last executing test programs:

21.678044512s ago: executing program 3 (id=2166):
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
writev(r0, &(0x7f00000004c0), 0x0)

21.677780432s ago: executing program 3 (id=2167):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x5}, 0x10, &(0x7f0000000640)=[{&(0x7f0000000240)="08001eb3b04a8d42", 0x8}, {0x0}], 0x2, 0x0, 0x0, 0xe0000000}, 0x8000) (fail_nth: 1)

21.399315286s ago: executing program 3 (id=2171):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x1000f0, 0x82, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_bp={0x0, 0xa}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x4, 0xfffffff0, 0x1, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x8004, &(0x7f0000000140)={[{@discard}, {@bh}, {@errors_remount}], [{@subj_type}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00\x00'}}, {@context={'context', 0x3d, 'user_u'}}]}, 0x1, 0x7c9, &(0x7f0000001300)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r1, 0x0, 0x1034}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0xfe, 0x4f2, &(0x7f0000000600)="$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")
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$kcm(0xa, 0x1, 0x106)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000000200)={0x10, 0x0, 0x25dfdbfd, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4)
r3 = getpid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r2)
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010026bd700000000000250000000e0001006e657464e57673696d0000000f0002006e7f7a64657673696d3000008f797aae", @ANYRES32=r3, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x90)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8, 0x200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x1320, 0xffffffff, 0x3, 0x5, 0x0, 0x1, 0x10, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
mbind(&(0x7f0000673000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000009c0)=0x7, 0x3, 0x0)

20.946627623s ago: executing program 3 (id=2181):
syz_open_dev$evdev(&(0x7f0000000240), 0x20000000089c8, 0x101000)
prctl$PR_SET_NAME(0xf, &(0x7f0000000680)='+}[@\x00[$oB\xfa=\xee\xc4F\xba\xed\x97')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x20000, 0x1, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x10, 0x0, @fd_index=0x7, 0x8, 0x0, 0x0, 0x9, 0x0, {0x1}})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x14010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000003680)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r4, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
syz_clone(0x44000, &(0x7f00000001c0)="8df11abd456ecd5a282733a3684e09e456da351a91f8476c047f381aa201ffd1dfc700d349238b285663703682b67d61f2fd0ddc45906528305a603e4b31f92ad6cd638188a01a8521bb01974e4dc7061d32af0cc70d886b00043edf682b0ee865576e8eea6410e9c7c7", 0x6a, &(0x7f0000000040), &(0x7f0000000300), &(0x7f0000000340)="a206a7dcb20803e1e06feaaa43c89b4a6a1a909a5f94fb41e4c48349ed5a717923")

20.337553812s ago: executing program 0 (id=2191):
r0 = syz_io_uring_setup(0x4cef, &(0x7f0000000000)={0x0, 0x949, 0x100, 0x1, 0x2aa}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000100))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_IOWQ_AFF(r0, 0x11, &(0x7f0000000f00)="64b56564f2359d448f0df4dd79139cb6c2939985d1a2c034709bd8aa327cb0011b7db4a9dc68b516b0eb7145a3da652c163872dcdf4eaa292d2754d44eeb32d2885d2781eb3761638e8ca5c78979dd03a4be2b25a32f69a7a00bc378bf483ef2db68b5deb9de5887f2129271c3a0adff1e395d6a79471e138584a2e79da15f72be7707b3bf0095f2cd37edb33feedc39465ed906377a6d08ed97271820c8ed5f6366acb79d9ffd00f65bde07c8100eb9c44d80778352dc1ad44e729a72cbcbee4522435f048a6b6a73274c9372eced7c0a0d6ae2882e4d1f351e70488c818e4e91c41c4a0bdcfa78cf7d4b7de0e36d8e171753bfb20a949372ab383b639a64feeda8a2aefaead70beb82d644242b800069a95f2d2c4586f9cc436ed0e35e4cd8726741ca790bf79683e90abf6a49a2f00c5170c32f331c996725dd8474a3a4e344f4ed9a42c01895c892dbf57a2d48590339e25ed809aa72ed9efc52f590a88f3352a61a2b0b4e9177ce9a3845e860d13f1695dc82f52efb6ae0d71c94ca9a0ce54e875ac6162b0e5adfe07cb0e4637b90279d9b84aa88729c9bea82d2eca45744d886ea0efdfc663bfdd35920a1cf2cf565096bca13e0ecda2b11c4f3b6abe3297eec76be76baa98bf7023742d8b19209839abe34ab796064b7e9b8c79757762a2937cdd98e23b71d70daa84b5f21307c36a2d36e8a9423e67cc4b2f314021f866c4fe02ac6d7256a6e24431abe05f60172a84cf2012d9fbbbcce322db26ec2a67da699d7f81fdffa82530213809e0a787fb51c533e3d90947d65e28f75a5d5dd0d9bd00678122798ab39e6d4f6dfeb6fc6ac9f9ee5a628d1e6c0f78bb404ad0f689dd593764d3a7fe27b756592466b23ccd877bceb40be2c4f78ccb4f5e97c4ff3bf7244380cdee7db267bf6f9f7b144582b67a971405935aeb32f67e3b6ecd9b8a888d3e60e16fe426273fbb0ef48166ffd2a1a78a49d72ff7593a25e94ab95ab44c24a239bd3ff6d9cd465a1b5ca1c86e965bedd89402d2ddf9fd8a14b700a10375abfca9d4797516a29a7a4d19ed503306f474797114e4488fb7038be859728ee40736b8b8a7ec4838cc201cdc76c07e3d23207e0ac74dd08960ee6ac4b1844d2acd65e6ca0c6074f401f1b2e79cf11602fc7241855fd6bcbe083a2ce2fcf94c9c0f94eb70c0edffa46c6fc04bcec31cd4ddb9b0b85d2d1e79c8039f4cc941175a78976f091aaa82be4220cb46d576e96ca1a1a6f1a7dedb35ed4b26ab8d264975283b482c3a8370fe31657e6f5cdc0b7efa561d17403c4609a1f9bdd3ba531f26d28c10608eb10a42d5cb03cb926bb1681917e58fbb4fa955704a43f239bbc892935680a1b6b0c38bb7b0230d3c12a88c7b8781e06b3d789309fffad9a19a4e0af7beaebe41f0daa90833c1cdb97a7acbb04473c3ae281d43d164bfb15765bed3f6c44add30f229ea89c4064b3eaa194b853535866b68f8977426ee4f746587ea248ecb06ca477144a6fbf78b6cfb202065850bed058b0c017d8779258a306df3abeebdc36c5d813163fa5d34b657267374b8e719d89d291ee5ac81b8b283c11f814b2c176f3f614025a862ff53f3c5e67a9b615ab4e78db599791ce5bebfd076dc33afa699dd0f0c6df72bde2388880ea90c14416410e1a9e59bb2cc3036990bd67b7886a1f3caa3590fe864d0152d09153cee9d8efab0830e1615e4c22c491aaf7dfb8d8dd3070fbea4a0f62f0733446157527376be4d9ecb1647e7fc7819cccffc45706e2d952802a96b1f1f3440c8a21bb432093d23c12733a28f593402f7fa2125d3a7d44f5cfed06941184748507b710e11fd385b5400731ebf95f2f63dedbee2657d35264ee19f839017d2fbd3c7fd22cde9a8316edebba3082c6060cc1d0f6975522c3da67bba915675cd476268155fd2a7b4ed3834efd2a6b7353b2dba3d618ef620d5e54ef289087920c0e44fff55f3554fb8d22e807d1473a11e935c51557dcb39eb9fb74c50b9d6c4c2dcf92db90f7d468b07468aea18c770148793847ce52f63c55e09a5d7819f4d0b66b59733c5a3b07d82b6e85cb1a5e77fa5907436094801a902b3c96cfb5bab88eabc467fa35c6918f44ad5403e2c787c5b8fa9739d06e7ac8ef44975a4c3f7e70412ed1385aca4274711b07d15722e5b2344b27c42f31370099c2b0f34eb1aac1c1fefb0d1234129cf9742d2930ce0e9dbb70c22c4d2c0b4030433704ad24e7f61b57faf4da2e5d8203eec69352a65edf39266ab64ceb44139a290895c72973c211080c3079d7f600f1b3b6be8cc24913e26b2f290c4d19f770c3b3b1150c070c062efb3ccf7feb84a1c3d41fd6e010ae5730b06103ac6845fce260bea1fa3c18418584e5b08d73b59172071eafa44b86ebbb6e1256d0e87eef193bf907fedf399307a9e45825882aafa9b5e8a15506c9cb1e1aea2f514f0933b19d7b0a57bddfa3101cefae0d5c7327bc0af1bab3c22551e6bed19705b6576eb66a373b6a4771567a3fae7ade891821ab705a5eb5d03cd7f9b63c58977578056fa254d3a9f27705023500b3da3968e2fa21fc15124354b9a1b6d3eb42a50d8644849019a40255b23198f9973106f8f195c2b6cb2ec0b4f6e0ae00d7b381ddac999fb88697b2e800f46a8b491e285687d552fe290759f365236647aebdccc6eef748c743004851cbf34d4ffc91025afea1afad104470e6e7f455531021e4d99d99fcd69d069d4d2e2a5d8efc87c35631b612e384a807fee8371cd9077368db713a886e7a831a720841b8998da4a36bcded43a76d5ab1badc6a2099476584dc19d8393d7bad634ac8c07d503e2bde72f13b83e5b51c40f2a4b867f9a34cc657e8edc8a75e06e192b82d76b6a600b62bbf1d58f7af3db3c1aa9e4892a4b6336ab27f23894f2f6c3c954b3511775f70a0e68a3bbdb34aa34c7e4962ca81cd6b64a478c9d7b7cea1ef18209beb997cd2e9bbdb486657a069bb50496a686811faf53c88f00ff64a9f02e2c71909cb1928f2f9b46bf6da6b49e73428b999bc811fc21938c8a1b0d4c91af16031797cc159c63a1c207895529d03c28d1f9a7b08d2339d35a65cd2f83a8c3ee2e92f826da4e7c8642c4f7cfbe6d77499e0a97a409b5e7f394cda0df86b1907f56896b0fe74598f27f91431c497fcdd376ac4e6a69b132f819e58b37566b7e9d7a7ef1932ea25a0eef8101d8c5cbb7b792281fda771db5552f925e0f2348177299e1886160258caef0c784baa8dcd4d263fcc868e7fa644fb175ff58e7647c95483a0b72ce0e3146868c4de56f8385bb0356562c769a452840645147029465c9b3911d7dd409321af6a848b79f3f3d5d7f133f150d440a0261383d19f12c0358ff8e546f12a1ba1ace34ec5c78677fb990471a040922d629c093fa0cde24fe969286c74f6ea01bd3a34deb4f32882bba8331dbb21cfe00bbeac391c98a750345a86b7cc8200c3c85fec728b92ac316cede3c0e3034b5181681cb2e72fe4e7ccde242ac8a3962233d23776e166ecd03c6d3c16547dc46250d8ef3d15791663f02a866756e8009ab4df2faf9c235b4eac3f2bb711fe0c87bf9dc49617bbd98ae5d9081e08c0fda29267357ecde8f01db99402a68beef27392535d87fc661c950e06bfcc7129fa4d9388a284baa74952b2eaeeca063b09fabc4da5e37242a1c1f9d8007390413a5adfd669bb625463ceffc494dc5e9e352981ea56c88b6c0bab204c8d9834a87b945ef81dc2c08560bd5e7e219c9b7a5bdc9ac436337d32041bc230aa7bd110e178b89d59bd89441961994c34aa39df5a8e798711ecac55e241a25794cd9a8e0a8abb532504da8654f79a9fc2efc9c6783d4cb96fe3bc2a948ef985f6afda0cf54506ed5ef71e3116180f8577e1ace765af5afc73e84aaa81de306ee6b9d8ae43fe7f71508590b37dd9f010c5026f281c9ecf5b3c01a7d7b09a31966fad25b5e5d4ecebed4191fd924d24c682825fa31f7ddcdf4142773801f713212ab3a40047829b8c678e4c9362facd79cba5730d3d2ace31e056f9215e322a59da08fcf061a9e9b45ec26fcefe1c3a1c5afd1a011d8fadd9fb4aad97d6daf79ddc1af361f600188d62a272193959d260191426b34ec08f7558135036cc2a11e11fd9c87c5d70450289158a756a5fcbf7960d433ab434fcbee36e2eb38a76fcd25e0b877a737b3de30b9d65a048b818948b861e6eceabb0cfd7f7a4ed478987928409e0f3e219ea300734ab42a18f27fdf797f06c3958e10f2cffc50181008238f1ebd796e822ea8fdb27db732d3d86648ba2daa78e4fbd2cab6d1e3803b13377c7918470ece4febccdc79453081c88155753b07007673d099ed47176e45e2b49f14b26f6c6534f145623a963083e6550387f306863985a8bca7d0862f7532553e0228e74a7f209fee17d7a55700b715511eb0609782046ae4a757d4858e3f5423b63be18a4aff7e258c8329db58f6ffa446809e6d4895376155e088fae4860912d8b3e2000e14832f912ba99897e1400ab2515d17719beeae6fb572b376438cc6b274f7d95940a667945c291828a3a91afbca9bda4f56594ab9709714c6904a62cbf2e9a022da3ce91977c04aaa508a92e1f833cd07cde20648566af5d64c0d278c9a8d1e5f1f53bcdb643de631a4db6e22bcb322562a9fc7b887dbdb4cf941a312630e5324aa2e23085f472309d50f6669158fcad389e6d9f89f228e201a27fc4315fa6b50d549c00bd05888ff4e3a32a9e328ba6214fc3fca1ce2a4139ac4c09102d7467e209ab115a30853ce763ea55504aaa12774d45ff88552aefa1a1e00236a1ecde640c33efdc7210967caa78c59a06de95808f3925d0013495c8b09aade86850687015bb0561f26b897bc12c37a0987b4acf132989f33419ccb3d8ee08a816767b60ce1cac55c95548718092ca85296c0d426e05b127dd996c792816aca21d9fbdbd82c8361eb043cb1ec91ebb53737d5a92a2fce1e2ce492fbc862882f79ce1ac157f6735eefbd00e295b57e0bc045c05e2b0d8a9fb69ce5460edabc26aa63ead6346b599e129c676cd6420a05094ff90e31979dad4723cfcb730d50047853a159769a5a14acb94b80aff9a16b49e98fe971c819bc5bf8789112dd58e02341bae90b12bead714fb67c89d38efe3b7bbc3240eb5192f9234366f5f2b7cd9c0368f11341a0d94dc5e4777b6f833b2a7a8531b6daa086152576fc2c69cc3eb90cd31e494e55dce330a72fa18e919de51cbe9c3fce0380dc3e9beafcfa24ec515406e54cef5a70348a4243e08e9d90fb18e96c10e18922a9e22393db4bbf5899dcd1c0425c7cee4c59228db746c7fb588f228103398273fad5f8c2cb0f6a9f974735ea3c59c0f9b7b58c843bc324d97c813fa6a0065638d19323446f6c67e2f3a9af110492a1e6c8ceb588ff19c686c274a3313f7f24ca353752f7b7491dfceea972d34b1aa1157d91de105605ef4848456b7f4b8cd2b07fa29f879dd7764be86848af3d2e937dea422a1d6c8100159345a7e588c2db36895c9cbfce2cf5e20c8ea0665073f3b0ea2c2d18766c6bcd5d66d6f2d7ed3a3ffbcbe60eaf67a2a93595db5a8b76e680eeae14b5365f03af67736ee80a790862cf875431f4721f94652b8aef36f0d3a6992ffd1219a24f2987028b8bb99ce7dfd2d3845c61f0a1f7afb8ff2a2f5fef5053b349fe4b67a56fc67334eab3d4a97cf195a5ad9762155e705f1633ecc38f91aaa37db4d58e7974275bf4372cd4e8f43b5480ba032c5da630e4474c887adbb2de3", 0x1000)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x0, &(0x7f0000003240)=ANY=[], 0x6, 0x36e, &(0x7f0000000680)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
syz_io_uring_setup(0x749e, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x2e7, 0x0, r2}, &(0x7f0000000100), &(0x7f0000000140))
write$cgroup_subtree(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="2b696f202d667265657a6572202b6e65745f636c73202b637075202b706572665f6576656e74202b70696473202b6e6574202d6e65745f636c73202d6465766963657320014c6473dec23bb6c75bb1bb67bc079b38f809096c77a46b716ebf85814a164e4d6a1d3d75662455ca12064b7431b93d622ae8842d344949befe1c89f700e85b67e70b711c99f2a97dc8b131e062d7de6c691db91ddf2849e1e501ad17440e235420d365d00fdb035ff2d6e012c14a83a98bf58e818287b625bfd41d4b57"], 0x44)
syz_open_dev$loop(&(0x7f0000000fc0), 0x7, 0xa000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000480)=0x7)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r9=>0xffffffffffffffff})
ioctl$int_in(r9, 0x5452, 0x0)
r10 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r10, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x8c, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0xfffffdef}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0xff00)

19.507146244s ago: executing program 3 (id=2194):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&\x00'/12, @ANYBLOB="2cf3874db25a847992633803883b6282054f6f6b", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

19.13748076s ago: executing program 0 (id=2201):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
setrlimit(0xf, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000004740), 0x8200, 0x0)
ioctl$TCGETS(r3, 0x5401, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r4 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r4, 0x0, &(0x7f0000001480))
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newtfilter={0x3c, 0x2c, 0xd37, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0xa}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_IPV4_SRC_MASK={0x31, 0xb, 0xffffffff}]}}]}, 0x3c}}, 0x4000)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f00000001c0)={@loopback, @empty}, &(0x7f0000000200)=0xc)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000280)={'syztnl2\x00', 0x0, 0x2f, 0x4, 0xdd, 0x3, 0x20, @mcast1, @private0, 0x80, 0x40, 0x400}})
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'vcan0\x00'})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000bc0)={r1, 0xe0, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000900)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, &(0x7f0000000940)=[0x0, 0x0, 0x0], &(0x7f0000000980)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x91, &(0x7f00000009c0)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000a00), &(0x7f0000000a40), 0x8, 0xd3, 0x8, 0x8, &(0x7f0000000a80)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000c00))
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000200009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r7=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r5, r7, 0x25, 0x0, @val=@netfilter}, 0x40)

18.995771162s ago: executing program 0 (id=2208):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000080)=[{0x0}], 0x1, 0x0, 0x0, 0x5}, 0x2004c000)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a00"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

