last executing test programs:

3.501472115s ago: executing program 0 (id=449):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x938, 0xffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000180)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x31}, 'veth0_to_team\x00'}}, 0x1e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r1)

3.418543116s ago: executing program 1 (id=452):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket(0x10, 0x3, 0x0)
unshare(0x2c020400)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
finit_module(r4, 0x0, 0x2)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0xfffffffc, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r5)
sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, r6, 0x1, 0x703d25, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044040}, 0x8842)
munmap(&(0x7f0000003000/0x2000)=nil, 0x2000)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f00000003c0)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_ATM={0x8}]}}]}, 0x3c}}, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='--0%{\\\\\x00')
write$UHID_INPUT(r9, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)

3.014697953s ago: executing program 1 (id=455):
socket(0x1e, 0x4, 0x0) (async)
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108) (async)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18) (async, rerun: 64)
fchownat(0xffffffffffffffff, 0x0, 0x0, 0xee00, 0x1000) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 64)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4) (rerun: 64)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50) (async, rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) (async, rerun: 32)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@deltaction={0x3c, 0x18, 0x1, 0x70bd28, 0x25dfdbfe, {0xa}, [@TCA_ACT_TAB={0x28, 0x1, [{0x10, 0x80, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0x14, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xf, 0x1, 'tunnel_key\x00'}}]}]}, 0x3c}}, 0x0) (async, rerun: 64)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) (async, rerun: 64)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000600)={'gre0\x00', &(0x7f0000000580)={'syztnl2\x00', <r4=>0x0, 0x80, 0x8000, 0xa, 0x75, {{0xd, 0x4, 0x1, 0x3, 0x34, 0x68, 0x0, 0x5, 0x29, 0x0, @rand_addr=0x64010102, @local, {[@ra={0x94, 0x4}, @timestamp_addr={0x44, 0x1c, 0xc3, 0x1, 0xc, [{@multicast2, 0x80}, {@rand_addr=0x64010102, 0x1ff}, {@multicast2, 0x6}]}]}}}}}) (async)
getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, &(0x7f0000000640)=<r5=>0x0, &(0x7f0000000680)=0x4)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r2, &(0x7f0000000b00)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000ac0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="e0000000", @ANYRES16=0x0, @ANYBLOB="00082bbd7000fbdbdf250b0000003000018008000300020000001400020062726964676530000000000000000000080003000300000008000100", @ANYRES32=r4, @ANYBLOB="54000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="140002006e6500000000", @ANYRES32=r5, @ANYBLOB="1400020076657468315f766972745f7769666900080003000100000008000300000000002000018008000100", @ANYRES32=0x0, @ANYBLOB="14000200736974300000000000000000000000002800018008000300010000001400020076657468305f766972745f77696669000800030002000000"], 0xe0}, 0x1, 0x0, 0x0, 0x44051}, 0x40800) (async, rerun: 64)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4) (rerun: 64)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f00000c0000/0x4000)=nil) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000200)='kfree\x00', r6}, 0x18) (async, rerun: 32)
unshare(0x6a040000) (async, rerun: 32)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f0000000640)=ANY=[], 0x0, 0x243, &(0x7f0000000840)="$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") (async)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) (async, rerun: 64)
setsockopt$ARPT_SO_SET_REPLACE(r7, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x130, 0x0, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {@empty, {[0x0, 0x0, 0xff]}}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'pimreg1\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {@empty, {[0x0, 0x0, 0x0, 0xff]}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@arp={@private=0xa010100, @remote, 0xff, 0xffffff, 0xc, 0xe, {@empty, {[0xff, 0x0, 0x0, 0xff, 0xff]}}, {@mac=@remote, {[0x0, 0xff, 0xff, 0xff, 0xff]}}, 0x2, 0x3, 0x5, 0x1, 0x7, 0x2d23, 'veth1_macvtap\x00', 'veth0_virt_wifi\x00', {}, {0xff}, 0x0, 0x1}, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) (rerun: 64)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, 0x0) (async)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000b40))

2.813946965s ago: executing program 1 (id=456):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x50a, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV")
r0 = mq_open(&(0x7f00000000c0)='${$\x00', 0x840, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x58, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0xfffffffe}, @IFLA_XFRM_LINK={0x8, 0x1, 0x4}]}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x58}}, 0x0)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x2, 0x4, 0x3c8, 0xffffffff, 0x228, 0x0, 0x228, 0xfeffffff, 0xffffffff, 0x2f8, 0x2f8, 0x2f8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x2f2, 0x110, 0x138, 0x0, {}, [@common=@unspec=@mark={{0x30}}, @common=@unspec=@devgroup={{0x38}, {0x500}}]}, @REJECT={0x28}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, [], [], 'sit0\x00', 'dvmrp0\x00'}, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@ipv6={@loopback, @mcast1, [], [], 'erspan0\x00', 'veth0_to_bridge\x00'}, 0x0, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x428)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r10 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r9, 0x1, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PID={0x8, 0x1c, r10}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)
setsockopt(r7, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$fou(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r11, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1624000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x3c, r12, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x87}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @rand_addr=' \x01\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20040040}, 0x40)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r7, 0x84, 0x17, &(0x7f0000000000)=ANY=[], 0xffc9)
close_range(r1, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec25, 0x0, 0x0, 0x40000333}, &(0x7f00000006c0)=<r13=>0x0, &(0x7f00000001c0)=<r14=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r13, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r13, r14, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x6, &(0x7f0000000380)=[{0x0}], 0x1})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)

2.691387787s ago: executing program 1 (id=458):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f80)=ANY=[@ANYRESOCT=r0, @ANYRESHEX=r0, @ANYRES64], 0xd0}, 0x1, 0x0, 0x0, 0x20008010}, 0x0)
mount$bind(&(0x7f0000000000)='./bus\x00', &(0x7f0000000200)='./bus\x00', 0x0, 0x80800, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f0000000480)='./file0/file0\x00', 0x0, 0x19b109a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
umount2(&(0x7f0000000180)='./file0\x00', 0x2)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000004c0)=ANY=[@ANYRES8=r0], &(0x7f0000000240)='GPL\x00', 0x10100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r1}, 0x10)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3800480, &(0x7f0000002200), 0x45, 0x786, &(0x7f00000007c0)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x5, 0xa8, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0xfffffffe, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x4110, 0x0, 0x0, 0x5, 0x1, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x2000400, 0x0, 0xfffffebf, 0x0, 0x0, 0x0)
syz_clone(0x2000400, 0x0, 0xfffffebf, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x7f)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x40001000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))

2.623571099s ago: executing program 0 (id=461):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000480)='blkio.bfq.time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000000000002020207b1af8ff00000000bfa100000000000007fcfffff7ffffffb7000100b70300000000cf0085000000b0003e23cf16dc8abc07377cfc0000950000000000000000000000000099ae80cbd693e9cdfe66329bf8200bf55db400981f2da470f498dd8bbe8bb93c97d2df02cb3d2500246a3bbd9b3be5ab33994a08c6e95e60ecbd7161ed68f997dcbd"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000140)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x800000000000, 0x0, 0x0, 0x751, 0x7, 0x200000000080], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000800000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000200000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x108)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000340)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000080], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0000000000000000000000000000000000001fb195d574202b200000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x108)

2.562269509s ago: executing program 0 (id=464):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_CQM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x110, r1, 0x320, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x0, 0x4}}}}, [@NL80211_ATTR_CQM={0x70, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x0, 0x5, 0x2ed]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x18000}, @NL80211_ATTR_CQM_RSSI_THOLD={0x24, 0x1, [0x8000, 0x9444, 0xcf4, 0x54b, 0x2, 0x9, 0xc, 0x4]}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x10b}, @NL80211_ATTR_CQM_RSSI_THOLD={0x20, 0x1, [0x233ef496, 0x0, 0xcd37, 0x3, 0x9, 0x4, 0x9]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x9}]}, @NL80211_ATTR_CQM={0x34, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x45c}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x3}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x10, 0x1, [0x2d, 0x6, 0x8]}]}, @NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x32}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x2}]}, @NL80211_ATTR_CQM={0x30, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0xc, 0x1, [0x8, 0xc0]}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x2c}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x3cf}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x663}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x8}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x84}, 0x20000000) (async)
pread64(r0, &(0x7f0000000280)=""/45, 0x2d, 0x8de) (async, rerun: 64)
r3 = socket$kcm(0x29, 0x7, 0x0) (async, rerun: 64)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000000300)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, <r6=>0x0}})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r5, 0xc400941d, &(0x7f0000000700)={r6, 0xd4, 0x9})
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000d80)={{0x1, 0x1, 0x18, <r7=>r3, {0x5, 0x4}}, './file0\x00'}) (async)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000dc0)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x3, 0x3}, 0x50) (async)
r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000e80)=@generic={&(0x7f0000000e40)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000f40)={{0xffffffffffffffff, <r10=>0xffffffffffffffff}, &(0x7f0000000ec0), &(0x7f0000000f00)='%pB    \x00'}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000fc0)={0x11, 0x11, &(0x7f0000000b00)=@raw=[@ldst={0x0, 0x2, 0x3, 0x8, 0xb, 0xfffffffffffffffc, 0xfffffffffffffff4}, @exit, @map_idx={0x18, 0x4, 0x5, 0x0, 0x3}, @btf_id={0x18, 0x2, 0x3, 0x0, 0x4}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x1}, @tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], &(0x7f0000000bc0)='syzkaller\x00', 0xff, 0xf6, &(0x7f0000000c00)=""/246, 0x41100, 0x3e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000d00)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000d40)={0x1, 0x0, 0xd, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000f80)=[0x1, r7, r8, r9, r10], 0x0, 0x10, 0xffffffff}, 0x94)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvmmsg(r11, &(0x7f00000045c0)=[{{&(0x7f0000001080)=@pptp={0x18, 0x2, {0x0, @dev}}, 0x80, &(0x7f0000001180)=[{&(0x7f0000001100)=""/106, 0x6a}], 0x1, &(0x7f00000011c0)=""/20, 0x14}, 0x6}, {{&(0x7f0000001200)=@ax25={{}, [@bcast, @netrom, @default, @netrom, @netrom, @default, @null, @null]}, 0x80, &(0x7f0000004440)=[{&(0x7f0000001280)=""/70, 0x46}, {0xfffffffffffffffc}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/32, 0x20}, {&(0x7f0000003340)=""/4096, 0x1000}, {&(0x7f0000004340)=""/213, 0xd5}], 0x7, &(0x7f00000044c0)=""/245, 0xf5}, 0x5}], 0x2, 0x3, &(0x7f0000004640)) (async)
r12 = geteuid()
fchown(r4, r12, 0xee00)
r13 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r13, &(0x7f0000004680), 0x10)
r14 = syz_genetlink_get_family_id$ethtool(&(0x7f0000004700), r7) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000004740)={'batadv_slave_1\x00', <r15=>0x0}) (async)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r7, 0x89f3, &(0x7f0000004800)={'gretap0\x00', &(0x7f0000004780)={'syztnl1\x00', <r16=>0x0, 0x20, 0x1, 0x0, 0xd7, {{0x14, 0x4, 0x3, 0x9, 0x50, 0x67, 0x0, 0x1, 0x4, 0x0, @private=0xa010102, @rand_addr=0x64010102, {[@timestamp={0x44, 0xc, 0x2a, 0x0, 0xe, [0x5, 0x7fffffff]}, @generic={0x7, 0xb, "08dca3cc81da264a49"}, @rr={0x7, 0x23, 0xc1, [@local, @remote, @multicast1, @dev={0xac, 0x14, 0x14, 0x19}, @local, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @broadcast]}]}}}}})
sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000004900)={&(0x7f00000046c0)={0x10, 0x0, 0x0, 0x801}, 0xc, &(0x7f00000048c0)={&(0x7f0000004840)={0x4c, r14, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_STRSET_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r15}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r16}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x1) (async)
getsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0x7, &(0x7f0000004940), &(0x7f0000004980)=0x4) (async)
syz_clone(0x40000000, &(0x7f00000049c0)="9d4fd739c3731cf4aa040f52edafa52a31795da0d9acdbb45963e919e0c2eb67a648c7982c82550ead4edf496ba778ef943966", 0x33, &(0x7f0000004a00), &(0x7f0000004a40), &(0x7f0000004a80)="15e8bd725e418c81b4f77e3948c13bfaffdb9b013dc9b66fbad1e774346f882d5da978f37f81163d257a242897e5ec99c8b87999f88083753982c326a885c2bde42513ea32b8f06b641f7f4fdcb2e1f69e887b7125b9fb3a270fdc66b222d127ad67cdf656b355b02a6a1115bddaf2d878e2dc090ad021d2e0ff49a0295bd638082ea86ee827b0ba27d96f5a443d9a30026d79963fd0738f513d83aadc656d5ce9fcb1f8d88cbcf6ab519852e13059605f61ebe5dbb58495d57f7b86e1dbe62e1e123efb3efddf9f29fce8") (async)
r17 = accept$unix(r7, 0x0, &(0x7f0000004b80))
accept4$unix(r17, &(0x7f0000004bc0)=@abs, &(0x7f0000004c40)=0x6e, 0x800) (async)
fdatasync(0xffffffffffffffff) (async, rerun: 32)
ioctl$FIDEDUPERANGE(r17, 0xc0189436, &(0x7f0000004c80)={0x100, 0x4}) (rerun: 32)

2.486213281s ago: executing program 0 (id=466):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0)
sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01b1230e00003402000008000000000000007437c34d768e4b9115c02c1d240ed73b7fb3fa14ee9ab90979599cf0c8dff2e5cd3297d7a4001dbb904045f0cb10e22379f19a319ce47b72b9c317bad42fa2573357476446843df01790c75163ebbd47ab34f0872469bf98137c352b3053924b71fb800ca9898607cd329a2c354251d408e0b0e82da595d7bf13db79b0", @ANYRES32=0x0, @ANYBLOB="08000300ffffffff"], 0x24}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r3 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r3, &(0x7f0000000340)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e24, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0x24)
bind$rxrpc(r3, &(0x7f0000001280)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
listen(r3, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0xffff}, 0x18)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
ioctl$USBDEVFS_SUBMITURB(r4, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x7d, 0x0, 0x1, 0x101, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r4, 0x4008550d, &(0x7f0000000000))

2.362208333s ago: executing program 0 (id=471):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x5, 0x7fc00002}]})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x20000000})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0, 0x0, 0x80010000}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000200000014000200626f6e64ec68000000000000000000000900010073797a30000000000900030073797a3100000000079ed36680780bdfafabc9c279aedb4aa8076c908c4323afe8d0aabf44ad7a092cb78e3ce6ff9ba292473fb7a033174f6a4f1a6a6c79eb0d36e0c40a34e4c4844b906949b44000c5bc0a197128232a3de456a2c0"], 0x43}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x3)

2.361560713s ago: executing program 3 (id=472):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100), 0x8c000, 0x0)
ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f0000000200)=0xd874)
fcntl$lock(r2, 0x6, &(0x7f0000002000)={0x1})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000220000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000d80)={'wg1\x00', <r6=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000dc0)={'batadv0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x1, 0x803, 0x0)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=@newlink={0x48, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, r10}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, r10, 0x0, 0x343}}}}}}]}, 0x48}}, 0x0)
r11 = socket(0x10, 0x3, 0x0)
r12 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r13, {0x0, 0xc}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8, "00000800000200000000000000000008"}}}]}, 0x48}}, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000e40)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000001fc0)={0x1ec, 0x0, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x40044}, 0x4c040)
r14 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f00000008c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x12c, 0x12c, 0x6, [@struct={0xc, 0x8, 0x0, 0x4, 0x1, 0x6, [{0x3, 0x0, 0x9}, {0x10, 0x5, 0x1}, {0xe, 0x2}, {0xb, 0x5, 0x7c800000}, {0x10, 0x0, 0x49c}, {0x0, 0x1, 0x5}, {0x2, 0x0, 0x1}, {0xd, 0x3, 0x9}]}, @enum64={0x8, 0x1, 0x0, 0x13, 0x1, 0x0, [{0x7, 0x3, 0x5}]}, @restrict={0xc, 0x0, 0x0, 0xb, 0x3}, @type_tag={0x7, 0x0, 0x0, 0x12, 0x4}, @float={0x9, 0x0, 0x0, 0x10, 0xc}, @enum={0xa, 0x6, 0x0, 0x6, 0x4, [{0x3, 0x7}, {0x3, 0x8001}, {0x1, 0x40}, {0x1, 0x8}, {0xa, 0x2}, {0x2, 0x7}]}, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{0x4, 0x3}, {0x4, 0x5}, {0xc}, {0x2, 0x2}, {0x3}, {0x9, 0x1}]}, @ptr={0x1, 0x0, 0x0, 0x2, 0x2}]}, {0x0, [0x2e, 0x2e, 0x30, 0x2e]}}, &(0x7f0000000700)=""/206, 0x14a, 0xce, 0x1, 0x10, 0x10000}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x6, 0xf, &(0x7f00000003c0)=@raw=[@map_fd={0x18, 0x7, 0x1, 0x0, r0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}], &(0x7f0000000580)='syzkaller\x00', 0x5, 0x1d, &(0x7f00000005c0)=""/29, 0x41100, 0x10, '\x00', r13, 0x25, r14, 0x8, &(0x7f0000000800)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000000a40)={0x4, 0xd, 0x7, 0x10000}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000a80)=[r4, r0, r0, r3], &(0x7f0000000ac0)=[{0x1, 0x2, 0xe}, {0x0, 0x3, 0x4, 0x6}, {0x1, 0x5, 0x0, 0xc}, {0x4, 0x3, 0xf, 0xb6c92bc399d15b6f}], 0x10, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="307fb0907c8372e3000000000007000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@inlinecrypt}]}, 0x6, 0x5fc, &(0x7f0000000c00)="$eJzs3c9rHGUfAPDvzCZ5kzavaUXEFsWAhxakaVKLVS+29WAPBQv2IOKhoUlq6PYHTQq2FkzBg4KCiFeRXvwHvEvv3kRQb56FKlJRUOnK7M62m2Q3XdPsTpr5fGCzz/PM7D7PdydP5pmZPDsBlNZ49iON2BVx51QSMdaybDQaC8fz9W7/du109kiiVnv91ySSvKy5fpI/b88zwxHx7dGIRyur6124cvXsdLXW8F7E/sVzF/cvXLm6b/7c9JnZM7Pnpw68cPDQ5ItTB6c2JM7t+fOx4689+fH7bz8/9111XxKH4+TguzOxIo6NMh7jcScPsbV8ICIOZYk2n8vDZguEUGqV/PdxMCIej7Go1HMNYzH/UaGNA3qqVomoASWV6P9QUs1xQPPYvrvj4JM9HpX0z60jjQOg1fEPNM6NxHD92Gjb7aTlyKhxbmPHBtSf1fHPtd2fZ49Ydh7iz7tbZ2AD6ulk6XpEPNEu/qTeth31SLP402XtSCJiMiKG8va98gBtSFrSvTgPs5b1xp9GxOH8OSs/us76x1fk+x0/AOV080i+I1/Kcvf2f9nYozn+iTbjn9E2+671KHr/13n819zfD9fPkacrxmHZmOVE+7ccXFnw04fHPu1Uf+v4L3tk9TfHgv1w63rE7hXxf5AFm49/sviTNts/W+XU4e7qePX7X451WlZ0/LUbEXvaHv/cG5VmqTWuT+6fm6/OTjZ+tq3j62/e+rJT/UXHn23/bR3ib9n+6crXZZ/JxS7r+OrEjXOdlo3eN/7056Gkcbw5lJe8M724eGkqYig5nq/SUn5g7bY012m+Rxb/3mfa9/9lv//Xl7/PSPNPZhcuvnH2dqdl69n+LReT79S6bEMnWfwz99/+q/p/VvZJl3X88eblpzotWyv+kQcJDAAAAAAAAEoorV+DTdKJu+k0nZhozJd9LLal1QsLi8/OXbh8fiZib/3/IQfT5pXusUY+yfJT+f/DNvMHVuSfi4idEfFZZaSenzh9oTpTdPAAAAAAAAAAAAAAAAAAAACwSWzP5/8371P9e6Ux/x8oiV7eYA7Y3PR/KK96/191iyegDOz/obz0fygv/R/KS/+H8tL/obz0fygv/R/KS/8HAAAAgC1p59M3f0wiYumlkfojM5QvMyMItrbBohsAFKZSdAOAwty99G+wD6XT1fj/r/zLAXvfHKAASbvC+uCgtnbnv9n2lQAAAAAAAAAAAABAD+zZ1Xn+v7nBsLWZ9gfl9QDz/311ADzkfPU/lJdjfOB+s/iHOy0w/x8AAAAAAAAAAAAA+ma0/kjSiXwu8Gik6cRExP8jYkcMJnPz1dnJiHgkIn6oDP4vy08V3WgAAAAAAAAAAAAAAAAAAADYYhauXD07Xa3OXmpN/L2qZGsnmndB7UNdL8d/fFUk/f9YRiKi8I3Ss8RAS0kSsZRt+U3RsEsLsTmaUU8U/IcJAAAAAAAAAAAAAAAAAABKqGXucXu7v+hziwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg/+7d/793iaJjBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTv8GAAD//7V5QCw=")

