   44.103366][ T4075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.103453][ T4075] R13: 0000000000000000 R14: 00007f8b634e5fa0 R15: 00007ffdd6669698
[   44.103475][ T4075]  </TASK>
[   44.451288][ T4086] 9pnet_fd: Insufficient options for proto=fd
[   44.469674][ T4083] loop4: detected capacity change from 0 to 2048
[   44.490790][ T4088] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   44.490790][ T4088]    program syz.2.175 not setting count and/or reply_len properly
[   44.522546][ T4083] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.544512][ T4083] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.641146][ T4083] netlink: 8 bytes leftover after parsing attributes in process `syz.4.172'.
[   44.756148][ T4102] Invalid ELF header magic: != ELF
[   44.792409][ T1625] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:6: bg 0: block 345: padding at end of block bitmap is not set
[   44.816674][ T4105] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.172: bg 0: block 345: padding at end of block bitmap is not set
[   44.836295][ T4091] futex_wake_op: syz.1.177 tries to shift op by -1; fix this program
[   44.884631][ T4113] FAULT_INJECTION: forcing a failure.
[   44.884631][ T4113] name failslab, interval 1, probability 0, space 0, times 0
[   44.897337][ T4113] CPU: 0 UID: 0 PID: 4113 Comm: syz.3.185 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   44.897371][ T4113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   44.897383][ T4113] Call Trace:
[   44.897415][ T4113]  <TASK>
[   44.897423][ T4113]  __dump_stack+0x1d/0x30
[   44.897452][ T4113]  dump_stack_lvl+0xe8/0x140
[   44.897477][ T4113]  dump_stack+0x15/0x1b
[   44.897498][ T4113]  should_fail_ex+0x265/0x280
[   44.897538][ T4113]  should_failslab+0x8c/0xb0
[   44.897560][ T4113]  kmem_cache_alloc_node_noprof+0x57/0x320
[   44.897646][ T4113]  ? __alloc_skb+0x101/0x320
[   44.897677][ T4113]  __alloc_skb+0x101/0x320
[   44.897708][ T4113]  ? audit_log_start+0x365/0x6c0
[   44.897760][ T4113]  audit_log_start+0x380/0x6c0
[   44.897792][ T4113]  audit_seccomp+0x48/0x100
[   44.897817][ T4113]  ? __seccomp_filter+0x68c/0x10d0
[   44.897840][ T4113]  __seccomp_filter+0x69d/0x10d0
[   44.897876][ T4113]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   44.897897][ T4113]  ? vfs_write+0x75e/0x8e0
[   44.897915][ T4113]  ? __rcu_read_unlock+0x4f/0x70
[   44.897963][ T4113]  ? __fget_files+0x184/0x1c0
[   44.897987][ T4113]  __secure_computing+0x82/0x150
[   44.898069][ T4113]  syscall_trace_enter+0xcf/0x1e0
[   44.898091][ T4113]  do_syscall_64+0xac/0x200
[   44.898110][ T4113]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.898142][ T4113]  ? clear_bhb_loop+0x40/0x90
[   44.898162][ T4113]  ? clear_bhb_loop+0x40/0x90
[   44.898182][ T4113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.898243][ T4113] RIP: 0033:0x7f592a48d33c
[   44.898261][ T4113] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   44.898278][ T4113] RSP: 002b:00007f5928af7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   44.898298][ T4113] RAX: ffffffffffffffda RBX: 00007f592a6b5fa0 RCX: 00007f592a48d33c
[   44.898344][ T4113] RDX: 000000000000000f RSI: 00007f5928af70a0 RDI: 0000000000000006
[   44.898356][ T4113] RBP: 00007f5928af7090 R08: 0000000000000000 R09: 0000000000000000
[   44.898367][ T4113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.898378][ T4113] R13: 0000000000000000 R14: 00007f592a6b5fa0 R15: 00007fffba8236e8
[   44.898395][ T4113]  </TASK>
[   44.952373][ T1625] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1032 with error 117
[   45.049984][ T4083] EXT4-fs error (device loop4): ext4_lookup:1787: inode #14: comm syz.4.172: invalid fast symlink length 39
[   45.051115][ T1625] EXT4-fs (loop4): This should not happen!! Data will be lost
[   45.051115][ T1625] 
[   45.164633][ T4121] 9pnet_fd: Insufficient options for proto=fd
[   45.168704][ T1625] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1048 with max blocks 1 with error 28
[   45.183302][ T1625] EXT4-fs (loop4): This should not happen!! Data will be lost
[   45.183302][ T1625] 
[   45.193043][ T1625] EXT4-fs (loop4): Total free blocks count 0
[   45.199039][ T1625] EXT4-fs (loop4): Free/Dirty block details
[   45.205011][ T1625] EXT4-fs (loop4): free_blocks=0
[   45.210062][ T1625] EXT4-fs (loop4): dirty_blocks=16
[   45.215196][ T1625] EXT4-fs (loop4): Block reservation details
[   45.241709][   T29] kauditd_printk_skb: 454 callbacks suppressed
[   45.241726][   T29] audit: type=1400 audit(2000000006.430:1883): avc:  denied  { create } for  pid=4122 comm="syz.3.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   45.267954][   T29] audit: type=1400 audit(2000000006.430:1884): avc:  denied  { setopt } for  pid=4122 comm="syz.3.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   45.292387][   T29] audit: type=1400 audit(2000000006.480:1885): avc:  denied  { connect } for  pid=4124 comm="syz.4.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   45.312446][   T29] audit: type=1326 audit(2000000006.480:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe823be929 code=0x7ffc0000
[   45.335411][   T29] audit: type=1326 audit(2000000006.480:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe823be929 code=0x7ffc0000
[   45.358363][   T29] audit: type=1400 audit(2000000006.490:1888): avc:  denied  { read } for  pid=4124 comm="syz.4.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   45.378394][   T29] audit: type=1400 audit(2000000006.570:1889): avc:  denied  { write } for  pid=4124 comm="syz.4.187" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   45.405083][   T29] audit: type=1400 audit(2000000006.600:1890): avc:  denied  { bind } for  pid=4122 comm="syz.3.189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   45.424558][ T4123] 9pnet_fd: Insufficient options for proto=fd
[   45.461660][ T4128] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   45.461660][ T4128]    program syz.2.190 not setting count and/or reply_len properly
[   45.507676][ T4137] FAULT_INJECTION: forcing a failure.
[   45.507676][ T4137] name failslab, interval 1, probability 0, space 0, times 0
[   45.520528][ T4137] CPU: 0 UID: 0 PID: 4137 Comm: syz.1.194 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   45.520626][ T4137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   45.520636][ T4137] Call Trace:
[   45.520708][ T4137]  <TASK>
[   45.520715][ T4137]  __dump_stack+0x1d/0x30
[   45.520732][ T4137]  dump_stack_lvl+0xe8/0x140
[   45.520748][ T4137]  dump_stack+0x15/0x1b
[   45.520760][ T4137]  should_fail_ex+0x265/0x280
[   45.520890][ T4137]  should_failslab+0x8c/0xb0
[   45.520908][ T4137]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   45.520934][ T4137]  ? p9_client_create+0x59/0xbc0
[   45.520968][ T4137]  ? p9_client_create+0x207/0xbc0
[   45.521128][ T4137]  ? should_failslab+0x8c/0xb0
[   45.521155][ T4137]  kstrdup+0x3e/0xd0
[   45.521244][ T4137]  p9_client_create+0x207/0xbc0
[   45.521282][ T4137]  v9fs_session_init+0xf7/0xde0
[   45.521313][ T4137]  ? obj_cgroup_charge_account+0x122/0x1a0
[   45.521386][ T4137]  ? __rcu_read_unlock+0x4f/0x70
[   45.521411][ T4137]  ? should_fail_ex+0xdb/0x280
[   45.521447][ T4137]  ? v9fs_mount+0x51/0x590
[   45.521540][ T4137]  ? should_failslab+0x8c/0xb0
[   45.521566][ T4137]  ? __kmalloc_cache_noprof+0x189/0x320
[   45.521607][ T4137]  v9fs_mount+0x67/0x590
[   45.521765][ T4137]  ? __pfx_v9fs_mount+0x10/0x10
[   45.521800][ T4137]  legacy_get_tree+0x75/0xd0
[   45.521820][ T4137]  vfs_get_tree+0x54/0x1d0
[   45.521886][ T4137]  do_new_mount+0x207/0x680
[   45.521911][ T4137]  path_mount+0x4a4/0xb20
[   45.521932][ T4137]  ? user_path_at+0x109/0x130
[   45.521960][ T4137]  __se_sys_mount+0x28f/0x2e0
[   45.522034][ T4137]  ? fput+0x8f/0xc0
[   45.522062][ T4137]  __x64_sys_mount+0x67/0x80
[   45.522083][ T4137]  x64_sys_call+0xd36/0x2fb0
[   45.522107][ T4137]  do_syscall_64+0xd2/0x200
[   45.522189][ T4137]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   45.522280][ T4137]  ? clear_bhb_loop+0x40/0x90
[   45.522301][ T4137]  ? clear_bhb_loop+0x40/0x90
[   45.522323][ T4137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.522385][ T4137] RIP: 0033:0x7f43c3c1e929
[   45.522405][ T4137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.522425][ T4137] RSP: 002b:00007f43c2287038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   45.522448][ T4137] RAX: ffffffffffffffda RBX: 00007f43c3e45fa0 RCX: 00007f43c3c1e929
[   45.522523][ T4137] RDX: 0000200000000280 RSI: 0000200000000300 RDI: 0000000000000000
[   45.522538][ T4137] RBP: 00007f43c2287090 R08: 0000200000000600 R09: 0000000000000000
[   45.522552][ T4137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   45.522567][ T4137] R13: 0000000000000000 R14: 00007f43c3e45fa0 R15: 00007ffecbefe7f8
[   45.522637][ T4137]  </TASK>
[   45.525752][   T29] audit: type=1326 audit(2000000006.720:1891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4131 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   45.815743][   T29] audit: type=1326 audit(2000000006.720:1892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4131 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   46.238325][ T4165] loop2: detected capacity change from 0 to 1024
[   46.256464][ T4165] EXT4-fs: Ignoring removed i_version option
[   46.281387][ T4165] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.293783][ T4165] EXT4-fs: Ignoring removed nobh option
[   46.299411][ T4165] EXT4-fs: Ignoring removed bh option
[   46.353703][ T4165] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.400502][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.553893][ T4169] __nla_validate_parse: 4 callbacks suppressed
[   46.553910][ T4169] netlink: 14 bytes leftover after parsing attributes in process `syz.3.202'.