18.831740704s ago: executing program 3 (id=2209):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4b, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
pipe2$9p(&(0x7f0000000080), 0x800)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x1210010, &(0x7f0000000040)={[{@grpquota}]}, 0x41, 0xbac, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnEy+c5v0crn3tggGpCqK07QpFbpqXYsKunDZmExKyPTDJIIJXaR1ry5EXBSkf4Lg3m5cCS7qQutfUMQiRTdtFyNnPtKxk5nGdGaOSX8/eHPe97wn8zxPTmfOe2BOA3hqTWc/0ohDEXE2iZis708jYqjaG4nYrB13/+7l+awlUam8/VsSSUTcu3t5vvFaSX07Xh+MRMTN15L490etcVfXN5bnyuXSSn18dO38paOr6xuvLJ2fO1c6V7pwYvbVE7MnZ2e7WOvtS+998cwPbzx/9frHM29+fuC7JE7HRH2uuY5umY7prb9Js0JEzHU7WE4G6vU015kUckwIAICO0qY13H9jMgbi4eJtMr79MdfkAAAAgK6oDERUAAAAgH0ucf8PAAAA+1zjewD37l6eb7R8v5HQX3fORMRUrf7G8821mUJsVrcjMRgRY78n0fxYa1L7tSc2nUX6+vtS1qJHzyF3snklIv6/3flPqvVPVZ/ibq0/jYiZLsSffmS8l+o/3YX4edcPwNPpxpnahaz1+pdurX9im+tfYZtr127kff1rrP/ut6z/HtY/0Gb999YOYxx+8NLNdnPN6793P/l5IYufbZ+oqL/hzpWIw4Xt6k+26k/a1H92hzHG529fazeX1Z/V22j9rr9yPeJIdTXXWn9D0un/Jzq6uFQuzdR+bvP66yc7x28+/1nL4jfuBfohO/9jsbvzf2mHMab+9+uhdnOPrz/9ZSh5p9obqu/5cG5tbeVYxFDyeuv+451zaRzTeI2s/hef6/z+367+7DNhs/53yP71XKlvs/HVR2KOHzn+1e7r762s/oVdnv9Pdxjjy2+uvd9uLu/6AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANgb0oiYiCQtbvXTtFiMGI+I/8RYWr64uvby4sUPLixkcxFTMZguLpVLMxExWRsn2fhYtf9wfPyR8WxEHIyIzyZHq+Pi/MXyQt7FAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsGU8IiYiSYsRkUbEH5NpWizmnRUAAADQdVN5JwAAAAD0nPt/AAAA2P9a7v8LfxmN9DMXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9qWDz964lUTE5qnRassM1ecGc80M6LV0Z4eN9ToPoP8G8k4AyE2hqV+pVCo5pgL0mXt8IHnM/EjbmeGu5wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAP9cLh27cSiJi89RotWWG6nODuWYG9FqadwJAbgY6TSaP3QHsYYW8EwBy4x4fqK3sH1RqWudH2v7m8BNHBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDvmKi2JC1GRFrtp2mxGPGviJiKwWRxqVyaiYgDEfHT5OBwNj6Wd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB03er6xvJcuVxa0dHR6WJnNPoWa7T+Zm5zzHD7qQ6dnD+YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADIxer6xvJcuVxaWc07EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBvq+sby3Plcmmlh528awQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID9/BgAA///GyAmy")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x1}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

18.761818375s ago: executing program 32 (id=2209):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4b, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
pipe2$9p(&(0x7f0000000080), 0x800)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x1210010, &(0x7f0000000040)={[{@grpquota}]}, 0x41, 0xbac, &(0x7f00000017c0)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x1}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

18.748567165s ago: executing program 0 (id=2212):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x0, &(0x7f0000003240)=ANY=[], 0x6, 0x374, &(0x7f00000011c0)="$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")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0xfffd, 0x0, @loopback}, 0x1c)
syz_emit_ethernet(0x6e, &(0x7f0000000100)={@broadcast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @local, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x7d0, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @local, [@srh]}}}}}}}, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
socket$packet(0x11, 0x3, 0x300)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r4, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
r5 = socket$kcm(0x2, 0x200000000000001, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x5452, &(0x7f0000000100))
sendmsg$inet(r5, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x3000c0c0)
fcntl$getownex(r5, 0x10, &(0x7f00000001c0))
pipe(&(0x7f0000000280))
writev(r4, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x1, 0x2}}, './file2\x00'})
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r1)

17.892828478s ago: executing program 0 (id=2219):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff7fffb70200000800000018230000", @ANYRES32=r0], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='sys_enter\x00', r1}, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x2b, &(0x7f0000000080)={0x1e, 0xfffff800, 0x74})

17.861448818s ago: executing program 0 (id=2220):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
syz_open_procfs(0x0, &(0x7f0000000580)='attr/exec\x00') (async)
r3 = syz_open_procfs(0x0, &(0x7f0000000580)='attr/exec\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
pwritev(r1, &(0x7f0000000140)=[{&(0x7f0000000340)="be146b9037b89fe6e84bf59ed534eff6e03c00f86668b14e63b9197fea22d3d0e86185f2d2481dfb68024f8ac6a9d2d6a1be049ce5e10f2dfc0d27af0625cff175ff4d3f67be7a1db8f071bf3da739752ee55ba9ff631cead97da295cd5dffe949a81da5ddf96e67d3500a7cfe5030bd1c3beea93f91dfec1bcfedbf4e887d9cb9173d49f42e1c8ca3ff3d8e104b907e1794fe18d9396c4441ebc947", 0x9c}, {&(0x7f0000000000)="2ea98dd4c5ce8f7405cc1af6f861f614a78212533b82475e02fdbb79af7997ea33d3894abee251c0382c66bad5", 0x2d}], 0x2, 0x54, 0x40ce)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x7c, r7, 0x4, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x2, 0x61}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="2d177e0b7d02"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="26446e34857a"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="6ee1a690b8fe"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="2c6adbf66a4f"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="d2b4665d90d1"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="1afc5380576a"}]}, 0x7c}, 0x1, 0x0, 0x0, 0x84}, 0x40000)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x90, r5, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xd3a, 0x40}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2fa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x6c4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xfffffffe}]}, 0x90}, 0x1, 0x0, 0x0, 0x5}, 0x8841) (async)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x90, r5, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xd3a, 0x40}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2fa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x6c4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xfffffffe}]}, 0x90}, 0x1, 0x0, 0x0, 0x5}, 0x8841)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0, r4}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x10) (async)
socket$netlink(0x10, 0x3, 0x10)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r11, 0x0, 0x2}, 0x18)
r12 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r12, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="020b02080700000029bd7000fcdbdf25"], 0x38}}, 0x20000000)
ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000380)=@ethtool_drvinfo={0x33, "a4c3ea051fc8f66eedf1c6676b4e9ac4711a3ee41b102a78284f8818400000fe", "c493c69907ac61ee57f3ff6656218f8c880cab0b7f5f977f29b54144914986b5", "7795433781033bb967429b7c68c2566066943f3a566d7fd05557583a535a3b9e", "cba936683f411a1265d9ffb369dbe16de72fd8ee91c60f531196c136add25f43", "3fda464b4ffcb83f5c89e20fe8814b4e26bb81519905d65c5a0ae43be09d9f7b", "9900255a099270427859ce54", 0x43dd5e67, 0x9, 0x4, 0x5, 0x9}})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x201, 0x0, 0x0, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x44880}, 0x81)

9.505811701s ago: executing program 5 (id=2337):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x10, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'bridge0\x00', 0x800})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xfdfb, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0xf0022, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc59, 0x0, @perf_bp={&(0x7f0000000040), 0x10}, 0x0, 0x4000000, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
socket(0x1e, 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r6 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r6, 0x0)
write$selinux_load(r5, &(0x7f0000000000)=ANY=[], 0x44f0)
sendmsg$IPSET_CMD_RENAME(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)={0x14, 0x5, 0x6, 0x401, 0x0, 0x0, {0x2, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000)
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="00000000ffffffffffffaaaaaaaaaabb08004500452c00000000002f9078ac1e0001e00000010000655800189078040000008c25a9cb620603440dae41a1"], 0xfdef)

9.355436763s ago: executing program 5 (id=2340):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000200)={0x2, &(0x7f0000000040)=[{0x28, 0x0, 0x0, 0xfff00002}, {0x16, 0x0, 0x0, 0x1}]}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
syz_emit_ethernet(0x66, &(0x7f0000000240)=ANY=[@ANYBLOB="aa575feeae76d439a100000086dd60fca33f00306700fe80000000000000000000ffffffff8025b7ff00000000aa21000000000000003a04040205380101ff0200000000000000000000000000012ba99a6b5e404ab970ff0200000000000000000000b0e52ab7f7a1466865acdfb0900d41eff74b31aaf6ea56bda42ea8575f3bea4fb8702fdc70f63db2cd0ec6bcd8658f9c660d6d0c44e700d4105efb39ebb29ef37a488b01fd44cdc4dae47047a94557397afec96066e5762800"/202], 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
r2 = socket(0x18, 0x4, 0x0)
connect$pppoe(r2, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'tunl0\x00'}}, 0x1e)
sendfile(r2, r1, 0x0, 0x8)

9.353860633s ago: executing program 5 (id=2342):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x8, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(0x0, 0x4800)
vmsplice(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000001cc0)="b70cdbd771882612c450d694c9dd7d7f28d237e84e2780ca6428d132e03f188fff6bd9f85ead7e68f90830db9295022700491841f4a15a000aa4e29ac23601041ec521aa0ea8044f23feb74151693f228ba89f0a43385617bc7930f30a52ca91d02c64bd39d3d581abe9089b2284f876f9c58c124aba7a28700efcb0588ff4ab54a62c0c64fd577d85f5f753ec15281cf73fc37442b0a5ca4a1818cb01590d6415b1e9fda6c7d63cd293d7cc7ca5581041a2736e95b9b0322880b5fd7f27c0d4a59df8101b755fd6cc495963381c8a95d5d605b8ef4800b47091c8749f9e8e9fce163e46db0f7c0e4d0d3a621e3c999453e95aaa56090f220b220c50b31b9d6af722477ab1cda6d561156d85c658a3cd42d777314d154bf31bb61918ac7de8bfad7a5825be505af82806130e8dd03816b86086cc3361bf3a2a0cf6c18b7c84503477660ef5a0bf92d8169c43df1d7bb140652c799a4ac292b94fcea7f0c74413791879104e2bc9b414eda6c74f3625299f67d03e3ef58eeae5ca5fb029005ffa0fe23fb541bc24a57e9c6d8169702998273789ee8c9f08132ab9f76c02a6696c3ad68bf7a772d8be6b1840cfad2184edcf10bd5620f51657239e8eb49b8e77c1483dcc3dc04aeb6cae2922af4be346d52f2983dd5330cbef40b3207432ea6d2a6d2ffb0c3440c78add8395da089aa80e21d8692b16582edea583b73266fd1ab37abc02aa89310ed72a827153f1cbba0f76147a09977724706fdcd68ac168ceb433eba816f55bb5069924c0a6c59b1116e27de7938b835c467dbd9be1843913748e5a2e6f6621bf4944045d82b5124d23fa1d87e780b54a6955a51e47fbf36432be1b3d9d01c05d86e390e497856e476ce5b101c837cef62edce520860667c5259478602febbc5e87f216a6f1452b285f44282333569cbd2f49613730b86a74485e49e1979690ee2c11e1fb49d642c9f515d9e0cf30fe8995379b0b4b2177b2541a34cef72af676c2402b3ab03993047186d45016f83a735b7babda7b3e408f9a7b5c36e7daaaad51e437060c8a5a07646a31a43ebdda0b12a3f64f963315febebf0ad610f2ec9500717c4f33d8bf0e5b55ed2a976339643658df80f07bb29f5fac6f25957ef64ef1bac93f0ea64bfea48b38a4985ff610259762996044543bdf2c", 0x341}], 0x1, 0xa)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6)

9.335621964s ago: executing program 5 (id=2343):
syz_open_dev$evdev(&(0x7f0000000240), 0x20000000089c8, 0x101000)
prctl$PR_SET_NAME(0xf, &(0x7f0000000680)='+}[@\x00[$oB\xfa=\xee\xc4F\xba\xed\x97')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x20000, 0x1, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x10, 0x0, @fd_index=0x7, 0x8, 0x0, 0x0, 0x9, 0x0, {0x1}})
io_uring_enter(r1, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x14010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000003680)="$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")
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
syz_clone(0x44000, &(0x7f00000001c0)="8df11abd456ecd5a282733a3684e09e456da351a91f8476c047f381aa201ffd1dfc700d349238b285663703682b67d61f2fd0ddc45906528305a603e4b31f92ad6cd638188a01a8521bb01974e4dc7061d32af0cc70d886b00043edf682b0ee865576e8eea6410e9c7c7", 0x6a, &(0x7f0000000040), &(0x7f0000000300), &(0x7f0000000340)="a206a7dcb20803e1e06feaaa43c89b4a6a1a909a5f94fb41e4c48349ed5a717923")

8.367831908s ago: executing program 5 (id=2349):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$netlink(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e00000008000000000018000380140003801000018004000300080001"], 0x44}}, 0x20008000)

8.088671872s ago: executing program 5 (id=2350):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2, 0x0, 0x8}, 0x18) (async)
r3 = getpgrp(0xffffffffffffffff)
kcmp(r3, r3, 0x3, 0xffffffffffffffff, 0xffffffffffffffff) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchdir(r0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000780)='mm_page_free\x00', r5}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r6 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0x5c290, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x92323, 0x5, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
dup(0xffffffffffffffff) (async)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{0x0}], 0x1) (async)
writev(r7, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) (async)
r8 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r8, 0x0) (async)
mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil)
close(r6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)

8.031741023s ago: executing program 33 (id=2350):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000040)='sys_enter\x00', r2, 0x0, 0x8}, 0x18) (async)
r3 = getpgrp(0xffffffffffffffff)
kcmp(r3, r3, 0x3, 0xffffffffffffffff, 0xffffffffffffffff) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fchdir(r0) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000780)='mm_page_free\x00', r5}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) (async)
r6 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x8, 0x5c290, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, @perf_config_ext={0x4, 0x100000003}, 0x92323, 0x5, 0x3, 0x0, 0x9, 0x800001, 0xfff7, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) (async)
dup(0xffffffffffffffff) (async)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{0x0}], 0x1) (async)
writev(r7, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1) (async)
r8 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r8, 0x0) (async)
mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil)
close(r6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)

6.199174329s ago: executing program 1 (id=2371):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x88002, 0x0)
pwritev(r2, 0x0, 0x0, 0x0, 0x0)

6.16991679s ago: executing program 1 (id=2372):
r0 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e21, @empty}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43, 0x0, 0x1}}, 0x10)
r3 = socket(0x1e, 0x4, 0x0)
r4 = socket(0x10, 0x3, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
r7 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000700)='kfree\x00', r8, 0x0, 0x7}, 0x18)
ioctl$sock_inet_SIOCSIFNETMASK(r4, 0x891c, &(0x7f00000001c0)={'veth0_macvtap\x00', {0x2, 0x4e22, @loopback}})
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r9 = fsmount(r7, 0x0, 0x0)
fchdir(r9)
r10 = open(&(0x7f0000000280)='.\x00', 0x0, 0x8)
close_range(r6, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
sendmmsg(r4, &(0x7f0000000000), 0x400000000000235, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r11 = socket$kcm(0x21, 0x2, 0x2)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r10, &(0x7f00000002c0)={0xc0000000})
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r12=>r11, {0x2}}, './file0\x00'})
mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000e)
connect$inet6(r12, &(0x7f0000000180)={0xa, 0x4e23, 0x2a, @dev={0xfe, 0x80, '\x00', 0x26}, 0x5}, 0x1c)
sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e24, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[], 0x18}, 0x0)
sendmsg$kcm(r11, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0xffff, 0x2, 0x10, {0x2, 0x4e21, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x20000000)

6.12533187s ago: executing program 1 (id=2374):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x2c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

6.12458932s ago: executing program 1 (id=2375):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000018c0)=""/220, 0xdc}], 0x1, 0x0, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095", @ANYRESOCT=0x0], &(0x7f0000000300)='GPL\x00', 0x800000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0xc0105502, 0x0)
r5 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x20280, 0x0)
ioctl$IMADDTIMER(r5, 0x80044940, &(0x7f0000000080)=0x14)
unshare(0x62040200)
close(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000001880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000002000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r7, &(0x7f0000000800)={&(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000640)=[{0x0, 0x97ff}, {&(0x7f0000000280)="afefc28912", 0x5}], 0x2}, 0x20000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r8 = io_uring_setup(0x192, &(0x7f0000000300)={0x0, 0x4178, 0x400, 0x8000002, 0x3d7})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x4040080}, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0xf6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0xc91542382b09e080}, 0x40db, 0x0, 0x4, 0x8, 0x4, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

5.070852206s ago: executing program 1 (id=2383):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000b40)=@filter={'filter\x00', 0x4, 0x4, 0x4b8, 0xffffffff, 0x260, 0x260, 0xe8, 0xfeffffff, 0xffffffff, 0x3e8, 0x3e8, 0x3e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0x138, 0x178, 0x0, {}, [@common=@srh1={{0x90}, {0x21, 0x12, 0xbe, 0x7, 0x5aa9, @ipv4={'\x00', '\xff\xff', @empty}, @private1, @local, [0xff000000, 0xff000000, 0x0, 0xff], [0xffffff00, 0xff000000, 0xff], [0x0, 0xffffff, 0xffffff00, 0x7fffff7f], 0x3c80}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x2000010}}}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x21, 0x180, 0x5}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x3, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @private1, [0x0, 0x0, 0xff, 0xff], [0x0, 0xffffff00], [0x0, 0xff000000], 0x843, 0x1400}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x518)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)

4.909928978s ago: executing program 1 (id=2384):
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000810000005"], 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000b00)={&(0x7f0000000a00)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@enum={0x4}]}, {0x0, [0x30, 0x0, 0x5f, 0x2e, 0x30]}}, 0x0, 0x2b, 0x0, 0x1, 0x10001, 0x0, @void, @value}, 0x28)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000380)={'batadv_slave_0\x00', <r5=>0x0})
sendmsg$TCPDIAG_GETSOCK(r3, &(0x7f0000000440)={&(0x7f0000000200), 0xc, &(0x7f0000000400)={&(0x7f0000000580)={0x1a0, 0x12, 0x8, 0x70bd29, 0x25dfdbfb, {0x0, 0x1, 0x10, 0x7, {0x4e21, 0x4e21, [0x3, 0x8, 0x1000, 0x4], [0x3, 0xfffffff9, 0x7688, 0x404c], r5, [0x7, 0x7f]}, 0x400, 0xca4}, [@INET_DIAG_REQ_BYTECODE={0x4d, 0x1, "fec7bc5fbc642146e6e3b3085e83f7afae3728e8ba01ca1bdb99d8adeeaaf0eee6d74bdd302098c916528b8715ab6850d8caaa021dd3b08fa0c7a021c03d5bc4e86f7c944a0d924d5f"}, @INET_DIAG_REQ_BYTECODE={0xd9, 0x1, "044c07863025019598b27d75a0051fe56d14a32c4ac8a8384009b6a6343c7b6c3892c1d69a39d866fece53e97b8e36f6d4c3516ca725b324787b4b0aacf0802a195a8176e1eb82995248ba60f128740e54b4bbb247bc8c1bee70682e0ff047362367cd443ba0412d03e62e917a313146d1124134356f6885cff48eaaf5c96d992baa6946a45754509f8532812bd13c097732b5b5e7d1a05d699872820364d751c03b09c6cf9cf4797b30ebe5b1258312490216f10d6f7d69083e919fcbd54c8bfb9995b079c93c72faa50fe45d487503dde6517f5b"}, @INET_DIAG_REQ_BYTECODE={0x25, 0x1, "a264257e530c0e81968b037f9edb86bc3d68ea3188259e42aeb73143c448c2599a"}]}, 0x1a0}}, 0x4000)
write$P9_RREADLINK(r3, &(0x7f0000000480)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