1.854189011s ago: executing program 1 (id=478):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x9)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0xe0204000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={{0x14, 0x3f7, 0x1, 0x0, 0x0, {0xa}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x28}, 0x1, 0x0, 0x0, 0x48840}, 0x20000080)

1.725216263s ago: executing program 3 (id=480):
syz_open_dev$vcsn(&(0x7f0000000180), 0x4, 0x40000)
openat$zero(0xffffffffffffff9c, 0x0, 0x18482, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x7c}}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
r3 = io_uring_setup(0x7c41, 0x0)
io_uring_register$IORING_REGISTER_MEM_REGION(r3, 0x22, &(0x7f0000000080)={0x0}, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="a1ab000000000000000032"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

1.421207798s ago: executing program 3 (id=481):
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x80080, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write$selinux_access(0xffffffffffffffff, 0x0, 0x56)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
inotify_init1(0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0xa00, 0xb)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x50)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000000000)={0xf, {"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", 0x1000}}, 0x1006)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
r5 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000180)='cpu==0||!')
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000200)='gtp\x00\xe4\xaa\xae\xdf~2\xa6X\x14\x92\xdarV\xf4U\xf7\xa2\xc3l\x1b@\xaf\xf9\xc9\xa9#\xf0S\xd9=q\xd6\x14\xedt\xc8!W\xe9@\xeb\x7f~\tB0EE\x9a:\xb7\xff\xc1\xfc\x9a\x1f\xf2\xfb\x19\xda#x\xc5F\x1c~\x8c\xe1\xdf\xdc\x01k\f\xde0~\x95\r\xa2\x80\b4M\x14\xe7\xd0\t`n!g\x14\xe6\xd1\xc2\xd3\x88\xf8cVtd\xbeY\xa5\xe7\x16sD\x96}7\n\x88e\x00\xf0\xff\xff\xf0\xcb\x94\xb4S\x00\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0xc, 0x0)
fsetxattr(0xffffffffffffffff, &(0x7f00000002c0)=@random={'security.', '@_)\x00'}, &(0x7f0000001600)='kmem_cache_free\x00', 0x10, 0x2)
openat(0xffffffffffffff9c, 0x0, 0x105042, 0x189)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBDIACR(r7, 0x4b4a, &(0x7f00000003c0)=""/179)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='*#^]]}&%@%}%])\'\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r6}, 0x10)

1.195655541s ago: executing program 2 (id=483):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000004000000000000008100d00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
unshare(0x68040200) (fail_nth: 9)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

904.432826ms ago: executing program 0 (id=484):
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000005b00000000000000", @ANYRES32, @ANYBLOB="04"], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000026000000080000000b"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f00000000c0), &(0x7f0000000240)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2, <r3=>0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000740)={r3, &(0x7f00000006c0)}, 0x20)
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x30000c6, &(0x7f00000000c0), 0x2, 0x572, &(0x7f0000001600)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1a, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1802000004000480000000000000000085000000b5000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x200000000000000)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000300)='mm_page_free\x00')
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x100000000007, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x7, 0x10001, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x800000002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
wait4(0x0, 0x0, 0x20000000, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)

903.978276ms ago: executing program 3 (id=485):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYRESHEX], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
membarrier(0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x786, &(0x7f0000001900)="$eJzs3c9rHGUfAPDvbJKmTfu+yQsvaL0YEDRQmpgaWwWFigcRLBT0bLtstqFmky3ZTWlCQIsIXgQVD4JeevLgj3rz6o+r/hcexFI1LVY8SGQ2s+2m2U03abIbzecDk32emdl8n+/Or2d3hpkA9qzh9E8u4nBEvJtEDGbjk4joq5V6I06uzndreamQDkmsrLz8a1Kb5+byUiEa3pM6mFUejIhv34o4klsft7KwOJ0vlYpzWX2sOnNhrLKwePT8TH6qOFWcPT4+MXHsxJMnjm9frr//sHjo2nsvPPbFyT/ffODqO98lcTIOZdMa89iyZ9dWh2M4+0z60o9wjefvO9juknS7AWxJumn2rG7lcTgGo6dWAgD+zV6PiBUAYI9JHP8BYI+p/w5wc3mpUB+6+4tEZ11/LiL2r+ZfP7+5OqU3O2e3v3YedOBmsubMSBIRQ9sQfzgiPv7q1c/SIbbrPCRAG964HBFnh4bX7/+TddcsbNbjG0zbl70O3zU+je8MNHTG12n/56lm/b/c7f5PNOn/9DfZdrei2fa/ZsSBbQiygeufRDzTcG3brYb8M0M9We0/tT5fX3LufKmY7tv+GxEj0def1sc3iDFy468braY19v9+e/+1T9P46eudOXI/9/avfc9kvpq/n5wbXb8c8VBvs/yT28s/adH/Pd1mjBeffvujVtPS/NN868P6/CO7OmlnrFyJeLTp8r9zRVuy4fWJY7XVYay+UjTx5Y8fDrSK37j80yGNX/8u0Anp8h/YOP+hpPF6zcrmY3x/ZfCbVtPunX/z9X9f8kqtXO9HXMpXq3PjEfuSl9aPP3bnvZfyD2el1fnT/Eceab79b7T+p98Jz7aZf++1Xz7fev47K81/clPLf/OFq7eme1rFb2/5T9RKI9mYdvZ/7Tbwfj47AAAAAAAAAAAAAAAAAAAAAAAAAGhXLiIORZIbvV3O5UZHV5/h/f8YyJXKleqRc+X52cmoPSt7KPpy9VtdDjbcD3U8ux9+vX7srvoTEfG/iPig/0BSv4/iZJdzBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC6gy2e/5/6qb/brQMAdsz+bjcAAOg4x38A2Hsc/wFg72nv+N+z4+0AADrH938A2Hsc/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANhhp0+dSoeVP5aXCml98uLC/HT54tHJYmV6dGa+MFooz10YnSqXp0rF0UJ55l7/r1QuX5iI2flLY9VipTpWWVg8M1Oen62eOT+TnyqeKfZ1JCsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2JzKwuJ0vlQqzilsobCyO5rR/UJPtjrtlvZ0tJDsjmZsc6HLOyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAf4i/AwAA//+3ACFj")
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
msgget(0x1, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000800000000000000000000000000850000000e0000000000950000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
acct(0x0)
sendmsg$rds(r3, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4000)
setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @remote}, 0x10)
removexattr(0x0, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000002c0)=0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
shmget$private(0x0, 0x4000, 0x54000000, &(0x7f0000004000/0x4000)=nil)
ioctl$TIOCSETD(r4, 0x5423, 0x0)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
syz_read_part_table(0x5f8, &(0x7f0000000bc0)="$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")
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x48)

880.488976ms ago: executing program 2 (id=487):
r0 = socket$netlink(0x10, 0x3, 0x14)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='\x00\x00\x00\x00\x00')
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="2001000012001307"], 0x120}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0))
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCADDRT(r1, 0x890b, &(0x7f00000001c0)={@mcast2, @local, @private0, 0x2, 0x1, 0x2, 0x900, 0x0, 0x802a0, r6})
sendmsg$netlink(r0, &(0x7f0000003f40)={0x0, 0x0, &(0x7f0000003e80)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="100000000010"], 0x10}], 0x1}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000180)=ANY=[], 0x118)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x18)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r10, &(0x7f0000000340)={0x0, 0xffffffffffffff8e, &(0x7f0000000480)={&(0x7f0000000b40)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="8b332000000000000000150000001000000d80"], 0x24}}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
ioctl$KDGKBDIACR(r8, 0x4b4a, &(0x7f00000000c0)=""/191)
bind(r8, &(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x8, @private2, 0x5, 0x1}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r7}, 0x10)

879.427906ms ago: executing program 4 (id=488):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket(0x840000000002, 0x3, 0xff)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001280)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020702500000000002020207b1af8ff00"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r4, 0x0, 0xffffffffffffffff}, 0x18)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r3, &(0x7f0000000440)=[{{&(0x7f0000000200)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000340)="5825be57aff935e67ca2746357d1787935589db15a23319e3f64fdf5f88b2078", 0x20}], 0x1}}], 0x1, 0x840)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x81c0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000019080)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a4c000000060a09040000000000000000020000000900020073797a32000000000900010073797a300000000018000480140001800e000100636f6e6e6c696d697400000005000740d1000000140000001100010000000000000000000000000aaf063b53b4bb86"], 0x74}}, 0x0)
pread64(r1, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a)
r5 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x8b7c, 0x800, 0x200007, 0x22}, &(0x7f0000000940)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000440)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r5, 0x47f9, 0x4db, 0xa, 0x0, 0x0)
clock_nanosleep(0x2, 0x37dc12502000000, &(0x7f00000000c0)={0x0, 0x989680}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'macsec0\x00', <r8=>0x0})
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000b0000f5040010000200001000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r8, @ANYRES32, @ANYBLOB="000000000200"/28], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f000001a3c0)={0x11, 0xb, &(0x7f000001a2c0)=ANY=[@ANYBLOB="180000000000000000000020646c2500770000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000072000000950000000000000000006ef84048e041b140662a1257199b773c1e86637a5d28fd39835af82240c6283f3e34a749003cba7da898596de476ff5c648e2e33c684975b86cdadb564cbf694c82a8d2de2a04381e60efde807dd4c7162d413f862c67b1656c2fd1f7064fad66e929095b6ce1c8e82d7d6c614d95e3060"], &(0x7f000001a480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', r8, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8b}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='sys_enter\x00', r10}, 0x18)
process_mrelease(0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000019180)=ANY=[@ANYBLOB="1e000000030000001a060000010000008c010100", @ANYRES32=r9, @ANYBLOB='\t\x00'/20, @ANYRES32=r8, @ANYRES32=r1, @ANYBLOB="0100000001000000050000000d00"/24, @ANYRES32=r1, @ANYBLOB="834584e8b0a774ebc877c3c97c21934438baff198e2050a8056ec23dcd855f88b94dbb3465c19b31d375a221c09685e3444698864624e5822d53a508eb22f50486ab36a8896c71090b007d5b634106c2c6754e37dd0d6164fcf5573bb5f54d55dc"], 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000080), &(0x7f0000000340)='%pS    \x00'}, 0x20)

746.243578ms ago: executing program 2 (id=489):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x7fff8)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000000)=0x1, 0x4)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, 0x0, 0x0, 0x12020, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x18)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

697.041579ms ago: executing program 1 (id=490):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x8}, 0x18)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x0, 0x40000, 0x0}, &(0x7f0000000080)="0000501effd4", 0x0, 0x800004, 0x10030, 0x1, 0x0})

686.655639ms ago: executing program 4 (id=491):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
accept4(r1, 0x0, &(0x7f0000000100), 0x800)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'netdevsim0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x5, '\x00', 0x0, 0x0, 0x1, 0xb2}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x44000800}, 0x4000010)
pwritev(r0, 0x0, 0x0, 0x5, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r3, 0x2007ffc)
sendfile(r3, r3, 0x0, 0x800000009)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0)
pwritev(r5, &(0x7f00000007c0)=[{&(0x7f0000000040)='b', 0x1}], 0x100000000000020e, 0x1, 0x1f5)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r4}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x1}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000008000)=ANY=[@ANYBLOB="8500000000eec49538000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, r6, 0x14, &(0x7f00000000c0), 0x1, 0x10, &(0x7f0000000000), 0xa, 0x0, 0xffffffffffffffff, 0x4c}, 0x70)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910300000000000730a00ff000000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0x1a, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport}, 0x48)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x8, [@enum64={0x1, 0x3, 0x0, 0x13, 0x1, 0x2, [{0x3, 0x1, 0x4}, {0x4, 0x1, 0x3b}, {0x5, 0x357b, 0x9}]}]}, {0x0, [0x5f, 0x5f, 0x5f, 0x61, 0x30, 0x5f]}}, &(0x7f0000000680)=""/95, 0x50, 0x5f, 0x1, 0xfffffff1}, 0x28)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000680)='+}[@\x00[$oB\xfa=\xee\xc4F\xba\xed\x97')
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x18)
r9 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
preadv(r9, &(0x7f0000000240)=[{&(0x7f0000002140)=""/4088, 0xff8}], 0x4, 0x4, 0x0)
fsetxattr(r7, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)='@\x00', 0x7c8, 0x0)

639.10284ms ago: executing program 32 (id=490):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x8}, 0x18)
ioctl$SG_IO(r0, 0x2285, &(0x7f00000005c0)={0x53, 0xfffffffe, 0x6, 0x2, @scatter={0x0, 0x40000, 0x0}, &(0x7f0000000080)="0000501effd4", 0x0, 0x800004, 0x10030, 0x1, 0x0})

636.06404ms ago: executing program 2 (id=493):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x5, 0x0, 0x0, 0x0, 0x7, 0x410, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xf, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000100)='!\x00')
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x75, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0)
r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x40800, 0x0)
ioctl$PTP_PEROUT_REQUEST2(r2, 0x40383d0c, &(0x7f0000000400)={{0x40, 0xf}, {0x8, 0x5}, 0x6})
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000040))
ioctl$PPPIOCSACTIVE(r1, 0x40047459, &(0x7f0000000080)={0xfffffffffffffe43, 0x0})
write$ppp(r1, &(0x7f0000000100)="bf16a1f1fb", 0x5)
r3 = syz_io_uring_setup(0x110, &(0x7f00000000c0)={0x0, 0x10, 0x0, 0x3, 0x80}, &(0x7f0000000180), &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000002200)=[0xffffffffffffffff], 0x1)
dup2(0xffffffffffffffff, r0)
ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f00000001c0)={{}, 0x815, 0x8, 0x2})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r4=>r0, {0xffffffffffffffff}}, './file0\x00'})
mount_setattr(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x0, &(0x7f00000004c0)={0xc, 0x8a, 0x0, {r4}}, 0x20)
r5 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
vmsplice(r6, 0x0, 0x0, 0x1)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000340)=ANY=[@ANYBLOB="0002020100000000ff0200"/21], 0x18)
connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @private2}, 0x1c)
syz_io_uring_setup(0x77ff, &(0x7f00000000c0)={0x0, 0x7eab, 0x20000, 0x3, 0x18d, 0x0, r6}, &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3d, 0x2000, @fd_index=0x9, 0x8, 0x0, 0x0, 0x3, 0x1})
io_uring_enter(r3, 0x627, 0x4c1, 0x63, 0x0, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000500)="f2bb09aa8764dc6093b7bbdf68a5081b33795ae43c260f74e1282c3658008bdfae0a93feab58503351fbac9ac1261c7b3e984f09664e948db9b7086c8dea1fc43a00"/78, 0x4e}], 0x1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000380), 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xa, 0x22, &(0x7f0000000580)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r10, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)

604.71762ms ago: executing program 3 (id=494):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
socket$inet_udplite(0x2, 0x2, 0x88)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
lseek(r2, 0x10001, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r3}, 0x10)
syz_open_dev$usbfs(&(0x7f0000000040), 0xf, 0xc340)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000"], 0xec}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.state\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x25, &(0x7f00000000c0)={0x2, 0x0, 0x4004, 0x409})
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r6, &(0x7f0000000080), 0x1c)
unshare(0x22020600)
r7 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x20)
fsync(r7)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x304}, "7817765dc5914c3d", "c0a9b92b592a8e91a6934cb6b7b18f7a7a6eaa9cbd8ef3b0fbc326100136e976", "58a190f0", "2a1e833e7af32011"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x303}, "54164ace389ff5c0", "faad50724acb18aba4e3bc6d4d684ad9c694f3e96ca4b72643dd3689727968e9", "5cb6d054", "29a78ab9b0a4e8ae"}, 0x38)