[   46.572871][ T4169] hsr_slave_0: left promiscuous mode
[   46.582241][ T4169] hsr_slave_1: left promiscuous mode
[   46.620377][ T4172] loop2: detected capacity change from 0 to 2048
[   46.692718][ T4172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.842039][ T4183] loop1: detected capacity change from 0 to 128
[   46.907775][ T4186] loop4: detected capacity change from 0 to 2048
[   46.919357][ T4188] netlink: 'syz.0.208': attribute type 1 has an invalid length.
[   46.927095][ T4188] netlink: 'syz.0.208': attribute type 4 has an invalid length.
[   46.934800][ T4188] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.208'.
[   47.042278][ T4195] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   47.042278][ T4195]    program syz.0.211 not setting count and/or reply_len properly
[   47.060945][ T4195] netlink: 24 bytes leftover after parsing attributes in process `syz.0.211'.
[   47.174305][ T4199] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   47.280752][ T4209] netlink: 16 bytes leftover after parsing attributes in process `syz.0.217'.
[   47.291022][ T4209] netlink: 16 bytes leftover after parsing attributes in process `syz.0.217'.
[   47.300214][ T4209] Zero length message leads to an empty skb
[   47.340956][ T4214] FAULT_INJECTION: forcing a failure.
[   47.340956][ T4214] name failslab, interval 1, probability 0, space 0, times 0
[   47.353898][ T4214] CPU: 1 UID: 0 PID: 4214 Comm: syz.3.219 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   47.353928][ T4214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   47.353941][ T4214] Call Trace:
[   47.353948][ T4214]  <TASK>
[   47.353956][ T4214]  __dump_stack+0x1d/0x30
[   47.353980][ T4214]  dump_stack_lvl+0xe8/0x140
[   47.354002][ T4214]  dump_stack+0x15/0x1b
[   47.354032][ T4214]  should_fail_ex+0x265/0x280
[   47.354070][ T4214]  should_failslab+0x8c/0xb0
[   47.354096][ T4214]  kmem_cache_alloc_noprof+0x50/0x310
[   47.354125][ T4214]  ? security_inode_alloc+0x37/0x100
[   47.354211][ T4214]  security_inode_alloc+0x37/0x100
[   47.354241][ T4214]  inode_init_always_gfp+0x4b7/0x500
[   47.354266][ T4214]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   47.354294][ T4214]  alloc_inode+0x58/0x170
[   47.354315][ T4214]  new_inode+0x1d/0xe0
[   47.354368][ T4214]  shmem_get_inode+0x244/0x750
[   47.354406][ T4214]  __shmem_file_setup+0x113/0x210
[   47.354443][ T4214]  shmem_file_setup+0x3b/0x50
[   47.354475][ T4214]  __se_sys_memfd_create+0x2c3/0x590
[   47.354513][ T4214]  __x64_sys_memfd_create+0x31/0x40
[   47.354590][ T4214]  x64_sys_call+0x122f/0x2fb0
[   47.354629][ T4214]  do_syscall_64+0xd2/0x200
[   47.354653][ T4214]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.354689][ T4214]  ? clear_bhb_loop+0x40/0x90
[   47.354713][ T4214]  ? clear_bhb_loop+0x40/0x90
[   47.354759][ T4214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.354781][ T4214] RIP: 0033:0x7f592a48e929
[   47.354798][ T4214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.354845][ T4214] RSP: 002b:00007f5928af6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   47.354868][ T4214] RAX: ffffffffffffffda RBX: 000000000000071c RCX: 00007f592a48e929
[   47.354883][ T4214] RDX: 00007f5928af6ef0 RSI: 0000000000000000 RDI: 00007f592a5114cc
[   47.354897][ T4214] RBP: 0000200000000f40 R08: 00007f5928af6bb7 R09: 00007f5928af6e40
[   47.354912][ T4214] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000780
[   47.354927][ T4214] R13: 00007f5928af6ef0 R14: 00007f5928af6eb0 R15: 0000200000000280
[   47.354988][ T4214]  </TASK>
[   47.586663][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.613154][ T4219] loop0: detected capacity change from 0 to 128
[   47.661983][ T4223] netlink: 4 bytes leftover after parsing attributes in process `syz.3.223'.
[   47.682896][ T4223] netlink: 12 bytes leftover after parsing attributes in process `syz.3.223'.
[   47.705888][ T2998] udevd[2998]: worker [3300] terminated by signal 33 (Unknown signal 33)
[   47.720906][ T2998] udevd[2998]: worker [3300] failed while handling '/devices/virtual/block/loop4'
[   47.749272][ T4227] netlink: 4 bytes leftover after parsing attributes in process `syz.2.225'.
[   47.807153][ T4232] pim6reg1: entered promiscuous mode
[   47.812534][ T4232] pim6reg1: entered allmulticast mode
[   47.826125][ T4235] netlink: 4 bytes leftover after parsing attributes in process `syz.3.227'.
[   47.909945][ T4243] netlink: 240 bytes leftover after parsing attributes in process `syz.2.232'.
[   47.924977][ T4241] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   47.924977][ T4241]    program syz.4.231 not setting count and/or reply_len properly
[   48.057535][ T4254] team_slave_0: entered promiscuous mode
[   48.063412][ T4254] team_slave_1: entered promiscuous mode
[   48.070675][ T4254] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   48.079088][ T4264] FAULT_INJECTION: forcing a failure.
[   48.079088][ T4264] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   48.079918][ T4254] team0: Device macvtap1 is already an upper device of the team interface
[   48.092302][ T4264] CPU: 1 UID: 0 PID: 4264 Comm: syz.4.241 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   48.092344][ T4264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   48.092360][ T4264] Call Trace:
[   48.092367][ T4264]  <TASK>
[   48.092417][ T4264]  __dump_stack+0x1d/0x30
[   48.092440][ T4264]  dump_stack_lvl+0xe8/0x140
[   48.092461][ T4264]  dump_stack+0x15/0x1b
[   48.092478][ T4264]  should_fail_ex+0x265/0x280
[   48.092512][ T4264]  should_fail+0xb/0x20
[   48.092607][ T4264]  should_fail_usercopy+0x1a/0x20
[   48.092629][ T4264]  _copy_to_user+0x20/0xa0
[   48.092654][ T4264]  copy_to_sockptr_offset+0x4c/0x60
[   48.092679][ T4264]  ipv6_flowlabel_opt+0x10d5/0x1230
[   48.092717][ T4264]  do_ipv6_setsockopt+0xc92/0x22e0
[   48.092746][ T4264]  ? kstrtoull+0x111/0x140
[   48.092777][ T4264]  ? avc_has_perm_noaudit+0x1b1/0x200
[   48.092809][ T4264]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[   48.092912][ T4264]  ipv6_setsockopt+0x59/0x130
[   48.092940][ T4264]  udpv6_setsockopt+0x99/0xb0
[   48.092971][ T4264]  sock_common_setsockopt+0x69/0x80
[   48.093035][ T4264]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   48.093064][ T4264]  __sys_setsockopt+0x184/0x200
[   48.093084][ T4264]  __x64_sys_setsockopt+0x64/0x80
[   48.093112][ T4264]  x64_sys_call+0x2bd5/0x2fb0
[   48.093134][ T4264]  do_syscall_64+0xd2/0x200
[   48.093156][ T4264]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.093182][ T4264]  ? clear_bhb_loop+0x40/0x90
[   48.093204][ T4264]  ? clear_bhb_loop+0x40/0x90
[   48.093257][ T4264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.093279][ T4264] RIP: 0033:0x7f8b632be929
[   48.093297][ T4264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.093316][ T4264] RSP: 002b:00007f8b61927038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   48.093344][ T4264] RAX: ffffffffffffffda RBX: 00007f8b634e5fa0 RCX: 00007f8b632be929
[   48.093358][ T4264] RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000003
[   48.093422][ T4264] RBP: 00007f8b61927090 R08: 0000000000000021 R09: 0000000000000000
[   48.093435][ T4264] R10: 0000200000000300 R11: 0000000000000246 R12: 0000000000000001
[   48.093448][ T4264] R13: 0000000000000000 R14: 00007f8b634e5fa0 R15: 00007ffdd6669698
[   48.093466][ T4264]  </TASK>
[   48.331842][ T4254] team_slave_0: left promiscuous mode
[   48.337296][ T4254] team_slave_1: left promiscuous mode
[   48.346569][ T4272] loop0: detected capacity change from 0 to 512
[   48.359902][ T4275] netlink: 'syz.2.237': attribute type 4 has an invalid length.
[   48.380130][ T4272] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   48.400421][ T4272] EXT4-fs (loop0): mount failed
[   48.450226][ T4285] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.526207][ T4285] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.560323][ T4292] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   48.576710][ T4285] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.598893][ T4294] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   48.598893][ T4294]    program syz.0.247 not setting count and/or reply_len properly
[   48.639696][ T4285] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.671389][ T4299] loop0: detected capacity change from 0 to 512
[   48.680285][ T4299] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   48.696309][ T4299] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.699318][ T4285] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.710810][ T4299] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.721033][ T4285] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.733808][ T4299] EXT4-fs error (device loop0): __ext4_new_inode:1279: comm syz.0.249: failed to insert inode 16: doubly allocated?
[   48.739830][ T4285] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.759970][ T4285] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.769077][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.856090][ T4311] loop0: detected capacity change from 0 to 128
[   48.867685][ T4311] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   48.907456][ T4313] pim6reg1: entered promiscuous mode
[   48.912827][ T4313] pim6reg1: entered allmulticast mode
[   48.949986][ T4315] team_slave_0: entered promiscuous mode
[   48.955674][ T4315] team_slave_1: entered promiscuous mode
[   48.962478][ T4315] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   48.970475][ T4315] team0: Device macvtap1 is already an upper device of the team interface
[   48.979976][ T4315] team_slave_0: left promiscuous mode
[   48.985419][ T4315] team_slave_1: left promiscuous mode
[   49.019677][ T4320] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   49.081396][ T4325] loop2: detected capacity change from 0 to 512
[   49.094266][ T4325] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   49.105587][ T4325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.119300][ T4325] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.132866][ T4325] EXT4-fs error (device loop2): __ext4_new_inode:1279: comm syz.2.261: failed to insert inode 16: doubly allocated?
[   49.158536][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.168499][ T4331] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.206541][ T4331] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.240991][ T4338] loop4: detected capacity change from 0 to 128
[   49.256028][ T4338] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   49.256954][ T4331] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.296535][ T4340] loop2: detected capacity change from 0 to 128
[   49.303533][ T4340] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   49.317218][ T4331] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.365037][ T4348] pim6reg1: entered promiscuous mode
[   49.370416][ T4348] pim6reg1: entered allmulticast mode
[   49.383811][ T4331] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.394797][ T4331] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.406118][ T4331] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.417227][ T4331] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.456710][ T4352] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   49.562162][ T4363] loop0: detected capacity change from 0 to 512
[   49.590309][ T4363] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   49.634898][ T4363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.662534][ T4371] loop3: detected capacity change from 0 to 128
[   49.683497][ T4363] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.696815][ T4363] EXT4-fs error (device loop0): __ext4_new_inode:1279: comm syz.0.275: failed to insert inode 16: doubly allocated?