1.802843903s ago: executing program 34 (id=2220):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
syz_open_procfs(0x0, &(0x7f0000000580)='attr/exec\x00') (async)
r3 = syz_open_procfs(0x0, &(0x7f0000000580)='attr/exec\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
pwritev(r1, &(0x7f0000000140)=[{&(0x7f0000000340)="be146b9037b89fe6e84bf59ed534eff6e03c00f86668b14e63b9197fea22d3d0e86185f2d2481dfb68024f8ac6a9d2d6a1be049ce5e10f2dfc0d27af0625cff175ff4d3f67be7a1db8f071bf3da739752ee55ba9ff631cead97da295cd5dffe949a81da5ddf96e67d3500a7cfe5030bd1c3beea93f91dfec1bcfedbf4e887d9cb9173d49f42e1c8ca3ff3d8e104b907e1794fe18d9396c4441ebc947", 0x9c}, {&(0x7f0000000000)="2ea98dd4c5ce8f7405cc1af6f861f614a78212533b82475e02fdbb79af7997ea33d3894abee251c0382c66bad5", 0x2d}], 0x2, 0x54, 0x40ce)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000340)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x7c, r7, 0x4, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x2, 0x61}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @random="2d177e0b7d02"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="26446e34857a"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="6ee1a690b8fe"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="2c6adbf66a4f"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="d2b4665d90d1"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="1afc5380576a"}]}, 0x7c}, 0x1, 0x0, 0x0, 0x84}, 0x40000)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x90, r5, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xd3a, 0x40}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2fa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x6c4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xfffffffe}]}, 0x90}, 0x1, 0x0, 0x0, 0x5}, 0x8841) (async)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0x90, r5, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xd3a, 0x40}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2fa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x6c4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xfffffffe}]}, 0x90}, 0x1, 0x0, 0x0, 0x5}, 0x8841)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0, r4}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socket$inet_udp(0x2, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x10) (async)
socket$netlink(0x10, 0x3, 0x10)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
socket$nl_route(0x10, 0x3, 0x0) (async)
r10 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r11, 0x0, 0x2}, 0x18)
r12 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r12, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="020b02080700000029bd7000fcdbdf25"], 0x38}}, 0x20000000)
ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000380)=@ethtool_drvinfo={0x33, "a4c3ea051fc8f66eedf1c6676b4e9ac4711a3ee41b102a78284f8818400000fe", "c493c69907ac61ee57f3ff6656218f8c880cab0b7f5f977f29b54144914986b5", "7795433781033bb967429b7c68c2566066943f3a566d7fd05557583a535a3b9e", "cba936683f411a1265d9ffb369dbe16de72fd8ee91c60f531196c136add25f43", "3fda464b4ffcb83f5c89e20fe8814b4e26bb81519905d65c5a0ae43be09d9f7b", "9900255a099270427859ce54", 0x43dd5e67, 0x9, 0x4, 0x5, 0x9}})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, 0x0, 0x1, 0x201, 0x0, 0x0, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x44880}, 0x81)

1.491469818s ago: executing program 4 (id=2414):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000000)={0x9, 0x1ff, 0x1, 0x6, 0x106, 0xfffffffffffffffe})
ioctl$sock_inet_SIOCADDRT(r0, 0x891a, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @private=0xa010100}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}, {0x2, 0x4e20, @local}, 0x114, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x3, 0x2})

1.219737352s ago: executing program 4 (id=2417):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x88002, 0x0)
pwritev(r2, 0x0, 0x0, 0x0, 0x0)

1.199121502s ago: executing program 4 (id=2418):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
socket$netlink(0x10, 0x3, 0x4)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x3f)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700000000000000", @ANYRES32], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000040)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x8000000}, 0x18)
add_key(&(0x7f0000000400)='.dead\x00', 0x0, &(0x7f0000000480)="00000000008f5b6568b5e117d8011adf180648002a28000a44963b146832c251f3191fe14d91d3db98495a4283511418597bb9e6d83b834cfa9742b7339adf6e7aa3fa2ec184ac39125a81776fd35443dc0ea55dd02b3abf24bc75e93db55cc0df7e510bda9beeea558023fc74723ad8691d5efdce65a60581da364e296cfe476d7765eea2958dd5a53f1e76d28d49fd09ad1281e43fe58b17a22311511838c5aeb1ade59ab27763ee22a0a2feda958398e53a781df72c8f09cbfc925b4109d3df0aca6afc7488d55dd79bc6e839471f744def99ed690e6f61b82c", 0xdb, 0xffffffffffffffff)
r2 = fsopen(0x0, 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
ioctl$TUNGETDEVNETNS(r3, 0x54e3, 0x0)
creat(0x0, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0x100000000}, 0x18)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="d8000000180081054e81f783db4cb9040a1d080006007c03e8fc55a10a0015000600142603600e120800060000000401a80008002000000001000000035c0461c1d67f6f94007134cf6efb8000a007a290457f010400000700000000ceac3c2fb14c2ee5a7cef4090000001fb71b14d6d930dfe1d9d322fe7c9f8775820d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bf9ad809d5e1cace0d81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300"/216, 0xd8}], 0x1}, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r6 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
r7 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x1ff, 0x1501)
ioctl$USBDEVFS_SETCONFIGURATION(r7, 0x80045505, &(0x7f0000000000)=0x1)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0xfdbc, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x26)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)

977.293425ms ago: executing program 4 (id=2420):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x8, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(&(0x7f0000000c40)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
vmsplice(r0, &(0x7f00000005c0), 0x0, 0xa)
fcntl$setpipe(r0, 0x407, 0x6)

932.358396ms ago: executing program 2 (id=2421):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[], 0x50)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000100)={0x6, 0x73, 0x2, 0xc9f, 0x59, "88bd91aa90758062b5fffd9272e301aa98af75"})
write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"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", 0x745}}, 0x1006)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61980, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000200)='kfree\x00', r3, 0x0, 0x80}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f0000000280)={<r4=>0x0, @in6={{0xa, 0x4e22, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1}}}, &(0x7f0000000040)=0x84)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000bc0)={'#! ', './file0'}, 0xb)
ftruncate(r5, 0x5)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000240)={r4, 0x0, 0x20}, 0xc)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback, 0x7fff}, 0x1c)
socket$l2tp6(0xa, 0x2, 0x73)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r6}, 0x18)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f0000000040)={{0x0, 0x1, 0x0, 0x1, 0x3}})
close(r7)
syz_read_part_table(0x1052, &(0x7f0000001080)="$eJzsz8GJwkAABdAfZneSsKy24M2DZ4/2IIiF2YYnu7GcSBKJFYgI7zF8/p85TfisvuaQdJd5bW/Zb8rQPB//U5I+SRkjuzJmN51yzJDkbxovTZukXeZpVX7rWH6Wq/U9dW415+vb/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAX+ARAAD//8koB1A=")
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
sendto$inet6(r2, &(0x7f0000000180)="1a", 0x34000, 0x0, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r2, 0x1)

877.203537ms ago: executing program 4 (id=2422):
r0 = socket$rds(0x15, 0x5, 0x0)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000004c0), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001180)=ANY=[@ANYRESOCT=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, r1, 0x8, &(0x7f0000000000)={0x10000000}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffdbf, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000000), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x13, 0x3, 0x0, &(0x7f0000000480)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'team_slave_1\x00'})
sendmsg$nl_route(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e000000004000028006000100000ffe00340003800c0001000ffe0000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=0x0, @ANYBLOB="080003"], 0x80}}, 0x8000)
syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
syz_io_uring_setup(0x2cdb, &(0x7f0000000700)={0x0, 0xfffffffc, 0x200}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000400)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x1a, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})
mount$9p_unix(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000280), 0x808008, &(0x7f00000004c0)=ANY=[@ANYBLOB='trqyans=unix'])
r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x4, @perf_config_ext={0xffff, 0xc000000000000000}, 0x400, 0x101, 0xd15, 0x6, 0x0, 0x0, 0xfff9, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYRES64=r2], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r6)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
r8 = socket$netlink(0x10, 0x3, 0x0)
writev(r8, &(0x7f0000000000)=[{&(0x7f0000000380)="3939000013000900000000000000ff3fe8ffffff470100100000000004002b000a00010014a4ee1ee438d20800000000000000720800000000", 0x39}], 0x1)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000d00030001332564aa58b9a64411f6bbf44dc48f57", 0x39}], 0x1)
sendmsg$L2TP_CMD_TUNNEL_GET(r8, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xfffffffffffffe1a, &(0x7f0000000340)={&(0x7f0000000940)=ANY=[@ANYBLOB="301aadf06f8c99013d1c000000", @ANYBLOB="4b56678353d38e9a8096cf97bfcc874ce414ad1d72266afc8a07046a1e18fde81295d95247e5fbb5f8385ec7b2f7688bb536ab6223702eb461bfa6cf93003d0206f572e4b9e42fba97ba2e9cf5c8527c87", @ANYBLOB="08002cbd7000ffdbdf250400000005002100010000003000d0f0618841b9dcaad747b4"], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x8000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
dup(r6)

608.019111ms ago: executing program 6 (id=2423):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0900000001000000420000004000000002"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c000000150001002bbd7000ffdbdf250a80bffd", @ANYRES32, @ANYBLOB="140002"], 0x2c}, 0x1, 0x0, 0x0, 0x44044}, 0x4040800)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400), &(0x7f0000000780)="f684eeb9ace920", 0x3ff, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000280)={0x0, &(0x7f0000001200)=""/119, &(0x7f00000002c0), &(0x7f00000007c0), 0x7, r0}, 0x38)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000280)=ANY=[@ANYBLOB="20000000520001000000000000000000020000000c00", @ANYRES16=r3], 0x20}}, 0x0)

511.370893ms ago: executing program 6 (id=2424):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ff0000/0xf000)=nil, 0xf000, &(0x7f0000000240)='&^#\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010200000000000000020000000900010073797a300000000040000000030a01010000000000000000020000000900010073797a30000000000900030073797a32000000001400048008000140000000000800024000000b002c000000030a03000000000000000000020000000900010073797a30000000000900030073797a32"], 0xb4}}, 0x0)

445.804373ms ago: executing program 2 (id=2425):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ff7fffb70200000800000018230000", @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='sys_enter\x00', r1}, 0x10)
rt_tgsigqueueinfo(0x0, 0x0, 0x2b, &(0x7f0000000080)={0x1e, 0xfffff800, 0x74})

438.111553ms ago: executing program 4 (id=2426):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x1000f0, 0x82, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7b, 0x1, @perf_bp={0x0, 0xa}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x4, 0xfffffff0, 0x1, 0x0, 0x0, 0x0, 0xa9e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x8004, &(0x7f0000000140)={[{@discard}, {@bh}, {@errors_remount}], [{@subj_type}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00\x00'}}, {@context={'context', 0x3d, 'user_u'}}]}, 0x1, 0x7c9, &(0x7f0000001300)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r1, 0x0, 0x1034}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f00000002c0), 0xfe, 0x4f2, &(0x7f0000000600)="$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")
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$kcm(0xa, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x10)
getpid()
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f000008f000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000486000/0x1000)=nil)
mbind(&(0x7f0000673000/0x1000)=nil, 0x1000, 0x3, &(0x7f00000009c0)=0x7, 0x3, 0x0)

398.680824ms ago: executing program 2 (id=2427):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
setrlimit(0xf, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000004740), 0x8200, 0x0)
ioctl$TCGETS(r2, 0x5401, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r3 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f00000001c0)={@loopback, @empty, <r5=>0x0}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000003c0)=0x14)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'vcan0\x00', <r7=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000c00)={'team0\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000200009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r11 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r12=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r10, r12, 0x25, 0x0, @val=@netfilter}, 0x40)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r12}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, &(0x7f0000001000)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000fc0)={&(0x7f0000001880)={0x3b0, 0x0, 0x200, 0x70bd26, 0x24dfdbfb, {}, [{{0x8, 0x1, r4}, {0x164, 0x2, 0x0, 0x1, [{0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r5}, {0x7c, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xe2c, 0xff, 0x0, 0x4e9}, {0x7f, 0x1, 0x8, 0x1}, {0x101, 0x80, 0xf, 0xae8}, {0x1ff, 0x2, 0xc, 0x8}, {0x1, 0x9, 0xa, 0x1}, {0x2, 0x6, 0x4, 0xfffffbff}, {0x4, 0x4, 0xf8, 0xc}, {0x4, 0x0, 0x5, 0xb}]}}}]}}, {{0x8}, {0xec, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x70a}}, {0x8, 0x6, r12}}}]}}]}, 0x3b0}}, 0x4000005)

398.285544ms ago: executing program 6 (id=2428):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010200000000000000020000000900010073797a300000000040000000030a0101000000000000000002000000090001007379"], 0xb4}}, 0x0)

325.245105ms ago: executing program 6 (id=2429):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000b40)=@filter={'filter\x00', 0x4, 0x4, 0x4b8, 0xffffffff, 0x260, 0x260, 0xe8, 0xfeffffff, 0xffffffff, 0x3e8, 0x3e8, 0x3e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0x138, 0x178, 0x0, {}, [@common=@srh1={{0x90}, {0x21, 0x12, 0xbe, 0x7, 0x5aa9, @ipv4={'\x00', '\xff\xff', @empty}, @private1, @local, [0xff000000, 0xff000000, 0x0, 0xff], [0xffffff00, 0xff000000, 0xff], [0x0, 0xffffff, 0xffffff00, 0x7fffff7f], 0x3c80}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x2000010}}}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x21, 0x180, 0x5}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x3, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @private1, [0x0, 0x0, 0xff, 0xff], [0x0, 0xffffff00], [0x0, 0xff000000], 0x843, 0x1400}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x518)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6})
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)

285.784076ms ago: executing program 2 (id=2430):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x8, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(&(0x7f0000000c40)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
vmsplice(r0, &(0x7f00000005c0)=[{&(0x7f0000001cc0)}], 0x1, 0xa)
fcntl$setpipe(r0, 0x407, 0x6)

184.040307ms ago: executing program 2 (id=2431):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x7, 0x4, 0x208, 0x21, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
syz_read_part_table(0x5c9, &(0x7f0000000880)="$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")

148.430588ms ago: executing program 6 (id=2432):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000003c0)={[{@resgid}, {}, {@grpquota}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f00000006c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
truncate(&(0x7f0000000100)='./file0/file0\x00', 0x5)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000080), 0x0, 0x835, 0x2)

138.079908ms ago: executing program 2 (id=2433):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&\x00'/12, @ANYRES32, @ANYBLOB="2cf3874db25a847992633803883b6282054f6f6b", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

77.557629ms ago: executing program 7 (id=2408):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&\x00'/12, @ANYRES32], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r2}, 0x20)
recvmsg$unix(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0)
sendmsg$inet(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)

0s ago: executing program 6 (id=2434):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000600)=ANY=[@ANYBLOB="851000110200000085000000b5ada100000095003300000005000000000000000000000000000000009ca53c37cd00000000d12825cda29176908ff8a69f677b50503830aef6e75b0085b51bef2d9b4a6bddec7ed14b650fcc2aac8f0619ab956aca220ba28c716f64ed91867585b041d535348b6355d70e35e4ef52dca45bb2549e68acf9aedefed9fd300cd72273241658c633a9e73aa3f3e6184eb76fdc000000000000000000000000000000c0be96a074dc7f071e067006a0ef0be38e5e40308b7288956411136fd2811df321e654c1f88449a7d80605c832aa21a38482c7384e64153e730cb97e1f3524389225c16fd4308450b1d390a3796bcc9dfcb95a6b2e07f4910618d14a07ced0411775210ea969e172fc91ae1cbdf5c2e337f1f0cbf1b710c20301a0a3a94cea0ef21a7e1a989e67ea19ec7fa836f6fcf2370429844134567046a03e210071077169a53028d26c13fa7ad8a92df5807dabc3af32586792c2761e4aafa6ae2795e272499aa9658140f88e7a4d10a78bc93b4bc5f9d7602707a8bc152c7ea6aacd8fe7771c7500e5c2bcd56d955275b076dfd97953c093fac1564dcf39fd269043843ef13bfe"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb8000000, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
mkdir(&(0x7f0000000040)='./cgroup/../file0\x00', 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
close_range(r1, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