498.185692ms ago: executing program 3 (id=495):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x5, 0x7fc00002}]})
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x20000000})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0, 0x0, 0x80010000}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000000200000014000200626f6e64ec68000000000000000000000900010073797a30000000000900030073797a3100000000079ed36680780bdfafabc9c279aedb4aa8076c908c4323afe8d0aabf44ad7a092cb78e3ce6ff9ba292473fb7a033174f6a4f1a6a6c79eb0d36e0c40a34e4c4844b906949b44000c5bc0a197128232a3de456a2c0"], 0x43}}, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x14)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x3)

497.680512ms ago: executing program 2 (id=496):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x16, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18020000fdffffff000000000000000085000000b200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
r1 = socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x8fdff, {0x0, 0x0, 0x0, r3, {0x0, 0xffed}, {0xf, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0xe70, 0x6, 0x3, 0x7ca, 0x6960, 0xff}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8021}, 0x4008000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYRESDEC=r1], &(0x7f0000000140)=""/32, 0x77, 0x20, 0x0, 0x2f, 0x10000}, 0x28)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000580)={0xffffffffffffffff, 0x20, &(0x7f0000000540)={&(0x7f0000000980)=""/137, 0x89, 0x0, &(0x7f0000000480)=""/183, 0xb7}}, 0xffffffffffffff11)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000005e7e729dfe9e2ab80000010000948bc0c10aca98d853371992fcf0589d707451ccbff6b43a416cf989f137b219e75466866d5fb6e324a8d40502957505bbec05efcbffdb7314e9a28fb40ac4e29b4996f5d3943a85c63fe53492d895442bba75e42e689ad19199cade18b8b94f45889d7d6c6a166cdb2878fa82d820228b3805465e8b4a8281427721d4be545e0ad479c967fb7d4695435376e2c5797c7c05d2", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400000000000000030000000600"/28], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x8}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x8}, 0x18)
syz_open_dev$usbfs(0x0, 0x76, 0x101301) (async)
syz_open_dev$usbfs(0x0, 0x76, 0x101301)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x39) (async)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x39)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
dup2(r5, r6) (async)
r7 = dup2(r5, r6)
bind$inet6(r7, 0x0, 0x0) (async)
bind$inet6(r7, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
process_mrelease(0xffffffffffffffff, 0x1000000) (async)
process_mrelease(0xffffffffffffffff, 0x1000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_opts(r8, 0x29, 0x3b, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r9, &(0x7f0000000800)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004000000040020000c00000000040000c7fe64362a22f12fc59265183206606921c6c66113cba7002345033457c2bfaefad1ecb9c2941d439853c17eb8eb4061df0e1d505a72fa3e55aeba8a9167a648a206acdaf2bc77528a003fd642a2d7dfd3e7d7b326937b7fcbdd7246dee95ba8a8ae5eaeb080e278bd7e670e8a883106c1b1f8db21adde1185785b4c605861c20ed6b535e5780018773747b8b57b6502e967b0c502bb23e4a1452341015eb96c229c82643a2e9eff3bfb491d0eb81fc2a77bb210d81405dd6298b49ceb3a8c08f44cb6db953ae43fb3215f706a43976a0882537260e11d1a916f12ade2c93aab1b8e15acae11b389ef111ee5386ded2b"], 0x58)

386.037064ms ago: executing program 2 (id=497):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x2c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x1b, &(0x7f0000001800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000017000000180100002020690000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000700)={r1, r3, 0x25, 0x0, @val=@perf_event}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r1, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000000)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000340)=[0x0], <r4=>0x0, 0xe1, &(0x7f0000000380)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f00000003c0), &(0x7f0000000400), 0x8, 0x63, 0x8, 0x8, &(0x7f0000000440)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kmem_cache_free\x00', r5}, 0x18)
syz_emit_ethernet(0xfdef, &(0x7f0000000100)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@response={0x2, 0x0, 0x0, "82d18160f7d8dda36479a6b179161b4bbff2d0508977b3928ebd2dee05607d17", "0194bd7b1b0303c5ba7f602606a285b3", {"30da2d58da817f8a5f77a23de36a2164", "3b33cfa231a427159c7b9f0eceb155f0"}}}}}}}, 0x0)

293.299995ms ago: executing program 4 (id=498):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x7, 0x4, 0x438, 0x350, 0x240, 0x240, 0xe0, 0x350, 0x240, 0x4, 0x0, {[{{@arp={@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101, 0x0, 0xffffff00, 0x3, 0x0, {@empty, {[0x0, 0xff, 0x0, 0x0, 0x0, 0xff]}}, {@mac=@multicast, {[0x0, 0x0, 0xff, 0x0, 0x0, 0xff]}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 'veth0_to_bridge\x00', 'veth1_macvtap\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="1758a179fe8f", @rand_addr=0x64010100, @multicast1, 0x2, 0xffffffff}}}, {{@arp={@rand_addr=0x64010101, @rand_addr, 0x0, 0x0, 0xc, 0x3, {@empty, {[0xff, 0xff, 0x0, 0x0, 0xff]}}, {@empty, {[0x8a8cfb792f7af7f0]}}, 0x0, 0xfffc, 0x0, 0xa51, 0x0, 0x1000, 'team_slave_0\x00', 'veth0\x00', {0xff}}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x8, 0x5, 0x0, 0x0, "f245442f682c06144f1fb782d77bc38316214ca84d2f69b44810c3a40a495fa278a1728df4f6eaac07ddb7086bd6e732ed48ea39c4670df6527298897d41f42e"}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @local, @private=0xa010100, 0x4, 0xffffffff}}}], {{'\x00', 0xc0, 0xe8}, {0x28, '\x00', 0x0, 0xfffffffb}}}}, 0x488)

189.389497ms ago: executing program 4 (id=499):
syz_open_dev$vcsn(&(0x7f0000000180), 0x4, 0x40000)
openat$zero(0xffffffffffffff9c, 0x0, 0x18482, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x7c}}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r2 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0)
r3 = io_uring_setup(0x7c41, 0x0)
io_uring_register$IORING_REGISTER_MEM_REGION(r3, 0x22, &(0x7f0000000080)={0x0}, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="a1ab000000000000000032"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

19.96713ms ago: executing program 4 (id=500):
pipe(&(0x7f00000002c0)={<r0=>0xffffffffffffffff}) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
ioctl$SG_SET_RESERVED_SIZE(0xffffffffffffffff, 0x2275, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x0, 0x0}) (async)
openat$tcp_mem(0xffffffffffffff9c, 0x0, 0x1, 0x0) (async)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000001400)) (async)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0) (async)
r1 = dup(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@bloom_filter={0x1e, 0x4, 0x81, 0x249, 0x4448, 0xffffffffffffffff, 0x3, '\x00', 0x0, r0, 0x1, 0x3, 0x1, 0x9}, 0x50) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x9, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f0000000580)={0x6, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000680), &(0x7f00000006c0)=[{0x2, 0x3, 0x7, 0xc}, {0x2, 0x4, 0x0, 0x8}, {0x2, 0x2, 0xf}, {0x3, 0x5, 0xa, 0x2}, {0x3, 0x5, 0x7, 0x4}, {0x2, 0x4, 0xf, 0xc}, {0x0, 0x3, 0x0, 0x2}], 0x10, 0x1}, 0x94) (async)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) (async)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x3f)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000002c0)=0x11) (async)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000280)={0x0, 0x3, 0x7, 0x0, 0x10040, 0x8f}) (async)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x2) (async)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000740)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000041000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70400000800000085000000950040009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r4, 0x0, 0x4}, 0x18)

0s ago: executing program 4 (id=501):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x5, 0x7fc00002}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000001c0)={0x2007})
epoll_create1(0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0, 0x0, 0x80010000}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7}, 0x18)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r8, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000000200000014000200626f6e64ec68000000000000000000000900010073797a30000000000900030073797a3100000000079ed36680780bdfafabc9c279aedb4aa8076c908c4323afe8d0aabf44ad7a092cb78e3ce6ff9ba292473fb7a033174f6a4f1a6a6c79eb0d36e0c40a34e4c4844b906949b44000c5bc0a197128232a3de456a2c0"], 0x43}}, 0x0)
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f0000000040)=0x14)

kernel console output (not intermixed with test programs):