[   49.703641][ T4369] 9pnet_fd: Insufficient options for proto=fd
[   49.716722][ T4371] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[   49.744194][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.776368][ T4374] pim6reg1: entered promiscuous mode
[   49.781867][ T4374] pim6reg1: entered allmulticast mode
[   49.821394][ T4355] netlink: 'syz.1.267': attribute type 4 has an invalid length.
[   49.953229][ T4392] loop0: detected capacity change from 0 to 1024
[   49.964522][ T4394] loop2: detected capacity change from 0 to 512
[   49.974293][ T4394] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   49.997057][ T4392] EXT4-fs: Ignoring removed nomblk_io_submit option
[   50.013912][ T4392] EXT4-fs: Mount option(s) incompatible with ext3
[   50.085446][ T4396] team_slave_0: entered promiscuous mode
[   50.091290][ T4396] team_slave_1: entered promiscuous mode
[   50.108030][ T4396] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   50.122959][ T4396] team0: Device macvtap1 is already an upper device of the team interface
[   50.133148][ T4396] team_slave_0: left promiscuous mode
[   50.138596][ T4396] team_slave_1: left promiscuous mode
[   50.148927][ T4399] loop4: detected capacity change from 0 to 512
[   50.159680][ T4399] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   50.214833][ T4399] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.228507][ T4399] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.241611][ T4399] EXT4-fs error (device loop4): __ext4_new_inode:1279: comm syz.4.289: failed to insert inode 16: doubly allocated?
[   50.267795][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.453081][ T4419] pim6reg1: entered promiscuous mode
[   50.458517][ T4419] pim6reg1: entered allmulticast mode
[   50.489316][   T29] kauditd_printk_skb: 5782 callbacks suppressed
[   50.489331][   T29] audit: type=1326 audit(2000000011.680:7674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.521140][   T29] audit: type=1326 audit(2000000011.680:7675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.544625][   T29] audit: type=1326 audit(2000000011.680:7676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.567317][ T4423] loop4: detected capacity change from 0 to 1024
[   50.568034][   T29] audit: type=1326 audit(2000000011.680:7677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.597895][   T29] audit: type=1326 audit(2000000011.680:7678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.621237][   T29] audit: type=1326 audit(2000000011.680:7679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.644651][   T29] audit: type=1326 audit(2000000011.680:7680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.668137][   T29] audit: type=1326 audit(2000000011.680:7681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.691659][   T29] audit: type=1326 audit(2000000011.680:7682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.715021][   T29] audit: type=1326 audit(2000000011.680:7683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4422 comm="syz.4.297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b632be929 code=0x7ffc0000
[   50.741605][ T4423] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   50.741721][ T4426] loop3: detected capacity change from 0 to 512
[   50.779363][ T4423] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   50.788736][ T4423] EXT4-fs (loop4): orphan cleanup on readonly fs
[   50.843246][ T4432] team_slave_0: entered promiscuous mode
[   50.849069][ T4432] team_slave_1: entered promiscuous mode
[   50.855960][ T4432] 8021q: adding VLAN 0 to HW filter on device macvtap1
[   50.864529][ T4423] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 10: padding at end of block bitmap is not set
[   50.913679][ T4426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.927480][ T4432] team0: Device macvtap1 is already an upper device of the team interface
[   50.936712][ T4426] ext4 filesystem being mounted at /67/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   50.947222][ T4423] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm +}[@: Failed to acquire dquot type 0
[   50.958743][ T4423] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm +}[@: Failed to acquire dquot type 0
[   50.971005][ T4432] team_slave_0: left promiscuous mode
[   50.976504][ T4432] team_slave_1: left promiscuous mode
[   50.982173][ T4423] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096
[   50.982315][ T4436] loop0: detected capacity change from 0 to 512
[   51.003102][ T4423] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm +}[@: Failed to acquire dquot type 0
[   51.015051][ T4436] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   51.015072][ T4423] EXT4-fs (loop4): 1 orphan inode deleted
[   51.030572][ T4423] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   51.056470][ T4425] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   51.074364][ T4423] Invalid ELF header magic: != ELF
[   51.081866][ T4423] EXT4-fs error (device loop4): ext4_search_dir:1474: inode #2: block 16: comm +}[@: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[   51.114437][ T4436] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.138436][ T4445] EXT4-fs error (device loop4): ext4_search_dir:1474: inode #2: block 16: comm syz.4.297: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[   51.158907][ T4425] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm +}[@: mark_inode_dirty error
[   51.170082][ T4436] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.183582][ T4425] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   51.197510][ T4423] random: crng reseeded on system resumption
[   51.205614][ T4436] EXT4-fs error (device loop0): __ext4_new_inode:1279: comm syz.0.301: failed to insert inode 16: doubly allocated?
[   51.219017][ T4425] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm +}[@: mark_inode_dirty error
[   51.242729][ T4423] +}[@ (4423) used greatest stack depth: 9344 bytes left
[   51.245877][ T4425] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm +}[@: mark inode dirty (error -117)
[   51.271293][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.285808][ T4425] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   51.296497][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.322410][ T4450] @: renamed from vlan0 (while UP)
[   51.594367][ T4466] loop1: detected capacity change from 0 to 512
[   51.602062][ T4466] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   51.615099][ T4466] EXT4-fs (loop1): orphan cleanup on readonly fs
[   51.631622][ T4466] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[   51.659046][ T4470] __nla_validate_parse: 24 callbacks suppressed
[   51.659065][ T4470] netlink: 4 bytes leftover after parsing attributes in process `syz.4.313'.
[   51.663137][ T4466] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #11: comm syz.1.312: corrupted inode contents
[   51.688100][ T4472] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   51.692050][ T4466] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #11: comm syz.1.312: mark_inode_dirty error
[   51.708168][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.710325][ T4466] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.312: invalid indirect mapped block 327680 (level 0)
[   51.741296][ T4466] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #11: comm syz.1.312: corrupted inode contents
[   51.754985][ T4466] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   51.779486][ T4466] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #11: comm syz.1.312: corrupted inode contents
[   51.794014][ T4466] EXT4-fs error (device loop1): ext4_truncate:4597: inode #11: comm syz.1.312: mark_inode_dirty error
[   51.830077][ T4466] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   51.847885][ T4466] EXT4-fs (loop1): 1 truncate cleaned up
[   51.860870][ T4466] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   51.900729][ T4488] loop2: detected capacity change from 0 to 512
[   51.921121][ T4488] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.945861][ T4488] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.958361][ T4494] loop4: detected capacity change from 0 to 2048
[   51.976182][ T4488] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[   51.989548][ T4496] 9pnet_fd: Insufficient options for proto=fd
[   51.997913][ T4496] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[   52.015937][ T4494] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.130540][ T4500] loop2: detected capacity change from 0 to 512
[   52.162075][ T4500] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   52.178865][ T4500] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   52.195187][ T4500] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #18: comm +}[@: mark_inode_dirty error
[   52.208935][ T4500] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   52.221885][ T4500] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm +}[@: mark_inode_dirty error
[   52.235481][ T4500] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm +}[@: mark inode dirty (error -117)
[   52.248000][ T4500] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117)
[   52.256997][ T4510] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   52.460280][ T4501] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.323: bg 0: block 345: padding at end of block bitmap is not set
[   52.550302][ T4511] EXT4-fs error (device loop4): ext4_lookup:1787: inode #14: comm syz.4.323: invalid fast symlink length 39
[   52.575114][ T4534] netlink: 36 bytes leftover after parsing attributes in process `syz.1.337'.
[   52.595599][ T4534] vlan0: entered promiscuous mode
[   52.600787][ T4534] geneve1: entered promiscuous mode
[   52.613982][ T4542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.340'.
[   52.652672][ T4542] netlink: 12 bytes leftover after parsing attributes in process `syz.3.340'.
[   52.757618][ T4553] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   52.818284][ T4559] netlink: 24 bytes leftover after parsing attributes in process `syz.1.347'.
[   52.842285][ T4494] syz.4.323 (4494) used greatest stack depth: 7000 bytes left
[   52.936466][ T4575] netlink: 4 bytes leftover after parsing attributes in process `syz.1.353'.
[   52.945798][ T4575] netlink: 12 bytes leftover after parsing attributes in process `syz.1.353'.
[   52.957592][ T4577] FAULT_INJECTION: forcing a failure.
[   52.957592][ T4577] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   52.971024][ T4577] CPU: 1 UID: 0 PID: 4577 Comm: syz.3.354 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   52.971130][ T4577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   52.971142][ T4577] Call Trace:
[   52.971148][ T4577]  <TASK>
[   52.971156][ T4577]  __dump_stack+0x1d/0x30
[   52.971176][ T4577]  dump_stack_lvl+0xe8/0x140
[   52.971222][ T4577]  dump_stack+0x15/0x1b
[   52.971242][ T4577]  should_fail_ex+0x265/0x280
[   52.971331][ T4577]  should_fail_alloc_page+0xf2/0x100
[   52.971424][ T4577]  __alloc_frozen_pages_noprof+0xff/0x360
[   52.971527][ T4577]  alloc_pages_mpol+0xb3/0x250
[   52.971563][ T4577]  vma_alloc_folio_noprof+0x1aa/0x300
[   52.971599][ T4577]  do_wp_page+0x673/0x2400
[   52.971704][ T4577]  ? __rcu_read_lock+0x37/0x50
[   52.971731][ T4577]  handle_mm_fault+0x77d/0x2be0
[   52.971758][ T4577]  ? mas_walk+0xf2/0x120
[   52.971784][ T4577]  do_user_addr_fault+0x636/0x1090
[   52.971901][ T4577]  ? fpregs_assert_state_consistent+0xb4/0xe0
[   52.971932][ T4577]  exc_page_fault+0x62/0xa0
[   52.972013][ T4577]  asm_exc_page_fault+0x26/0x30
[   52.972034][ T4577] RIP: 0033:0x7f592a350ca3
[   52.972052][ T4577] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[   52.972073][ T4577] RSP: 002b:00007f5928af64a0 EFLAGS: 00010202
[   52.972092][ T4577] RAX: 0000000000000400 RBX: 00007f5928af6540 RCX: 00007f59206d7000
[   52.972107][ T4577] RDX: 00007f5928af66e0 RSI: 0000000000000000 RDI: 00007f5928af65e0
[   52.972121][ T4577] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000b0
[   52.972134][ T4577] R10: 00000000000000c4 R11: 00007f5928af6540 R12: 0000000000000001
[   52.972207][ T4577] R13: 00007f592a52c020 R14: 0000000000000020 R15: 00007f5928af65e0
[   52.972228][ T4577]  </TASK>
[   52.972239][ T4577] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[   53.165861][ T4577] loop3: detected capacity change from 0 to 1024
[   53.172635][ T4577] EXT4-fs: Ignoring removed bh option
[   53.182447][ T4577] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.195139][ T4577] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   53.203417][ T4577] EXT4-fs (loop3): orphan cleanup on readonly fs
[   53.212469][ T4577] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.354: Invalid inode table block 0 in block_group 0
[   53.227632][ T4577] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   53.237732][ T4577] EXT4-fs error (device loop3): ext4_quota_write:7322: inode #3: comm syz.3.354: mark_inode_dirty error
[   53.250155][ T4577] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.354: Failed to acquire dquot type 0
[   53.271259][ T4577] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.354: Invalid inode table block 0 in block_group 0
[   53.308333][ T4596] loop4: detected capacity change from 0 to 2048
[   53.315241][ T4577] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   53.326514][ T4577] EXT4-fs error (device loop3): ext4_ext_truncate:4475: inode #15: comm syz.3.354: mark_inode_dirty error
[   53.340709][ T4577] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.354: Invalid inode table block 0 in block_group 0
[   53.357458][ T4595] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.358034][ T4577] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   53.366258][ T4595] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.393486][ T4577] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   53.408511][ T4596] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.429770][ T4577] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz.3.354: Invalid inode table block 0 in block_group 0
[   53.442543][ T4595] loop1: detected capacity change from 0 to 2048
[   53.455314][ T4595] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.462467][ T4577] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   53.473992][ T4577] EXT4-fs error (device loop3): ext4_truncate:4597: inode #15: comm syz.3.354: mark_inode_dirty error
[   53.485809][ T4577] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   53.495818][ T4577] EXT4-fs (loop3): 1 truncate cleaned up
[   53.541774][ T4611] netlink: 12 bytes leftover after parsing attributes in process `syz.0.363'.