9844][ T8992] CPU: 1 UID: 0 PID: 8992 Comm: syz.2.1812 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  139.859877][ T8992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.859893][ T8992] Call Trace:
[  139.859902][ T8992]  <TASK>
[  139.859927][ T8992]  __dump_stack+0x1d/0x30
[  139.860001][ T8992]  dump_stack_lvl+0xe8/0x140
[  139.860021][ T8992]  dump_stack+0x15/0x1b
[  139.860037][ T8992]  should_fail_ex+0x265/0x280
[  139.860076][ T8992]  should_failslab+0x8c/0xb0
[  139.860106][ T8992]  __kmalloc_noprof+0xa5/0x3e0
[  139.860180][ T8992]  ? tun_device_event+0x3f1/0x980
[  139.860214][ T8992]  tun_device_event+0x3f1/0x980
[  139.860248][ T8992]  ? bond_netdev_event+0x5c/0x750
[  139.860299][ T8992]  ? inetdev_event+0x566/0xc10
[  139.860339][ T8992]  ? macvtap_device_event+0x58/0x300
[  139.860366][ T8992]  ? __pfx_tun_device_event+0x10/0x10
[  139.860433][ T8992]  raw_notifier_call_chain+0x6c/0x1b0
[  139.860467][ T8992]  ? call_netdevice_notifiers_info+0x9c/0x100
[  139.860506][ T8992]  call_netdevice_notifiers_info+0xae/0x100
[  139.860548][ T8992]  netif_change_tx_queue_len+0xba/0x170
[  139.860595][ T8992]  dev_change_tx_queue_len+0xc0/0x170
[  139.860635][ T8992]  dev_ifsioc+0x1a1/0xaa0
[  139.860697][ T8992]  ? __rcu_read_unlock+0x4f/0x70
[  139.860772][ T8992]  dev_ioctl+0x70a/0x960
[  139.860852][ T8992]  sock_do_ioctl+0x197/0x220
[  139.860889][ T8992]  sock_ioctl+0x41b/0x610
[  139.860922][ T8992]  ? __pfx_sock_ioctl+0x10/0x10
[  139.860975][ T8992]  __se_sys_ioctl+0xce/0x140
[  139.861010][ T8992]  __x64_sys_ioctl+0x43/0x50
[  139.861051][ T8992]  x64_sys_call+0x19a8/0x2fb0
[  139.861078][ T8992]  do_syscall_64+0xd2/0x200
[  139.861099][ T8992]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  139.861126][ T8992]  ? clear_bhb_loop+0x40/0x90
[  139.861224][ T8992]  ? clear_bhb_loop+0x40/0x90
[  139.861254][ T8992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.861278][ T8992] RIP: 0033:0x7f4a6fb5e929
[  139.861294][ T8992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.861312][ T8992] RSP: 002b:00007f4a6e1c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  139.861380][ T8992] RAX: ffffffffffffffda RBX: 00007f4a6fd85fa0 RCX: 00007f4a6fb5e929
[  139.861396][ T8992] RDX: 0000200000002280 RSI: 0000000000008943 RDI: 0000000000000004
[  139.861412][ T8992] RBP: 00007f4a6e1c7090 R08: 0000000000000000 R09: 0000000000000000
[  139.861425][ T8992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  139.861437][ T8992] R13: 0000000000000000 R14: 00007f4a6fd85fa0 R15: 00007ffd058b4058
[  139.861463][ T8992]  </TASK>
[  139.861501][ T8992] syzkaller0: refused to change device tx_queue_len
[  139.897426][ T8984] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  139.957511][ T8995] loop4: detected capacity change from 0 to 512
[  140.163063][ T8984] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.187827][ T8995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.200568][ T8995] ext4 filesystem being mounted at /347/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  140.214529][ T8995] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1813: corrupted inode contents
[  140.214756][ T8995] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.1813: mark_inode_dirty error
[  140.214984][ T8995] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1813: corrupted inode contents
[  140.215222][ T8995] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1813: mark_inode_dirty error
[  140.217814][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.250301][ T9006] loop0: detected capacity change from 0 to 2048
[  140.272671][ T9004] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1814'.
[  140.272744][ T9004] 1猉功D: renamed from 
30猉功D (while UP)
[  140.276602][ T9004] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  140.302322][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.348072][ T9014] loop4: detected capacity change from 0 to 512
[  140.365253][ T9012] usb usb6: usbfs: process 9012 (syz.2.1817) did not claim interface 0 before use
[  140.377990][ T9017] tmpfs: Bad value for 'mpol'
[  140.391519][ T9014] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.391600][ T9014] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.393459][ T9014] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1816: corrupted inode contents
[  140.393668][ T9014] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.1816: mark_inode_dirty error
[  140.393987][ T9014] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1816: corrupted inode contents
[  140.394100][ T9014] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1816: mark_inode_dirty error
[  140.419791][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.504946][ T9027] loop0: detected capacity change from 0 to 128
[  140.589207][ T9030] lo speed is unknown, defaulting to 1000
[  140.633618][ T9031] batadv_slave_0: entered promiscuous mode
[  140.793327][ T9040] loop3: detected capacity change from 0 to 512
[  140.794988][ T9040] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  140.820897][ T9040] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  140.820920][ T9040] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  140.820953][ T9040] System zones: 0-1, 15-15, 18-18, 34-34
[  140.821178][ T9040] EXT4-fs (loop3): orphan cleanup on readonly fs
[  140.821235][ T9040] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  140.821327][ T9040] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  140.833641][ T9040] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1825: bg 0: block 40: padding at end of block bitmap is not set
[  140.833726][ T9040] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  140.834006][ T9040] EXT4-fs (loop3): 1 truncate cleaned up
[  140.834459][ T9040] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.838605][ T9040] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  140.838627][ T9040] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  140.861209][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.122552][ T9050] FAULT_INJECTION: forcing a failure.
[  141.122552][ T9050] name failslab, interval 1, probability 0, space 0, times 0
[  141.135268][ T9050] CPU: 0 UID: 0 PID: 9050 Comm: syz.3.1828 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  141.135295][ T9050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  141.135320][ T9050] Call Trace:
[  141.135328][ T9050]  <TASK>
[  141.135337][ T9050]  __dump_stack+0x1d/0x30
[  141.135363][ T9050]  dump_stack_lvl+0xe8/0x140
[  141.135386][ T9050]  dump_stack+0x15/0x1b
[  141.135407][ T9050]  should_fail_ex+0x265/0x280
[  141.135520][ T9050]  should_failslab+0x8c/0xb0
[  141.135549][ T9050]  kmem_cache_alloc_noprof+0x50/0x310
[  141.135591][ T9050]  ? prepare_kernel_cred+0x3d/0x680
[  141.135623][ T9050]  prepare_kernel_cred+0x3d/0x680
[  141.135644][ T9050]  ? _request_firmware+0x431/0xbb0
[  141.135748][ T9050]  _request_firmware+0x446/0xbb0
[  141.135790][ T9050]  ? avc_has_perm_noaudit+0x1b1/0x200
[  141.135834][ T9050]  ? __rcu_read_unlock+0x4f/0x70
[  141.135858][ T9050]  request_firmware+0x36/0x50
[  141.135894][ T9050]  devlink_compat_flash_update+0xb2/0x1b0
[  141.135954][ T9050]  dev_ethtool+0x148b/0x1650
[  141.136000][ T9050]  ? full_name_hash+0x92/0xe0
[  141.136031][ T9050]  dev_ioctl+0x2e0/0x960
[  141.136053][ T9050]  sock_do_ioctl+0x197/0x220
[  141.136080][ T9050]  sock_ioctl+0x41b/0x610
[  141.136112][ T9050]  ? __pfx_sock_ioctl+0x10/0x10
[  141.136183][ T9050]  __se_sys_ioctl+0xce/0x140
[  141.136217][ T9050]  __x64_sys_ioctl+0x43/0x50
[  141.136246][ T9050]  x64_sys_call+0x19a8/0x2fb0
[  141.136284][ T9050]  do_syscall_64+0xd2/0x200
[  141.136330][ T9050]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  141.136360][ T9050]  ? clear_bhb_loop+0x40/0x90
[  141.136386][ T9050]  ? clear_bhb_loop+0x40/0x90
[  141.136470][ T9050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.136533][ T9050] RIP: 0033:0x7fd29d79e929
[  141.136548][ T9050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.136657][ T9050] RSP: 002b:00007fd29be07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.136681][ T9050] RAX: ffffffffffffffda RBX: 00007fd29d9c5fa0 RCX: 00007fd29d79e929
[  141.136696][ T9050] RDX: 0000200000000000 RSI: 0000000000008946 RDI: 0000000000000003
[  141.136775][ T9050] RBP: 00007fd29be07090 R08: 0000000000000000 R09: 0000000000000000
[  141.136789][ T9050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.136805][ T9050] R13: 0000000000000000 R14: 00007fd29d9c5fa0 R15: 00007ffd8162a2f8
[  141.136828][ T9050]  </TASK>
[  141.385219][ T9025] batadv_slave_0: left promiscuous mode
[  141.460527][ T9055] loop4: detected capacity change from 0 to 1024
[  141.473586][ T9055] EXT4-fs: Ignoring removed orlov option
[  141.479528][ T9055] EXT4-fs: Ignoring removed nomblk_io_submit option
[  141.497521][ T9055] /dev/loop4: Can't open blockdev
[  141.618417][ T9075] netlink: 'syz.3.1838': attribute type 1 has an invalid length.
[  141.681491][ T9077] loop2: detected capacity change from 0 to 128
[  141.697868][ T9077] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  141.715100][ T9080] loop0: detected capacity change from 0 to 128
[  141.730541][ T9077] ext4 filesystem being mounted at /380/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  141.803242][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  141.816449][ T9083] xt_hashlimit: size too large, truncated to 1048576
[  141.823241][ T9083] xt_hashlimit: Unknown mode mask 80FF, kernel too old?
[  142.350193][ T9097] loop4: detected capacity change from 0 to 512
[  142.376870][ T9097] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  142.629545][ T9133] FAULT_INJECTION: forcing a failure.
[  142.629545][ T9133] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.642835][ T9133] CPU: 0 UID: 0 PID: 9133 Comm: syz.1.1857 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  142.642893][ T9133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  142.642906][ T9133] Call Trace:
[  142.642912][ T9133]  <TASK>
[  142.642920][ T9133]  __dump_stack+0x1d/0x30
[  142.642945][ T9133]  dump_stack_lvl+0xe8/0x140
[  142.642964][ T9133]  dump_stack+0x15/0x1b
[  142.643063][ T9133]  should_fail_ex+0x265/0x280
[  142.643159][ T9133]  should_fail+0xb/0x20
[  142.643238][ T9133]  should_fail_usercopy+0x1a/0x20
[  142.643313][ T9133]  _copy_from_user+0x1c/0xb0
[  142.643343][ T9133]  ___sys_sendmsg+0xc1/0x1d0
[  142.643390][ T9133]  __x64_sys_sendmsg+0xd4/0x160
[  142.643425][ T9133]  x64_sys_call+0x2999/0x2fb0
[  142.643522][ T9133]  do_syscall_64+0xd2/0x200
[  142.643549][ T9133]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.643595][ T9133]  ? clear_bhb_loop+0x40/0x90
[  142.643622][ T9133]  ? clear_bhb_loop+0x40/0x90
[  142.643741][ T9133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.643769][ T9133] RIP: 0033:0x7fcca90ee929
[  142.643790][ T9133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.643809][ T9133] RSP: 002b:00007fcca7757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.643827][ T9133] RAX: ffffffffffffffda RBX: 00007fcca9315fa0 RCX: 00007fcca90ee929
[  142.643840][ T9133] RDX: 000000000000c000 RSI: 0000200000000080 RDI: 0000000000000003
[  142.643927][ T9133] RBP: 00007fcca7757090 R08: 0000000000000000 R09: 0000000000000000
[  142.643943][ T9133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.643959][ T9133] R13: 0000000000000000 R14: 00007fcca9315fa0 R15: 00007ffeb31d1c98
[  142.643984][ T9133]  </TASK>
[  142.844236][ T9141] loop4: detected capacity change from 0 to 128
[  142.858018][ T9141] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  142.871405][ T9142] FAULT_INJECTION: forcing a failure.
[  142.871405][ T9142] name failslab, interval 1, probability 0, space 0, times 0
[  142.884103][ T9142] CPU: 1 UID: 0 PID: 9142 Comm: syz.1.1861 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  142.884133][ T9142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  142.884148][ T9142] Call Trace:
[  142.884157][ T9142]  <TASK>
[  142.884167][ T9142]  __dump_stack+0x1d/0x30
[  142.884193][ T9142]  dump_stack_lvl+0xe8/0x140
[  142.884218][ T9142]  dump_stack+0x15/0x1b
[  142.884240][ T9142]  should_fail_ex+0x265/0x280
[  142.884290][ T9142]  should_failslab+0x8c/0xb0
[  142.884313][ T9142]  kmem_cache_alloc_noprof+0x50/0x310
[  142.884346][ T9142]  ? getname_flags+0x80/0x3b0
[  142.884422][ T9142]  getname_flags+0x80/0x3b0
[  142.884454][ T9142]  __se_sys_mq_unlink+0x6b/0x260
[  142.884496][ T9142]  __x64_sys_mq_unlink+0x1f/0x30
[  142.884528][ T9142]  x64_sys_call+0x1c2a/0x2fb0
[  142.884559][ T9142]  do_syscall_64+0xd2/0x200
[  142.884585][ T9142]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.884618][ T9142]  ? clear_bhb_loop+0x40/0x90
[  142.884701][ T9142]  ? clear_bhb_loop+0x40/0x90
[  142.884723][ T9142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.884750][ T9142] RIP: 0033:0x7fcca90ee929
[  142.884769][ T9142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.884870][ T9142] RSP: 002b:00007fcca7757038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f1
[  142.884888][ T9142] RAX: ffffffffffffffda RBX: 00007fcca9315fa0 RCX: 00007fcca90ee929
[  142.884900][ T9142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  142.884911][ T9142] RBP: 00007fcca7757090 R08: 0000000000000000 R09: 0000000000000000
[  142.884924][ T9142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.884938][ T9142] R13: 0000000000000000 R14: 00007fcca9315fa0 R15: 00007ffeb31d1c98
[  142.884962][ T9142]  </TASK>
[  142.888224][ T9141] ext4 filesystem being mounted at /361/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  143.125031][ T3315] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  143.153452][ T9152] syzkaller1: entered promiscuous mode
[  143.159713][ T9152] syzkaller1: entered allmulticast mode
[  143.160934][ T9150] loop2: detected capacity change from 0 to 2048
[  143.176980][ T9154] loop4: detected capacity change from 0 to 2048
[  143.190498][ T9152] loop3: detected capacity change from 0 to 512
[  143.197468][ T9152] EXT4-fs: Ignoring removed orlov option
[  143.204049][ T9152] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  143.234204][ T9152] EXT4-fs (loop3): orphan cleanup on readonly fs
[  143.262305][ T9152] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1867: bg 0: block 248: padding at end of block bitmap is not set
[  143.309141][ T9168] loop0: detected capacity change from 0 to 4096
[  143.324457][ T9152] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1867: Failed to acquire dquot type 1
[  143.331423][ T9168] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.354930][ T9152] EXT4-fs (loop3): 1 truncate cleaned up
[  143.369936][ T9152] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.392436][ T9152] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1867'.
[  143.409056][ T9182] loop2: detected capacity change from 0 to 128
[  143.442056][ T9187] loop4: detected capacity change from 0 to 1024
[  143.455416][ T9187] EXT4-fs: Ignoring removed orlov option
[  143.466048][ T9187] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  143.478079][ T9182] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  143.490565][ T9182] ext4 filesystem being mounted at /387/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  143.550648][   T29] kauditd_printk_skb: 576 callbacks suppressed
[  143.550665][   T29] audit: type=1326 audit(1749503673.980:21442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.2.1876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6fb5e929 code=0x7ffc0000
[  143.580687][   T29] audit: type=1326 audit(1749503673.980:21443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.2.1876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6fb5e929 code=0x7ffc0000
[  143.604572][   T29] audit: type=1326 audit(1749503673.980:21444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.2.1876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f4a6fb5e929 code=0x7ffc0000
[  143.628186][   T29] audit: type=1326 audit(1749503673.980:21445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9181 comm="syz.2.1876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6fb5e929 code=0x7ffc0000
[  143.675906][ T9187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.753170][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  143.778943][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.030734][   T29] audit: type=1326 audit(1749503674.439:21446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9202 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  144.054431][   T29] audit: type=1326 audit(1749503674.439:21447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9202 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  144.122044][   T29] audit: type=1326 audit(1749503674.485:21448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9202 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  144.145619][   T29] audit: type=1326 audit(1749503674.485:21449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9202 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  144.169280][   T29] audit: type=1326 audit(1749503674.485:21450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9202 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  144.275398][   T29] audit: type=1326 audit(1749503674.663:21451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9206 comm="syz.2.1881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a6fb5e929 code=0x7ffc0000
[  144.590565][ T9168] Set syz1 is full, maxelem 65536 reached
[  144.690192][ T9218] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1885'.
[  144.728587][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.741041][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.805538][ T9224] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1887'.
[  144.832005][ T9232] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1888'.
[  144.841246][ T9232] 1猉功D: renamed from 
30猉功D (while UP)
[  144.852435][ T9232] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  144.897885][ T7342] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  144.918524][ T7342] hid-generic 0000:0000:0000.001A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  145.309080][ T9252] loop0: detected capacity change from 0 to 2048
[  145.469270][ T9254] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1896'.
[  145.628384][ T9268] loop2: detected capacity change from 0 to 2048
[  145.679617][ T9268] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.737445][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.788033][ T9272] loop2: detected capacity change from 0 to 2048
[  145.849132][ T9274] loop3: detected capacity change from 0 to 1024
[  145.859569][ T9274] EXT4-fs: Ignoring removed orlov option
[  145.865862][ T9274] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  145.896479][ T9276] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1904'.
[  145.908244][ T9274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.922243][ T9276] 0猉功D: renamed from 
31猉功D (while UP)
[  145.952244][ T9276] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  145.957151][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.140205][ T9294] loop0: detected capacity change from 0 to 2048
[  146.314649][ T9310] loop3: detected capacity change from 0 to 512
[  146.356634][ T9240] loop4: detected capacity change from 0 to 8192
[  146.384077][ T9310] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  146.496243][ T9310] EXT4-fs (loop3): 1 truncate cleaned up
[  146.502855][ T9310] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.562264][ T9322] loop0: detected capacity change from 0 to 1024
[  146.655862][ T9330] loop4: detected capacity change from 0 to 1024
[  146.670920][ T9322] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.686675][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.696814][ T9330] EXT4-fs: Ignoring removed orlov option
[  146.703434][ T9322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.714535][ T9330] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  146.738926][ T9330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.769772][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.858408][ T9300] syz.1.1913 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  146.873326][ T9300] CPU: 1 UID: 0 PID: 9300 Comm: syz.1.1913 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  146.873355][ T9300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.873369][ T9300] Call Trace:
[  146.873378][ T9300]  <TASK>
[  146.873388][ T9300]  __dump_stack+0x1d/0x30
[  146.873416][ T9300]  dump_stack_lvl+0xe8/0x140
[  146.873442][ T9300]  dump_stack+0x15/0x1b
[  146.873541][ T9300]  dump_header+0x81/0x220
[  146.873586][ T9300]  oom_kill_process+0x334/0x3f0
[  146.873628][ T9300]  out_of_memory+0x979/0xb80
[  146.873668][ T9300]  try_charge_memcg+0x5e6/0x9e0
[  146.873801][ T9300]  obj_cgroup_charge_pages+0xa6/0x150
[  146.873948][ T9300]  __memcg_kmem_charge_page+0x9f/0x170
[  146.873990][ T9300]  __alloc_frozen_pages_noprof+0x188/0x360
[  146.874079][ T9300]  alloc_pages_mpol+0xb3/0x250
[  146.874131][ T9300]  alloc_pages_noprof+0x90/0x130
[  146.874220][ T9300]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  146.874296][ T9300]  __kvmalloc_node_noprof+0x30f/0x4e0
[  146.874335][ T9300]  ? ip_set_alloc+0x1f/0x30
[  146.874378][ T9300]  ? ip_set_alloc+0x1f/0x30
[  146.874488][ T9300]  ? __kmalloc_cache_noprof+0x189/0x320
[  146.874527][ T9300]  ip_set_alloc+0x1f/0x30