cutor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f84c3b4ab89 code=0x7ffc0000
[   39.259057][ T3478] audit: audit_lost=2 audit_rate_limit=0 audit_backlog_limit=64
[   39.265566][   T29] audit: type=1326 audit(1752962352.440:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3486 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f84c3ba5967 code=0x7ffc0000
[   39.289249][ T3313] veth1_macvtap: entered promiscuous mode
[   39.319765][ T3478] FAULT_INJECTION: forcing a failure.
[   39.319765][ T3478] name failslab, interval 1, probability 0, space 0, times 1
[   39.335363][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.337576][ T3478] CPU: 0 UID: 0 PID: 3478 Comm: syz.1.6 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   39.337631][ T3478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   39.337654][ T3478] Call Trace:
[   39.337662][ T3478]  <TASK>
[   39.337672][ T3478]  __dump_stack+0x1d/0x30
[   39.337703][ T3478]  dump_stack_lvl+0xe8/0x140
[   39.337730][ T3478]  dump_stack+0x15/0x1b
[   39.337752][ T3478]  should_fail_ex+0x265/0x280
[   39.337839][ T3478]  should_failslab+0x8c/0xb0
[   39.337871][ T3478]  __kmalloc_noprof+0xa5/0x3e0
[   39.337916][ T3478]  ? ext4_find_extent+0x16b/0x7a0
[   39.337957][ T3478]  ext4_find_extent+0x16b/0x7a0
[   39.337999][ T3478]  ext4_ext_map_blocks+0x11f/0x38a0
[   39.338101][ T3478]  ? gup_fast_fallback+0xc0b/0x1730
[   39.338144][ T3478]  ? ext4_es_lookup_extent+0x352/0x4f0
[   39.338175][ T3478]  ext4_map_blocks+0x61c/0xd70
[   39.338232][ T3478]  ext4_iomap_begin+0x93a/0xe00
[   39.338315][ T3478]  ? __pfx_ext4_iomap_begin+0x10/0x10
[   39.338343][ T3478]  iomap_iter+0x335/0x730
[   39.338379][ T3478]  __iomap_dio_rw+0xd5e/0x1250
[   39.338437][ T3478]  ? ext4_journal_check_start+0x11a/0x1b0
[   39.338507][ T3478]  iomap_dio_rw+0x40/0x90
[   39.338547][ T3478]  ext4_file_write_iter+0xad9/0xf00
[   39.338585][ T3478]  do_iter_readv_writev+0x421/0x4c0
[   39.338638][ T3478]  vfs_writev+0x2df/0x8b0
[   39.338803][ T3478]  __se_sys_pwritev2+0xfc/0x1c0
[   39.338831][ T3478]  __x64_sys_pwritev2+0x67/0x80
[   39.338916][ T3478]  x64_sys_call+0x1cea/0x2fb0
[   39.338947][ T3478]  do_syscall_64+0xd2/0x200
[   39.338972][ T3478]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   39.339010][ T3478]  ? clear_bhb_loop+0x40/0x90
[   39.339078][ T3478]  ? clear_bhb_loop+0x40/0x90
[   39.339111][ T3478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.339140][ T3478] RIP: 0033:0x7f2e6073e9a9
[   39.339166][ T3478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.339214][ T3478] RSP: 002b:00007f2e5ed9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   39.339243][ T3478] RAX: ffffffffffffffda RBX: 00007f2e60965fa0 RCX: 00007f2e6073e9a9
[   39.339260][ T3478] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000005
[   39.339277][ T3478] RBP: 00007f2e5ed9f090 R08: 0000000000000000 R09: 0000000000000003
[   39.339363][ T3478] R10: 0000000000007000 R11: 0000000000000246 R12: 0000000000000001
[   39.339380][ T3478] R13: 0000000000000000 R14: 00007f2e60965fa0 R15: 00007ffe130fa6b8
[   39.339405][ T3478]  </TASK>
[   39.593057][ T3478] syz.1.6 (3478) used greatest stack depth: 10760 bytes left
[   39.604851][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.619305][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.639855][ T3317] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.648876][ T3317] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.649466][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.657750][ T3317] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.675488][ T3317] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.707454][ T3499] loop3: detected capacity change from 0 to 2048
[   39.721874][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.734722][ T3313] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.743592][ T3313] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.752357][ T3313] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.755307][ T3502] netlink: 'syz.1.10': attribute type 1 has an invalid length.
[   39.761143][ T3313] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.785319][ T3499] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.840241][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.057720][ T3517] loop3: detected capacity change from 0 to 2048
[   40.080754][ T3517] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.271000][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.328052][ T3532] loop4: detected capacity change from 0 to 1024
[   40.357980][ T3532] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.370314][ T3530] loop3: detected capacity change from 0 to 1024
[   40.593023][ T3530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.691091][ T3530] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.15: Allocating blocks 449-513 which overlap fs metadata
[   40.766991][ T3529] EXT4-fs (loop3): pa ffff888106a77070: logic 48, phys. 177, len 21
[   40.775108][ T3529] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   40.856312][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.041067][ T3582] loop1: detected capacity change from 0 to 2048
[   41.106117][ T3582] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.256681][ T3598] netlink: 'syz.3.20': attribute type 62 has an invalid length.
[   41.278133][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.351955][ T3607] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   41.383536][ T3608] loop3: detected capacity change from 0 to 1024
[   41.395934][ T3607] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   41.411902][ T3608] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.432783][ T3532] syz.4.16 (3532) used greatest stack depth: 5880 bytes left
[   41.449217][ T3607] netlink: 60 bytes leftover after parsing attributes in process `syz.1.21'.
[   41.462096][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.495029][ T3608] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.22: Allocating blocks 449-513 which overlap fs metadata
[   41.536341][ T3623] FAULT_INJECTION: forcing a failure.
[   41.536341][ T3623] name failslab, interval 1, probability 0, space 0, times 0
[   41.549115][ T3623] CPU: 0 UID: 0 PID: 3623 Comm: syz.4.23 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   41.549207][ T3623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.549219][ T3623] Call Trace:
[   41.549225][ T3623]  <TASK>
[   41.549231][ T3623]  __dump_stack+0x1d/0x30
[   41.549252][ T3623]  dump_stack_lvl+0xe8/0x140
[   41.549348][ T3623]  dump_stack+0x15/0x1b
[   41.549367][ T3623]  should_fail_ex+0x265/0x280
[   41.549405][ T3623]  should_failslab+0x8c/0xb0
[   41.549433][ T3623]  __kmalloc_noprof+0xa5/0x3e0
[   41.549466][ T3623]  ? nla_strdup+0x78/0xc0
[   41.549500][ T3623]  nla_strdup+0x78/0xc0
[   41.549530][ T3623]  nf_tables_newset+0xe06/0x14e0
[   41.549586][ T3623]  nfnetlink_rcv+0xb96/0x1690
[   41.549655][ T3623]  netlink_unicast+0x5a5/0x680
[   41.549710][ T3623]  netlink_sendmsg+0x58b/0x6b0
[   41.549732][ T3623]  ? __pfx_netlink_sendmsg+0x10/0x10
[   41.549750][ T3623]  __sock_sendmsg+0x142/0x180
[   41.549812][ T3623]  ____sys_sendmsg+0x31e/0x4e0
[   41.549857][ T3623]  ___sys_sendmsg+0x17b/0x1d0
[   41.549905][ T3623]  __x64_sys_sendmsg+0xd4/0x160
[   41.549967][ T3623]  x64_sys_call+0x2999/0x2fb0
[   41.550055][ T3623]  do_syscall_64+0xd2/0x200
[   41.550077][ T3623]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.550104][ T3623]  ? clear_bhb_loop+0x40/0x90
[   41.550125][ T3623]  ? clear_bhb_loop+0x40/0x90
[   41.550145][ T3623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.550216][ T3623] RIP: 0033:0x7f1a5983e9a9
[   41.550231][ T3623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.550313][ T3623] RSP: 002b:00007f1a57ea7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.550336][ T3623] RAX: ffffffffffffffda RBX: 00007f1a59a65fa0 RCX: 00007f1a5983e9a9
[   41.550352][ T3623] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[   41.550368][ T3623] RBP: 00007f1a57ea7090 R08: 0000000000000000 R09: 0000000000000000
[   41.550453][ T3623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   41.550468][ T3623] R13: 0000000000000000 R14: 00007f1a59a65fa0 R15: 00007fff36a13988
[   41.550492][ T3623]  </TASK>
[   41.778469][ T3625] SELinux:  Context @ is not valid (left unmapped).
[   41.812961][ T3625] EXT4-fs (loop3): pa ffff8881069de5b0: logic 48, phys. 177, len 21
[   41.821060][ T3625] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   41.926749][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.036149][ T3636] loop4: detected capacity change from 0 to 2048
[   42.075019][ T3636] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.139617][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.152185][ T3634] GUP no longer grows the stack in syz.3.25 (3634): 200000004000-20000000a000 (200000002000)
[   42.162631][ T3634] CPU: 0 UID: 0 PID: 3634 Comm: syz.3.25 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   42.162711][ T3634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   42.162726][ T3634] Call Trace:
[   42.162734][ T3634]  <TASK>
[   42.162744][ T3634]  __dump_stack+0x1d/0x30
[   42.162811][ T3634]  dump_stack_lvl+0xe8/0x140
[   42.162839][ T3634]  dump_stack+0x15/0x1b
[   42.162857][ T3634]  __get_user_pages+0x199d/0x1fb0
[   42.162885][ T3634]  ? __rcu_read_unlock+0x4f/0x70
[   42.162908][ T3634]  get_user_pages_remote+0x1dc/0x7a0
[   42.163005][ T3634]  __access_remote_vm+0x156/0x560
[   42.163030][ T3634]  access_remote_vm+0x32/0x40
[   42.163051][ T3634]  proc_pid_cmdline_read+0x30f/0x6a0
[   42.163145][ T3634]  ? __pfx_proc_pid_cmdline_read+0x10/0x10
[   42.163188][ T3634]  vfs_readv+0x3f8/0x690
[   42.163275][ T3634]  __x64_sys_preadv+0xfd/0x1c0
[   42.163298][ T3634]  x64_sys_call+0x1503/0x2fb0
[   42.163327][ T3634]  do_syscall_64+0xd2/0x200
[   42.163346][ T3634]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.163390][ T3634]  ? clear_bhb_loop+0x40/0x90
[   42.163419][ T3634]  ? clear_bhb_loop+0x40/0x90
[   42.163448][ T3634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.163470][ T3634] RIP: 0033:0x7f84c3bae9a9
[   42.163486][ T3634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.163535][ T3634] RSP: 002b:00007f84c2217038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   42.163561][ T3634] RAX: ffffffffffffffda RBX: 00007f84c3dd5fa0 RCX: 00007f84c3bae9a9
[   42.163578][ T3634] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000005
[   42.163590][ T3634] RBP: 00007f84c3c30d69 R08: 0000000000000000 R09: 0000000000000000
[   42.163602][ T3634] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000
[   42.163644][ T3634] R13: 0000000000000000 R14: 00007f84c3dd5fa0 R15: 00007fff6d64d988
[   42.163670][ T3634]  </TASK>
[   42.508197][ T3644] loop1: detected capacity change from 0 to 512
[   42.550135][ T3644] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.28: iget: bad extended attribute block 1
[   42.595093][ T3644] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.28: couldn't read orphan inode 15 (err -117)
[   42.626271][ T3644] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.763249][ T3665] loop3: detected capacity change from 0 to 1024
[   42.864211][ T3665] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.902912][ T3665] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.29: Allocating blocks 449-513 which overlap fs metadata
[   42.933354][ T3665] EXT4-fs (loop3): pa ffff8881069de620: logic 48, phys. 177, len 21
[   42.941560][ T3665] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   42.975868][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.994140][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.016888][ T3670] loop2: detected capacity change from 0 to 512
[   43.056249][ T3674] netlink: 16 bytes leftover after parsing attributes in process `syz.1.32'.
[   43.066806][ T3670] EXT4-fs error (device loop2): ext4_xattr_inode_iget:433: comm syz.2.31: Parent and EA inode have the same ino 15
[   43.103089][ T3670] EXT4-fs (loop2): Remounting filesystem read-only
[   43.112975][ T3676] netlink: zone id is out of range
[   43.125022][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.132756][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.140304][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.155969][ T3670] EXT4-fs (loop2): 1 orphan inode deleted
[   43.162916][ T3670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.202057][ T3681] loop3: detected capacity change from 0 to 256
[   43.225149][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.232889][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.240351][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.248092][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.255722][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.263266][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.270854][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.278303][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.285895][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.293358][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.317167][ T3682] netlink: 12 bytes leftover after parsing attributes in process `syz.1.33'.
[   43.331911][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.339576][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.347249][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.354701][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.362306][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.369758][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.377216][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.384662][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.392146][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.399580][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.407034][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.414523][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.419867][ T3681] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   43.422025][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.439964][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.447398][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.501945][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.516748][ T3684] loop4: detected capacity change from 0 to 1024
[   43.528510][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   43.582002][ T3685] fido_id[3685]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   43.607282][ T3691] netlink: 348 bytes leftover after parsing attributes in process `syz.3.37'.
[   43.639346][ T3684] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.813885][ T3684] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.35: Allocating blocks 449-513 which overlap fs metadata
[   43.888517][ T3684] EXT4-fs (loop4): pa ffff888106a77070: logic 48, phys. 177, len 21
[   43.896606][ T3684] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   43.930478][ T3707] netlink: 16 bytes leftover after parsing attributes in process `syz.0.43'.
[   43.955754][ T3708] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pid=3708 comm=syz.2.42
[   43.979389][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.025103][ T3712] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   44.084589][ T3719] loop4: detected capacity change from 0 to 2048
[   44.101008][ T3721] loop2: detected capacity change from 0 to 128
[   44.110380][ T3719] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.123105][ T3721] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   44.129427][ T3724] loop0: detected capacity change from 0 to 1024
[   44.166169][ T3721] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   44.198470][   T29] kauditd_printk_skb: 236 callbacks suppressed
[   44.198489][   T29] audit: type=1326 audit(1752962357.520:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f75e0f2d60a code=0x7ffc0000
[   44.247519][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.268560][   T29] audit: type=1326 audit(1752962357.520:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f75e0f2d60a code=0x7ffc0000
[   44.291710][   T29] audit: type=1326 audit(1752962357.520:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f75e0f2d217 code=0x7ffc0000
[   44.316207][   T29] audit: type=1326 audit(1752962357.520:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f75e0f3014a code=0x7ffc0000
[   44.339430][   T29] audit: type=1326 audit(1752962357.520:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f75e0f2d310 code=0x7ffc0000
[   44.362737][   T29] audit: type=1326 audit(1752962357.520:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f75e0f2e5ab code=0x7ffc0000
[   44.386030][   T29] audit: type=1326 audit(1752962357.520:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f75e0f2d60a code=0x7ffc0000
[   44.409321][   T29] audit: type=1326 audit(1752962357.520:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75e0f2e9a9 code=0x7ffc0000
[   44.432903][   T29] audit: type=1326 audit(1752962357.520:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3711 comm="syz.0.46" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75e0f2e9a9 code=0x7ffc0000
[   44.456158][   T29] audit: type=1400 audit(1752962357.520:395): avc:  denied  { create } for  pid=3711 comm="syz.0.46" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   44.543161][ T3721] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1107 sclass=netlink_route_socket pid=3721 comm=syz.2.48
[   44.776952][ T3750] FAULT_INJECTION: forcing a failure.
[   44.776952][ T3750] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   44.790302][ T3750] CPU: 0 UID: 0 PID: 3750 Comm: +}[@ Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   44.790403][ T3750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   44.790421][ T3750] Call Trace:
[   44.790428][ T3750]  <TASK>
[   44.790438][ T3750]  __dump_stack+0x1d/0x30
[   44.790465][ T3750]  dump_stack_lvl+0xe8/0x140
[   44.790552][ T3750]  dump_stack+0x15/0x1b
[   44.790574][ T3750]  should_fail_ex+0x265/0x280
[   44.790613][ T3750]  should_fail+0xb/0x20
[   44.790691][ T3750]  should_fail_usercopy+0x1a/0x20
[   44.790724][ T3750]  _copy_from_user+0x1c/0xb0
[   44.790748][ T3750]  autofs_dev_ioctl+0xdd/0x6a0
[   44.790778][ T3750]  ? __pfx_autofs_dev_ioctl+0x10/0x10
[   44.790812][ T3750]  __se_sys_ioctl+0xce/0x140
[   44.790896][ T3750]  __x64_sys_ioctl+0x43/0x50
[   44.790938][ T3750]  x64_sys_call+0x19a8/0x2fb0
[   44.790965][ T3750]  do_syscall_64+0xd2/0x200
[   44.790989][ T3750]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.791018][ T3750]  ? clear_bhb_loop+0x40/0x90
[   44.791082][ T3750]  ? clear_bhb_loop+0x40/0x90
[   44.791110][ T3750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.791136][ T3750] RIP: 0033:0x7f75e0f2e9a9
[   44.791155][ T3750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.791177][ T3750] RSP: 002b:00007f75df597038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   44.791198][ T3750] RAX: ffffffffffffffda RBX: 00007f75e1155fa0 RCX: 00007f75e0f2e9a9
[   44.791232][ T3750] RDX: 0000200000000240 RSI: 00000000c0189374 RDI: 0000000000000003
[   44.791313][ T3750] RBP: 00007f75df597090 R08: 0000000000000000 R09: 0000000000000000
[   44.791343][ T3750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.791358][ T3750] R13: 0000000000000000 R14: 00007f75e1155fa0 R15: 00007ffd0b717058
[   44.791458][ T3750]  </TASK>
[   44.811683][ T3746] netlink: 16 bytes leftover after parsing attributes in process `syz.1.55'.
[   44.920645][ T3756] loop0: detected capacity change from 0 to 1024
[   44.981243][ T3758] loop4: detected capacity change from 0 to 2048
[   45.011297][  T380] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   45.026282][ T3756] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.071557][ T3762] loop3: detected capacity change from 0 to 1024
[   45.082109][ T3758] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.109911][ T3762] EXT4-fs: Ignoring removed orlov option
[   45.132787][ T3756] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.62: Allocating blocks 449-513 which overlap fs metadata
[   45.167155][ T3758] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.183001][ T3762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.204034][ T3755] EXT4-fs (loop0): pa ffff888106a77070: logic 48, phys. 177, len 21
[   45.212203][ T3755] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   45.270585][ T3772] syz.2.66 uses obsolete (PF_INET,SOCK_PACKET)
[   45.270711][ T3762] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 64 with max blocks 8 with error 28