[   53.587451][ T4614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.365'.
[   53.714765][ T4619] loop3: detected capacity change from 0 to 1024
[   53.761717][ T4619] cgroup: Invalid name
[   53.790601][ T4630] delete_channel: no stack
[   53.801253][ T4630] delete_channel: no stack
[   53.811573][ T4606] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.360: bg 0: block 345: padding at end of block bitmap is not set
[   53.856449][ T4630] loop0: detected capacity change from 0 to 256
[   53.903893][ T4617] EXT4-fs error (device loop4): ext4_lookup:1787: inode #14: comm syz.4.360: invalid fast symlink length 39
[   53.989909][ T4643] loop2: detected capacity change from 0 to 128
[   54.045678][ T4646] FAULT_INJECTION: forcing a failure.
[   54.045678][ T4646] name failslab, interval 1, probability 0, space 0, times 0
[   54.058550][ T4646] CPU: 0 UID: 0 PID: 4646 Comm: syz.2.377 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   54.058582][ T4646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.058595][ T4646] Call Trace:
[   54.058602][ T4646]  <TASK>
[   54.058610][ T4646]  __dump_stack+0x1d/0x30
[   54.058647][ T4646]  dump_stack_lvl+0xe8/0x140
[   54.058668][ T4646]  dump_stack+0x15/0x1b
[   54.058687][ T4646]  should_fail_ex+0x265/0x280
[   54.058754][ T4646]  should_failslab+0x8c/0xb0
[   54.058776][ T4646]  kmem_cache_alloc_noprof+0x50/0x310
[   54.058858][ T4646]  ? skb_clone+0x151/0x1f0
[   54.058926][ T4646]  skb_clone+0x151/0x1f0
[   54.058949][ T4646]  __netlink_deliver_tap+0x2c9/0x500
[   54.059045][ T4646]  netlink_unicast+0x64c/0x670
[   54.059081][ T4646]  netlink_sendmsg+0x58b/0x6b0
[   54.059107][ T4646]  ? __pfx_netlink_sendmsg+0x10/0x10
[   54.059132][ T4646]  __sock_sendmsg+0x142/0x180
[   54.059218][ T4646]  ____sys_sendmsg+0x31e/0x4e0
[   54.059243][ T4646]  ___sys_sendmsg+0x17b/0x1d0
[   54.059276][ T4646]  __x64_sys_sendmsg+0xd4/0x160
[   54.059330][ T4646]  x64_sys_call+0x2999/0x2fb0
[   54.059363][ T4646]  do_syscall_64+0xd2/0x200
[   54.059468][ T4646]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.059497][ T4646]  ? clear_bhb_loop+0x40/0x90
[   54.059517][ T4646]  ? clear_bhb_loop+0x40/0x90
[   54.059539][ T4646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.059560][ T4646] RIP: 0033:0x7efe823be929
[   54.059578][ T4646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.059598][ T4646] RSP: 002b:00007efe80a27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.059738][ T4646] RAX: ffffffffffffffda RBX: 00007efe825e5fa0 RCX: 00007efe823be929
[   54.059753][ T4646] RDX: 0000000020008040 RSI: 0000200000001000 RDI: 0000000000000003
[   54.059768][ T4646] RBP: 00007efe80a27090 R08: 0000000000000000 R09: 0000000000000000
[   54.059781][ T4646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.059793][ T4646] R13: 0000000000000000 R14: 00007efe825e5fa0 R15: 00007ffd3993ab18
[   54.059809][ T4646]  </TASK>
[   54.339354][ T4654] syz.2.381 uses obsolete (PF_INET,SOCK_PACKET)
[   54.355980][ T4654] netlink: 'syz.2.381': attribute type 4 has an invalid length.
[   54.375156][ T4654] netlink: 'syz.2.381': attribute type 4 has an invalid length.
[   54.414989][ T4660] pim6reg1: entered promiscuous mode
[   54.420439][ T4660] pim6reg1: entered allmulticast mode
[   54.485454][ T4667] loop0: detected capacity change from 0 to 512
[   54.506638][ T4667] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.532273][ T4667] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[   54.540617][ T4672] loop4: detected capacity change from 0 to 512
[   54.555816][ T4674] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   54.555816][ T4674]    program syz.1.389 not setting count and/or reply_len properly
[   54.582884][ T4672] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.606904][ T4672] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.624059][ T4672] FAULT_INJECTION: forcing a failure.
[   54.624059][ T4672] name failslab, interval 1, probability 0, space 0, times 0
[   54.636852][ T4672] CPU: 0 UID: 0 PID: 4672 Comm: syz.4.388 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   54.636946][ T4672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.636959][ T4672] Call Trace:
[   54.636968][ T4672]  <TASK>
[   54.637052][ T4672]  __dump_stack+0x1d/0x30
[   54.637076][ T4672]  dump_stack_lvl+0xe8/0x140
[   54.637097][ T4672]  dump_stack+0x15/0x1b
[   54.637117][ T4672]  should_fail_ex+0x265/0x280
[   54.637179][ T4672]  should_failslab+0x8c/0xb0
[   54.637205][ T4672]  __kmalloc_noprof+0xa5/0x3e0
[   54.637256][ T4672]  ? ext4_find_extent+0x16b/0x7a0
[   54.637302][ T4672]  ext4_find_extent+0x16b/0x7a0
[   54.637333][ T4672]  ? __blk_add_trace+0x645/0x730
[   54.637366][ T4672]  ? __blk_mq_alloc_requests+0xd86/0xe30
[   54.637399][ T4672]  ext4_ext_map_blocks+0x11f/0x38a0
[   54.637438][ T4672]  ? blk_mq_submit_bio+0xbaa/0xf50
[   54.637483][ T4672]  ? ext4_es_lookup_extent+0x352/0x4f0
[   54.637508][ T4672]  ext4_map_blocks+0x61c/0xd70
[   54.637537][ T4672]  ext4_iomap_begin+0x93a/0xe00
[   54.637563][ T4672]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   54.637585][ T4672]  iomap_iter+0x335/0x730
[   54.637682][ T4672]  __iomap_dio_rw+0xd5e/0x1250
[   54.637760][ T4672]  ? ext4_journal_check_start+0x11a/0x1b0
[   54.637795][ T4672]  iomap_dio_rw+0x40/0x90
[   54.637905][ T4672]  ext4_file_write_iter+0xad9/0xf00
[   54.637939][ T4672]  do_iter_readv_writev+0x41e/0x4c0
[   54.637969][ T4672]  vfs_writev+0x2df/0x8b0
[   54.638028][ T4672]  ? mutex_lock+0xd/0x30
[   54.638101][ T4672]  do_writev+0xe7/0x210
[   54.638131][ T4672]  __x64_sys_writev+0x45/0x50
[   54.638154][ T4672]  x64_sys_call+0x2006/0x2fb0
[   54.638180][ T4672]  do_syscall_64+0xd2/0x200
[   54.638203][ T4672]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.638253][ T4672]  ? clear_bhb_loop+0x40/0x90
[   54.638274][ T4672]  ? clear_bhb_loop+0x40/0x90
[   54.638307][ T4672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.638331][ T4672] RIP: 0033:0x7f8b632be929
[   54.638348][ T4672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.638388][ T4672] RSP: 002b:00007f8b61927038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   54.638411][ T4672] RAX: ffffffffffffffda RBX: 00007f8b634e5fa0 RCX: 00007f8b632be929
[   54.638425][ T4672] RDX: 0000000000000001 RSI: 0000200000000140 RDI: 0000000000000005
[   54.638439][ T4672] RBP: 00007f8b61927090 R08: 0000000000000000 R09: 0000000000000000
[   54.638453][ T4672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   54.638549][ T4672] R13: 0000000000000000 R14: 00007f8b634e5fa0 R15: 00007ffdd6669698
[   54.638569][ T4672]  </TASK>
[   54.940854][ T4682] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   54.940854][ T4682]    program syz.1.392 not setting count and/or reply_len properly
[   55.086546][ T4698] loop3: detected capacity change from 0 to 2048
[   55.102507][ T4706] loop4: detected capacity change from 0 to 512
[   55.123757][ T4706] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.145114][ T4698] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.157955][ T4703] loop0: detected capacity change from 0 to 1024
[   55.187592][ T4706] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.201553][ T4703] cgroup: Invalid name
[   55.227731][ T4715] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   55.227731][ T4715]    program syz.2.403 not setting count and/or reply_len properly
[   55.419491][ T4733] loop4: detected capacity change from 0 to 2048
[   55.464574][ T4741] FAULT_INJECTION: forcing a failure.