[  146.874636][ T9300]  hash_netiface_create+0x282/0x740
[  146.874755][ T9300]  ? __pfx_hash_netiface_create+0x10/0x10
[  146.874801][ T9300]  ip_set_create+0x3cc/0x960
[  146.874841][ T9300]  ? __nla_parse+0x40/0x60
[  146.874872][ T9300]  nfnetlink_rcv_msg+0x4c3/0x590
[  146.874948][ T9300]  ? selinux_capable+0x1f9/0x270
[  146.874985][ T9300]  netlink_rcv_skb+0x120/0x220
[  146.875079][ T9300]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  146.875115][ T9300]  nfnetlink_rcv+0x16b/0x1690
[  146.875153][ T9300]  ? __kfree_skb+0x109/0x150
[  146.875265][ T9300]  ? nlmon_xmit+0x4f/0x60
[  146.875301][ T9300]  ? consume_skb+0x49/0x150
[  146.875344][ T9300]  ? nlmon_xmit+0x4f/0x60
[  146.875374][ T9300]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  146.875403][ T9300]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  146.875457][ T9300]  ? __dev_queue_xmit+0x182/0x1fb0
[  146.875483][ T9300]  ? ref_tracker_free+0x37d/0x3e0
[  146.875529][ T9300]  ? __netlink_deliver_tap+0x4dc/0x500
[  146.875569][ T9300]  netlink_unicast+0x5a1/0x670
[  146.875628][ T9300]  netlink_sendmsg+0x58b/0x6b0
[  146.875651][ T9300]  ? __pfx_netlink_sendmsg+0x10/0x10
[  146.875679][ T9300]  __sock_sendmsg+0x142/0x180
[  146.875717][ T9300]  ____sys_sendmsg+0x31e/0x4e0
[  146.875865][ T9300]  ___sys_sendmsg+0x17b/0x1d0
[  146.875908][ T9300]  __x64_sys_sendmsg+0xd4/0x160
[  146.875942][ T9300]  x64_sys_call+0x2999/0x2fb0
[  146.875968][ T9300]  do_syscall_64+0xd2/0x200
[  146.876040][ T9300]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  146.876095][ T9300]  ? clear_bhb_loop+0x40/0x90
[  146.876123][ T9300]  ? clear_bhb_loop+0x40/0x90
[  146.876152][ T9300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.876180][ T9300] RIP: 0033:0x7fcca90ee929
[  146.876200][ T9300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.876283][ T9300] RSP: 002b:00007fcca7757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  146.876304][ T9300] RAX: ffffffffffffffda RBX: 00007fcca9315fa0 RCX: 00007fcca90ee929
[  146.876316][ T9300] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000007
[  146.876330][ T9300] RBP: 00007fcca9170b39 R08: 0000000000000000 R09: 0000000000000000
[  146.876346][ T9300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  146.876431][ T9300] R13: 0000000000000000 R14: 00007fcca9315fa0 R15: 00007ffeb31d1c98
[  146.876455][ T9300]  </TASK>
[  147.220654][ T9300] memory: usage 307200kB, limit 307200kB, failcnt 1780
[  147.227631][ T9300] memory+swap: usage 307528kB, limit 9007199254740988kB, failcnt 0
[  147.235607][ T9300] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  147.242964][ T9300] Memory cgroup stats for /syz1:
[  147.243338][ T9300] cache 0
[  147.252074][ T9300] rss 0
[  147.254858][ T9300] shmem 0
[  147.257872][ T9300] mapped_file 0
[  147.261396][ T9300] dirty 0
[  147.264353][ T9300] writeback 0
[  147.267656][ T9300] workingset_refault_anon 697
[  147.272398][ T9300] workingset_refault_file 1761
[  147.277175][ T9300] swap 335872
[  147.280487][ T9300] swapcached 0
[  147.284612][ T9300] pgpgin 225346
[  147.288109][ T9300] pgpgout 225346
[  147.291711][ T9300] pgfault 180146
[  147.295353][ T9300] pgmajfault 295
[  147.298980][ T9300] inactive_anon 0
[  147.302659][ T9300] active_anon 0
[  147.306132][ T9300] inactive_file 0
[  147.309870][ T9300] active_file 0
[  147.314213][ T9300] unevictable 0
[  147.317698][ T9300] hierarchical_memory_limit 314572800
[  147.323153][ T9300] hierarchical_memsw_limit 9223372036854771712
[  147.329412][ T9300] total_cache 0
[  147.332899][ T9300] total_rss 0
[  147.336238][ T9300] total_shmem 0
[  147.339724][ T9300] total_mapped_file 0
[  147.343740][ T9300] total_dirty 0
[  147.347815][ T9300] total_writeback 0
[  147.351629][ T9300] total_workingset_refault_anon 697
[  147.356882][ T9300] total_workingset_refault_file 1761
[  147.362209][ T9300] total_swap 335872
[  147.366023][ T9300] total_swapcached 0
[  147.369946][ T9300] total_pgpgin 225346
[  147.373934][ T9300] total_pgpgout 225346
[  147.378602][ T9300] total_pgfault 180146
[  147.382707][ T9300] total_pgmajfault 295
[  147.386803][ T9300] total_inactive_anon 0
[  147.391014][ T9300] total_active_anon 0
[  147.395074][ T9300] total_inactive_file 0
[  147.399362][ T9300] total_active_file 0
[  147.403416][ T9300] total_unevictable 0
[  147.407419][ T9300] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1913,pid=9297,uid=0
[  147.422841][ T9300] Memory cgroup out of memory: Killed process 9297 (syz.1.1913) total-vm:95932kB, anon-rss:932kB, file-rss:22320kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  147.473183][ T9335] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1933'.
[  147.536075][ T9353] loop3: detected capacity change from 0 to 128
[  147.547942][ T9353] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  147.549331][   T36] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  147.562161][ T9353] ext4 filesystem being mounted at /399/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  147.618410][   T36] hid-generic 0000:0000:0000.001B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  147.647093][ T3310] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  147.893239][ T9365] loop4: detected capacity change from 0 to 1024
[  147.903960][ T9365] EXT4-fs: Ignoring removed orlov option
[  147.911653][ T9365] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  147.921795][ T9366] loop2: detected capacity change from 0 to 1024
[  147.930500][ T9366] EXT4-fs: Ignoring removed orlov option
[  147.937708][ T9366] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  147.957985][ T9365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.987966][ T9366] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.001169][ T9382] loop3: detected capacity change from 0 to 1024
[  148.008492][ T9382] EXT4-fs: Ignoring removed orlov option
[  148.028201][ T9382] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.039880][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.076709][ T9393] Cannot find add_set index 0 as target
[  148.101217][ T9394] loop4: detected capacity change from 0 to 1024
[  148.108559][ T9394] EXT4-fs: Ignoring removed orlov option
[  148.115139][ T9394] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.129163][ T9393] netlink: 'syz.2.1943': attribute type 11 has an invalid length.
[  148.138611][ T9393] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1943'.
[  148.178724][ T7347] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  148.196664][ T7347] hid-generic 0000:0000:0000.001C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  148.240508][ T9411] loop4: detected capacity change from 0 to 512
[  148.270030][ T9410] loop3: detected capacity change from 0 to 512
[  148.289240][ T9412] loop0: detected capacity change from 0 to 1024
[  148.290962][ T9411] ext4 filesystem being mounted at /380/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  148.334417][ T9410] ext4 filesystem being mounted at /405/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  148.345340][ T9411] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1949: corrupted inode contents
[  148.362074][ T9410] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1950: corrupted inode contents
[  148.375401][ T9411] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.1949: mark_inode_dirty error
[  148.389322][ T9410] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.1950: mark_inode_dirty error
[  148.404124][ T9410] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1950: corrupted inode contents
[  148.404625][ T9411] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1949: corrupted inode contents
[  148.429373][ T9420] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1949: corrupted inode contents
[  148.451550][ T9421] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1950: corrupted inode contents
[  148.484660][ T9421] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.1950: mark_inode_dirty error
[  148.515160][ T9420] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.1949: mark_inode_dirty error
[  148.527739][ T9421] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1950: corrupted inode contents
[  148.547454][ T9421] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.1950: mark_inode_dirty error
[  148.559888][ T9420] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1949: corrupted inode contents
[  148.573301][ T9421] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1950: corrupted inode contents
[  148.586866][ T9421] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.1950: mark_inode_dirty error
[  148.587082][ T9420] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1949: mark_inode_dirty error
[  148.610949][ T9420] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1949: corrupted inode contents
[  148.654106][ T9420] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.1949: mark_inode_dirty error
[  148.763155][ T9435] loop2: detected capacity change from 0 to 1024
[  148.777412][ T9433] loop4: detected capacity change from 0 to 1024
[  148.785817][ T9435] EXT4-fs: Ignoring removed orlov option
[  148.791953][ T9435] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.805555][ T9433] EXT4-fs: Ignoring removed orlov option
[  148.811934][ T9433] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.894249][ T9445] loop2: detected capacity change from 0 to 164
[  148.907350][ T9445] ISOFS: unable to read i-node block
[  148.908080][   T29] kauditd_printk_skb: 262 callbacks suppressed
[  148.908096][   T29] audit: type=1326 audit(1749503679.003:21714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  148.912675][ T9445] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  148.962553][   T29] audit: type=1400 audit(1749503679.041:21715): avc:  denied  { mount } for  pid=9443 comm="syz.2.1959" name="/" dev="loop2" ino=1920 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  148.985961][   T29] audit: type=1326 audit(1749503679.050:21716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb00d3c58e7 code=0x7ffc0000
[  149.009462][   T29] audit: type=1326 audit(1749503679.050:21717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb00d36ab19 code=0x7ffc0000
[  149.033633][   T29] audit: type=1326 audit(1749503679.050:21718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb00d3c58e7 code=0x7ffc0000
[  149.044004][ T9445] loop2: detected capacity change from 0 to 8192
[  149.057876][   T29] audit: type=1326 audit(1749503679.050:21719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb00d36ab19 code=0x7ffc0000
[  149.086982][   T29] audit: type=1326 audit(1749503679.050:21720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb00d3c58e7 code=0x7ffc0000
[  149.111159][   T29] audit: type=1326 audit(1749503679.050:21721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb00d36ab19 code=0x7ffc0000
[  149.134628][   T29] audit: type=1326 audit(1749503679.050:21722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb00d3c58e7 code=0x7ffc0000
[  149.158769][   T29] audit: type=1326 audit(1749503679.050:21723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9442 comm="syz.4.1958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb00d36ab19 code=0x7ffc0000
[  149.191599][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1961'.
[  149.329739][ T9462] loop3: detected capacity change from 0 to 128
[  149.425373][ T9462] ext4 filesystem being mounted at /409/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  149.601973][ T9474] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[  149.608563][ T9474] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  149.616099][ T9474] vhci_hcd vhci_hcd.0: Device attached
[  149.637189][ T9477] vhci_hcd: connection closed
[  149.637466][   T31] vhci_hcd: stop threads
[  149.646684][   T31] vhci_hcd: release socket
[  149.651224][   T31] vhci_hcd: disconnect device
[  149.663703][ T9480] loop4: detected capacity change from 0 to 1024
[  149.687279][ T9480] EXT4-fs: Ignoring removed orlov option
[  149.694407][ T9480] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  149.883498][ T9501] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  149.896088][ T9501] SELinux: failed to load policy
[  149.992270][ T9516] loop2: detected capacity change from 0 to 1024
[  150.043190][ T9519] loop0: detected capacity change from 0 to 512
[  150.050611][ T9519] ext4: Unknown parameter 'audit'
[  150.117280][ T9533] loop0: detected capacity change from 0 to 128
[  150.126905][ T9533] FAT-fs (loop0): FAT read failed (blocknr 54816)
[  150.288555][ T9541] lo speed is unknown, defaulting to 1000
[  150.555863][ T9505] syz.2.1978 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  150.567357][ T9505] CPU: 0 UID: 0 PID: 9505 Comm: syz.2.1978 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  150.567426][ T9505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.567439][ T9505] Call Trace:
[  150.567446][ T9505]  <TASK>
[  150.567456][ T9505]  __dump_stack+0x1d/0x30
[  150.567482][ T9505]  dump_stack_lvl+0xe8/0x140
[  150.567504][ T9505]  dump_stack+0x15/0x1b
[  150.567597][ T9505]  dump_header+0x81/0x220
[  150.567697][ T9505]  oom_kill_process+0x334/0x3f0
[  150.567738][ T9505]  out_of_memory+0x979/0xb80
[  150.567859][ T9505]  try_charge_memcg+0x5e6/0x9e0
[  150.567948][ T9505]  charge_memcg+0x51/0xc0
[  150.568033][ T9505]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  150.568081][ T9505]  __read_swap_cache_async+0x1df/0x350
[  150.568119][ T9505]  swap_cluster_readahead+0x277/0x3e0
[  150.568227][ T9505]  swapin_readahead+0xde/0x6f0
[  150.568267][ T9505]  ? __filemap_get_folio+0x49f/0x650
[  150.568387][ T9505]  ? swap_cache_get_folio+0x77/0x200
[  150.568495][ T9505]  do_swap_page+0x301/0x2430
[  150.568525][ T9505]  ? finish_task_switch+0xad/0x2b0
[  150.568562][ T9505]  ? __pfx_default_wake_function+0x10/0x10
[  150.568628][ T9505]  handle_mm_fault+0x9a5/0x2be0
[  150.568657][ T9505]  ? mas_walk+0xf2/0x120
[  150.568686][ T9505]  do_user_addr_fault+0x636/0x1090
[  150.568728][ T9505]  ? fpregs_restore_userregs+0xe2/0x1d0
[  150.568820][ T9505]  ? switch_fpu_return+0xe/0x20
[  150.568893][ T9505]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.568928][ T9505]  exc_page_fault+0x62/0xa0
[  150.568964][ T9505]  asm_exc_page_fault+0x26/0x30
[  150.569059][ T9505] RIP: 0033:0x7f4a6fa3538c
[  150.569074][ T9505] Code: 66 0f 1f 44 00 00 69 3d 26 03 e8 00 e8 03 00 00 48 8d 1d 27 0c 35 00 e8 02 95 12 00 eb 0c 48 81 c3 e0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 e0 00 00
[  150.569092][ T9505] RSP: 002b:00007ffd058b41c0 EFLAGS: 00010206
[  150.569121][ T9505] RAX: 0000000000000000 RBX: 00007f4a6fd85fa0 RCX: 0000000000000000
[  150.569132][ T9505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556ed6a808
[  150.569144][ T9505] RBP: 00007f4a6fd87ba0 R08: 0000000000000000 R09: 7fffffffffffffff
[  150.569156][ T9505] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000002434a
[  150.569205][ T9505] R13: 00007f4a6fd86160 R14: ffffffffffffffff R15: 00007ffd058b42d0
[  150.569226][ T9505]  </TASK>
[  150.569232][ T9505] memory: usage 307200kB, limit 307200kB, failcnt 497
[  150.801518][ T9505] memory+swap: usage 307760kB, limit 9007199254740988kB, failcnt 0
[  150.809521][ T9505] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  150.816901][ T9505] Memory cgroup stats for /syz2:
[  150.818344][ T9505] cache 0
[  150.826379][ T9505] rss 4096
[  150.829486][ T9505] shmem 0
[  150.832647][ T9505] mapped_file 0
[  150.836313][ T9505] dirty 0
[  150.839283][ T9505] writeback 4096
[  150.842882][ T9505] workingset_refault_anon 262
[  150.847573][ T9505] workingset_refault_file 638
[  150.852314][ T9505] swap 573440
[  150.855619][ T9505] swapcached 4096
[  150.859270][ T9505] pgpgin 104868
[  150.862820][ T9505] pgpgout 104867
[  150.866432][ T9505] pgfault 128927
[  150.870108][ T9505] pgmajfault 179
[  150.873708][ T9505] inactive_anon 4096
[  150.877637][ T9505] active_anon 0
[  150.881133][ T9505] inactive_file 0
[  150.884817][ T9505] active_file 0
[  150.888316][ T9505] unevictable 0
[  150.891851][ T9505] hierarchical_memory_limit 314572800
[  150.897316][ T9505] hierarchical_memsw_limit 9223372036854771712
[  150.903535][ T9505] total_cache 0
[  150.907086][ T9505] total_rss 4096
[  150.910823][ T9505] total_shmem 0
[  150.914611][ T9505] total_mapped_file 0
[  150.918651][ T9505] total_dirty 0
[  150.922128][ T9505] total_writeback 4096
[  150.926228][ T9505] total_workingset_refault_anon 262
[  150.931667][ T9505] total_workingset_refault_file 638
[  150.937027][ T9505] total_swap 573440
[  150.941008][ T9505] total_swapcached 4096
[  150.941451][ T9554] loop3: detected capacity change from 0 to 128
[  150.945164][ T9505] total_pgpgin 104868
[  150.945181][ T9505] total_pgpgout 104867
[  150.945191][ T9505] total_pgfault 128927
[  150.956131][ T9554] ext4 filesystem being mounted at /414/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  150.959574][ T9505] total_pgmajfault 179
[  150.959584][ T9505] total_inactive_anon 4096
[  150.959593][ T9505] total_active_anon 0
[  151.008479][ T9505] total_inactive_file 0
[  151.012678][ T9505] total_active_file 0
[  151.016715][ T9505] total_unevictable 0
[  151.020739][ T9505] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1978,pid=9505,uid=0
[  151.035422][ T9505] Memory cgroup out of memory: Killed process 9505 (syz.2.1978) total-vm:93884kB, anon-rss:936kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  151.120916][ T9559] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1996'.
[  151.129891][ T9559] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1996'.
[  151.261225][ T3398] hid-generic 0000:0000:0000.001D: unknown main item tag 0x0
[  151.270023][ T3398] hid-generic 0000:0000:0000.001D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  151.472234][ T9571] netlink: 5 bytes leftover after parsing attributes in process `syz.0.2003'.
[  151.488748][ T9571] 0猉功D: renamed from 
31猉功D (while UP)
[  151.496661][ T9571] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  151.569948][ T9575] loop4: detected capacity change from 0 to 4096
[  151.618347][ T9577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2006'.
[  151.683625][ T9586] loop4: detected capacity change from 0 to 128
[  151.694626][ T9586] FAT-fs (loop4): FAT read failed (blocknr 54816)
[  151.877708][ T9600] loop0: detected capacity change from 0 to 2048
[  151.892627][ T9605] loop2: detected capacity change from 0 to 2048
[  151.947852][ T9608] loop2: detected capacity change from 0 to 1024
[  151.948325][ T9608] EXT4-fs: Ignoring removed orlov option
[  151.956384][ T9608] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  152.037301][ T9609] bond0: entered promiscuous mode
[  152.037324][ T9609] bond0: entered allmulticast mode
[  152.037554][ T9609] 8021q: adding VLAN 0 to HW filter on device bond0
[  152.043453][ T9609] bond0 (unregistering): Released all slaves
[  152.071062][ T9619] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2020'.
[  152.096986][ T9622] loop0: detected capacity change from 0 to 1024
[  152.185232][ T9634] loop3: detected capacity change from 0 to 1024
[  152.193988][ T9634] EXT4-fs: Ignoring removed orlov option
[  152.200399][ T9634] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  152.362114][ T9646] loop2: detected capacity change from 0 to 8192
[  152.375625][ T9646] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2030'.
[  152.420582][ T9656] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.459264][ T9656] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.475644][ T9657] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  152.501771][ T9656] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.555868][ T9656] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.605105][ T9660] loop4: detected capacity change from 0 to 1024
[  152.612196][ T9660] EXT4-fs: Ignoring removed orlov option
[  152.619765][ T9660] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  152.639833][ T9656] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.653634][ T9656] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.667323][ T9656] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.680597][ T9656] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.751312][ T9664] loop4: detected capacity change from 0 to 4096
[  152.774069][ T9668] loop3: detected capacity change from 0 to 2048
[  153.071387][ T9687] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2047'.
[  153.096754][ T9687] 1猉功D: renamed from 
30猉功D (while UP)
[  153.119820][ T9687] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  153.190353][ T9681] loop4: detected capacity change from 0 to 2048
[  153.207280][ T9694] FAULT_INJECTION: forcing a failure.
[  153.207280][ T9694] name failslab, interval 1, probability 0, space 0, times 0
[  153.220022][ T9694] CPU: 0 UID: 0 PID: 9694 Comm: syz.0.2049 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  153.220103][ T9694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.220116][ T9694] Call Trace:
[  153.220123][ T9694]  <TASK>
[  153.220131][ T9694]  __dump_stack+0x1d/0x30
[  153.220186][ T9694]  dump_stack_lvl+0xe8/0x140
[  153.220208][ T9694]  dump_stack+0x15/0x1b
[  153.220227][ T9694]  should_fail_ex+0x265/0x280
[  153.220268][ T9694]  should_failslab+0x8c/0xb0
[  153.220357][ T9694]  kmem_cache_alloc_node_noprof+0x57/0x320
[  153.220389][ T9694]  ? __alloc_skb+0x101/0x320
[  153.220427][ T9694]  __alloc_skb+0x101/0x320
[  153.220537][ T9694]  netlink_alloc_large_skb+0xba/0xf0