[   45.289208][ T3762] EXT4-fs (loop3): This should not happen!! Data will be lost
[   45.289208][ T3762] 
[   45.298949][ T3762] EXT4-fs (loop3): Total free blocks count 0
[   45.304997][ T3762] EXT4-fs (loop3): Free/Dirty block details
[   45.310978][ T3762] EXT4-fs (loop3): free_blocks=0
[   45.315957][ T3762] EXT4-fs (loop3): dirty_blocks=0
[   45.321080][ T3762] EXT4-fs (loop3): Block reservation details
[   45.327168][ T3762] EXT4-fs (loop3): i_reserved_data_blocks=0
[   45.352252][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.381379][ T3782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.69'.
[   45.381414][ T3782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.69'.
[   45.416161][ T3786] netlink: 332 bytes leftover after parsing attributes in process `syz.2.72'.
[   45.452020][ T3786] netlink: 'syz.2.72': attribute type 9 has an invalid length.
[   45.459828][ T3786] netlink: 108 bytes leftover after parsing attributes in process `syz.2.72'.
[   45.517536][ T3793] loop0: detected capacity change from 0 to 2048
[   45.523897][ T3786] Zero length message leads to an empty skb
[   45.557447][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.576519][ T3793] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.683322][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.740765][ T3812] loop3: detected capacity change from 0 to 2048
[   46.431121][ T3822] loop4: detected capacity change from 0 to 512
[   46.438149][ T3822] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.444669][ T3822] EXT4-fs: Ignoring removed bh option
[   46.459959][ T3822] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   46.473098][ T3822] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   46.543910][ T3822] EXT4-fs (loop4): 1 truncate cleaned up
[   46.550555][ T3822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.581691][ T3812] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.669559][ T3812] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.729552][ T3829] xt_hashlimit: overflow, try lower: 2/0
[   46.745714][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.749093][ T3832] FAULT_INJECTION: forcing a failure.
[   46.749093][ T3832] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.767873][ T3832] CPU: 1 UID: 0 PID: 3832 Comm: syz.2.85 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   46.767921][ T3832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   46.767937][ T3832] Call Trace:
[   46.767944][ T3832]  <TASK>
[   46.767951][ T3832]  __dump_stack+0x1d/0x30
[   46.767980][ T3832]  dump_stack_lvl+0xe8/0x140
[   46.768003][ T3832]  dump_stack+0x15/0x1b
[   46.768024][ T3832]  should_fail_ex+0x265/0x280
[   46.768116][ T3832]  should_fail+0xb/0x20
[   46.768143][ T3832]  should_fail_usercopy+0x1a/0x20
[   46.768239][ T3832]  _copy_from_iter+0xcf/0xe40
[   46.768275][ T3832]  ? rep_movs_alternative+0x4a/0x90
[   46.768370][ T3832]  ? _copy_from_iter+0x16d/0xe40
[   46.768406][ T3832]  copy_page_from_iter+0x178/0x2a0
[   46.768448][ T3832]  skb_copy_datagram_from_iter+0x232/0x490
[   46.768524][ T3832]  tun_get_user+0xa0e/0x2500
[   46.768561][ T3832]  ? ref_tracker_alloc+0x1f2/0x2f0
[   46.768598][ T3832]  ? selinux_file_permission+0x1e4/0x320
[   46.768663][ T3832]  tun_chr_write_iter+0x15e/0x210
[   46.768719][ T3832]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   46.768746][ T3832]  vfs_write+0x4a0/0x8e0
[   46.768834][ T3832]  ksys_write+0xda/0x1a0
[   46.768907][ T3832]  __x64_sys_write+0x40/0x50
[   46.768948][ T3832]  x64_sys_call+0x2cdd/0x2fb0
[   46.768976][ T3832]  do_syscall_64+0xd2/0x200
[   46.769037][ T3832]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   46.769063][ T3832]  ? clear_bhb_loop+0x40/0x90
[   46.769099][ T3832]  ? clear_bhb_loop+0x40/0x90
[   46.769123][ T3832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.769206][ T3832] RIP: 0033:0x7f3ed672e9a9
[   46.769226][ T3832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.769247][ T3832] RSP: 002b:00007f3ed4d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   46.769271][ T3832] RAX: ffffffffffffffda RBX: 00007f3ed6955fa0 RCX: 00007f3ed672e9a9
[   46.769288][ T3832] RDX: 000000000000fdef RSI: 0000200000000300 RDI: 00000000000000c8
[   46.769303][ T3832] RBP: 00007f3ed4d97090 R08: 0000000000000000 R09: 0000000000000000
[   46.769319][ T3832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   46.769355][ T3832] R13: 0000000000000000 R14: 00007f3ed6955fa0 R15: 00007ffde49a95d8
[   46.769377][ T3832]  </TASK>
[   47.038454][ T3833] loop1: detected capacity change from 0 to 8192
[   47.081500][ T3837] netlink: 'syz.2.86': attribute type 4 has an invalid length.
[   47.113915][ T3840] loop3: detected capacity change from 0 to 1024
[   47.139932][ T3840] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.184714][ T3847] xt_CT: You must specify a L4 protocol and not use inversions on it
[   47.196852][ T3849] loop2: detected capacity change from 0 to 1024
[   47.207781][ T3840] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.87: Allocating blocks 449-513 which overlap fs metadata
[   47.230671][ T3849] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.248018][ T3839] EXT4-fs (loop3): pa ffff8881069de700: logic 48, phys. 177, len 21
[   47.256112][ T3839] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   47.282501][ T3849] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.90: Allocating blocks 449-513 which overlap fs metadata
[   47.339864][ T3845] EXT4-fs (loop2): pa ffff8881069de690: logic 48, phys. 177, len 21
[   47.348111][ T3845] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   47.369932][ T3860] loop1: detected capacity change from 0 to 2048
[   47.377704][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.385261][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.429100][ T3525] Alternate GPT is invalid, using primary GPT.
[   47.435458][ T3525]  loop1: p1 p2 p3
[   47.462154][ T3860] Alternate GPT is invalid, using primary GPT.
[   47.468604][ T3860]  loop1: p1 p2 p3
[   47.525662][ T3870] FAULT_INJECTION: forcing a failure.
[   47.525662][ T3870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   47.538910][ T3870] CPU: 1 UID: 0 PID: 3870 Comm: syz.3.97 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   47.538948][ T3870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   47.538964][ T3870] Call Trace:
[   47.538973][ T3870]  <TASK>
[   47.538982][ T3870]  __dump_stack+0x1d/0x30
[   47.539009][ T3870]  dump_stack_lvl+0xe8/0x140
[   47.539035][ T3870]  dump_stack+0x15/0x1b
[   47.539115][ T3870]  should_fail_ex+0x265/0x280
[   47.539154][ T3870]  should_fail+0xb/0x20
[   47.539187][ T3870]  should_fail_usercopy+0x1a/0x20
[   47.539260][ T3870]  strncpy_from_user+0x25/0x230
[   47.539288][ T3870]  ? kmem_cache_alloc_noprof+0x186/0x310
[   47.539314][ T3870]  ? getname_flags+0x80/0x3b0
[   47.539381][ T3870]  getname_flags+0xae/0x3b0
[   47.539407][ T3870]  __se_sys_move_mount+0x1d7/0x440
[   47.539454][ T3870]  __x64_sys_move_mount+0x67/0x80
[   47.539576][ T3870]  x64_sys_call+0x1f00/0x2fb0
[   47.539731][ T3870]  do_syscall_64+0xd2/0x200
[   47.539764][ T3870]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   47.539798][ T3870]  ? clear_bhb_loop+0x40/0x90
[   47.539826][ T3870]  ? clear_bhb_loop+0x40/0x90
[   47.539933][ T3870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.539962][ T3870] RIP: 0033:0x7f84c3bae9a9
[   47.539977][ T3870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.539997][ T3870] RSP: 002b:00007f84c2217038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   47.540021][ T3870] RAX: ffffffffffffffda RBX: 00007f84c3dd5fa0 RCX: 00007f84c3bae9a9
[   47.540038][ T3870] RDX: ffffffffffffff9c RSI: 0000200000000140 RDI: 0000000000000004
[   47.540055][ T3870] RBP: 00007f84c2217090 R08: 0000000000000000 R09: 0000000000000000
[   47.540140][ T3870] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[   47.540153][ T3870] R13: 0000000000000000 R14: 00007f84c3dd5fa0 R15: 00007fff6d64d988
[   47.540171][ T3870]  </TASK>
[   47.779483][ T3880] netlink: 'syz.3.101': attribute type 4 has an invalid length.
[   47.791091][ T3880] netlink: 'syz.3.101': attribute type 4 has an invalid length.
[   47.828956][ T3883] loop3: detected capacity change from 0 to 1024
[   47.859101][ T3883] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.897324][ T3883] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.104: Allocating blocks 449-513 which overlap fs metadata
[   47.919855][ T3883] EXT4-fs (loop3): pa ffff8881069de700: logic 48, phys. 177, len 21
[   47.928213][ T3883] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   47.955335][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.115505][ T3910] __nla_validate_parse: 2 callbacks suppressed
[   48.115524][ T3910] netlink: 1204 bytes leftover after parsing attributes in process `syz.3.107'.
[   48.140213][ T3917] ALSA: seq fatal error: cannot create timer (-22)
[   48.148460][ T3913] Q±6ã×\b‹¡Y­4��: renamed from lo (while UP)
[   48.158921][ T3917] FAULT_INJECTION: forcing a failure.
[   48.158921][ T3917] name failslab, interval 1, probability 0, space 0, times 0
[   48.171768][ T3917] CPU: 0 UID: 0 PID: 3917 Comm: syz.2.112 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   48.171796][ T3917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   48.171810][ T3917] Call Trace:
[   48.171818][ T3917]  <TASK>
[   48.171827][ T3917]  __dump_stack+0x1d/0x30
[   48.171853][ T3917]  dump_stack_lvl+0xe8/0x140
[   48.171916][ T3917]  dump_stack+0x15/0x1b
[   48.171938][ T3917]  should_fail_ex+0x265/0x280
[   48.171974][ T3917]  ? snd_timer_instance_new+0x31/0x160
[   48.172026][ T3917]  should_failslab+0x8c/0xb0
[   48.172055][ T3917]  __kmalloc_cache_noprof+0x4c/0x320
[   48.172109][ T3917]  snd_timer_instance_new+0x31/0x160
[   48.172169][ T3917]  snd_seq_timer_open+0x12f/0x330
[   48.172211][ T3917]  ? snd_seq_timer_defaults+0x1c1/0x1e0
[   48.172311][ T3917]  snd_seq_queue_timer_open+0xcd/0xe0
[   48.172494][ T3917]  snd_seq_ioctl_set_queue_timer+0x14b/0x170
[   48.172524][ T3917]  snd_seq_ioctl+0x17a/0x2e0
[   48.172552][ T3917]  ? __pfx_snd_seq_ioctl+0x10/0x10
[   48.172573][ T3917]  __se_sys_ioctl+0xce/0x140
[   48.172624][ T3917]  __x64_sys_ioctl+0x43/0x50
[   48.172668][ T3917]  x64_sys_call+0x19a8/0x2fb0
[   48.172695][ T3917]  do_syscall_64+0xd2/0x200
[   48.172718][ T3917]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.172825][ T3917]  ? clear_bhb_loop+0x40/0x90
[   48.172919][ T3917]  ? clear_bhb_loop+0x40/0x90
[   48.172946][ T3917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.172972][ T3917] RIP: 0033:0x7f3ed672e9a9
[   48.173072][ T3917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.173096][ T3917] RSP: 002b:00007f3ed4d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.173119][ T3917] RAX: ffffffffffffffda RBX: 00007f3ed6955fa0 RCX: 00007f3ed672e9a9
[   48.173166][ T3917] RDX: 0000200000000280 RSI: 0000000040605346 RDI: 0000000000000004
[   48.173210][ T3917] RBP: 00007f3ed4d97090 R08: 0000000000000000 R09: 0000000000000000
[   48.173223][ T3917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.173235][ T3917] R13: 0000000000000000 R14: 00007f3ed6955fa0 R15: 00007ffde49a95d8
[   48.173258][ T3917]  </TASK>
[   48.549259][ T3926] loop1: detected capacity change from 0 to 1024
[   48.595328][ T3942] process 'syz.0.114' launched '/dev/fd/7' with NULL argv: empty string added
[   48.607305][ T3926] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.609330][ T3942] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   48.627295][ T3942] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   48.705422][ T3954] smc: net device bond0 applied user defined pnetid SYZ0
[   48.952676][ T3977] FAULT_INJECTION: forcing a failure.
[   48.952676][ T3977] name failslab, interval 1, probability 0, space 0, times 0
[   48.965507][ T3977] CPU: 0 UID: 0 PID: 3977 Comm: syz.0.119 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   48.965536][ T3977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   48.965549][ T3977] Call Trace:
[   48.965557][ T3977]  <TASK>
[   48.965566][ T3977]  __dump_stack+0x1d/0x30
[   48.965648][ T3977]  dump_stack_lvl+0xe8/0x140
[   48.965672][ T3977]  dump_stack+0x15/0x1b
[   48.965688][ T3977]  should_fail_ex+0x265/0x280
[   48.965717][ T3977]  ? flow_change+0x1bf/0xc80
[   48.965782][ T3977]  should_failslab+0x8c/0xb0
[   48.965806][ T3977]  __kmalloc_cache_noprof+0x4c/0x320
[   48.965844][ T3977]  flow_change+0x1bf/0xc80
[   48.965917][ T3977]  ? __pfx_flow_change+0x10/0x10
[   48.965987][ T3977]  tc_new_tfilter+0xde1/0x10a0
[   48.966020][ T3977]  ? __pfx_tc_new_tfilter+0x10/0x10
[   48.966144][ T3977]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   48.966178][ T3977]  netlink_rcv_skb+0x120/0x220
[   48.966278][ T3977]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   48.966314][ T3977]  rtnetlink_rcv+0x1c/0x30
[   48.966336][ T3977]  netlink_unicast+0x5a5/0x680
[   48.966369][ T3977]  netlink_sendmsg+0x58b/0x6b0
[   48.966389][ T3977]  ? __pfx_netlink_sendmsg+0x10/0x10
[   48.966432][ T3977]  __sock_sendmsg+0x142/0x180
[   48.966481][ T3977]  ____sys_sendmsg+0x31e/0x4e0
[   48.966527][ T3977]  ___sys_sendmsg+0x17b/0x1d0
[   48.966625][ T3977]  __x64_sys_sendmsg+0xd4/0x160
[   48.966664][ T3977]  x64_sys_call+0x2999/0x2fb0
[   48.966690][ T3977]  do_syscall_64+0xd2/0x200
[   48.966708][ T3977]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   48.966862][ T3977]  ? clear_bhb_loop+0x40/0x90
[   48.966891][ T3977]  ? clear_bhb_loop+0x40/0x90
[   48.966964][ T3977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.966992][ T3977] RIP: 0033:0x7f75e0f2e9a9
[   48.967012][ T3977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.967035][ T3977] RSP: 002b:00007f75df597038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.967068][ T3977] RAX: ffffffffffffffda RBX: 00007f75e1155fa0 RCX: 00007f75e0f2e9a9
[   48.967085][ T3977] RDX: 0000000020040054 RSI: 0000200000006040 RDI: 0000000000000004
[   48.967142][ T3977] RBP: 00007f75df597090 R08: 0000000000000000 R09: 0000000000000000
[   48.967154][ T3977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.967169][ T3977] R13: 0000000000000000 R14: 00007f75e1155fa0 R15: 00007ffd0b717058
[   48.967192][ T3977]  </TASK>
[   49.230235][   T29] kauditd_printk_skb: 315 callbacks suppressed
[   49.230268][   T29] audit: type=1400 audit(1752962362.550:711): avc:  denied  { unmount } for  pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   49.273786][ T3988] loop2: detected capacity change from 0 to 1024
[   49.341770][ T3997] loop3: detected capacity change from 0 to 2048
[   49.349433][   T29] audit: type=1326 audit(1752962362.650:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   49.372996][   T29] audit: type=1326 audit(1752962362.650:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=324 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   49.396256][   T29] audit: type=1326 audit(1752962362.650:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   49.419571][   T29] audit: type=1326 audit(1752962362.650:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   49.442909][   T29] audit: type=1326 audit(1752962362.650:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f84c3bae9e3 code=0x7ffc0000
[   49.451797][ T4002] x_tables: duplicate underflow at hook 2
[   49.465973][   T29] audit: type=1326 audit(1752962362.660:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f84c3bad45f code=0x7ffc0000
[   49.494787][   T29] audit: type=1326 audit(1752962362.660:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f84c3baea37 code=0x7ffc0000
[   49.518070][   T29] audit: type=1326 audit(1752962362.660:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84c3bad310 code=0x7ffc0000
[   49.541444][   T29] audit: type=1326 audit(1752962362.660:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3995 comm="syz.3.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f84c3bae5ab code=0x7ffc0000
[   49.575643][ T3997] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.590956][ T3988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.623145][ T3997] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.650790][ T3988] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.120: Allocating blocks 449-513 which overlap fs metadata
[   49.679370][ T4018] sch_fq: defrate 4294967295 ignored.
[   49.690804][ T3987] EXT4-fs (loop2): pa ffff888106a77150: logic 48, phys. 177, len 21
[   49.698896][ T3987] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   49.794819][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.841957][ T4027] loop2: detected capacity change from 0 to 1024
[   49.858911][ T4027] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.886402][ T4027] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.127: Allocating blocks 449-513 which overlap fs metadata
[   49.909747][ T4026] EXT4-fs (loop2): pa ffff8881069de770: logic 48, phys. 177, len 21
[   49.917856][ T4026] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   49.980617][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.088795][ T4053] netlink: 348 bytes leftover after parsing attributes in process `syz.2.131'.
[   50.314610][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.387190][ T4083] loop3: detected capacity change from 0 to 128
[   50.494615][ T4094] loop1: detected capacity change from 0 to 1024
[   50.542950][ T4094] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.611663][ T4099] loop3: detected capacity change from 0 to 512
[   50.750454][ T4103] smc: net device bond0 erased user defined pnetid SYZ0
[   50.790280][ T4106] netlink: 348 bytes leftover after parsing attributes in process `syz.2.144'.
[   50.846870][ T4109] FAULT_INJECTION: forcing a failure.
[   50.846870][ T4109] name failslab, interval 1, probability 0, space 0, times 0
[   50.859660][ T4109] CPU: 0 UID: 0 PID: 4109 Comm: syz.2.145 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   50.859699][ T4109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.859714][ T4109] Call Trace:
[   50.859766][ T4109]  <TASK>
[   50.859775][ T4109]  __dump_stack+0x1d/0x30
[   50.859797][ T4109]  dump_stack_lvl+0xe8/0x140
[   50.859815][ T4109]  dump_stack+0x15/0x1b
[   50.859867][ T4109]  should_fail_ex+0x265/0x280
[   50.859902][ T4109]  ? sctp_add_bind_addr+0x71/0x1e0
[   50.860029][ T4109]  should_failslab+0x8c/0xb0
[   50.860055][ T4109]  __kmalloc_cache_noprof+0x4c/0x320
[   50.860089][ T4109]  sctp_add_bind_addr+0x71/0x1e0
[   50.860132][ T4109]  sctp_copy_local_addr_list+0x199/0x220
[   50.860157][ T4109]  sctp_copy_one_addr+0x7f/0x280
[   50.860221][ T4109]  sctp_bind_addr_copy+0x79/0x290
[   50.860248][ T4109]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[   50.860287][ T4109]  sctp_connect_new_asoc+0x1c3/0x3a0
[   50.860374][ T4109]  sctp_sendmsg+0xf10/0x18d0
[   50.860485][ T4109]  ? selinux_socket_sendmsg+0x161/0x1b0
[   50.860524][ T4109]  ? __pfx_sctp_sendmsg+0x10/0x10
[   50.860556][ T4109]  inet_sendmsg+0xc5/0xd0
[   50.860592][ T4109]  __sock_sendmsg+0x102/0x180
[   50.860623][ T4109]  ____sys_sendmsg+0x345/0x4e0
[   50.860664][ T4109]  ___sys_sendmsg+0x17b/0x1d0
[   50.860796][ T4109]  __sys_sendmmsg+0x178/0x300
[   50.860843][ T4109]  __x64_sys_sendmmsg+0x57/0x70
[   50.860911][ T4109]  x64_sys_call+0x2f2f/0x2fb0
[   50.860995][ T4109]  do_syscall_64+0xd2/0x200
[   50.861013][ T4109]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.861104][ T4109]  ? clear_bhb_loop+0x40/0x90
[   50.861131][ T4109]  ? clear_bhb_loop+0x40/0x90
[   50.861159][ T4109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.861185][ T4109] RIP: 0033:0x7f3ed672e9a9
[   50.861204][ T4109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.861229][ T4109] RSP: 002b:00007f3ed4d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   50.861247][ T4109] RAX: ffffffffffffffda RBX: 00007f3ed6955fa0 RCX: 00007f3ed672e9a9
[   50.861259][ T4109] RDX: 0000000000000002 RSI: 0000200000000c80 RDI: 0000000000000006
[   50.861270][ T4109] RBP: 00007f3ed4d97090 R08: 0000000000000000 R09: 0000000000000000
[   50.861282][ T4109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   50.861297][ T4109] R13: 0000000000000000 R14: 00007f3ed6955fa0 R15: 00007ffde49a95d8
[   50.861331][ T4109]  </TASK>
[   51.386458][ T4117] netlink: 'syz.0.148': attribute type 10 has an invalid length.
[   51.420333][ T4117] team0: Failed to send options change via netlink (err -105)
[   51.427910][ T4117] team0: Port device dummy0 added
[   51.567466][ T4126] netlink: 'syz.0.152': attribute type 4 has an invalid length.
[   51.580667][ T4126] netlink: 'syz.0.152': attribute type 4 has an invalid length.