[   55.464574][ T4741] name failslab, interval 1, probability 0, space 0, times 0
[   55.477305][ T4741] CPU: 0 UID: 0 PID: 4741 Comm: syz.2.408 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   55.477385][ T4741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   55.477396][ T4741] Call Trace:
[   55.477403][ T4741]  <TASK>
[   55.477410][ T4741]  __dump_stack+0x1d/0x30
[   55.477482][ T4741]  dump_stack_lvl+0xe8/0x140
[   55.477503][ T4741]  dump_stack+0x15/0x1b
[   55.477522][ T4741]  should_fail_ex+0x265/0x280
[   55.477622][ T4741]  should_failslab+0x8c/0xb0
[   55.477724][ T4741]  kmem_cache_alloc_noprof+0x50/0x310
[   55.477754][ T4741]  ? security_file_alloc+0x32/0x100
[   55.477778][ T4741]  security_file_alloc+0x32/0x100
[   55.477799][ T4741]  init_file+0x5c/0x1d0
[   55.477871][ T4741]  alloc_empty_file+0x8b/0x200
[   55.477903][ T4741]  alloc_file_pseudo+0xc6/0x160
[   55.477935][ T4741]  anon_inode_getfile_fmode+0xa5/0x140
[   55.478057][ T4741]  __se_sys_timerfd_create+0x1f6/0x260
[   55.478086][ T4741]  __x64_sys_timerfd_create+0x31/0x40
[   55.478113][ T4741]  x64_sys_call+0x29d0/0x2fb0
[   55.478136][ T4741]  do_syscall_64+0xd2/0x200
[   55.478179][ T4741]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   55.478211][ T4741]  ? clear_bhb_loop+0x40/0x90
[   55.478236][ T4741]  ? clear_bhb_loop+0x40/0x90
[   55.478261][ T4741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.478361][ T4741] RIP: 0033:0x7efe823be929
[   55.478380][ T4741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.478400][ T4741] RSP: 002b:00007efe80a27038 EFLAGS: 00000246 ORIG_RAX: 000000000000011b
[   55.478421][ T4741] RAX: ffffffffffffffda RBX: 00007efe825e5fa0 RCX: 00007efe823be929
[   55.478437][ T4741] RDX: 0000000000000000 RSI: 0000000000080000 RDI: 0000000000000009
[   55.478451][ T4741] RBP: 00007efe80a27090 R08: 0000000000000000 R09: 0000000000000000
[   55.478466][ T4741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   55.478479][ T4741] R13: 0000000000000000 R14: 00007efe825e5fa0 R15: 00007ffd3993ab18
[   55.478560][ T4741]  </TASK>
[   55.756585][   T29] kauditd_printk_skb: 414 callbacks suppressed
[   55.756612][   T29] audit: type=1107 audit(2000000016.950:8087): pid=4755 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   55.882403][ T4772] loop4: detected capacity change from 0 to 512
[   55.968379][   T29] audit: type=1326 audit(2000000017.160:8088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   55.978138][ T4772] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.991820][   T29] audit: type=1326 audit(2000000017.160:8089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.024289][   T29] audit: type=1326 audit(2000000017.160:8090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.047977][   T29] audit: type=1326 audit(2000000017.160:8091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.071387][   T29] audit: type=1326 audit(2000000017.160:8092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.086559][ T4772] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.094633][   T29] audit: type=1326 audit(2000000017.160:8093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.128341][   T29] audit: type=1326 audit(2000000017.160:8094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.151641][   T29] audit: type=1326 audit(2000000017.160:8095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2de9aee929 code=0x7ffc0000
[   56.163229][ T4772] EXT4-fs error (device loop4): __ext4_new_inode:1279: comm syz.4.417: failed to insert inode 16: doubly allocated?
[   56.174953][   T29] audit: type=1326 audit(2000000017.160:8096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4776 comm="syz.0.418" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2de9af0847 code=0x7ffc0000
[   56.222261][ T4783] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.322333][ T4783] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.351462][ T4748] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.399: bg 0: block 345: padding at end of block bitmap is not set
[   56.408426][ T4790] EXT4-fs error (device loop3): ext4_lookup:1787: inode #14: comm syz.3.399: invalid fast symlink length 39
[   56.426765][ T1625] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[   56.439455][ T1625] EXT4-fs (loop3): This should not happen!! Data will be lost
[   56.439455][ T1625] 
[   56.460305][ T4783] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.517675][ T4783] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   56.530391][  T169] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 357 with error 28
[   56.543138][  T169] EXT4-fs (loop3): This should not happen!! Data will be lost
[   56.543138][  T169] 
[   56.552800][  T169] EXT4-fs (loop3): Total free blocks count 0
[   56.559095][  T169] EXT4-fs (loop3): Free/Dirty block details
[   56.565072][  T169] EXT4-fs (loop3): free_blocks=0
[   56.570048][  T169] EXT4-fs (loop3): dirty_blocks=368
[   56.575490][  T169] EXT4-fs (loop3): Block reservation details
[   56.575503][ T4794] loop0: detected capacity change from 0 to 512
[   56.575534][  T169] EXT4-fs (loop3): i_reserved_data_blocks=23
[   56.607952][ T4794] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   56.658511][ T4783] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.663865][ T4794] EXT4-fs (loop0): invalid journal inode
[   56.672165][ T4783] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.672608][ T4794] EXT4-fs (loop0): can't get journal size
[   56.705334][ T4783] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.714872][ T4794] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c118, mo2=0002]
[   56.729726][ T4783] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.733123][ T4794] System zones: 1-12, 13-13
[   56.742717][ T4815] pim6reg1: entered promiscuous mode
[   56.748097][ T4815] pim6reg1: entered allmulticast mode
[   56.748468][ T4794] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.422: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   56.780137][ T4813] __nla_validate_parse: 9 callbacks suppressed
[   56.780155][ T4813] netlink: 24 bytes leftover after parsing attributes in process `syz.4.430'.
[   56.802069][ T4794] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.422: couldn't read orphan inode 15 (err -117)
[   56.885871][ T4820] loop1: detected capacity change from 0 to 512
[   56.922622][ T4820] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   56.937021][ T4820] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.960896][ T4828] netlink: 24 bytes leftover after parsing attributes in process `syz.4.436'.
[   57.039692][ T4820] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.433: failed to insert inode 16: doubly allocated?
[   57.095388][ T4839] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.129057][ T4845] netlink: 332 bytes leftover after parsing attributes in process `syz.3.443'.
[   57.148288][ T4845] netlink: 196 bytes leftover after parsing attributes in process `syz.3.443'.
[   57.159002][ T4848] pim6reg1: entered promiscuous mode
[   57.164495][ T4848] pim6reg1: entered allmulticast mode
[   57.177048][ T4839] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.256482][ T4839] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.315151][ T4859] netlink: 24 bytes leftover after parsing attributes in process `syz.1.448'.
[   57.338743][ T4839] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.393878][ T4864] loop1: detected capacity change from 0 to 256
[   57.403242][ T4865] loop0: detected capacity change from 0 to 512
[   57.415019][ T4865] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   57.433486][ T4865] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.445: corrupted inode contents
[   57.446710][ T4865] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #18: comm syz.0.445: mark_inode_dirty error
[   57.458187][ T4865] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #18: comm syz.0.445: corrupted inode contents
[   57.471759][ T4865] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.445: mark_inode_dirty error
[   57.486998][ T4865] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.445: mark inode dirty (error -117)
[   57.500024][ T4865] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117)
[   57.529275][ T4864] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   57.547964][ T4839] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.586125][ T4839] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.613013][ T4839] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.642481][ T4839] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.896218][ T4872] loop4: detected capacity change from 0 to 764
[   57.903856][ T4872] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   58.021428][ T4880] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4880 comm=syz.4.454
[   58.046110][ T4883] loop1: detected capacity change from 0 to 512
[   58.080126][ T4883] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   58.125790][ T4883] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.141159][ T4883] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.455: failed to insert inode 16: doubly allocated?
[   58.180810][ T4893] pim6reg1: entered promiscuous mode
[   58.186455][ T4893] pim6reg1: entered allmulticast mode
[   58.239104][ T4899] geneve2: entered promiscuous mode
[   58.244467][ T4899] geneve2: entered allmulticast mode
[   58.387986][ T4911] FAULT_INJECTION: forcing a failure.
[   58.387986][ T4911] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.401177][ T4911] CPU: 1 UID: 0 PID: 4911 Comm: syz.1.467 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   58.401220][ T4911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   58.401234][ T4911] Call Trace:
[   58.401247][ T4911]  <TASK>
[   58.401255][ T4911]  __dump_stack+0x1d/0x30
[   58.401279][ T4911]  dump_stack_lvl+0xe8/0x140
[   58.401302][ T4911]  dump_stack+0x15/0x1b
[   58.401319][ T4911]  should_fail_ex+0x265/0x280
[   58.401411][ T4911]  should_fail+0xb/0x20
[   58.401447][ T4911]  should_fail_usercopy+0x1a/0x20
[   58.401469][ T4911]  _copy_from_user+0x1c/0xb0
[   58.401526][ T4911]  vt_resizex+0x4a/0x350
[   58.401595][ T4911]  vt_ioctl+0x107a/0x1880
[   58.401623][ T4911]  ? tty_jobctrl_ioctl+0x29e/0x810
[   58.401651][ T4911]  tty_ioctl+0x7de/0xb80
[   58.401765][ T4911]  ? __pfx_tty_ioctl+0x10/0x10
[   58.401889][ T4911]  __se_sys_ioctl+0xce/0x140
[   58.401946][ T4911]  __x64_sys_ioctl+0x43/0x50
[   58.402004][ T4911]  x64_sys_call+0x19a8/0x2fb0
[   58.402019][ T4911]  do_syscall_64+0xd2/0x200
[   58.402034][ T4911]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   58.402088][ T4911]  ? clear_bhb_loop+0x40/0x90
[   58.402103][ T4911]  ? clear_bhb_loop+0x40/0x90
[   58.402136][ T4911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.402213][ T4911] RIP: 0033:0x7f43c3c1e929
[   58.402252][ T4911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.402262][ T4911] RSP: 002b:00007f43c2287038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.402302][ T4911] RAX: ffffffffffffffda RBX: 00007f43c3e45fa0 RCX: 00007f43c3c1e929
[   58.402309][ T4911] RDX: 0000200000000080 RSI: 000000000000560a RDI: 0000000000000003
[   58.402316][ T4911] RBP: 00007f43c2287090 R08: 0000000000000000 R09: 0000000000000000
[   58.402322][ T4911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.402330][ T4911] R13: 0000000000000000 R14: 00007f43c3e45fa0 R15: 00007ffecbefe7f8
[   58.402340][ T4911]  </TASK>
[   58.866106][ T4932] loop1: detected capacity change from 0 to 512
[   58.930528][ T4934] loop2: detected capacity change from 0 to 512
[   59.000430][ T4937] FAULT_INJECTION: forcing a failure.