[  153.220572][ T9694]  netlink_sendmsg+0x3cf/0x6b0
[  153.220643][ T9694]  ? __pfx_netlink_sendmsg+0x10/0x10
[  153.220671][ T9694]  __sock_sendmsg+0x142/0x180
[  153.220712][ T9694]  ____sys_sendmsg+0x31e/0x4e0
[  153.220852][ T9694]  ___sys_sendmsg+0x17b/0x1d0
[  153.220889][ T9694]  __x64_sys_sendmsg+0xd4/0x160
[  153.220917][ T9694]  x64_sys_call+0x2999/0x2fb0
[  153.220964][ T9694]  do_syscall_64+0xd2/0x200
[  153.220990][ T9694]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  153.221021][ T9694]  ? clear_bhb_loop+0x40/0x90
[  153.221045][ T9694]  ? clear_bhb_loop+0x40/0x90
[  153.221130][ T9694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.221156][ T9694] RIP: 0033:0x7f2c4664e929
[  153.221173][ T9694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.221192][ T9694] RSP: 002b:00007f2c44cb7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.221212][ T9694] RAX: ffffffffffffffda RBX: 00007f2c46875fa0 RCX: 00007f2c4664e929
[  153.221227][ T9694] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000006
[  153.221273][ T9694] RBP: 00007f2c44cb7090 R08: 0000000000000000 R09: 0000000000000000
[  153.221288][ T9694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.221316][ T9694] R13: 0000000000000000 R14: 00007f2c46875fa0 R15: 00007ffc9e741d78
[  153.221336][ T9694]  </TASK>
[  153.268275][ T9681] EXT4-fs: Ignoring removed bh option
[  153.439222][ T9681] ext4: Unknown parameter 'subj_type'
[  153.452907][ T9681] loop4: detected capacity change from 0 to 512
[  153.459376][ T9689] loop3: detected capacity change from 0 to 2048
[  153.466855][ T9689] EXT4-fs: Ignoring removed bh option
[  153.473376][ T9689] ext4: Unknown parameter 'subj_type'
[  153.474752][ T9681] EXT4-fs (loop4): too many log groups per flexible block group
[  153.486589][ T9681] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  153.498673][ T9689] loop3: detected capacity change from 0 to 512
[  153.505461][ T9681] EXT4-fs (loop4): mount failed
[  153.517061][ T9689] EXT4-fs (loop3): too many log groups per flexible block group
[  153.524930][ T9689] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  153.529922][ T9703] loop0: detected capacity change from 0 to 2048
[  153.550558][ T9681] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2044'.
[  153.565304][ T9689] EXT4-fs (loop3): mount failed
[  153.580138][ T9689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2045'.
[  153.670733][ T9709] loop0: detected capacity change from 0 to 4096
[  153.811520][ T9730] 0猉功D: renamed from 
31猉功D (while UP)
[  153.827291][ T9730] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  153.889640][ T9736] loop4: detected capacity change from 0 to 1024
[  153.896397][ T9736] EXT4-fs: Ignoring removed orlov option
[  153.904838][ T9736] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  153.986681][ T9746] netlink: 'syz.4.2069': attribute type 4 has an invalid length.
[  154.001008][ T9746] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.008595][ T9746] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.017852][ T9746] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.025294][ T9746] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.056760][ T9750] sg_write: data in/out 512/1 bytes for SCSI command 0xb7-- guessing data in;
[  154.056760][ T9750]    program syz.4.2069 not setting count and/or reply_len properly
[  154.123014][ T9743] loop0: detected capacity change from 0 to 2048
[  154.129940][ T9743] EXT4-fs: Ignoring removed bh option
[  154.136457][ T9743] ext4: Unknown parameter 'subj_type'
[  154.164530][ T9743] loop0: detected capacity change from 0 to 512
[  154.186868][ T9743] EXT4-fs (loop0): too many log groups per flexible block group
[  154.194878][ T9743] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  154.216730][ T9743] EXT4-fs (loop0): mount failed
[  154.241632][ T9762] loop4: detected capacity change from 0 to 4096
[  154.293077][   T29] kauditd_printk_skb: 2350 callbacks suppressed
[  154.293097][   T29] audit: type=1326 audit(1749503684.036:24074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9764 comm="syz.1.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcca90ee929 code=0x7ffc0000
[  154.326390][   T29] audit: type=1326 audit(1749503684.036:24075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9764 comm="syz.1.2073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcca90ee929 code=0x7ffc0000
[  154.409236][   T29] audit: type=1326 audit(1749503684.148:24076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9783 comm="syz.4.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  154.436747][   T29] audit: type=1326 audit(1749503684.176:24077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9783 comm="syz.4.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  154.460396][   T29] audit: type=1326 audit(1749503684.176:24078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9783 comm="syz.4.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  154.484166][   T29] audit: type=1326 audit(1749503684.176:24079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9783 comm="syz.4.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  154.508043][   T29] audit: type=1326 audit(1749503684.176:24080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9783 comm="syz.4.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  154.518197][ T7347] hid (null): unknown global tag 0xc
[  154.531698][   T29] audit: type=1326 audit(1749503684.176:24081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9783 comm="syz.4.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  154.562258][   T29] audit: type=1326 audit(1749503684.251:24082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9785 comm="syz.1.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcca90ee929 code=0x7ffc0000
[  154.568047][ T7347] hid-generic 0010:0002:0004.001E: reserved main item tag 0xe
[  154.585800][   T29] audit: type=1326 audit(1749503684.251:24083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9785 comm="syz.1.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcca90ee929 code=0x7ffc0000
[  154.593281][ T7347] hid-generic 0010:0002:0004.001E: unknown main item tag 0x1
[  154.624876][ T7347] hid-generic 0010:0002:0004.001E: unknown main item tag 0x7
[  154.632313][ T7347] hid-generic 0010:0002:0004.001E: unknown main item tag 0x0
[  154.639734][ T7347] hid-generic 0010:0002:0004.001E: unknown global tag 0xc
[  154.647510][ T7347] hid-generic 0010:0002:0004.001E: item 0 1 1 12 parsing failed
[  154.713628][ T9791] __nla_validate_parse: 4 callbacks suppressed
[  154.713657][ T9791] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2083'.
[  154.728965][ T9787] loop3: detected capacity change from 0 to 1024
[  154.754059][ T9791] 1猉功D: renamed from 
30猉功D (while UP)
[  154.757677][ T7347] hid-generic 0010:0002:0004.001E: probe with driver hid-generic failed with error -22
[  154.773218][ T9791] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  154.864291][ T9798] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2085'.
[  154.971526][ T9811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2090'.
[  154.979106][ T9809] loop2: detected capacity change from 0 to 2048
[  154.986999][ T9804] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  155.017804][ T9804] SELinux: failed to load policy
[  155.090990][ T9816] loop0: detected capacity change from 0 to 4096
[  155.333608][ T9830] loop4: detected capacity change from 0 to 1024
[  155.340641][ T9830] EXT4-fs: Ignoring removed orlov option
[  155.346997][ T9830] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  155.435757][ T9834] loop4: detected capacity change from 0 to 1024
[  155.442899][ T9834] EXT4-fs: Ignoring removed orlov option
[  155.460161][ T9834] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  155.517948][ T9828] loop2: detected capacity change from 0 to 2048
[  155.524938][ T9828] EXT4-fs: Ignoring removed bh option
[  155.533419][ T9828] ext4: Unknown parameter 'subj_type'
[  155.542384][ T9839] loop3: detected capacity change from 0 to 128
[  155.552178][ T9828] loop2: detected capacity change from 0 to 512
[  155.659040][ T9846] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2102'.
[  155.676174][ T9828] EXT4-fs (loop2): too many log groups per flexible block group
[  155.683975][ T9828] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  155.691078][ T9828] EXT4-fs (loop2): mount failed
[  155.708366][ T9828] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2096'.
[  156.248178][ T9877] loop0: detected capacity change from 0 to 1024
[  156.296602][ T9879] loop2: detected capacity change from 0 to 1024
[  156.314905][ T9877] EXT4-fs: Ignoring removed orlov option
[  156.349133][ T9879] EXT4-fs: Ignoring removed orlov option
[  156.360641][ T9877] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  156.396940][ T9879] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  156.416221][ T9885] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2115'.
[  156.445893][ T9887] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2116'.
[  156.459893][ T9885] 0猉功D: renamed from 
31猉功D (while UP)
[  156.539979][ T9885] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  156.812222][ T9914] loop2: detected capacity change from 0 to 1024
[  156.823016][ T9914] EXT4-fs: Ignoring removed orlov option
[  156.831269][ T9918] FAULT_INJECTION: forcing a failure.
[  156.831269][ T9918] name failslab, interval 1, probability 0, space 0, times 0
[  156.844091][ T9918] CPU: 0 UID: 0 PID: 9918 Comm: syz.3.2126 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  156.844127][ T9918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.844143][ T9918] Call Trace:
[  156.844151][ T9918]  <TASK>
[  156.844216][ T9918]  __dump_stack+0x1d/0x30
[  156.844232][ T9920] loop0: detected capacity change from 0 to 1024
[  156.844244][ T9918]  dump_stack_lvl+0xe8/0x140
[  156.844270][ T9918]  dump_stack+0x15/0x1b
[  156.844305][ T9918]  should_fail_ex+0x265/0x280
[  156.844357][ T9918]  ? v9fs_mount+0x51/0x590
[  156.844403][ T9918]  should_failslab+0x8c/0xb0
[  156.844438][ T9918]  __kmalloc_cache_noprof+0x4c/0x320
[  156.844573][ T9918]  v9fs_mount+0x51/0x590
[  156.844679][ T9918]  ? __pfx_v9fs_mount+0x10/0x10
[  156.844713][ T9918]  legacy_get_tree+0x75/0xd0
[  156.844730][ T9918]  vfs_get_tree+0x54/0x1d0
[  156.844778][ T9918]  do_new_mount+0x207/0x680
[  156.844806][ T9918]  path_mount+0x4a4/0xb20
[  156.844830][ T9918]  ? user_path_at+0x109/0x130
[  156.844857][ T9918]  __se_sys_mount+0x28f/0x2e0
[  156.844875][ T9918]  ? fput+0x8f/0xc0
[  156.844900][ T9918]  __x64_sys_mount+0x67/0x80
[  156.844925][ T9918]  x64_sys_call+0xd36/0x2fb0
[  156.844960][ T9918]  do_syscall_64+0xd2/0x200
[  156.844988][ T9918]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  156.845021][ T9918]  ? clear_bhb_loop+0x40/0x90
[  156.845050][ T9918]  ? clear_bhb_loop+0x40/0x90
[  156.845107][ T9918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.845135][ T9918] RIP: 0033:0x7fd29d79e929
[  156.845156][ T9918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.845181][ T9918] RSP: 002b:00007fd29be07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  156.845205][ T9918] RAX: ffffffffffffffda RBX: 00007fd29d9c5fa0 RCX: 00007fd29d79e929
[  156.845290][ T9918] RDX: 0000200000004380 RSI: 0000200000000080 RDI: 0000000000000000
[  156.845306][ T9918] RBP: 00007fd29be07090 R08: 00002000000002c0 R09: 0000000000000000
[  156.845380][ T9918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.845396][ T9918] R13: 0000000000000000 R14: 00007fd29d9c5fa0 R15: 00007ffd8162a2f8
[  156.845421][ T9918]  </TASK>
[  156.877455][ T9914] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  156.888525][ T9920] EXT4-fs: Ignoring removed oldalloc option
[  156.915376][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2128'.
[  156.916533][ T9920] EXT4-fs: Ignoring removed orlov option
[  156.956694][ T9928] loop3: detected capacity change from 0 to 512
[  156.973159][ T9922] loop4: detected capacity change from 0 to 1024
[  156.983047][ T9928] EXT4-fs: Ignoring removed orlov option
[  156.989673][ T9922] EXT4-fs: Ignoring removed orlov option
[  157.013667][ T9928] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  157.022960][ T9920] EXT4-fs (loop0): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  157.030411][ T9922] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  157.038238][ T9928] EXT4-fs (loop3): orphan cleanup on readonly fs
[  157.156957][ T9928] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2130: bg 0: block 248: padding at end of block bitmap is not set
[  157.171577][ T9928] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2130: Failed to acquire dquot type 1
[  157.191056][ T9928] EXT4-fs (loop3): 1 truncate cleaned up
[  157.206617][ T9936] loop2: detected capacity change from 0 to 128
[  157.220149][ T9938] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2132'.
[  157.229251][ T9938] 1猉功D: renamed from 
30猉功D (while UP)
[  157.338485][ T9928] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  157.350040][ T9938] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  157.374894][ T9928] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  157.384867][ T9928] ext4 filesystem being remounted at /438/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.052043][ T9967] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2139'.
[  158.223640][ T9974] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  158.233908][ T9974] SELinux: failed to load policy
[  158.421414][ T7342] kernel write not supported for file /1097/attr/exec (pid: 7342 comm: kworker/0:8)
[  158.452256][ T9999] lo speed is unknown, defaulting to 1000
[  158.577953][T10012] loop2: detected capacity change from 0 to 1024
[  158.611265][T10012] EXT4-fs: Ignoring removed orlov option
[  158.627762][T10012] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  158.649026][T10014] lo speed is unknown, defaulting to 1000
[  158.777061][T10006] SELinux: failed to load policy
[  158.782280][T10030] loop2: detected capacity change from 0 to 128
[  158.789928][T10030] FAT-fs (loop2): FAT read failed (blocknr 54816)
[  158.842087][T10036] FAULT_INJECTION: forcing a failure.
[  158.842087][T10036] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.855369][T10036] CPU: 0 UID: 0 PID: 10036 Comm: syz.3.2167 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  158.855404][T10036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.855416][T10036] Call Trace:
[  158.855422][T10036]  <TASK>
[  158.855430][T10036]  __dump_stack+0x1d/0x30
[  158.855474][T10036]  dump_stack_lvl+0xe8/0x140
[  158.855494][T10036]  dump_stack+0x15/0x1b
[  158.855510][T10036]  should_fail_ex+0x265/0x280
[  158.855688][T10036]  should_fail+0xb/0x20
[  158.855728][T10036]  should_fail_usercopy+0x1a/0x20
[  158.855755][T10036]  _copy_from_user+0x1c/0xb0
[  158.855785][T10036]  ___sys_sendmsg+0xc1/0x1d0
[  158.855830][T10036]  __x64_sys_sendmsg+0xd4/0x160
[  158.855866][T10036]  x64_sys_call+0x2999/0x2fb0
[  158.855887][T10036]  do_syscall_64+0xd2/0x200
[  158.855907][T10036]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  158.855939][T10036]  ? clear_bhb_loop+0x40/0x90
[  158.855984][T10036]  ? clear_bhb_loop+0x40/0x90
[  158.856006][T10036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.856034][T10036] RIP: 0033:0x7fd29d79e929
[  158.856052][T10036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.856072][T10036] RSP: 002b:00007fd29be07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.856144][T10036] RAX: ffffffffffffffda RBX: 00007fd29d9c5fa0 RCX: 00007fd29d79e929
[  158.856181][T10036] RDX: 0000000000008000 RSI: 0000200000000040 RDI: 0000000000000003
[  158.856197][T10036] RBP: 00007fd29be07090 R08: 0000000000000000 R09: 0000000000000000
[  158.856260][T10036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.856272][T10036] R13: 0000000000000000 R14: 00007fd29d9c5fa0 R15: 00007ffd8162a2f8
[  158.856291][T10036]  </TASK>
[  159.178823][T10050] loop4: detected capacity change from 0 to 1024
[  159.213360][T10050] EXT4-fs: Ignoring removed orlov option
[  159.241237][T10050] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  159.251623][T10048] loop0: detected capacity change from 0 to 8192
[  159.270370][T10046] loop3: detected capacity change from 0 to 2048
[  159.282352][T10046] EXT4-fs: Ignoring removed bh option
[  159.288174][T10046] ext4: Unknown parameter 'subj_type'
[  159.331413][T10046] loop3: detected capacity change from 0 to 512
[  159.361269][T10046] EXT4-fs (loop3): too many log groups per flexible block group
[  159.369143][T10046] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  159.377827][T10046] EXT4-fs (loop3): mount failed
[  159.608644][T10074] loop3: detected capacity change from 0 to 8192
[  159.658677][   T29] kauditd_printk_skb: 521 callbacks suppressed
[  159.658693][   T29] audit: type=1326 audit(1749503689.059:24603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.689794][   T29] audit: type=1326 audit(1749503689.068:24604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.713486][   T29] audit: type=1326 audit(1749503689.087:24605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.737161][   T29] audit: type=1326 audit(1749503689.087:24606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.760809][   T29] audit: type=1326 audit(1749503689.087:24607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.784408][   T29] audit: type=1326 audit(1749503689.087:24608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.835958][   T29] audit: type=1326 audit(1749503689.087:24609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.859594][   T29] audit: type=1326 audit(1749503689.096:24610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.883330][   T29] audit: type=1326 audit(1749503689.096:24611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  159.906991][   T29] audit: type=1326 audit(1749503689.096:24612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10079 comm="syz.0.2184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2c4664e929 code=0x7ffc0000
[  160.194008][T10089] loop2: detected capacity change from 0 to 2048
[  160.200513][T10100] loop0: detected capacity change from 0 to 128
[  160.200990][T10089] EXT4-fs: Ignoring removed bh option
[  160.215111][T10089] ext4: Unknown parameter 'subj_type'
[  160.230851][T10089] loop2: detected capacity change from 0 to 512
[  160.326060][T10089] EXT4-fs (loop2): too many log groups per flexible block group
[  160.334024][T10089] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  160.342313][T10089] EXT4-fs (loop2): mount failed
[  160.358205][T10089] __nla_validate_parse: 6 callbacks suppressed
[  160.358225][T10089] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2186'.
[  160.628836][T10114] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  160.959888][T10116] loop4: detected capacity change from 0 to 4096
[  161.124556][T10119] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2197'.
[  161.134852][T10119] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2197'.
[  161.144754][T10119] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2197'.
[  161.201203][T10123] loop2: detected capacity change from 0 to 1024
[  161.208288][T10123] EXT4-fs: Ignoring removed orlov option
[  161.216018][T10123] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  161.427731][T10131] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2196'.
[  161.546213][T10150] pim6reg: entered allmulticast mode
[  161.566274][T10150] pim6reg: left allmulticast mode
[  161.581795][T10152] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2208'.
[  161.597331][T10152] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2208'.
[  161.606575][T10152] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2208'.
[  161.617963][ T3331] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.684643][ T3331] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.715923][T10158] loop0: detected capacity change from 0 to 128
[  161.748719][ T3331] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.748768][T10158] FAT-fs (loop0): FAT read failed (blocknr 54816)
[  161.807504][T10160] loop2: detected capacity change from 0 to 1024
[  161.864706][ T3331] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.900391][T10176] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2216'.
[  161.925831][T10176] 0猉功D: renamed from 
31猉功D (while UP)
[  161.947959][T10176] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  161.967291][T10161] lo speed is unknown, defaulting to 1000
[  162.023469][ T3331] bridge_slave_1: left allmulticast mode
[  162.029248][ T3331] bridge_slave_1: left promiscuous mode
[  162.035019][ T3331] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.054590][ T3331] bridge_slave_0: left promiscuous mode
[  162.060432][ T3331] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.202636][T10160] netlink: 'syz.2.2213': attribute type 10 has an invalid length.
[  162.210726][T10160] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2213'.
[  162.337996][ T3331] bond1 (unregistering): Released all slaves
[  162.353951][T10160] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check.
[  162.447806][ T3331] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.456285][ T3331] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.466842][ T3331] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.474435][ T3331] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.484121][ T3331] veth1_macvtap: left promiscuous mode