[   51.684080][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.753115][ T4136] loop2: detected capacity change from 0 to 2048
[   51.763168][ T4140] netlink: 16 bytes leftover after parsing attributes in process `syz.0.158'.
[   51.774841][ T4140] bridge0: entered promiscuous mode
[   51.782026][ T4140] bridge0: port 3(macvlan2) entered blocking state
[   51.782557][ T4138] netlink: 348 bytes leftover after parsing attributes in process `syz.1.155'.
[   51.788683][ T4140] bridge0: port 3(macvlan2) entered disabled state
[   51.790494][ T4140] macvlan2: entered allmulticast mode
[   51.809798][ T4140] bridge0: entered allmulticast mode
[   51.816253][ T4136] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.831970][ T4140] macvlan2: left allmulticast mode
[   51.837242][ T4140] bridge0: left allmulticast mode
[   51.840487][ T4146] loop1: detected capacity change from 0 to 164
[   51.853943][ T4146] ISOFS: Unable to identify CD-ROM format.
[   51.861344][ T4140] bridge0: left promiscuous mode
[   51.862077][ T4146] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.886183][ T4146] batman_adv: batadv0: Adding interface: ip6gretap1
[   51.892971][ T4146] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   51.918729][ T4146] batman_adv: batadv0: Interface activated: ip6gretap1
[   51.940641][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.030120][ T4156] netlink: 'syz.1.163': attribute type 4 has an invalid length.
[   52.039460][ T4153] loop3: detected capacity change from 0 to 1024
[   52.051202][ T4154] hub 2-0:1.0: USB hub found
[   52.058995][ T4153] EXT4-fs: Ignoring removed orlov option
[   52.062096][ T4154] hub 2-0:1.0: 8 ports detected
[   52.070606][ T4156] netlink: 'syz.1.163': attribute type 4 has an invalid length.
[   52.090213][ T4153] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.116415][ T4153] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   52.154797][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.226113][ T4169] FAULT_INJECTION: forcing a failure.
[   52.226113][ T4169] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   52.241910][ T4169] CPU: 0 UID: 0 PID: 4169 Comm: syz.0.167 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   52.241939][ T4169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   52.241951][ T4169] Call Trace:
[   52.241956][ T4169]  <TASK>
[   52.241963][ T4169]  __dump_stack+0x1d/0x30
[   52.242053][ T4169]  dump_stack_lvl+0xe8/0x140
[   52.242072][ T4169]  dump_stack+0x15/0x1b
[   52.242122][ T4169]  should_fail_ex+0x265/0x280
[   52.242170][ T4169]  should_fail_alloc_page+0xf2/0x100
[   52.242260][ T4169]  __alloc_frozen_pages_noprof+0xff/0x360
[   52.242332][ T4169]  alloc_pages_mpol+0xb3/0x250
[   52.242375][ T4169]  alloc_pages_noprof+0x90/0x130
[   52.242412][ T4169]  get_zeroed_page_noprof+0x1a/0x40
[   52.242520][ T4169]  simple_transaction_get+0x4c/0x130
[   52.242577][ T4169]  selinux_transaction_write+0x9d/0x110
[   52.242612][ T4169]  ? __pfx_selinux_transaction_write+0x10/0x10
[   52.242669][ T4169]  vfs_write+0x266/0x8e0
[   52.242707][ T4169]  ? __rcu_read_unlock+0x4f/0x70
[   52.242730][ T4169]  ? __fget_files+0x184/0x1c0
[   52.242750][ T4169]  ksys_write+0xda/0x1a0
[   52.242840][ T4169]  __x64_sys_write+0x40/0x50
[   52.242879][ T4169]  x64_sys_call+0x2cdd/0x2fb0
[   52.242905][ T4169]  do_syscall_64+0xd2/0x200
[   52.242923][ T4169]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   52.242997][ T4169]  ? clear_bhb_loop+0x40/0x90
[   52.243097][ T4169]  ? clear_bhb_loop+0x40/0x90
[   52.243243][ T4169]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.243270][ T4169] RIP: 0033:0x7f75e0f2e9a9
[   52.243288][ T4169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.243311][ T4169] RSP: 002b:00007f75df597038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   52.243331][ T4169] RAX: ffffffffffffffda RBX: 00007f75e1155fa0 RCX: 00007f75e0f2e9a9
[   52.243343][ T4169] RDX: 000000000000005f RSI: 0000200000000580 RDI: 0000000000000006
[   52.243355][ T4169] RBP: 00007f75df597090 R08: 0000000000000000 R09: 0000000000000000
[   52.243395][ T4169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.243410][ T4169] R13: 0000000000000000 R14: 00007f75e1155fa0 R15: 00007ffd0b717058
[   52.243471][ T4169]  </TASK>
[   52.633072][ T4180] loop3: detected capacity change from 0 to 1024
[   52.670190][ T4180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.699982][ T4180] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.171: Allocating blocks 449-513 which overlap fs metadata
[   52.722455][ T4180] EXT4-fs (loop3): pa ffff8881069de700: logic 48, phys. 177, len 21
[   52.730565][ T4180] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   52.760973][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.870508][ T4188] netlink: 'syz.2.174': attribute type 4 has an invalid length.
[   52.878681][ T4188] netlink: 'syz.2.174': attribute type 4 has an invalid length.
[   52.935677][ T4192] netlink: 8 bytes leftover after parsing attributes in process `syz.3.175'.
[   53.945934][ T4208] loop3: detected capacity change from 0 to 2048
[   54.029326][ T4208] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.050543][ T4208] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.202849][ T4221] loop3: detected capacity change from 0 to 1024
[   54.207062][ T4216] loop4: detected capacity change from 0 to 1024
[   54.225290][ T4218] netlink: 16 bytes leftover after parsing attributes in process `syz.2.184'.
[   54.229748][ T4216] EXT4-fs: dax option not supported
[   54.240582][   T29] kauditd_printk_skb: 271 callbacks suppressed
[   54.240593][   T29] audit: type=1326 audit(1752962367.560:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.270162][   T29] audit: type=1326 audit(1752962367.560:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.293708][   T29] audit: type=1326 audit(1752962367.560:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.316956][   T29] audit: type=1326 audit(1752962367.560:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.340223][   T29] audit: type=1326 audit(1752962367.560:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.363515][   T29] audit: type=1326 audit(1752962367.560:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.391208][   T29] audit: type=1326 audit(1752962367.560:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.414501][   T29] audit: type=1326 audit(1752962367.560:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.422640][ T4221] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.437864][   T29] audit: type=1326 audit(1752962367.560:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.470460][ T4221] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.185: Allocating blocks 449-513 which overlap fs metadata
[   54.473233][   T29] audit: type=1326 audit(1752962367.560:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4217 comm="syz.2.184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ed672e9a9 code=0x7ffc0000
[   54.510685][ T4226] netlink: 'syz.1.186': attribute type 4 has an invalid length.
[   54.523409][ T4223] netlink: 'syz.1.186': attribute type 4 has an invalid length.
[   54.532842][ T4221] EXT4-fs (loop3): pa ffff8881069de700: logic 48, phys. 177, len 21
[   54.540930][ T4221] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   54.590596][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.599939][ T4231] loop2: detected capacity change from 0 to 1024
[   54.617083][ T4231] EXT4-fs: dax option not supported
[   54.639948][ T4236] capability: warning: `syz.0.187' uses deprecated v2 capabilities in a way that may be insecure
[   54.643966][ T4235] netlink: 16 bytes leftover after parsing attributes in process `syz.3.190'.
[   54.671077][ T4231] netlink: 24 bytes leftover after parsing attributes in process `syz.2.188'.
[   54.726963][ T4239] loop4: detected capacity change from 0 to 2048
[   54.751056][ T4242] loop1: detected capacity change from 0 to 1024
[   54.787796][ T4242] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.194: Allocating blocks 449-513 which overlap fs metadata
[   54.818846][ T4231] netlink: 12 bytes leftover after parsing attributes in process `syz.2.188'.
[   54.896456][ T4241] EXT4-fs (loop1): pa ffff8881069de700: logic 48, phys. 177, len 21
[   54.904632][ T4241] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   55.037015][ T4256] netlink: 16 bytes leftover after parsing attributes in process `syz.1.196'.
[   55.062649][    C0] hrtimer: interrupt took 47567 ns
[   55.136483][ T4266] netlink: 'syz.2.200': attribute type 4 has an invalid length.
[   55.188782][ T4272] loop4: detected capacity change from 0 to 1024
[   55.226763][ T4272] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.201: Allocating blocks 449-513 which overlap fs metadata
[   55.267510][ T4272] EXT4-fs (loop4): pa ffff888106a77310: logic 48, phys. 177, len 21
[   55.275616][ T4272] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   55.324417][ T4280] loop2: detected capacity change from 0 to 2048
[   55.467053][ T4288] loop2: detected capacity change from 0 to 1024
[   55.513337][ T4288] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.207: Allocating blocks 449-513 which overlap fs metadata
[   55.606221][ T4287] EXT4-fs (loop2): pa ffff8881069de770: logic 48, phys. 177, len 21
[   55.614373][ T4287] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   55.648779][ T4296] team0: Port device dummy0 removed
[   55.655369][ T4298] netlink: 16 bytes leftover after parsing attributes in process `syz.4.211'.
[   55.670066][ T4296] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   55.725863][ T4301] loop1: detected capacity change from 0 to 128
[   55.770975][ T4301] syz.1.213: attempt to access beyond end of device
[   55.770975][ T4301] loop1: rw=0, sector=97, nr_sectors = 120 limit=128
[   55.829850][   T31] kworker/u8:1: attempt to access beyond end of device
[   55.829850][   T31] loop1: rw=1, sector=217, nr_sectors = 824 limit=128
[   55.853365][ T4310] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.217'.
[   55.887658][ T4310] netlink: zone id is out of range
[   55.893063][ T4310] netlink: zone id is out of range
[   55.898263][ T4310] netlink: zone id is out of range
[   55.903576][ T4310] netlink: zone id is out of range
[   55.910674][ T4310] netlink: zone id is out of range
[   55.931557][ T4312] loop2: detected capacity change from 0 to 1024
[   55.953388][ T4311] SELinux:  Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped).
[   55.963299][ T4310] netlink: del zone limit has 8 unknown bytes
[   55.984619][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   55.994603][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[   56.004329][ T4312] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   56.019637][ T4312] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.212: unexpected bad inode w/o EXT4_IGET_BAD
[   56.033292][ T4312] EXT4-fs (loop2): no journal found
[   57.903959][ T4318] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.881330][ T4323] validate_nla: 3 callbacks suppressed
[   58.881347][ T4323] netlink: 'syz.1.220': attribute type 1 has an invalid length.
[   59.012890][ T4318] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.064039][ T4333] loop2: detected capacity change from 0 to 2048
[   59.099948][ T4342] loop1: detected capacity change from 0 to 512
[   59.119904][ T4342] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.132557][ T4318] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.169407][ T4342] xt_CT: No such helper "pptp"
[   59.206048][ T4318] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.236345][ T4353] netlink: 'syz.2.229': attribute type 4 has an invalid length.
[   59.273355][ T4353] netlink: 'syz.2.229': attribute type 4 has an invalid length.
[   59.285666][ T4359] netlink: 8 bytes leftover after parsing attributes in process `syz.0.231'.
[   59.306986][ T4318] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.321582][ T4318] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.334592][ T4318] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.348888][ T4365] loop2: detected capacity change from 0 to 1024
[   59.360341][ T4318] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.430024][ T4374] netlink: 16 bytes leftover after parsing attributes in process `syz.3.235'.
[   59.440583][   T29] kauditd_printk_skb: 544 callbacks suppressed
[   59.440600][   T29] audit: type=1400 audit(1752962372.760:1546): avc:  denied  { sqpoll } for  pid=4363 comm="syz.0.233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   59.450885][ T4365] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.234: Allocating blocks 449-513 which overlap fs metadata
[   59.556873][ T4365] EXT4-fs (loop2): pa ffff888106a77310: logic 48, phys. 177, len 21
[   59.565044][ T4365] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   59.614261][   T29] audit: type=1400 audit(1752962372.920:1547): avc:  denied  { accept } for  pid=4388 comm="syz.2.237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   59.630918][ T4389] SELinux:  policydb magic number 0x40 does not match expected magic number 0xf97cff8c
[   59.633798][   T29] audit: type=1400 audit(1752962372.930:1548): avc:  denied  { append } for  pid=4388 comm="syz.2.237" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   59.645349][ T4389] SELinux: failed to load policy
[   59.690688][   T29] audit: type=1400 audit(1752962372.930:1549): avc:  denied  { load_policy } for  pid=4388 comm="syz.2.237" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   59.754152][ T4396] wg2: entered promiscuous mode
[   59.759445][ T4396] wg2: entered allmulticast mode
[   59.769577][ T4399] FAULT_INJECTION: forcing a failure.
[   59.769577][ T4399] name failslab, interval 1, probability 0, space 0, times 0
[   59.782495][ T4399] CPU: 1 UID: 0 PID: 4399 Comm: syz.2.239 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   59.782533][ T4399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   59.782549][ T4399] Call Trace:
[   59.782555][ T4399]  <TASK>
[   59.782561][ T4399]  __dump_stack+0x1d/0x30
[   59.782584][ T4399]  dump_stack_lvl+0xe8/0x140
[   59.782605][ T4399]  dump_stack+0x15/0x1b
[   59.782622][ T4399]  should_fail_ex+0x265/0x280
[   59.782653][ T4399]  should_failslab+0x8c/0xb0
[   59.782682][ T4399]  kmem_cache_alloc_noprof+0x50/0x310
[   59.782710][ T4399]  ? vm_area_alloc+0x2c/0xb0
[   59.782741][ T4399]  vm_area_alloc+0x2c/0xb0
[   59.782768][ T4399]  mmap_region+0xa43/0x1580
[   59.782820][ T4399]  do_mmap+0x9b3/0xbe0
[   59.782855][ T4399]  vm_mmap_pgoff+0x17a/0x2e0
[   59.782886][ T4399]  ksys_mmap_pgoff+0xc2/0x310
[   59.782917][ T4399]  ? __x64_sys_mmap+0x49/0x70
[   59.782941][ T4399]  x64_sys_call+0x1602/0x2fb0
[   59.782964][ T4399]  do_syscall_64+0xd2/0x200
[   59.782983][ T4399]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   59.783011][ T4399]  ? clear_bhb_loop+0x40/0x90
[   59.783033][ T4399]  ? clear_bhb_loop+0x40/0x90
[   59.783056][ T4399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.783078][ T4399] RIP: 0033:0x7f3ed672e9e3
[   59.783093][ T4399] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[   59.783112][ T4399] RSP: 002b:00007f3ed4d96e18 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   59.783131][ T4399] RAX: ffffffffffffffda RBX: 000000000000056d RCX: 00007f3ed672e9e3
[   59.783143][ T4399] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[   59.783156][ T4399] RBP: 0000200000003782 R08: 00000000ffffffff R09: 0000000000000000
[   59.783169][ T4399] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000007
[   59.783181][ T4399] R13: 00007f3ed4d96ef0 R14: 00007f3ed4d96eb0 R15: 0000200000000680
[   59.783201][ T4399]  </TASK>
[   60.079155][ T4416] loop2: detected capacity change from 0 to 764
[   60.086507][ T4416] rock: directory entry would overflow storage
[   60.092765][ T4416] rock: sig=0x4654, size=5, remaining=4
[   60.116204][ T4420] loop3: detected capacity change from 0 to 2048
[   60.117344][   T29] audit: type=1326 audit(1752962373.420:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4419 comm="syz.3.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   60.145991][   T29] audit: type=1326 audit(1752962373.430:1551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4419 comm="syz.3.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=324 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   60.146057][   T29] audit: type=1326 audit(1752962373.430:1552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4419 comm="syz.3.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   60.192860][   T29] audit: type=1326 audit(1752962373.430:1553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4419 comm="syz.3.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   60.207431][ T4416] rock: directory entry would overflow storage
[   60.216281][   T29] audit: type=1326 audit(1752962373.430:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4419 comm="syz.3.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f84c3bae9e3 code=0x7ffc0000
[   60.222481][ T4416] rock: sig=0x4f50, size=4, remaining=3
[   60.245705][   T29] audit: type=1326 audit(1752962373.430:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4419 comm="syz.3.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f84c3bad45f code=0x7ffc0000
[   60.274554][ T4416] iso9660: Corrupted directory entry in block 4 of inode 1792
[   60.374388][ T4434] netlink: 16 bytes leftover after parsing attributes in process `syz.1.246'.
[   61.166007][ T4457] loop3: detected capacity change from 0 to 2048
[   61.314458][ T4462] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.321870][ T4462] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.329663][ T4468] loop4: detected capacity change from 0 to 1024
[   61.410081][ T4468] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.258: Allocating blocks 449-513 which overlap fs metadata
[   61.419682][ T4462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   61.436084][ T4462] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   61.485578][ T4462] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   61.494761][ T4462] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   61.503878][ T4462] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   61.512975][ T4462] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   61.562084][ T4464] EXT4-fs (loop4): pa ffff888106a77380: logic 48, phys. 177, len 21
[   61.570411][ T4464] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   61.671002][ T4483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.261'.
[   62.153744][ T4520] netlink: 'syz.0.275': attribute type 4 has an invalid length.
[   62.156707][ T4520] netlink: 'syz.0.275': attribute type 4 has an invalid length.
[   62.163172][ T4519] netlink: 348 bytes leftover after parsing attributes in process `syz.1.274'.
[   62.231091][ T4527] loop2: detected capacity change from 0 to 2048
[   62.364272][ T4534] loop3: detected capacity change from 0 to 1024
[   62.405244][ T4534] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.280: Allocating blocks 449-513 which overlap fs metadata
[   62.409380][ T4534] EXT4-fs (loop3): pa ffff888106a772a0: logic 48, phys. 177, len 21
[   62.427396][ T4534] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   62.525088][ T4544] loop3: detected capacity change from 0 to 1024
[   62.566559][ T4544] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.282: Allocating blocks 449-513 which overlap fs metadata
[   62.575033][ T4543] EXT4-fs (loop3): pa ffff8881069de700: logic 48, phys. 177, len 21
[   62.589394][ T4543] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   62.620634][ T4550] vhci_hcd: invalid port number 96
[   62.620647][ T4550] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   62.664981][ T4552] loop1: detected capacity change from 0 to 2048
[   62.674412][ T4554] loop2: detected capacity change from 0 to 2048
[   62.774695][ T4573] netlink: 'syz.2.287': attribute type 4 has an invalid length.
[   62.775638][ T4573] netlink: 'syz.2.287': attribute type 4 has an invalid length.
[   62.908766][ T4585] loop2: detected capacity change from 0 to 2048
[   62.969786][ T4593] pim6reg1: entered promiscuous mode
[   62.969814][ T4593] pim6reg1: entered allmulticast mode
[   62.986360][ T4597] loop1: detected capacity change from 0 to 1024
[   63.046803][ T4597] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.296: Allocating blocks 449-513 which overlap fs metadata
[   63.055991][ T4596] EXT4-fs (loop1): pa ffff8881069de770: logic 48, phys. 177, len 21