[   59.000430][ T4937] name failslab, interval 1, probability 0, space 0, times 0
[   59.013240][ T4937] CPU: 0 UID: 0 PID: 4937 Comm: syz.3.474 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   59.013329][ T4937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   59.013342][ T4937] Call Trace:
[   59.013351][ T4937]  <TASK>
[   59.013361][ T4937]  __dump_stack+0x1d/0x30
[   59.013387][ T4937]  dump_stack_lvl+0xe8/0x140
[   59.013464][ T4937]  dump_stack+0x15/0x1b
[   59.013480][ T4937]  should_fail_ex+0x265/0x280
[   59.013515][ T4937]  should_failslab+0x8c/0xb0
[   59.013550][ T4937]  kmem_cache_alloc_noprof+0x50/0x310
[   59.013634][ T4937]  ? security_inode_alloc+0x37/0x100
[   59.013673][ T4937]  security_inode_alloc+0x37/0x100
[   59.013761][ T4937]  inode_init_always_gfp+0x4b7/0x500
[   59.013790][ T4937]  ? __pfx_shmem_alloc_inode+0x10/0x10
[   59.013809][ T4937]  alloc_inode+0x58/0x170
[   59.013827][ T4937]  new_inode+0x1d/0xe0
[   59.013885][ T4937]  shmem_get_inode+0x244/0x750
[   59.013925][ T4937]  __shmem_file_setup+0x113/0x210
[   59.013989][ T4937]  shmem_file_setup+0x3b/0x50
[   59.014022][ T4937]  __se_sys_memfd_create+0x2c3/0x590
[   59.014061][ T4937]  __x64_sys_memfd_create+0x31/0x40
[   59.014142][ T4937]  x64_sys_call+0x122f/0x2fb0
[   59.014167][ T4937]  do_syscall_64+0xd2/0x200
[   59.014233][ T4937]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.014261][ T4937]  ? clear_bhb_loop+0x40/0x90
[   59.014312][ T4937]  ? clear_bhb_loop+0x40/0x90
[   59.014334][ T4937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.014386][ T4937] RIP: 0033:0x7f592a48e929
[   59.014401][ T4937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.014419][ T4937] RSP: 002b:00007f5928af6d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   59.014442][ T4937] RAX: ffffffffffffffda RBX: 000000000000060d RCX: 00007f592a48e929
[   59.014527][ T4937] RDX: 00007f5928af6dec RSI: 0000000000000000 RDI: 00007f592a5114cc
[   59.014548][ T4937] RBP: 0000200000002200 R08: 00007f5928af6b07 R09: 0000000000000000
[   59.014561][ T4937] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[   59.014574][ T4937] R13: 00007f5928af6dec R14: 00007f5928af6df0 R15: 00007fffba8236e8
[   59.014591][ T4937]  </TASK>
[   59.016392][ T4938] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   59.188420][ T4934] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   59.271102][ T4932] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.295803][ T4926] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.468: corrupted inode contents
[   59.308306][ T4926] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #18: comm syz.1.468: mark_inode_dirty error
[   59.320148][ T4926] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #18: comm syz.1.468: corrupted inode contents
[   59.324683][ T4934] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.332681][ T4926] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #18: comm syz.1.468: mark_inode_dirty error
[   59.355607][ T4926] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #18: comm syz.1.468: mark inode dirty (error -117)
[   59.369394][ T4926] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[   59.388421][ T4934] EXT4-fs error (device loop2): __ext4_new_inode:1279: comm syz.2.473: failed to insert inode 16: doubly allocated?
[   59.391098][ T4951] loop3: detected capacity change from 0 to 1024
[   59.428908][ T4951] cgroup: Invalid name
[   59.505907][ T4964] netlink: 4 bytes leftover after parsing attributes in process `syz.2.483'.
[   59.544221][ T4956] vhci_hcd: invalid port number 96
[   59.549413][ T4956] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   59.614595][ T4964] netlink: 12 bytes leftover after parsing attributes in process `syz.2.483'.
[   59.635798][ T4970] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   59.646846][ T4956] loop0: detected capacity change from 0 to 8192
[   59.674867][ T4972] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.689240][ T4974] netlink: 4 bytes leftover after parsing attributes in process `syz.1.489'.
[   59.699815][ T4923]  loop0: p1 < > p2 < p5 > p3 p4
[   59.706165][ T4974] netlink: 12 bytes leftover after parsing attributes in process `syz.1.489'.
[   59.712443][ T4923] loop0: p3 start 83890176 is beyond EOD, truncated
[   59.721787][ T4923] loop0: p4 size 16776960 extends beyond EOD, truncated
[   59.731022][ T4923] loop0: p5 size 16776960 extends beyond EOD, truncated
[   59.744212][ T4956]  loop0: p1 < > p2 < p5 > p3 p4
[   59.750994][ T4956] loop0: p3 start 83890176 is beyond EOD, truncated
[   59.757944][ T4956] loop0: p4 size 16776960 extends beyond EOD, truncated
[   59.766111][ T4972] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.773755][ T4956] loop0: p5 size 16776960 extends beyond EOD, truncated
[   59.803953][ T4956] netlink: '+}[@': attribute type 1 has an invalid length.
[   59.815194][ T4972] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.854893][ T4972] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.915077][ T4972] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.934778][ T4991] netlink: 4 bytes leftover after parsing attributes in process `syz.0.495'.
[   59.946380][ T4923] udevd[4923]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   59.952429][ T4972] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.957699][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   59.976349][ T4984] udevd[4984]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   59.988799][ T4986] udevd[4986]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory
[   59.990352][ T4972] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.011799][ T4972] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.071316][ T4999] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   60.129910][ T5005] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   60.320872][ T5015] loop3: detected capacity change from 0 to 512
[   60.326314][ T5020] vhci_hcd: invalid port number 96
[   60.332403][ T5020] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[   60.350644][ T5015] ext4 filesystem being mounted at /108/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   60.368304][ T5015] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   60.387488][ T5015] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm +}[@: mark_inode_dirty error
[   60.398644][ T5015] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm +}[@: corrupted inode contents
[   60.411350][ T5015] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm +}[@: mark_inode_dirty error
[   60.423604][ T5015] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm +}[@: mark inode dirty (error -117)
[   60.435980][ T5015] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   60.446914][ T5020] loop2: detected capacity change from 0 to 8192
[   60.493817][ T5020]  loop2: p1 < > p2 < p5 > p3 p4
[   60.507567][ T5020] loop2: p3 start 83890176 is beyond EOD, truncated
[   60.514434][ T5020] loop2: p4 size 16776960 extends beyond EOD, truncated
[   60.525551][ T5020] loop2: p5 size 16776960 extends beyond EOD, truncated
[   60.544382][ T2998]  loop2: p1 < > p2 < p5 > p3 p4
[   60.550763][ T2998] loop2: p3 start 83890176 is beyond EOD, truncated
[   60.552700][ T5038] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   60.557436][ T2998] loop2: p4 size 16776960 extends beyond EOD, truncated
[   60.575937][ T2998] loop2: p5 size 16776960 extends beyond EOD, truncated
[   60.601768][ T5020] netlink: '+}[@': attribute type 1 has an invalid length.
[   60.670852][ T3298] udevd[3298]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   60.674443][ T4986] udevd[4986]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory
[   60.682694][ T4984] udevd[4984]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   60.703950][ T4923] udevd[4923]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[   60.758541][ T5054] loop0: detected capacity change from 0 to 512
[   60.767701][ T5054] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   60.786924][ T5054] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.799613][   T29] kauditd_printk_skb: 164 callbacks suppressed
[   60.799628][   T29] audit: type=1107 audit(2000000021.991:8261): pid=5055 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   60.799988][ T5054] EXT4-fs error (device loop0): __ext4_new_inode:1279: comm syz.0.521: failed to insert inode 16: doubly allocated?
[   61.083091][   T29] audit: type=1107 audit(2000000022.261:8262): pid=5088 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[   61.103970][   T29] audit: type=1326 audit(2000000022.301:8263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.132959][   T29] audit: type=1326 audit(2000000022.301:8264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.156781][   T29] audit: type=1326 audit(2000000022.301:8265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.180676][   T29] audit: type=1326 audit(2000000022.301:8266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.204181][   T29] audit: type=1326 audit(2000000022.301:8267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.227928][   T29] audit: type=1326 audit(2000000022.301:8268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.251513][   T29] audit: type=1326 audit(2000000022.301:8269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.274890][   T29] audit: type=1326 audit(2000000022.301:8270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5090 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f43c3c1e929 code=0x7ffc0000
[   61.407363][ T5106] loop3: detected capacity change from 0 to 1024
[   61.428910][ T5106] cgroup: Invalid name
[   61.469140][ T5116] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   61.544589][ T5124] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   61.715895][ T5138] loop3: detected capacity change from 0 to 512
[   61.764973][ T5138] ext4 filesystem being mounted at /115/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.777824][ T5138] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.550: corrupted inode contents
[   61.791750][ T5138] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #18: comm syz.3.550: mark_inode_dirty error
[   61.803845][ T5138] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.550: corrupted inode contents
[   61.818381][ T5138] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2991: inode #18: comm syz.3.550: mark_inode_dirty error
[   61.832535][ T5138] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2994: inode #18: comm syz.3.550: mark inode dirty (error -117)
[   61.853236][ T5138] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[   61.941145][ T5145] loop0: detected capacity change from 0 to 1024
[   61.976515][ T5145] cgroup: Invalid name
[   62.013539][ T5154] loop1: detected capacity change from 0 to 764
[   62.043610][ T5159] __nla_validate_parse: 7 callbacks suppressed
[   62.043630][ T5159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.564'.
[   62.155689][ T5173] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.205682][ T5173] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.256932][ T5173] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.257576][ T5178] capability: warning: `syz.0.571' uses deprecated v2 capabilities in a way that may be insecure
[   62.294202][ T5178] loop0: detected capacity change from 0 to 1024
[   62.303064][ T5178] EXT4-fs: Ignoring removed bh option
[   62.316242][ T5173] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.326740][ T5178] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   62.339752][ T5178] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   62.348157][ T5178] EXT4-fs (loop0): orphan cleanup on readonly fs
[   62.374201][ T5178] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz.0.571: Invalid inode table block 0 in block_group 0
[   62.396542][ T5185] loop4: detected capacity change from 0 to 512
[   62.402259][ T5178] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   62.413111][ T5178] EXT4-fs error (device loop0): ext4_quota_write:7322: inode #3: comm syz.0.571: mark_inode_dirty error
[   62.419811][ T5173] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.426531][ T5178] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.571: Failed to acquire dquot type 0
[   62.447958][ T5173] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.456277][ T5178] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz.0.571: Invalid inode table block 0 in block_group 0
[   62.469995][ T5178] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   62.481346][ T5178] EXT4-fs error (device loop0): ext4_ext_truncate:4475: inode #15: comm syz.0.571: mark_inode_dirty error
[   62.498402][ T5178] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz.0.571: Invalid inode table block 0 in block_group 0
[   62.500232][ T5185] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.513407][ T5173] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.532520][ T5178] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   62.546978][ T5173] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.562740][ T5178] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   62.582376][ T5178] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz.0.571: Invalid inode table block 0 in block_group 0
[   62.612867][ T5178] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   62.616650][ T5191] netlink: 'syz.1.576': attribute type 1 has an invalid length.