[  162.489735][ T3331] veth0_macvtap: left promiscuous mode
[  162.495422][ T3331] veth1_vlan: left promiscuous mode
[  162.500768][ T3331] veth0_vlan: left promiscuous mode
[  162.572662][ T3331] team0 (unregistering): Port device team_slave_1 removed
[  162.583600][ T3331] team0 (unregistering): Port device team_slave_0 removed
[  162.627066][T10161] chnl_net:caif_netlink_parms(): no params data found
[  162.690928][T10161] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.698189][T10161] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.705383][T10161] bridge_slave_0: entered allmulticast mode
[  162.713055][T10161] bridge_slave_0: entered promiscuous mode
[  162.736525][T10161] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.743903][T10161] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.751575][T10161] bridge_slave_1: entered allmulticast mode
[  162.761601][T10161] bridge_slave_1: entered promiscuous mode
[  162.782069][T10161] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  162.793891][T10161] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  162.819923][T10161] team0: Port device team_slave_0 added
[  162.827315][T10161] team0: Port device team_slave_1 added
[  162.844741][T10161] batman_adv: batadv0: Adding interface: batadv_slave_0
[  162.851815][T10161] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.878428][T10161] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  162.890183][T10161] batman_adv: batadv0: Adding interface: batadv_slave_1
[  162.897156][T10161] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.923813][T10161] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  162.954799][T10161] hsr_slave_0: entered promiscuous mode
[  162.960954][T10161] hsr_slave_1: entered promiscuous mode
[  162.966907][T10161] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  162.974521][T10161] Cannot create hsr debugfs directory
[  162.993524][T10214] lo speed is unknown, defaulting to 1000
[  163.077226][T10161] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  163.086851][T10161] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  163.095857][T10214] loop2: detected capacity change from 0 to 512
[  163.096347][T10161] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  163.102872][T10214] EXT4-fs: Ignoring removed i_version option
[  163.115444][T10214] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  163.117303][T10161] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  163.127409][T10214] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002]
[  163.139851][T10214] System zones: 1-12
[  163.143881][T10214] EXT4-fs (loop2): orphan cleanup on readonly fs
[  163.151597][T10214] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2224: invalid indirect mapped block 12 (level 1)
[  163.151881][T10161] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.165175][T10214] EXT4-fs (loop2): Remounting filesystem read-only
[  163.172023][T10161] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.179753][T10214] EXT4-fs (loop2): 1 truncate cleaned up
[  163.185831][T10161] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.191897][T10214] EXT4-fs mount: 69 callbacks suppressed
[  163.191914][T10214] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  163.198562][T10161] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.233220][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  163.249593][T10161] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.272236][ T3331] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.281090][ T3331] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.297864][T10161] 8021q: adding VLAN 0 to HW filter on device team0
[  163.308960][ T3331] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.316123][ T3331] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.328489][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.335647][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.462466][T10161] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.555451][T10251] loop2: detected capacity change from 0 to 1024
[  163.577293][T10251] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.594357][T10251] program syz.2.2232 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  163.624720][T10161] veth0_vlan: entered promiscuous mode
[  163.634052][T10161] veth1_vlan: entered promiscuous mode
[  163.649031][T10161] veth0_macvtap: entered promiscuous mode
[  163.660691][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.672297][T10161] veth1_macvtap: entered promiscuous mode
[  163.685249][T10161] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.707839][T10161] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.710679][T10161] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.724239][T10161] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.724280][T10161] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.724368][T10161] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.816494][T10278] loop5: detected capacity change from 0 to 128
[  163.817638][ T3366] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[  163.834601][ T3366] hid-generic 0000:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  164.426041][T10290] loop2: detected capacity change from 0 to 1024
[  164.433625][T10290] EXT4-fs: Ignoring removed orlov option
[  164.441742][T10290] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  164.465243][T10290] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.526435][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.942477][T10305] loop2: detected capacity change from 0 to 1024
[  164.949362][T10305] EXT4-fs: Ignoring removed orlov option
[  164.956313][T10305] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  164.975746][T10305] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.008060][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.040824][T10312] bridge0: entered promiscuous mode
[  165.048019][T10312] bridge0: port 3(macvlan2) entered blocking state
[  165.055540][T10312] bridge0: port 3(macvlan2) entered disabled state
[  165.061002][   T29] kauditd_printk_skb: 350 callbacks suppressed
[  165.061020][   T29] audit: type=1326 audit(1749503694.110:24961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.062385][T10312] macvlan2: entered allmulticast mode
[  165.068362][   T29] audit: type=1326 audit(1749503694.120:24962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.092723][T10312] bridge0: entered allmulticast mode
[  165.101745][   T29] audit: type=1326 audit(1749503694.148:24963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.145391][   T36] usb usb2-port1: attempt power cycle
[  165.149915][   T29] audit: type=1326 audit(1749503694.148:24964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.179570][T10312] macvlan2: left allmulticast mode
[  165.179589][   T29] audit: type=1326 audit(1749503694.176:24965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.184701][T10312] bridge0: left allmulticast mode
[  165.208246][   T29] audit: type=1326 audit(1749503694.176:24966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.208286][   T29] audit: type=1326 audit(1749503694.176:24967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.208323][   T29] audit: type=1326 audit(1749503694.176:24968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.208371][   T29] audit: type=1326 audit(1749503694.176:24969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.208442][   T29] audit: type=1326 audit(1749503694.176:24970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10318 comm="syz.4.2249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  165.335321][T10312] bridge0: left promiscuous mode
[  165.460468][T10337] loop2: detected capacity change from 0 to 128
[  165.642167][T10344] netlink: 'syz.4.2258': attribute type 10 has an invalid length.
[  165.851916][T10352] loop4: detected capacity change from 0 to 128
[  165.860850][T10352] FAT-fs (loop4): FAT read failed (blocknr 54816)
[  166.522892][T10359] __nla_validate_parse: 6 callbacks suppressed
[  166.522909][T10359] netlink: 5 bytes leftover after parsing attributes in process `syz.2.2262'.
[  166.538274][T10359] 1猉功D: renamed from 
30猉功D (while UP)
[  166.546331][T10359] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  166.735623][ T3398] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[  166.744339][ T3398] hid-generic 0000:0000:0000.0020: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  166.895677][T10380] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2271'.
[  166.914537][T10382] loop2: detected capacity change from 0 to 128
[  167.072184][T10387] loop4: detected capacity change from 0 to 2048
[  167.596991][T10407] netlink: 'syz.4.2282': attribute type 1 has an invalid length.
[  167.624804][T10407] 8021q: adding VLAN 0 to HW filter on device bond0
[  167.657332][T10407] bond0: (slave veth3): Enslaving as an active interface with a down link
[  167.975280][   T36] usb usb2-port1: unable to enumerate USB device
[  168.013880][T10413] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2285'.
[  168.042938][T10413] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2285'.
[  168.086549][T10422] loop5: detected capacity change from 0 to 2048
[  168.105762][T10422] EXT4-fs: Ignoring removed nobh option
[  168.112996][T10422] journal_path: Non-blockdev passed as './file1'
[  168.119627][T10422] EXT4-fs: error: could not find journal device path
[  168.141225][T10430] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2291'.
[  168.157994][T10422] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  168.166395][T10422] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  168.201537][T10434] netlink: 'syz.5.2292': attribute type 1 has an invalid length.
[  168.209457][T10434] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2292'.
[  168.322131][T10449] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=10449 comm=syz.1.2297
[  168.335921][T10448] loop2: detected capacity change from 0 to 512
[  168.344310][T10448] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  168.368257][T10448] EXT4-fs (loop2): 1 truncate cleaned up
[  168.380336][T10448] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.394569][T10448] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.405538][T10453] netlink: 5 bytes leftover after parsing attributes in process `syz.5.2298'.
[  168.414739][T10453] 0猉功D: renamed from gretap0 (while UP)
[  168.422731][T10453] 0猉功D: entered allmulticast mode
[  168.433947][T10453] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  168.538363][T10456] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2299'.
[  168.653745][T10463] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2302'.
[  168.663620][T10463] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  168.942796][T10482] loop5: detected capacity change from 0 to 256
[  169.008939][T10491] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2313'.
[  169.028356][T10491] hsr_slave_1 (unregistering): left promiscuous mode
[  169.219794][T10501] loop4: detected capacity change from 0 to 2048
[  169.226697][T10501] EXT4-fs: Ignoring removed bh option
[  169.233017][T10501] ext4: Unknown parameter 'subj_type'
[  169.246898][T10501] loop4: detected capacity change from 0 to 512
[  169.264080][T10501] EXT4-fs (loop4): too many log groups per flexible block group
[  169.271925][T10501] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  169.290403][T10501] EXT4-fs (loop4): mount failed
[  169.307668][T10516] loop2: detected capacity change from 0 to 512
[  169.315680][T10516] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  169.315846][T10518] netlink: 'syz.5.2322': attribute type 10 has an invalid length.
[  169.326750][T10516] EXT4-fs (loop2): 1 truncate cleaned up
[  169.333488][T10518] team0: entered promiscuous mode
[  169.340971][T10516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.344655][T10518] team_slave_0: entered promiscuous mode
[  169.363178][T10518] team_slave_1: entered promiscuous mode
[  169.397063][T10518] bridge0: port 3(team0) entered blocking state
[  169.403548][T10518] bridge0: port 3(team0) entered disabled state
[  169.421433][T10518] team0: entered allmulticast mode
[  169.426719][T10518] team_slave_0: entered allmulticast mode
[  169.432616][T10518] team_slave_1: entered allmulticast mode
[  169.440033][T10518] bridge0: port 3(team0) entered blocking state
[  169.446390][T10518] bridge0: port 3(team0) entered forwarding state
[  169.460538][T10516] netlink: 'syz.2.2321': attribute type 4 has an invalid length.
[  169.487150][T10516] netlink: 'syz.2.2321': attribute type 4 has an invalid length.
[  169.506876][ T7350] lo speed is unknown, defaulting to 1000
[  169.512649][ T7350] syz0: Port: 1 Link ACTIVE
[  169.524398][T10528] loop4: detected capacity change from 0 to 1024
[  169.541252][T10528] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.574461][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.620780][T10535] loop5: detected capacity change from 0 to 1024
[  169.660819][T10535] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.696719][T10535] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.911822][T10528] netlink: 'syz.4.2325': attribute type 10 has an invalid length.
[  169.921223][T10528] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.930232][T10528] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.939834][T10528] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.948770][T10528] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.962694][T10528] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.972160][T10528] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.980959][T10528] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.989749][T10528] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.003227][T10528] team0: Port device geneve1 added
[  170.128560][T10531] syz.5.2326 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  170.139610][T10531] CPU: 0 UID: 0 PID: 10531 Comm: syz.5.2326 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  170.139637][T10531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.139652][T10531] Call Trace:
[  170.139661][T10531]  <TASK>
[  170.139670][T10531]  __dump_stack+0x1d/0x30
[  170.139696][T10531]  dump_stack_lvl+0xe8/0x140
[  170.139729][T10531]  dump_stack+0x15/0x1b
[  170.139750][T10531]  dump_header+0x81/0x220
[  170.139785][T10531]  oom_kill_process+0x334/0x3f0
[  170.139824][T10531]  out_of_memory+0x979/0xb80
[  170.139933][T10531]  try_charge_memcg+0x5e6/0x9e0
[  170.139999][T10531]  charge_memcg+0x51/0xc0
[  170.140030][T10531]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  170.140124][T10531]  __read_swap_cache_async+0x1df/0x350
[  170.140178][T10531]  swap_cluster_readahead+0x277/0x3e0
[  170.140221][T10531]  swapin_readahead+0xde/0x6f0
[  170.140271][T10531]  ? __filemap_get_folio+0x49f/0x650
[  170.140315][T10531]  ? swap_cache_get_folio+0x77/0x200
[  170.140407][T10531]  do_swap_page+0x301/0x2430
[  170.140433][T10531]  ? css_rstat_updated+0xcd/0x5b0
[  170.140475][T10531]  ? __pfx_default_wake_function+0x10/0x10
[  170.140560][T10531]  handle_mm_fault+0x9a5/0x2be0
[  170.140585][T10531]  ? mas_walk+0xf2/0x120
[  170.140614][T10531]  do_user_addr_fault+0x636/0x1090
[  170.140687][T10531]  ? fpregs_restore_userregs+0xe2/0x1d0
[  170.140724][T10531]  ? switch_fpu_return+0xe/0x20
[  170.140760][T10531]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  170.140868][T10531]  exc_page_fault+0x62/0xa0
[  170.140900][T10531]  asm_exc_page_fault+0x26/0x30
[  170.140919][T10531] RIP: 0033:0x7f26f282538c
[  170.140936][T10531] Code: 66 0f 1f 44 00 00 69 3d 26 03 e8 00 e8 03 00 00 48 8d 1d 27 0c 35 00 e8 02 95 12 00 eb 0c 48 81 c3 e0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 e0 00 00
[  170.141039][T10531] RSP: 002b:00007ffe04d274c0 EFLAGS: 00010206
[  170.141058][T10531] RAX: 0000000000000000 RBX: 00007f26f2b75fa0 RCX: 0000000000000000
[  170.141070][T10531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556aa25808
[  170.141082][T10531] RBP: 00007f26f2b77ba0 R08: 0000000000000000 R09: 7fffffffffffffff
[  170.141094][T10531] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000028b21
[  170.141106][T10531] R13: 00007f26f2b76160 R14: ffffffffffffffff R15: 00007ffe04d275d0
[  170.141130][T10531]  </TASK>
[  170.141144][T10531] memory: usage 307200kB, limit 307200kB, failcnt 123
[  170.371951][T10531] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[  170.379921][T10531] kmem: usage 307176kB, limit 9007199254740988kB, failcnt 0
[  170.387284][T10531] Memory cgroup stats for /syz5:
[  170.387438][T10531] cache 0
[  170.395321][T10531] rss 0
[  170.398167][T10531] shmem 0
[  170.401211][T10531] mapped_file 0
[  170.404701][T10531] dirty 0
[  170.407686][T10531] writeback 4096
[  170.411237][T10531] workingset_refault_anon 45
[  170.415955][T10531] workingset_refault_file 0
[  170.420547][T10531] swap 184320
[  170.423828][T10531] swapcached 24576
[  170.427819][T10531] pgpgin 6872
[  170.431286][T10531] pgpgout 6866
[  170.434718][T10531] pgfault 7782
[  170.438138][T10531] pgmajfault 31
[  170.441761][T10531] inactive_anon 4096
[  170.445695][T10531] active_anon 20480
[  170.449543][T10531] inactive_file 0
[  170.453174][T10531] active_file 0
[  170.456630][T10531] unevictable 0
[  170.460103][T10531] hierarchical_memory_limit 314572800
[  170.465528][T10531] hierarchical_memsw_limit 9223372036854771712
[  170.471801][T10531] total_cache 0
[  170.475269][T10531] total_rss 0
[  170.478564][T10531] total_shmem 0
[  170.482119][T10531] total_mapped_file 0
[  170.486233][T10531] total_dirty 0
[  170.489707][T10531] total_writeback 4096
[  170.493786][T10531] total_workingset_refault_anon 45
[  170.498944][T10531] total_workingset_refault_file 0
[  170.504010][T10531] total_swap 184320
[  170.507835][T10531] total_swapcached 24576
[  170.512140][T10531] total_pgpgin 6872
[  170.516053][T10531] total_pgpgout 6866
[  170.520010][T10531] total_pgfault 7782
[  170.523921][T10531] total_pgmajfault 31
[  170.527900][T10531] total_inactive_anon 4096
[  170.532398][T10531] total_active_anon 20480
[  170.536746][T10531] total_inactive_file 0
[  170.540945][T10531] total_active_file 0
[  170.545024][T10531] total_unevictable 0
[  170.549020][T10531] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2326,pid=10531,uid=0
[  170.563739][T10531] Memory cgroup out of memory: Killed process 10531 (syz.5.2326) total-vm:93884kB, anon-rss:936kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  170.588236][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.735006][   T29] kauditd_printk_skb: 296 callbacks suppressed
[  170.735023][   T29] audit: type=1326 audit(1749503699.414:25267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.766453][   T29] audit: type=1326 audit(1749503699.414:25268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.790952][   T29] audit: type=1326 audit(1749503699.414:25269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.814708][   T29] audit: type=1326 audit(1749503699.414:25270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.838985][   T29] audit: type=1326 audit(1749503699.414:25271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.862664][   T29] audit: type=1326 audit(1749503699.414:25272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.887021][   T29] audit: type=1326 audit(1749503699.414:25273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.910854][   T29] audit: type=1326 audit(1749503699.414:25274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.935253][   T29] audit: type=1326 audit(1749503699.414:25275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.958934][   T29] audit: type=1326 audit(1749503699.414:25276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10551 comm="syz.4.2333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb00d3ce929 code=0x7ffc0000
[  170.970704][T10559] loop2: detected capacity change from 0 to 2048
[  170.983743][   T36] usb usb2-port1: attempt power cycle
[  171.058273][T10562] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  171.072630][T10562] SELinux: failed to load policy
[  171.184099][T10578] loop4: detected capacity change from 0 to 512
[  171.194544][T10578] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.245590][T10577] loop5: detected capacity change from 0 to 8192
[  171.359770][T10584] vlan0: entered promiscuous mode
[  171.365082][T10584] dummy0: entered promiscuous mode
[  171.575352][T10590] loop2: detected capacity change from 0 to 128
[  172.062815][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.400397][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.521105][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.621286][T10595] lo speed is unknown, defaulting to 1000
[  172.633758][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.707717][T10605] loop4: detected capacity change from 0 to 128
[  172.715273][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.770924][T10595] chnl_net:caif_netlink_parms(): no params data found
[  172.826511][T10595] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.833655][T10595] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.841324][T10595] bridge_slave_0: entered allmulticast mode
[  172.848934][T10595] bridge_slave_0: entered promiscuous mode
[  172.870843][   T12] team0: left allmulticast mode
[  172.875817][   T12] team_slave_0: left allmulticast mode
[  172.881355][   T12] team_slave_1: left allmulticast mode
[  172.887919][   T12] bridge0: port 3(team0) entered disabled state