[   63.074204][ T4596] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   63.149399][ T4606] netlink: 'syz.2.300': attribute type 4 has an invalid length.
[   63.150686][ T4606] netlink: 'syz.2.300': attribute type 4 has an invalid length.
[   63.269842][ T4611] loop1: detected capacity change from 0 to 2048
[   63.460699][ T4619] program syz.2.305 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   63.482597][ T4621] loop1: detected capacity change from 0 to 1024
[   63.521832][ T4621] EXT4-fs: inline encryption not supported
[   63.521920][ T4621] EXT4-fs: Ignoring removed bh option
[   63.524051][ T4621] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   64.031147][ T4636] loop1: detected capacity change from 0 to 1024
[   64.040584][ T4636] EXT4-fs: Ignoring removed orlov option
[   64.052202][ T4638] netlink: 16 bytes leftover after parsing attributes in process `syz.3.312'.
[   64.502894][ T4662] loop3: detected capacity change from 0 to 764
[   64.512787][   T29] kauditd_printk_skb: 377 callbacks suppressed
[   64.512804][   T29] audit: type=1326 audit(1752962377.830:1933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.512901][   T29] audit: type=1326 audit(1752962377.830:1934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.512936][   T29] audit: type=1326 audit(1752962377.830:1935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.512996][   T29] audit: type=1326 audit(1752962377.830:1936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84c3bad310 code=0x7ffc0000
[   64.513280][   T29] audit: type=1326 audit(1752962377.830:1937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f84c3bad310 code=0x7ffc0000
[   64.513587][   T29] audit: type=1326 audit(1752962377.830:1938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.513797][   T29] audit: type=1326 audit(1752962377.830:1939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.514208][   T29] audit: type=1326 audit(1752962377.830:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.514404][   T29] audit: type=1326 audit(1752962377.830:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.514503][   T29] audit: type=1326 audit(1752962377.830:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4661 comm="syz.3.320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   64.768479][ T4660] netdevsim netdevsim1: Direct firmware load for ÿÿÿÿ failed with error -2
[   64.987364][ T4671] loop4: detected capacity change from 0 to 512
[   65.007306][ T4671] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.047882][ T4673] loop2: detected capacity change from 0 to 2048
[   65.104061][ T4681] loop3: detected capacity change from 0 to 1024
[   65.135950][ T4689] netlink: 92 bytes leftover after parsing attributes in process `syz.0.328'.
[   65.165793][ T4689] futex_wake_op: syz.0.328 tries to shift op by -1; fix this program
[   65.172657][ T4681] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.326: Allocating blocks 449-513 which overlap fs metadata
[   65.175707][ T4671] vhci_hcd: invalid port number 96
[   65.192931][ T4671] vhci_hcd: default hub control req: 2000 vfffc i0060 l7
[   65.218422][ T4692] netlink: 24 bytes leftover after parsing attributes in process `syz.1.329'.
[   65.250432][ T4679] EXT4-fs (loop3): pa ffff8881069de7e0: logic 48, phys. 177, len 21
[   65.258690][ T4679] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   65.269595][ T4700] netlink: 'syz.4.331': attribute type 4 has an invalid length.
[   65.285416][ T4700] netlink: 'syz.4.331': attribute type 4 has an invalid length.
[   65.339956][ T4705] FAULT_INJECTION: forcing a failure.
[   65.339956][ T4705] name failslab, interval 1, probability 0, space 0, times 0
[   65.352767][ T4705] CPU: 0 UID: 0 PID: 4705 Comm: syz.4.334 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   65.352802][ T4705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.352817][ T4705] Call Trace:
[   65.352824][ T4705]  <TASK>
[   65.352831][ T4705]  __dump_stack+0x1d/0x30
[   65.352853][ T4705]  dump_stack_lvl+0xe8/0x140
[   65.352873][ T4705]  dump_stack+0x15/0x1b
[   65.352968][ T4705]  should_fail_ex+0x265/0x280
[   65.353002][ T4705]  should_failslab+0x8c/0xb0
[   65.353074][ T4705]  __kvmalloc_node_noprof+0x123/0x4e0
[   65.353110][ T4705]  ? alloc_netdev_mqs+0x73f/0xab0
[   65.353203][ T4705]  alloc_netdev_mqs+0x73f/0xab0
[   65.353246][ T4705]  rtnl_create_link+0x239/0x710
[   65.353387][ T4705]  rtnl_newlink_create+0x14c/0x620
[   65.353416][ T4705]  ? security_capable+0x83/0x90
[   65.353454][ T4705]  ? netlink_ns_capable+0x86/0xa0
[   65.353491][ T4705]  rtnl_newlink+0xf29/0x12d0
[   65.353530][ T4705]  ? css_rstat_updated+0xcd/0x5b0
[   65.353607][ T4705]  ? __memcg_slab_free_hook+0x135/0x230
[   65.353645][ T4705]  ? __kfree_skb+0x109/0x150
[   65.353682][ T4705]  ? __rcu_read_unlock+0x4f/0x70
[   65.353706][ T4705]  ? avc_has_perm_noaudit+0x1b1/0x200
[   65.353799][ T4705]  ? selinux_capable+0x1f9/0x270
[   65.353845][ T4705]  ? security_capable+0x83/0x90
[   65.353875][ T4705]  ? ns_capable+0x7d/0xb0
[   65.353895][ T4705]  ? __pfx_rtnl_newlink+0x10/0x10
[   65.353921][ T4705]  rtnetlink_rcv_msg+0x5fb/0x6d0
[   65.353952][ T4705]  netlink_rcv_skb+0x120/0x220
[   65.353999][ T4705]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   65.354035][ T4705]  rtnetlink_rcv+0x1c/0x30
[   65.354057][ T4705]  netlink_unicast+0x5a5/0x680
[   65.354096][ T4705]  netlink_sendmsg+0x58b/0x6b0
[   65.354149][ T4705]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.354172][ T4705]  __sock_sendmsg+0x142/0x180
[   65.354200][ T4705]  ____sys_sendmsg+0x31e/0x4e0
[   65.354242][ T4705]  ___sys_sendmsg+0x17b/0x1d0
[   65.354303][ T4705]  __x64_sys_sendmsg+0xd4/0x160
[   65.354348][ T4705]  x64_sys_call+0x2999/0x2fb0
[   65.354375][ T4705]  do_syscall_64+0xd2/0x200
[   65.354440][ T4705]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.354520][ T4705]  ? clear_bhb_loop+0x40/0x90
[   65.354603][ T4705]  ? clear_bhb_loop+0x40/0x90
[   65.354624][ T4705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.354644][ T4705] RIP: 0033:0x7f1a5983e9a9
[   65.354662][ T4705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.354684][ T4705] RSP: 002b:00007f1a57ea7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.354717][ T4705] RAX: ffffffffffffffda RBX: 00007f1a59a65fa0 RCX: 00007f1a5983e9a9
[   65.354810][ T4705] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000007
[   65.354824][ T4705] RBP: 00007f1a57ea7090 R08: 0000000000000000 R09: 0000000000000000
[   65.354838][ T4705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.354889][ T4705] R13: 0000000000000000 R14: 00007f1a59a65fa0 R15: 00007fff36a13988
[   65.354906][ T4705]  </TASK>
[   65.690533][ T4712] FAULT_INJECTION: forcing a failure.
[   65.690533][ T4712] name failslab, interval 1, probability 0, space 0, times 0
[   65.703307][ T4712] CPU: 1 UID: 0 PID: 4712 Comm: syz.0.335 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   65.703342][ T4712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.703355][ T4712] Call Trace:
[   65.703361][ T4712]  <TASK>
[   65.703368][ T4712]  __dump_stack+0x1d/0x30
[   65.703389][ T4712]  dump_stack_lvl+0xe8/0x140
[   65.703445][ T4712]  dump_stack+0x15/0x1b
[   65.703467][ T4712]  should_fail_ex+0x265/0x280
[   65.703511][ T4712]  should_failslab+0x8c/0xb0
[   65.703541][ T4712]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   65.703576][ T4712]  ? v9fs_session_init+0x78/0xde0
[   65.703602][ T4712]  kstrdup+0x3e/0xd0
[   65.703638][ T4712]  v9fs_session_init+0x78/0xde0
[   65.703670][ T4712]  ? obj_cgroup_charge_account+0x122/0x1a0
[   65.703701][ T4712]  ? __rcu_read_unlock+0x4f/0x70
[   65.703740][ T4712]  ? should_fail_ex+0xdb/0x280
[   65.703823][ T4712]  ? v9fs_mount+0x51/0x590
[   65.703851][ T4712]  ? should_failslab+0x8c/0xb0
[   65.703897][ T4712]  ? __kmalloc_cache_noprof+0x189/0x320
[   65.703992][ T4712]  v9fs_mount+0x67/0x590
[   65.704023][ T4712]  ? __pfx_v9fs_mount+0x10/0x10
[   65.704060][ T4712]  legacy_get_tree+0x78/0xd0
[   65.704103][ T4712]  vfs_get_tree+0x54/0x1d0
[   65.704210][ T4712]  do_new_mount+0x207/0x680
[   65.704254][ T4712]  path_mount+0x4a4/0xb20
[   65.704295][ T4712]  ? user_path_at+0x109/0x130
[   65.704380][ T4712]  __se_sys_mount+0x28f/0x2e0
[   65.704440][ T4712]  ? fput+0x8f/0xc0
[   65.704473][ T4712]  __x64_sys_mount+0x67/0x80
[   65.704554][ T4712]  x64_sys_call+0xd36/0x2fb0
[   65.704582][ T4712]  do_syscall_64+0xd2/0x200
[   65.704605][ T4712]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.704683][ T4712]  ? clear_bhb_loop+0x40/0x90
[   65.704714][ T4712]  ? clear_bhb_loop+0x40/0x90
[   65.704738][ T4712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.704809][ T4712] RIP: 0033:0x7f75e0f2e9a9
[   65.704829][ T4712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.704852][ T4712] RSP: 002b:00007f75df597038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   65.704871][ T4712] RAX: ffffffffffffffda RBX: 00007f75e1155fa0 RCX: 00007f75e0f2e9a9
[   65.704888][ T4712] RDX: 0000200000000200 RSI: 0000200000000440 RDI: 00002000000001c0
[   65.704904][ T4712] RBP: 00007f75df597090 R08: 0000200000000900 R09: 0000000000000000
[   65.704920][ T4712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.704944][ T4712] R13: 0000000000000000 R14: 00007f75e1155fa0 R15: 00007ffd0b717058
[   65.704990][ T4712]  </TASK>
[   65.705331][ T4709] loop3: detected capacity change from 0 to 1024
[   65.829107][ T4714] netem: change failed
[   65.888214][ T4718] FAULT_INJECTION: forcing a failure.
[   65.888214][ T4718] name failslab, interval 1, probability 0, space 0, times 0
[   65.915885][ T4714] loop4: detected capacity change from 0 to 512
[   65.923681][ T4718] CPU: 0 UID: 0 PID: 4718 Comm: syz.0.337 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   65.923716][ T4718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   65.923732][ T4718] Call Trace:
[   65.923815][ T4718]  <TASK>
[   65.923828][ T4718]  __dump_stack+0x1d/0x30
[   65.923860][ T4718]  dump_stack_lvl+0xe8/0x140
[   65.923887][ T4718]  dump_stack+0x15/0x1b
[   65.923911][ T4718]  should_fail_ex+0x265/0x280
[   65.923955][ T4718]  should_failslab+0x8c/0xb0
[   65.924004][ T4718]  kmem_cache_alloc_noprof+0x50/0x310
[   65.924042][ T4718]  ? audit_log_start+0x365/0x6c0
[   65.924087][ T4718]  audit_log_start+0x365/0x6c0
[   65.924166][ T4718]  audit_seccomp+0x48/0x100
[   65.924217][ T4718]  ? __seccomp_filter+0x68c/0x10d0
[   65.924249][ T4718]  __seccomp_filter+0x69d/0x10d0
[   65.924285][ T4718]  ? _raw_spin_unlock+0x26/0x50
[   65.924325][ T4718]  __secure_computing+0x82/0x150
[   65.924384][ T4718]  syscall_trace_enter+0xcf/0x1e0
[   65.924418][ T4718]  do_syscall_64+0xac/0x200
[   65.924443][ T4718]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   65.924551][ T4718]  ? clear_bhb_loop+0x40/0x90
[   65.924580][ T4718]  ? clear_bhb_loop+0x40/0x90
[   65.924612][ T4718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.924641][ T4718] RIP: 0033:0x7f75e0f2d3bc
[   65.924663][ T4718] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   65.924688][ T4718] RSP: 002b:00007f75df597030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   65.924808][ T4718] RAX: ffffffffffffffda RBX: 00007f75e1155fa0 RCX: 00007f75e0f2d3bc
[   65.924826][ T4718] RDX: 000000000000000f RSI: 00007f75df5970a0 RDI: 0000000000000005
[   65.924841][ T4718] RBP: 00007f75df597090 R08: 0000000000000000 R09: 0000000000000000
[   65.924857][ T4718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.924873][ T4718] R13: 0000000000000000 R14: 00007f75e1155fa0 R15: 00007ffd0b717058
[   65.924969][ T4718]  </TASK>
[   66.186134][ T4714] EXT4-fs: Ignoring removed nobh option
[   66.210124][ T4714] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #3: comm syz.4.336: corrupted inode contents
[   66.230698][ T4726] loop3: detected capacity change from 0 to 2048
[   66.239417][ T4714] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #3: comm syz.4.336: mark_inode_dirty error
[   66.253980][ T4714] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #3: comm syz.4.336: corrupted inode contents
[   66.266750][ T4714] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.336: mark_inode_dirty error
[   66.281612][ T4714] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.336: Failed to acquire dquot type 0
[   66.377555][ T4714] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.336: corrupted inode contents
[   66.401395][ T4736] loop3: detected capacity change from 0 to 2048
[   66.415571][ T4714] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #16: comm syz.4.336: mark_inode_dirty error
[   66.435757][ T4714] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.336: corrupted inode contents
[   66.448887][ T4714] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.336: mark_inode_dirty error
[   66.460402][ T4714] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.336: corrupted inode contents
[   66.474680][ T4714] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   66.483637][ T4714] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.336: corrupted inode contents
[   66.499226][ T4736] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'.
[   66.514968][ T4736] hsr_slave_0 (unregistering): left promiscuous mode
[   66.522630][ T4714] EXT4-fs error (device loop4): ext4_truncate:4597: inode #16: comm syz.4.336: mark_inode_dirty error
[   66.540755][ T4738] netlink: 'syz.1.343': attribute type 1 has an invalid length.
[   66.569963][ T4714] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   66.580675][ T4714] EXT4-fs (loop4): 1 truncate cleaned up
[   66.586920][ T4714] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.641213][ T4743] loop2: detected capacity change from 0 to 1024
[   66.652798][ T4744] netlink: 'syz.1.344': attribute type 4 has an invalid length.
[   66.664973][ T4744] netlink: 'syz.1.344': attribute type 4 has an invalid length.
[   66.784146][ T3306] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   66.795297][ T3306] CPU: 1 UID: 0 PID: 3306 Comm: syz-executor Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   66.795402][ T3306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   66.795414][ T3306] Call Trace:
[   66.795421][ T3306]  <TASK>
[   66.795428][ T3306]  __dump_stack+0x1d/0x30
[   66.795452][ T3306]  dump_stack_lvl+0xe8/0x140
[   66.795505][ T3306]  dump_stack+0x15/0x1b
[   66.795523][ T3306]  dump_header+0x81/0x220
[   66.795554][ T3306]  oom_kill_process+0x334/0x3f0
[   66.795584][ T3306]  out_of_memory+0x979/0xb80
[   66.795691][ T3306]  try_charge_memcg+0x5e6/0x9e0
[   66.795734][ T3306]  charge_memcg+0x51/0xc0
[   66.795765][ T3306]  __mem_cgroup_charge+0x28/0xb0
[   66.795878][ T3306]  filemap_add_folio+0x4e/0x1b0
[   66.795909][ T3306]  __filemap_get_folio+0x31e/0x6b0
[   66.795943][ T3306]  filemap_fault+0x41d/0xb40
[   66.795990][ T3306]  __do_fault+0xbc/0x200
[   66.796090][ T3306]  handle_mm_fault+0xf78/0x2be0
[   66.796120][ T3306]  ? mas_walk+0xf2/0x120
[   66.796167][ T3306]  do_user_addr_fault+0x636/0x1090
[   66.796270][ T3306]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   66.796298][ T3306]  exc_page_fault+0x62/0xa0
[   66.796326][ T3306]  asm_exc_page_fault+0x26/0x30
[   66.796411][ T3306] RIP: 0033:0x7f75e0e059e4
[   66.796426][ T3306] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 b8 fd e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d c9 fc e7 00 48 01 d1
[   66.796446][ T3306] RSP: 002b:00007ffd0b7173e0 EFLAGS: 00010202
[   66.796466][ T3306] RAX: 0000001b32120000 RBX: 000000000000009d RCX: 00000000000101d0
[   66.796482][ T3306] RDX: 000000000bd80f28 RSI: 00007ffd0b717470 RDI: 0000000000000001
[   66.796499][ T3306] RBP: 00007ffd0b71741c R08: 000000002d2e6353 R09: 7fffffffffffffff
[   66.796515][ T3306] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   66.796529][ T3306] R13: 00000000000927c0 R14: 0000000000010295 R15: 00007ffd0b717470
[   66.796619][ T3306]  </TASK>
[   66.796670][ T3306] memory: usage 307200kB, limit 307200kB, failcnt 234
[   66.856537][ T4743] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.345: Allocating blocks 449-513 which overlap fs metadata
[   66.857762][ T3306] memory+swap: usage 307416kB, limit 9007199254740988kB, failcnt 0
[   66.857782][ T3306] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[   66.878139][ T4742] EXT4-fs (loop2): pa ffff8881069de850: logic 48, phys. 177, len 21
[   66.881727][ T3306] Memory cgroup stats for /syz0:
[   66.882551][ T3306] cache 0
[   66.886059][ T4742] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, 
[   66.890912][ T3306] rss 0
[   66.890922][ T3306] shmem 0
[   66.895151][ T4742] free 0, pa_free 4
[   66.900268][ T3306] mapped_file 0
[   66.900277][ T3306] dirty 0
[   66.900285][ T3306] writeback 0
[   66.900294][ T3306] workingset_refault_anon 53
[   67.056195][ T4760] loop4: detected capacity change from 0 to 1024
[   67.059421][ T3306] workingset_refault_file 128
[   67.059434][ T3306] swap 221184
[   67.059441][ T3306] swapcached 12288
[   67.059448][ T3306] pgpgin 74461
[   67.059454][ T3306] pgpgout 74458
[   67.059460][ T3306] pgfault 53991
[   67.059466][ T3306] pgmajfault 52
[   67.059472][ T3306] inactive_anon 12288
[   67.110042][ T3306] active_anon 0
[   67.113527][ T3306] inactive_file 0
[   67.117194][ T3306] active_file 0
[   67.120657][ T3306] unevictable 0
[   67.124180][ T3306] hierarchical_memory_limit 314572800
[   67.129608][ T3306] hierarchical_memsw_limit 9223372036854771712
[   67.135937][ T3306] total_cache 0
[   67.139467][ T3306] total_rss 0
[   67.142768][ T3306] total_shmem 0
[   67.146309][ T3306] total_mapped_file 0
[   67.150370][ T3306] total_dirty 0
[   67.153950][ T3306] total_writeback 0
[   67.157793][ T3306] total_workingset_refault_anon 53
[   67.163059][ T3306] total_workingset_refault_file 128
[   67.168304][ T3306] total_swap 221184
[   67.172246][ T3306] total_swapcached 12288
[   67.176616][ T3306] total_pgpgin 74461
[   67.180557][ T3306] total_pgpgout 74458
[   67.184564][ T3306] total_pgfault 53991
[   67.188648][ T3306] total_pgmajfault 52
[   67.192690][ T3306] total_inactive_anon 12288
[   67.197348][ T3306] total_active_anon 0
[   67.201419][ T3306] total_inactive_file 0
[   67.205650][ T3306] total_active_file 0
[   67.209688][ T3306] total_unevictable 0
[   67.213750][ T3306] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.339,pid=4720,uid=0
[   67.228504][ T3306] Memory cgroup out of memory: Killed process 4720 (syz.0.339) total-vm:98128kB, anon-rss:1068kB, file-rss:26536kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[   67.231151][ T4760] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.348: Allocating blocks 449-513 which overlap fs metadata
[   67.330232][ T4760] EXT4-fs (loop4): pa ffff8881069de700: logic 48, phys. 177, len 21
[   67.338583][ T4760] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   67.689241][ T4774] loop4: detected capacity change from 0 to 2048
[   67.980430][ T4787] FAULT_INJECTION: forcing a failure.
[   67.980430][ T4787] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.993775][ T4787] CPU: 0 UID: 0 PID: 4787 Comm: syz.1.356 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   67.993837][ T4787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   67.993853][ T4787] Call Trace:
[   67.993860][ T4787]  <TASK>
[   67.993902][ T4787]  __dump_stack+0x1d/0x30
[   67.993923][ T4787]  dump_stack_lvl+0xe8/0x140
[   67.993943][ T4787]  dump_stack+0x15/0x1b
[   67.993964][ T4787]  should_fail_ex+0x265/0x280
[   67.994058][ T4787]  should_fail+0xb/0x20
[   67.994083][ T4787]  should_fail_usercopy+0x1a/0x20
[   67.994144][ T4787]  _copy_from_iter+0xcf/0xe40
[   67.994180][ T4787]  ? __build_skb_around+0x1a0/0x200
[   67.994210][ T4787]  ? __alloc_skb+0x223/0x320
[   67.994294][ T4787]  netlink_sendmsg+0x471/0x6b0
[   67.994319][ T4787]  ? __pfx_netlink_sendmsg+0x10/0x10
[   67.994342][ T4787]  __sock_sendmsg+0x142/0x180
[   67.994363][ T4787]  ____sys_sendmsg+0x31e/0x4e0
[   67.994456][ T4787]  ___sys_sendmsg+0x17b/0x1d0
[   67.994508][ T4787]  __x64_sys_sendmsg+0xd4/0x160
[   67.994548][ T4787]  x64_sys_call+0x2999/0x2fb0
[   67.994634][ T4787]  do_syscall_64+0xd2/0x200
[   67.994655][ T4787]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   67.994686][ T4787]  ? clear_bhb_loop+0x40/0x90
[   67.994705][ T4787]  ? clear_bhb_loop+0x40/0x90
[   67.994779][ T4787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.994807][ T4787] RIP: 0033:0x7f2e6073e9a9
[   67.994826][ T4787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.994849][ T4787] RSP: 002b:00007f2e5ed9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.994870][ T4787] RAX: ffffffffffffffda RBX: 00007f2e60965fa0 RCX: 00007f2e6073e9a9