[   62.630035][ T5191] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   62.630110][ T5178] EXT4-fs error (device loop0): ext4_truncate:4597: inode #15: comm syz.0.571: mark_inode_dirty error
[   62.658965][ T5178] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   62.668079][ T5178] EXT4-fs (loop0): 1 truncate cleaned up
[   62.675298][ T5193] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 109
[   62.721929][ T5198] loop3: detected capacity change from 0 to 1024
[   62.729564][ T5198] EXT4-fs: Ignoring removed nobh option
[   62.735454][ T5198] EXT4-fs: Ignoring removed bh option
[   62.765624][ T5204] pim6reg1: entered promiscuous mode
[   62.771217][ T5204] pim6reg1: entered allmulticast mode
[   62.797406][ T5206] loop3: detected capacity change from 0 to 2048
[   62.814333][ T5206] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.903653][ T5217] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[   62.903653][ T5217]    program syz.4.585 not setting count and/or reply_len properly
[   62.942128][ T1625] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:6: bg 0: block 345: padding at end of block bitmap is not set
[   62.957598][ T5217] netlink: 24 bytes leftover after parsing attributes in process `syz.4.585'.
[   62.967485][ T1625] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 203 with error 117
[   62.980163][ T1625] EXT4-fs (loop3): This should not happen!! Data will be lost
[   62.980163][ T1625] 
[   63.058313][ T5226] loop4: detected capacity change from 0 to 164
[   63.070083][ T5226] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   63.081579][ T5226] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   63.099985][ T3306] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 16: comm syz-executor: path /125/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[   63.100816][ T5226] Symlink component flag not implemented
[   63.125669][ T5226] Symlink component flag not implemented
[   63.132217][ T5219] netlink: 14 bytes leftover after parsing attributes in process `syz.2.586'.
[   63.143092][ T5226] Symlink component flag not implemented (7)
[   63.149102][ T5226] Symlink component flag not implemented (116)
[   63.156132][ T3306] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 0 in block_group 0
[   63.159874][ T5215] EXT4-fs error (device loop3): ext4_lookup:1787: inode #14: comm syz.3.582: invalid fast symlink length 39
[   63.169202][ T5219] hsr_slave_0: left promiscuous mode
[   63.203291][ T3306] EXT4-fs error (device loop0): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 0 in block_group 0
[   63.203447][ T5219] hsr_slave_1: left promiscuous mode
[   63.278080][ T5230] netlink: 4 bytes leftover after parsing attributes in process `syz.4.592'.
[   63.316400][ T5232] loop4: detected capacity change from 0 to 1024
[   63.324333][ T5232] EXT4-fs: Ignoring removed nobh option
[   63.329921][ T5232] EXT4-fs: Ignoring removed bh option
[   63.356430][ T5232] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842c018, mo2=0002]
[   63.365037][ T5232] System zones: 1-12
[   63.392191][ T5232] netlink: 'syz.4.593': attribute type 1 has an invalid length.
[   63.465834][   T12] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.514416][   T12] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.554833][   T12] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.584386][   T12] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.649433][ T5206] syz.3.582 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   63.663596][ T5206] CPU: 0 UID: 0 PID: 5206 Comm: syz.3.582 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   63.663632][ T5206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   63.663715][ T5206] Call Trace:
[   63.663724][ T5206]  <TASK>
[   63.663733][ T5206]  __dump_stack+0x1d/0x30
[   63.663760][ T5206]  dump_stack_lvl+0xe8/0x140
[   63.663859][ T5206]  dump_stack+0x15/0x1b
[   63.663880][ T5206]  dump_header+0x81/0x220
[   63.663991][ T5206]  oom_kill_process+0x334/0x3f0
[   63.664030][ T5206]  out_of_memory+0x979/0xb80
[   63.664138][ T5206]  try_charge_memcg+0x5e6/0x9e0
[   63.664211][ T5206]  obj_cgroup_charge_pages+0xa6/0x150
[   63.664248][ T5206]  __memcg_kmem_charge_page+0x9f/0x170
[   63.664307][ T5206]  __alloc_frozen_pages_noprof+0x188/0x360
[   63.664391][ T5206]  alloc_pages_mpol+0xb3/0x250
[   63.664430][ T5206]  alloc_pages_noprof+0x90/0x130
[   63.664467][ T5206]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   63.664514][ T5206]  __kvmalloc_node_noprof+0x30f/0x4e0
[   63.664565][ T5206]  ? ip_set_alloc+0x1f/0x30
[   63.664602][ T5206]  ? ip_set_alloc+0x1f/0x30
[   63.664640][ T5206]  ip_set_alloc+0x1f/0x30
[   63.664748][ T5206]  hash_netiface_create+0x282/0x740
[   63.664865][ T5206]  ? __pfx_hash_netiface_create+0x10/0x10
[   63.664905][ T5206]  ip_set_create+0x3cc/0x960
[   63.664971][ T5206]  ? __nla_parse+0x40/0x60
[   63.665022][ T5206]  nfnetlink_rcv_msg+0x4c3/0x590
[   63.665052][ T5206]  ? tracing_record_taskinfo_sched_switch+0x71/0x260
[   63.665093][ T5206]  ? selinux_capable+0x1f9/0x270
[   63.665208][ T5206]  netlink_rcv_skb+0x120/0x220
[   63.665228][ T5206]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   63.665267][ T5206]  nfnetlink_rcv+0x16b/0x1690
[   63.665307][ T5206]  ? __kfree_skb+0x109/0x150
[   63.665328][ T5206]  ? nlmon_xmit+0x4f/0x60
[   63.665351][ T5206]  ? consume_skb+0x49/0x150
[   63.665517][ T5206]  ? nlmon_xmit+0x4f/0x60
[   63.665541][ T5206]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   63.665564][ T5206]  ? __dev_queue_xmit+0x11c0/0x1fb0
[   63.665588][ T5206]  ? __dev_queue_xmit+0x182/0x1fb0
[   63.665679][ T5206]  ? ref_tracker_free+0x37d/0x3e0
[   63.665723][ T5206]  ? __netlink_deliver_tap+0x4dc/0x500
[   63.665753][ T5206]  netlink_unicast+0x5a1/0x670
[   63.665859][ T5206]  netlink_sendmsg+0x58b/0x6b0
[   63.665886][ T5206]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.666050][ T5206]  __sock_sendmsg+0x142/0x180
[   63.666078][ T5206]  ____sys_sendmsg+0x31e/0x4e0
[   63.666106][ T5206]  ___sys_sendmsg+0x17b/0x1d0
[   63.666128][ T5206]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   63.666267][ T5206]  __x64_sys_sendmsg+0xd4/0x160
[   63.666299][ T5206]  x64_sys_call+0x2999/0x2fb0
[   63.666324][ T5206]  do_syscall_64+0xd2/0x200
[   63.666347][ T5206]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   63.666409][ T5206]  ? clear_bhb_loop+0x40/0x90
[   63.666434][ T5206]  ? clear_bhb_loop+0x40/0x90
[   63.666457][ T5206]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.666485][ T5206] RIP: 0033:0x7f592a48e929
[   63.666504][ T5206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.666524][ T5206] RSP: 002b:00007f5928af7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.666546][ T5206] RAX: ffffffffffffffda RBX: 00007f592a6b5fa0 RCX: 00007f592a48e929
[   63.666559][ T5206] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[   63.666572][ T5206] RBP: 00007f592a510b39 R08: 0000000000000000 R09: 0000000000000000
[   63.666684][ T5206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   63.666698][ T5206] R13: 0000000000000000 R14: 00007f592a6b5fa0 R15: 00007fffba8236e8
[   63.666719][ T5206]  </TASK>
[   63.666728][ T5206] memory: usage 307200kB, limit 307200kB, failcnt 268
[   63.817347][ T5243] chnl_net:caif_netlink_parms(): no params data found
[   63.820831][ T5206] memory+swap: usage 308620kB, limit 9007199254740988kB, failcnt 0
[   64.043505][ T5206] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[   64.050856][ T5206] Memory cgroup stats for /syz3:
[   64.051220][ T5206] cache 12288
[   64.059537][ T5206] rss 0
[   64.062328][ T5206] shmem 0
[   64.065304][ T5206] mapped_file 0
[   64.068755][ T5206] dirty 0
[   64.071670][ T5206] writeback 0
[   64.075038][ T5206] workingset_refault_anon 247
[   64.079752][ T5206] workingset_refault_file 268
[   64.084533][ T5206] swap 1454080
[   64.088038][ T5206] swapcached 0
[   64.091451][ T5206] pgpgin 27520
[   64.094829][ T5206] pgpgout 27517
[   64.098366][ T5206] pgfault 34482
[   64.101804][ T5206] pgmajfault 172
[   64.105438][ T5206] inactive_anon 0
[   64.109058][ T5206] active_anon 0
[   64.112493][ T5206] inactive_file 4096
[   64.116402][ T5206] active_file 8192
[   64.120164][ T5206] unevictable 0
[   64.123639][ T5206] hierarchical_memory_limit 314572800
[   64.129089][ T5206] hierarchical_memsw_limit 9223372036854771712
[   64.135244][ T5206] total_cache 12288
[   64.139039][ T5206] total_rss 0
[   64.142322][ T5206] total_shmem 0
[   64.145785][ T5206] total_mapped_file 0
[   64.149830][ T5206] total_dirty 0
[   64.153310][ T5206] total_writeback 0
[   64.157180][ T5206] total_workingset_refault_anon 247
[   64.162399][ T5206] total_workingset_refault_file 268
[   64.167679][ T5206] total_swap 1454080
[   64.171623][ T5206] total_swapcached 0
[   64.175533][ T5206] total_pgpgin 27520
[   64.179419][ T5206] total_pgpgout 27517
[   64.183436][ T5206] total_pgfault 34482
[   64.187419][ T5206] total_pgmajfault 172
[   64.191576][ T5206] total_inactive_anon 0
[   64.195734][ T5206] total_active_anon 0
[   64.199703][ T5206] total_inactive_file 4096
[   64.204552][ T5206] total_active_file 8192
[   64.208796][ T5206] total_unevictable 0
[   64.212796][ T5206] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.582,pid=5205,uid=0
[   64.227366][ T5206] Memory cgroup out of memory: Killed process 5205 (syz.3.582) total-vm:93884kB, anon-rss:936kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   64.283759][   T12] bridge_slave_1: left allmulticast mode
[   64.289522][   T12] bridge_slave_1: left promiscuous mode
[   64.295301][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.318980][   T12] bridge_slave_0: left allmulticast mode
[   64.324735][   T12] bridge_slave_0: left promiscuous mode
[   64.330405][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.378514][ T5206] syz.3.582 (5206) used greatest stack depth: 6952 bytes left
[   64.458623][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.470149][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   64.479042][ T5277] loop3: detected capacity change from 0 to 512
[   64.486657][   T12] bond0 (unregistering): Released all slaves
[   64.494519][ T5277] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm +}[@: corrupted in-inode xattr: invalid ea_ino
[   64.507651][ T5277] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm +}[@: couldn't read orphan inode 15 (err -117)
[   64.567096][ T5281] random: crng reseeded on system resumption
[   64.575048][ T5281] netlink: 'syz.4.599': attribute type 21 has an invalid length.