[  172.895054][   T12] bridge_slave_1: left allmulticast mode
[  172.900778][   T12] bridge_slave_1: left promiscuous mode
[  172.906557][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.914686][   T12] bridge_slave_0: left allmulticast mode
[  172.921092][   T12] bridge_slave_0: left promiscuous mode
[  172.926813][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.950714][   T36] usb usb2-port1: unable to enumerate USB device
[  173.050678][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  173.089372][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  173.115058][   T12] bond0 (unregistering): Released all slaves
[  173.126602][T10621] __nla_validate_parse: 7 callbacks suppressed
[  173.126620][T10621] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2354'.
[  173.147585][T10595] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.154831][T10595] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.162308][T10595] bridge_slave_1: entered allmulticast mode
[  173.170717][T10595] bridge_slave_1: entered promiscuous mode
[  173.179199][T10621] 0猉功D: renamed from 
31猉功D (while UP)
[  173.189461][T10621] A link change request failed with some changes committed already. Interface 
30猉功D may have been left with an inconsistent configuration, please check.
[  173.253608][T10595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.322721][T10595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  173.391548][   T12] hsr_slave_0: left promiscuous mode
[  173.432403][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.439852][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.537053][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.544580][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.676207][   T12] veth1_macvtap: left promiscuous mode
[  173.692676][   T12] veth0_macvtap: left promiscuous mode
[  173.709382][   T12] veth1_vlan: left promiscuous mode
[  173.724188][   T12] veth0_vlan: left promiscuous mode
[  173.861475][   T12] team_slave_1 (unregistering): left promiscuous mode
[  173.868805][   T12] team0 (unregistering): Port device team_slave_1 removed
[  173.878052][   T12] team_slave_0 (unregistering): left promiscuous mode
[  173.885455][   T12] team0 (unregistering): Port device team_slave_0 removed
[  173.892814][T10630] loop4: detected capacity change from 0 to 1024
[  173.899765][T10630] EXT4-fs: Ignoring removed orlov option
[  173.912342][T10630] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  173.950844][T10630] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.966826][T10595] team0: Port device team_slave_0 added
[  173.974225][T10595] team0: Port device team_slave_1 added
[  174.004475][T10624] lo speed is unknown, defaulting to 1000
[  174.017104][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.027414][T10595] batman_adv: batadv0: Adding interface: batadv_slave_0
[  174.034468][T10595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.061173][T10595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  174.099171][T10595] batman_adv: batadv0: Adding interface: batadv_slave_1
[  174.106306][T10595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.132408][T10595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  174.196039][T10595] hsr_slave_0: entered promiscuous mode
[  174.203511][T10595] hsr_slave_1: entered promiscuous mode
[  174.209593][T10595] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  174.217365][T10595] Cannot create hsr debugfs directory
[  174.282897][T10663] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2370'.
[  174.287796][T10657] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2368'.
[  174.378406][T10595] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  174.398903][T10595] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  174.411848][T10676] loop4: detected capacity change from 0 to 1024
[  174.419857][T10676] EXT4-fs: Ignoring removed orlov option
[  174.426049][T10676] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  174.439358][T10595] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  174.449131][T10595] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  174.461390][T10676] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.493915][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.535323][T10595] 8021q: adding VLAN 0 to HW filter on device bond0
[  174.549400][T10595] 8021q: adding VLAN 0 to HW filter on device team0
[  174.562241][ T3331] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.569467][ T3331] bridge0: port 1(bridge_slave_0) entered forwarding state
[  174.610263][ T5033] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.617467][ T5033] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.644321][T10688] lo speed is unknown, defaulting to 1000
[  174.765872][T10688] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2375'.
[  174.900952][T10595] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.187365][T10595] veth0_vlan: entered promiscuous mode
[  175.207762][T10693] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2377'.
[  175.219909][T10595] veth1_vlan: entered promiscuous mode
[  175.233778][T10687] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2377'.
[  175.265835][T10595] veth0_macvtap: entered promiscuous mode
[  175.281871][T10693] loop4: detected capacity change from 0 to 512
[  175.296574][T10595] veth1_macvtap: entered promiscuous mode
[  175.324727][T10595] batman_adv: batadv0: Interface activated: batadv_slave_0
[  175.345194][T10693] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  175.356225][T10595] batman_adv: batadv0: Interface activated: batadv_slave_1
[  175.371935][T10693] EXT4-fs (loop4): orphan cleanup on readonly fs
[  175.386439][T10693] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2377: Failed to acquire dquot type 1
[  175.400607][T10595] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  175.409493][T10595] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  175.418306][T10595] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  175.427288][T10595] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  175.478628][T10693] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2377: bg 0: block 40: padding at end of block bitmap is not set
[  175.505480][T10693] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  175.521371][T10693] EXT4-fs (loop4): 1 truncate cleaned up
[  175.544331][T10693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  175.699321][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.788949][T10730] loop2: detected capacity change from 0 to 1024
[  175.801582][T10730] EXT4-fs: Ignoring removed orlov option
[  175.808845][T10730] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  175.827242][T10730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.848173][   T23] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  175.859549][   T23] hid-generic 0000:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  175.885495][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.905849][T10740] loop2: detected capacity change from 0 to 128
[  175.922346][T10740] FAT-fs (loop2): FAT read failed (blocknr 54816)
[  176.010896][T10749] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2393'.
[  176.020015][T10749] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2393'.
[  176.029143][T10749] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2393'.
[  176.075714][T10755] loop6: detected capacity change from 0 to 128
[  176.103558][T10757] lo speed is unknown, defaulting to 1000
[  176.488383][T10766] loop2: detected capacity change from 0 to 1024
[  176.519534][T10768] loop4: detected capacity change from 0 to 2048
[  177.339234][T10766] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.371769][T10766] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.527905][T10781] loop6: detected capacity change from 0 to 128
[  177.800260][T10763] syz.2.2399 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  177.811934][T10763] CPU: 1 UID: 0 PID: 10763 Comm: syz.2.2399 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  177.811967][T10763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  177.811983][T10763] Call Trace:
[  177.811991][T10763]  <TASK>
[  177.812001][T10763]  __dump_stack+0x1d/0x30
[  177.812053][T10763]  dump_stack_lvl+0xe8/0x140
[  177.812077][T10763]  dump_stack+0x15/0x1b
[  177.812098][T10763]  dump_header+0x81/0x220
[  177.812139][T10763]  oom_kill_process+0x334/0x3f0
[  177.812283][T10763]  out_of_memory+0x979/0xb80
[  177.812406][T10763]  try_charge_memcg+0x5e6/0x9e0
[  177.812438][T10763]  charge_memcg+0x51/0xc0
[  177.812476][T10763]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  177.812592][T10763]  __read_swap_cache_async+0x1df/0x350
[  177.812631][T10763]  swap_cluster_readahead+0x376/0x3e0
[  177.812665][T10763]  swapin_readahead+0xde/0x6f0
[  177.812708][T10763]  ? __filemap_get_folio+0x49f/0x650
[  177.812745][T10763]  ? __rcu_read_unlock+0x34/0x70
[  177.812825][T10763]  ? swap_cache_get_folio+0x77/0x200
[  177.812856][T10763]  do_swap_page+0x301/0x2430
[  177.812875][T10763]  ? css_rstat_updated+0xcd/0x5b0
[  177.812914][T10763]  ? __pfx_default_wake_function+0x10/0x10
[  177.812973][T10763]  handle_mm_fault+0x9a5/0x2be0
[  177.812996][T10763]  ? mas_walk+0xf2/0x120
[  177.813053][T10763]  do_user_addr_fault+0x636/0x1090
[  177.813128][T10763]  exc_page_fault+0x62/0xa0
[  177.813163][T10763]  asm_exc_page_fault+0x26/0x30
[  177.813187][T10763] RIP: 0033:0x7f4a6fa3e9b0
[  177.813206][T10763] Code: ce ff ff ff 3f 48 3b 34 c1 0f 84 3b 01 00 00 48 83 c0 01 48 83 f8 04 75 ec 31 f6 80 7c 24 1e 00 0f 85 8e 01 00 00 41 83 c7 01 <45> 3b 78 04 0f 82 6c ff ff ff 80 7b 4e 00 0f 84 17 03 00 00 48 83
[  177.813223][T10763] RSP: 002b:00007ffd058b40e0 EFLAGS: 00010202
[  177.813281][T10763] RAX: 000000110c234000 RBX: 00007f4a708b5720 RCX: 0000000000000003
[  177.813358][T10763] RDX: 000000000000199f RSI: 0000000000000ae6 RDI: 0000000000000008
[  177.813411][T10763] RBP: ffffffff8442b99f R08: 00007f4a6fd86038 R09: 00007f4a6fd72000
[  177.813424][T10763] R10: 00007f4a6f1cf008 R11: 000000000000000b R12: 000000000000000b
[  177.813436][T10763] R13: 0000000000000000 R14: ffffffff8442b0f5 R15: 0000000000000001
[  177.813448][T10763]  ? __x64_sys_sendmsg+0x25/0x160
[  177.813478][T10763]  ? ____sys_recvmsg+0x17f/0x280
[  177.813509][T10763]  </TASK>
[  178.036492][T10763] memory: usage 307200kB, limit 307200kB, failcnt 904
[  178.043297][T10763] memory+swap: usage 307780kB, limit 9007199254740988kB, failcnt 0
[  178.051329][T10763] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  178.058626][T10763] Memory cgroup stats for /syz2:
[  178.106789][T10785] lo speed is unknown, defaulting to 1000
[  178.266031][T10763] cache 0
[  178.269082][T10763] rss 0
[  178.271876][T10763] shmem 0
[  178.274949][T10763] mapped_file 0
[  178.278501][T10763] dirty 0
[  178.281452][T10763] writeback 0
[  178.285436][T10763] workingset_refault_anon 327
[  178.290125][T10763] workingset_refault_file 811
[  178.294831][T10763] swap 593920
[  178.298120][T10763] swapcached 0
[  178.301496][T10763] pgpgin 152477
[  178.305008][T10763] pgpgout 152474
[  178.308586][T10763] pgfault 182812
[  178.312177][T10763] pgmajfault 224
[  178.316388][T10763] inactive_anon 0
[  178.320032][T10763] active_anon 0
[  178.323498][T10763] inactive_file 12288
[  178.327556][T10763] active_file 0
[  178.331059][T10763] unevictable 0
[  178.334578][T10763] hierarchical_memory_limit 314572800
[  178.340064][T10763] hierarchical_memsw_limit 9223372036854771712
[  178.346228][T10763] total_cache 0
[  178.350401][T10763] total_rss 0
[  178.353701][T10763] total_shmem 0
[  178.357170][T10763] total_mapped_file 0
[  178.361183][T10763] total_dirty 0
[  178.364652][T10763] total_writeback 0
[  178.368461][T10763] total_workingset_refault_anon 327
[  178.373711][T10763] total_workingset_refault_file 811
[  178.378924][T10763] total_swap 593920
[  178.383473][T10763] total_swapcached 0
[  178.387384][T10763] total_pgpgin 152477
[  178.391387][T10763] total_pgpgout 152474
[  178.395460][T10763] total_pgfault 182812
[  178.399535][T10763] total_pgmajfault 224
[  178.403732][T10763] total_inactive_anon 0
[  178.407896][T10763] total_active_anon 0
[  178.412498][T10763] total_inactive_file 12288
[  178.417053][T10763] total_active_file 0
[  178.421041][T10763] total_unevictable 0
[  178.425120][T10763] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2399,pid=10763,uid=0
[  178.439874][T10763] Memory cgroup out of memory: Killed process 10763 (syz.2.2399) total-vm:93884kB, anon-rss:940kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  178.616523][   T23] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[  178.636439][   T23] hid-generic 0000:0000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  178.774899][T10795] loop6: detected capacity change from 0 to 1024
[  178.788180][T10795] EXT4-fs: Ignoring removed orlov option
[  178.819394][T10795] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  178.851705][T10795] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.900540][T10807] loop4: detected capacity change from 0 to 2048
[  178.908930][T10595] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.932539][   T29] kauditd_printk_skb: 1429 callbacks suppressed
[  178.932559][   T29] audit: type=1326 audit(1749503707.091:26704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971398][   T29] audit: type=1326 audit(1749503707.119:26705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971437][   T29] audit: type=1326 audit(1749503707.128:26706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971477][   T29] audit: type=1326 audit(1749503707.128:26707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971535][   T29] audit: type=1326 audit(1749503707.128:26708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971567][   T29] audit: type=1326 audit(1749503707.128:26709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971599][   T29] audit: type=1326 audit(1749503707.128:26710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971693][   T29] audit: type=1326 audit(1749503707.128:26711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971736][   T29] audit: type=1326 audit(1749503707.128:26712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.971807][   T29] audit: type=1326 audit(1749503707.128:26713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10810 comm="syz.6.2412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe4d0be929 code=0x7ffc0000
[  178.977733][T10797] lo speed is unknown, defaulting to 1000
[  179.057777][T10815] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.057931][T10815] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.190743][T10797] chnl_net:caif_netlink_parms(): no params data found
[  179.328381][T10797] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.336314][T10797] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.341777][T10833] netlink: 'syz.4.2418': attribute type 21 has an invalid length.
[  179.345062][T10797] bridge_slave_0: entered allmulticast mode
[  179.358023][T10797] bridge_slave_0: entered promiscuous mode
[  179.370089][T10797] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.377325][T10797] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.379260][T10833] hub 1-0:1.0: USB hub found
[  179.385953][T10797] bridge_slave_1: entered allmulticast mode
[  179.395217][T10833] hub 1-0:1.0: 8 ports detected
[  179.396816][T10797] bridge_slave_1: entered promiscuous mode
[  179.420884][T10797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  179.434368][T10797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  179.455060][T10797] team0: Port device team_slave_0 added
[  179.461752][T10797] team0: Port device team_slave_1 added
[  179.477828][T10797] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.484938][T10797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.510959][T10797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.522897][T10797] batman_adv: batadv0: Adding interface: batadv_slave_1
[  179.530670][T10797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.557385][T10797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  179.593891][T10797] hsr_slave_0: entered promiscuous mode
[  179.594619][T10797] hsr_slave_1: entered promiscuous mode
[  179.605732][T10797] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  179.605751][T10797] Cannot create hsr debugfs directory
[  179.664746][T10843] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2422'.
[  179.688725][T10843] 1猉功D: renamed from 
30猉功D (while UP)
[  179.696440][T10843] A link change request failed with some changes committed already. Interface 
31猉功D may have been left with an inconsistent configuration, please check.
[  179.724268][T10844] loop2: detected capacity change from 0 to 8192
[  179.747709][T10797] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  179.751624][T10797] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  179.771088][T10797] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  179.773948][T10797] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  179.777549][T10844]  loop2: p4 < >
[  179.793592][T10797] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.793635][T10797] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.793842][T10797] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.793883][T10797] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.847221][T10797] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.867445][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.868556][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.891180][T10797] 8021q: adding VLAN 0 to HW filter on device team0
[  179.896083][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.936651][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.952951][ T3331] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.960064][ T3331] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.022035][T10797] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.125265][T10874] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2428'.
[  180.177313][T10871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2427'.
[  180.218776][T10797] veth0_vlan: entered promiscuous mode
[  180.229731][T10797] veth1_vlan: entered promiscuous mode
[  180.253230][T10797] veth0_macvtap: entered promiscuous mode
[  180.266004][T10797] veth1_macvtap: entered promiscuous mode
[  180.277942][T10797] batman_adv: batadv0: Interface activated: batadv_slave_0
[  180.291794][T10797] batman_adv: batadv0: Interface activated: batadv_slave_1
[  180.302706][T10797] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.311591][T10797] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  180.320657][T10887] loop2: detected capacity change from 0 to 2048
[  180.327871][T10797] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.336729][T10797] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.380496][T10890] loop6: detected capacity change from 0 to 1024
[  180.387454][T10890] EXT4-fs: Ignoring removed orlov option
[  180.393995][T10890] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  180.420403][T10865] loop4: detected capacity change from 0 to 2048
[  180.428295][T10865] EXT4-fs: Ignoring removed bh option
[  180.435333][T10890] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.451177][T10865] ext4: Unknown parameter 'subj_type'
[  180.464844][T10865] loop4: detected capacity change from 0 to 512
[  180.472487][T10595] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.489120][    T2] ==================================================================
[  180.497331][    T2] BUG: KCSAN: data-race in memcpy_and_pad / rcu_tasks_trace_pregp_step
[  180.505594][    T2] 
[  180.507934][    T2] write to 0xffff8881001d149c of 4 bytes by task 28 on cpu 0:
[  180.515394][    T2]  rcu_tasks_trace_pregp_step+0x1ac/0x920
[  180.521138][    T2]  rcu_tasks_wait_gp+0x88/0x530
[  180.526025][    T2]  rcu_tasks_one_gp+0x7f6/0x8e0
[  180.530884][    T2]  rcu_tasks_kthread+0xf7/0x110
[  180.535749][    T2]  kthread+0x486/0x510
[  180.539828][    T2]  ret_from_fork+0xda/0x150
[  180.544347][    T2]  ret_from_fork_asm+0x1a/0x30
[  180.549125][    T2] 
[  180.551450][    T2] read to 0xffff8881001d1040 of 3200 bytes by task 2 on cpu 1:
[  180.558995][    T2]  memcpy_and_pad+0x48/0x80
[  180.563513][    T2]  arch_dup_task_struct+0x2c/0x40
[  180.568547][    T2]  dup_task_struct+0x83/0x6a0
[  180.573235][    T2]  copy_process+0x399/0x1fe0
[  180.577849][    T2]  kernel_clone+0x16c/0x5b0
[  180.582378][    T2]  kernel_thread+0xac/0xe0
[  180.586807][    T2]  kthreadd+0x28d/0x360
[  180.590983][    T2]  ret_from_fork+0xda/0x150
[  180.595501][    T2]  ret_from_fork_asm+0x1a/0x30
[  180.600289][    T2] 
[  180.602622][    T2] Reported by Kernel Concurrency Sanitizer on:
[  180.608795][    T2] CPU: 1 UID: 0 PID: 2 Comm: kthreadd Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT(voluntary) 
[  180.619060][    T2] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  180.629140][    T2] ==================================================================
[  180.644108][T10865] EXT4-fs (loop4): too many log groups per flexible block group
[  180.652175][T10865] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  180.657921][ T7350] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  180.664566][T10865] EXT4-fs (loop4): mount failed
[  180.680707][ T7350] hid-generic 0000:0000:0000.0023: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0