[   64.583146][ T5281] netlink: 'syz.4.599': attribute type 4 has an invalid length.
[   64.594089][ T5243] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.601241][ T5243] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.613011][ T5243] bridge_slave_0: entered allmulticast mode
[   64.619826][ T5243] bridge_slave_0: entered promiscuous mode
[   64.631186][ T5281] loop4: detected capacity change from 0 to 512
[   64.642833][ T5287] loop3: detected capacity change from 0 to 256
[   64.650716][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.658237][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.659167][ T5281] ext4 filesystem being mounted at /115/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   64.701491][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.704165][ T5281] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.599: Allocating blocks 18-19 which overlap fs metadata
[   64.709045][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.724470][ T5281] EXT4-fs (loop4): Remounting filesystem read-only
[   64.734138][ T5287] FAT-fs (loop3): Directory bread(block 64) failed
[   64.750052][ T5287] FAT-fs (loop3): Directory bread(block 65) failed
[   64.757186][   T12] veth1_macvtap: left promiscuous mode
[   64.763037][ T5287] FAT-fs (loop3): Directory bread(block 66) failed
[   64.769662][   T12] veth0_macvtap: left promiscuous mode
[   64.776471][   T12] veth1_vlan: left promiscuous mode
[   64.781837][ T5287] FAT-fs (loop3): Directory bread(block 67) failed
[   64.790084][ T1740] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   64.800927][   T12] veth0_vlan: left promiscuous mode
[   64.807620][ T5287] FAT-fs (loop3): Directory bread(block 68) failed
[   64.815121][ T5287] FAT-fs (loop3): Directory bread(block 69) failed
[   64.832866][ T5287] FAT-fs (loop3): Directory bread(block 70) failed
[   64.839613][ T5287] FAT-fs (loop3): Directory bread(block 71) failed
[   64.846724][ T5287] FAT-fs (loop3): Directory bread(block 72) failed
[   64.853894][ T5287] FAT-fs (loop3): Directory bread(block 73) failed
[   64.898278][ T5306] netlink: 4 bytes leftover after parsing attributes in process `syz.3.603'.
[   64.940015][ T5310] netlink: 4 bytes leftover after parsing attributes in process `syz.3.605'.
[   64.949243][   T12] team0 (unregistering): Port device team_slave_1 removed
[   64.960492][   T12] team0 (unregistering): Port device team_slave_0 removed
[   64.990900][ T5311] netlink: 12 bytes leftover after parsing attributes in process `syz.3.605'.
[   65.000302][ T5243] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.007417][ T5243] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.014662][ T5243] bridge_slave_1: entered allmulticast mode
[   65.021139][ T5243] bridge_slave_1: entered promiscuous mode
[   65.057879][ T5243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.081783][ T5243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.084701][ T5313] loop4: detected capacity change from 0 to 1024
[   65.098494][ T5316] loop2: detected capacity change from 0 to 512
[   65.115708][ T3298] ==================================================================
[   65.123838][ T3298] BUG: KCSAN: data-race in set_nlink / set_nlink
[   65.130200][ T3298] 
[   65.132539][ T3298] read to 0xffff88810694a048 of 4 bytes by task 2998 on cpu 0:
[   65.140104][ T3298]  set_nlink+0x29/0xb0
[   65.144193][ T3298]  kernfs_iop_permission+0x1e2/0x220
[   65.149506][ T3298]  inode_permission+0x1ca/0x310
[   65.154408][ T3298]  link_path_walk+0x162/0x900
[   65.159093][ T3298]  path_lookupat+0x63/0x2a0
[   65.163610][ T3298]  filename_lookup+0x147/0x340
[   65.168393][ T3298]  vfs_statx+0x9d/0x390
[   65.172569][ T3298]  vfs_fstatat+0x115/0x170
[   65.176997][ T3298]  __se_sys_newfstatat+0x55/0x260
[   65.182031][ T3298]  __x64_sys_newfstatat+0x55/0x70
[   65.187072][ T3298]  x64_sys_call+0x2c22/0x2fb0
[   65.191770][ T3298]  do_syscall_64+0xd2/0x200
[   65.196292][ T3298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.202212][ T3298] 
[   65.204552][ T3298] write to 0xffff88810694a048 of 4 bytes by task 3298 on cpu 1:
[   65.212207][ T3298]  set_nlink+0x99/0xb0
[   65.216314][ T3298]  kernfs_iop_permission+0x1e2/0x220
[   65.221650][ T3298]  inode_permission+0x1ca/0x310
[   65.226526][ T3298]  link_path_walk+0x162/0x900
[   65.231267][ T3298]  path_openat+0x1de/0x2170
[   65.235882][ T3298]  do_filp_open+0x109/0x230
[   65.240403][ T3298]  do_sys_openat2+0xa6/0x110
[   65.245010][ T3298]  __x64_sys_openat+0xf2/0x120
[   65.249791][ T3298]  x64_sys_call+0x1af/0x2fb0
[   65.254398][ T3298]  do_syscall_64+0xd2/0x200
[   65.258909][ T3298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   65.264813][ T3298] 
[   65.267144][ T3298] value changed: 0x00000008 -> 0x00000009
[   65.272865][ T3298] 
[   65.275204][ T3298] Reported by Kernel Concurrency Sanitizer on:
[   65.281367][ T3298] CPU: 1 UID: 0 PID: 3298 Comm: udevd Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[   65.293355][ T3298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.303526][ T3298] ==================================================================
[   65.357486][ T5319] netlink: 24 bytes leftover after parsing attributes in process `syz.3.608'.
[   65.369418][ T5316] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   65.369523][ T5316] EXT4-fs: failed to create workqueue
[   65.384700][ T5316] EXT4-fs (loop2): mount failed
[   65.392002][ T5313] EXT4-fs mount: 66 callbacks suppressed
[   65.392019][ T5313] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.445249][ T5313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.757004][   T12] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.854378][   T12] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.933982][   T12] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.974772][   T12] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.119651][   T12] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.163906][   T12] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.214414][   T12] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.305303][   T12] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.404567][   T12] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.444211][   T12] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.493955][   T12] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.553935][   T12] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.671943][   T12] bridge_slave_1: left allmulticast mode
[   66.677735][   T12] bridge_slave_1: left promiscuous mode
[   66.683514][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.691842][   T12] bridge_slave_0: left allmulticast mode
[   66.697599][   T12] bridge_slave_0: left promiscuous mode
[   66.703439][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.714095][   T12] bridge_slave_1: left allmulticast mode
[   66.719823][   T12] bridge_slave_1: left promiscuous mode
[   66.725595][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.733959][   T12] bridge_slave_0: left allmulticast mode
[   66.739782][   T12] bridge_slave_0: left promiscuous mode
[   66.745524][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.755406][   T12] bridge_slave_1: left allmulticast mode
[   66.761147][   T12] bridge_slave_1: left promiscuous mode
[   66.766801][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.774440][   T12] bridge_slave_0: left allmulticast mode
[   66.780063][   T12] bridge_slave_0: left promiscuous mode
[   66.785924][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.794982][   T12] bridge_slave_1: left allmulticast mode
[   66.800602][   T12] bridge_slave_1: left promiscuous mode
[   66.806367][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.814008][   T12] bridge_slave_0: left allmulticast mode
[   66.819666][   T12] bridge_slave_0: left promiscuous mode
[   66.825423][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.194510][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.204524][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.214163][   T12] bond0 (unregistering): Released all slaves
[   67.354371][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.363888][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.373237][   T12] bond0 (unregistering): Released all slaves
[   67.545680][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.555195][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.564950][   T12] bond0 (unregistering): Released all slaves
[   67.624452][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.634125][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.643273][   T12] bond0 (unregistering): Released all slaves
[   67.685523][   T12] tipc: Left network mode
[   67.695952][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.703474][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.711424][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.718921][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.729691][   T12] hsr_slave_0: left promiscuous mode
[   67.735726][   T12] hsr_slave_1: left promiscuous mode
[   67.741257][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.748863][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.756710][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.764195][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.773385][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.780856][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.789118][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.796711][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.811863][   T12] veth1_macvtap: left promiscuous mode
[   67.817471][   T12] veth0_macvtap: left promiscuous mode
[   67.823073][   T12] veth1_vlan: left promiscuous mode
[   67.828288][   T12] veth0_vlan: left promiscuous mode
[   67.833912][   T12] veth1_macvtap: left promiscuous mode
[   67.839414][   T12] veth0_macvtap: left promiscuous mode
[   67.844978][   T12] veth1_vlan: left promiscuous mode
[   67.850236][   T12] veth0_vlan: left promiscuous mode
[   67.856160][   T12] veth1_macvtap: left promiscuous mode
[   67.861730][   T12] veth0_macvtap: left promiscuous mode
[   67.867352][   T12] veth1_vlan: left promiscuous mode
[   67.872621][   T12] veth0_vlan: left promiscuous mode
[   67.976474][   T12] team0 (unregistering): Port device team_slave_1 removed
[   67.986334][   T12] team0 (unregistering): Port device team_slave_0 removed
[   68.033616][   T12] team0 (unregistering): Port device team_slave_1 removed
[   68.042725][   T12] team0 (unregistering): Port device team_slave_0 removed
[   68.088657][   T12] team0 (unregistering): Port device team_slave_1 removed
[   68.098514][   T12] team0 (unregistering): Port device team_slave_0 removed
[   68.987735][   T12] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.033907][   T12] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.093977][   T12] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.163945][   T12] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.228861][   T12] bridge_slave_1: left allmulticast mode
[   69.234607][   T12] bridge_slave_1: left promiscuous mode
[   69.240233][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.247975][   T12] bridge_slave_0: left allmulticast mode
[   69.253707][   T12] bridge_slave_0: left promiscuous mode
[   69.259430][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.564116][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   69.574030][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   69.583303][   T12] bond0 (unregistering): Released all slaves
[   69.616167][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.623776][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.632572][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.640155][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.651735][   T12] veth1_macvtap: left promiscuous mode
[   69.658046][   T12] veth0_macvtap: left promiscuous mode
[   69.664474][   T12] veth1_vlan: left promiscuous mode
[   69.669796][   T12] veth0_vlan: left promiscuous mode
[   69.733529][   T12] team0 (unregistering): Port device team_slave_1 removed
[   69.742713][   T12] team0 (unregistering): Port device team_slave_0 removed