[   67.994882][ T4787] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[   67.994969][ T4787] RBP: 00007f2e5ed9f090 R08: 0000000000000000 R09: 0000000000000000
[   67.994986][ T4787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.995002][ T4787] R13: 0000000000000000 R14: 00007f2e60965fa0 R15: 00007ffe130fa6b8
[   67.995025][ T4787]  </TASK>
[   68.225210][ T4791] netlink: 'syz.1.357': attribute type 4 has an invalid length.
[   68.233358][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   68.241999][ T4793] loop4: detected capacity change from 0 to 1024
[   68.246089][ T4791] netlink: 'syz.1.357': attribute type 4 has an invalid length.
[   68.396316][ T4793] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.358: Allocating blocks 449-513 which overlap fs metadata
[   68.724695][ T4814] EXT4-fs (loop4): pa ffff888106a773f0: logic 48, phys. 177, len 21
[   68.728088][ T4815] program syz.2.362 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.732920][ T4814] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   68.781394][ T4817] loop2: detected capacity change from 0 to 1024
[   68.854936][ T4821] netlink: 16 bytes leftover after parsing attributes in process `syz.0.366'.
[   68.970972][ T4830] loop3: detected capacity change from 0 to 1024
[   69.006402][ T4830] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.370: Allocating blocks 449-513 which overlap fs metadata
[   69.126554][ T4829] EXT4-fs (loop3): pa ffff8881069de930: logic 48, phys. 177, len 21
[   69.134837][ T4829] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   69.158850][ T3309] EXT4-fs unmount: 65 callbacks suppressed
[   69.158863][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.312305][ T4859] loop3: detected capacity change from 0 to 1024
[   69.328942][ T4859] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.359693][ T4859] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.379: Allocating blocks 449-513 which overlap fs metadata
[   69.376665][ T4865] loop4: detected capacity change from 0 to 1024
[   69.388898][ T4865] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.400492][ T4859] EXT4-fs (loop3): pa ffff8881069de9a0: logic 48, phys. 177, len 21
[   69.409001][ T4859] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   69.422710][ T4865] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.380: Allocating blocks 449-513 which overlap fs metadata
[   69.444276][ T4864] EXT4-fs (loop4): pa ffff8881069dea10: logic 48, phys. 177, len 21
[   69.452335][ T4864] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   69.486387][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.495639][ T4869] loop1: detected capacity change from 0 to 1024
[   69.503466][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.524849][ T4869] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.534382][   T29] kauditd_printk_skb: 389 callbacks suppressed
[   69.534401][   T29] audit: type=1400 audit(1752962382.840:2328): avc:  denied  { append } for  pid=4875 comm="syz.3.383" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   69.583526][ T4869] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.381: Allocating blocks 449-513 which overlap fs metadata
[   69.614229][ T4868] EXT4-fs (loop1): pa ffff888106a77460: logic 48, phys. 177, len 21
[   69.622488][ T4868] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   69.644162][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.716756][   T29] audit: type=1400 audit(1752962383.030:2329): avc:  denied  { accept } for  pid=4880 comm="syz.1.385" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[   69.738175][   T29] audit: type=1400 audit(1752962383.040:2330): avc:  denied  { execute } for  pid=4880 comm="syz.1.385" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=7919 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   69.846028][ T4886] infiniband syz!: set active
[   69.850841][ T4886] infiniband syz!: added team_slave_0
[   69.862964][ T4886] RDS/IB: syz!: added
[   69.867144][ T4886] smc: adding ib device syz! with port count 1
[   69.873553][ T4886] smc:    ib device syz! port 1 has pnetid 
[   69.910229][   T29] audit: type=1400 audit(1752962383.230:2331): avc:  denied  { mount } for  pid=4893 comm="syz.1.390" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[   70.005471][ T4900] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   70.019663][ T4900] batman_adv: batadv0: Removing interface: batadv_slave_1
[   70.112606][ T4903] loop2: detected capacity change from 0 to 1024
[   70.133321][ T4905] nfs4: Bad value for 'source'
[   70.140461][ T4903] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.215673][ T4903] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.393: Allocating blocks 449-513 which overlap fs metadata
[   70.256908][ T4903] EXT4-fs (loop2): pa ffff888106a774d0: logic 48, phys. 177, len 21
[   70.265076][ T4903] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   70.291914][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.537615][   T29] audit: type=1326 audit(1752962383.850:2332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4936 comm="syz.3.405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   70.561060][   T29] audit: type=1326 audit(1752962383.850:2333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4936 comm="syz.3.405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   70.584397][   T29] audit: type=1326 audit(1752962383.850:2334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4936 comm="syz.3.405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   70.607830][   T29] audit: type=1326 audit(1752962383.850:2335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4936 comm="syz.3.405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   70.631283][   T29] audit: type=1326 audit(1752962383.850:2336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4936 comm="syz.3.405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   70.654649][   T29] audit: type=1326 audit(1752962383.850:2337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4936 comm="syz.3.405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   70.682842][ T4937] netlink: 'syz.3.405': attribute type 1 has an invalid length.
[   70.928237][ T4947] syzkaller0: entered promiscuous mode
[   70.933799][ T4947] syzkaller0: entered allmulticast mode
[   70.944234][ T4947] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4947 comm=syz.0.408
[   71.186658][ T4961] loop1: detected capacity change from 0 to 1024
[   71.209705][ T4961] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.229484][ T4965] FAULT_INJECTION: forcing a failure.
[   71.229484][ T4965] name failslab, interval 1, probability 0, space 0, times 0
[   71.237675][ T4961] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.413: Allocating blocks 449-513 which overlap fs metadata
[   71.242320][ T4965] CPU: 0 UID: 0 PID: 4965 Comm: syz.4.414 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   71.242357][ T4965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   71.242372][ T4965] Call Trace:
[   71.242424][ T4965]  <TASK>
[   71.242435][ T4965]  __dump_stack+0x1d/0x30
[   71.242469][ T4965]  dump_stack_lvl+0xe8/0x140
[   71.242521][ T4965]  dump_stack+0x15/0x1b
[   71.242543][ T4965]  should_fail_ex+0x265/0x280
[   71.242619][ T4965]  ? kobject_uevent_env+0x1c0/0x570
[   71.242655][ T4965]  should_failslab+0x8c/0xb0
[   71.242686][ T4965]  __kmalloc_cache_noprof+0x4c/0x320
[   71.242754][ T4965]  kobject_uevent_env+0x1c0/0x570
[   71.242797][ T4965]  kobject_uevent+0x1d/0x30
[   71.242835][ T4965]  __kobject_del+0x88/0x190
[   71.242876][ T4965]  kobject_put+0x127/0x190
[   71.242969][ T4965]  netdev_queue_update_kobjects+0x45f/0x4d0
[   71.243095][ T4965]  netdev_unregister_kobject+0xcc/0x270
[   71.243137][ T4965]  unregister_netdevice_many_notify+0x1292/0x1690
[   71.243274][ T4965]  unregister_netdevice_queue+0x1f5/0x220
[   71.243324][ T4965]  unregister_netdev+0xb3/0xe0
[   71.243429][ T4965]  slip_close+0xe4/0x100
[   71.243465][ T4965]  ? __pfx_slip_hangup+0x10/0x10
[   71.243497][ T4965]  slip_hangup+0x15/0x20
[   71.243526][ T4965]  tty_ldisc_hangup+0x12f/0x370
[   71.243643][ T4965]  __tty_hangup+0x395/0x510
[   71.243682][ T4965]  tty_ioctl+0x601/0xb80
[   71.243745][ T4965]  ? __pfx_tty_ioctl+0x10/0x10
[   71.243847][ T4965]  __se_sys_ioctl+0xce/0x140
[   71.243885][ T4965]  __x64_sys_ioctl+0x43/0x50
[   71.243919][ T4965]  x64_sys_call+0x19a8/0x2fb0
[   71.243981][ T4965]  do_syscall_64+0xd2/0x200
[   71.244004][ T4965]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   71.244088][ T4965]  ? clear_bhb_loop+0x40/0x90
[   71.244161][ T4965]  ? clear_bhb_loop+0x40/0x90
[   71.244189][ T4965]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.244277][ T4965] RIP: 0033:0x7f1a5983e9a9
[   71.244296][ T4965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.244319][ T4965] RSP: 002b:00007f1a57ea7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   71.244343][ T4965] RAX: ffffffffffffffda RBX: 00007f1a59a65fa0 RCX: 00007f1a5983e9a9
[   71.244370][ T4965] RDX: 0000000000000002 RSI: 0000000000005437 RDI: 0000000000000003
[   71.244385][ T4965] RBP: 00007f1a57ea7090 R08: 0000000000000000 R09: 0000000000000000
[   71.244401][ T4965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   71.244417][ T4965] R13: 0000000000000000 R14: 00007f1a59a65fa0 R15: 00007fff36a13988
[   71.244440][ T4965]  </TASK>
[   71.283493][ T4967] netlink: 16 bytes leftover after parsing attributes in process `syz.2.415'.
[   71.315650][ T4961] EXT4-fs (loop1): pa ffff888106a774d0: logic 48, phys. 177, len 21
[   71.529427][ T4961] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   71.544649][ T4972] batman_adv: batadv0: Removing interface: batadv_slave_0
[   71.553089][ T4972] batman_adv: batadv0: Removing interface: batadv_slave_1
[   71.561986][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.649643][ T4985] loop1: detected capacity change from 0 to 2048
[   71.668820][ T4985] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.681494][ T4985] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.728663][ T4992] loop1: detected capacity change from 0 to 2048
[   71.749679][ T4992] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.774054][ T4992] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.863910][ T5009] loop1: detected capacity change from 0 to 1024
[   71.898056][ T5009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.933594][ T5009] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.429: Allocating blocks 449-513 which overlap fs metadata
[   71.971953][ T5020] loop4: detected capacity change from 0 to 1024
[   72.001573][ T5009] EXT4-fs (loop1): pa ffff8881069dea80: logic 48, phys. 177, len 21
[   72.009732][ T5009] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   72.030634][ T5020] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.061218][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.076798][ T5020] EXT4-fs (loop4): shut down requested (0)
[   72.111133][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.205168][ T5035] usb usb1: usbfs: process 5035 (syz.4.438) did not claim interface 0 before use
[   72.330711][ T5041] FAULT_INJECTION: forcing a failure.
[   72.330711][ T5041] name failslab, interval 1, probability 0, space 0, times 0
[   72.343541][ T5041] CPU: 1 UID: 0 PID: 5041 Comm: syz.4.441 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   72.343579][ T5041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   72.343597][ T5041] Call Trace:
[   72.343606][ T5041]  <TASK>
[   72.343615][ T5041]  __dump_stack+0x1d/0x30
[   72.343644][ T5041]  dump_stack_lvl+0xe8/0x140
[   72.343686][ T5041]  dump_stack+0x15/0x1b
[   72.343708][ T5041]  should_fail_ex+0x265/0x280
[   72.343749][ T5041]  should_failslab+0x8c/0xb0
[   72.343778][ T5041]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   72.343919][ T5041]  ? p9_client_create+0x59/0xbc0
[   72.343945][ T5041]  ? p9_client_create+0x207/0xbc0
[   72.343975][ T5041]  ? should_failslab+0x8c/0xb0
[   72.344074][ T5041]  kstrdup+0x3e/0xd0
[   72.344095][ T5041]  p9_client_create+0x207/0xbc0
[   72.344136][ T5041]  v9fs_session_init+0xf7/0xde0
[   72.344164][ T5041]  ? obj_cgroup_charge_account+0x122/0x1a0
[   72.344257][ T5041]  ? __rcu_read_unlock+0x4f/0x70
[   72.344284][ T5041]  ? should_fail_ex+0xdb/0x280
[   72.344327][ T5041]  ? v9fs_mount+0x51/0x590
[   72.344362][ T5041]  ? should_failslab+0x8c/0xb0
[   72.344384][ T5041]  ? __kmalloc_cache_noprof+0x189/0x320
[   72.344415][ T5041]  v9fs_mount+0x67/0x590
[   72.344469][ T5041]  ? __pfx_v9fs_mount+0x10/0x10
[   72.344505][ T5041]  legacy_get_tree+0x78/0xd0
[   72.344546][ T5041]  vfs_get_tree+0x54/0x1d0
[   72.344689][ T5041]  do_new_mount+0x207/0x680
[   72.344732][ T5041]  path_mount+0x4a4/0xb20
[   72.344762][ T5041]  ? user_path_at+0x109/0x130
[   72.344834][ T5041]  __se_sys_mount+0x28f/0x2e0
[   72.344866][ T5041]  ? fput+0x8f/0xc0
[   72.344952][ T5041]  __x64_sys_mount+0x67/0x80
[   72.344992][ T5041]  x64_sys_call+0xd36/0x2fb0
[   72.345019][ T5041]  do_syscall_64+0xd2/0x200
[   72.345115][ T5041]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   72.345148][ T5041]  ? clear_bhb_loop+0x40/0x90
[   72.345175][ T5041]  ? clear_bhb_loop+0x40/0x90
[   72.345221][ T5041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.345329][ T5041] RIP: 0033:0x7f1a5983e9a9
[   72.345347][ T5041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.345400][ T5041] RSP: 002b:00007f1a57ea7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   72.345501][ T5041] RAX: ffffffffffffffda RBX: 00007f1a59a65fa0 RCX: 00007f1a5983e9a9
[   72.345528][ T5041] RDX: 0000200000000080 RSI: 0000200000000000 RDI: 0000000000000000
[   72.345539][ T5041] RBP: 00007f1a57ea7090 R08: 0000200000000440 R09: 0000000000000000
[   72.345550][ T5041] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000000000002
[   72.345563][ T5041] R13: 0000000000000000 R14: 00007f1a59a65fa0 R15: 00007fff36a13988
[   72.345587][ T5041]  </TASK>
[   72.789080][ T5058] No such timeout policy "syz0"
[   72.799817][ T5060] blktrace: Concurrent blktraces are not allowed on loop2
[   72.807294][ T5060] relay: one or more items not logged [item size (56) > sub-buffer size (10)]
[   72.849185][ T5065] loop3: detected capacity change from 0 to 2048
[   72.866049][ T5065] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.879917][ T5065] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.924339][ T5076] Invalid ELF header magic: != ELF
[   73.153563][ T5085] loop2: detected capacity change from 0 to 2048
[   73.308183][ T5085] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.331778][ T5085] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.449295][ T5094] loop1: detected capacity change from 0 to 512
[   73.458238][ T5094] EXT4-fs (loop1): orphan cleanup on readonly fs
[   73.467435][ T5094] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.456: bg 0: block 248: padding at end of block bitmap is not set
[   73.499662][ T5094] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.456: Failed to acquire dquot type 1
[   73.512115][ T5094] EXT4-fs (loop1): 1 truncate cleaned up
[   73.527925][ T5094] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.606989][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.822762][ T5119] vhci_hcd: invalid port number 96
[   73.827986][ T5119] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   73.881411][ T5127] loop4: detected capacity change from 0 to 2048
[   73.905163][ T5130] loop2: detected capacity change from 0 to 1024
[   73.930290][ T5130] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.945161][ T5108] loop1: detected capacity change from 0 to 2048
[   73.957005][ T5127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.972892][ T5130] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.470: Allocating blocks 449-513 which overlap fs metadata
[   73.990842][ T5108] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.004789][ T5127] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.014000][ T5145] loop3: detected capacity change from 0 to 1024
[   74.027292][ T5145] EXT4-fs: Ignoring removed bh option
[   74.033219][ T5145] EXT4-fs: inline encryption not supported
[   74.041238][ T5130] EXT4-fs (loop2): pa ffff8881069deaf0: logic 48, phys. 177, len 21
[   74.049352][ T5130] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   74.089937][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.130277][ T5145] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   74.172673][ T5145] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   74.193932][ T5145] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.472: lblock 2 mapped to illegal pblock 2 (length 1)
[   74.293346][ T5153] vhci_hcd: invalid port number 96
[   74.298574][ T5153] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[   74.306563][ T5145] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.472: lblock 0 mapped to illegal pblock 48 (length 1)
[   74.338455][ T5145] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.472: Failed to acquire dquot type 0
[   74.360338][ T5145] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   74.369954][ T5145] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.472: mark_inode_dirty error
[   74.390531][ T5145] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   74.402519][ T3316] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set
[   74.418085][ T5145] EXT4-fs (loop3): 1 orphan inode deleted
[   74.424249][ T5145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.446033][ T3316] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   74.459048][ T1084] EXT4-fs (loop1): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 3 with error 28
[   74.471310][ T1084] EXT4-fs (loop1): This should not happen!! Data will be lost
[   74.471310][ T1084] 
[   74.481006][ T1084] EXT4-fs (loop1): Total free blocks count 0
[   74.487043][ T1084] EXT4-fs (loop1): Free/Dirty block details
[   74.493023][ T1084] EXT4-fs (loop1): free_blocks=0
[   74.498076][ T1084] EXT4-fs (loop1): dirty_blocks=6016
[   74.503384][ T1084] EXT4-fs (loop1): Block reservation details
[   74.509426][ T1084] EXT4-fs (loop1): i_reserved_data_blocks=154
[   74.613106][  T380] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   74.640134][ T5146] EXT4-fs (loop1): Delayed block allocation failed for inode 19 at logical offset 4 with max blocks 2048 with error 28
[   74.655049][  T380] __quota_error: 871 callbacks suppressed
[   74.655066][  T380] Quota error (device loop3): remove_tree: Can't read quota data block 1
[   74.669487][  T380] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0
[   74.698680][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.707975][ T3309] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[   74.721934][ T3309] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[   74.731545][ T3309] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[   74.766242][   T29] audit: type=1400 audit(1752962388.070:3205): avc:  denied  { unlink } for  pid=3316 comm="syz-executor" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   74.788843][   T29] audit: type=1400 audit(1752962388.070:3206): avc:  denied  { unlink } for  pid=3316 comm="syz-executor" name="file1" dev="loop1" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[   74.833489][ T5165] netlink: 16 bytes leftover after parsing attributes in process `syz.3.480'.
[   74.908858][   T29] audit: type=1326 audit(1752962388.230:3207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="syz.3.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   74.938585][   T29] audit: type=1326 audit(1752962388.250:3208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="syz.3.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   74.962168][   T29] audit: type=1326 audit(1752962388.250:3209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   74.985029][   T29] audit: type=1326 audit(1752962388.250:3210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   75.007904][   T29] audit: type=1326 audit(1752962388.250:3211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   75.030733][   T29] audit: type=1326 audit(1752962388.250:3212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   75.053609][   T29] audit: type=1326 audit(1752962388.250:3213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5166 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f84c3bae9a9 code=0x7ffc0000
[   75.103549][ T5171] FAULT_INJECTION: forcing a failure.
[   75.103549][ T5171] name failslab, interval 1, probability 0, space 0, times 0
[   75.116290][ T5171] CPU: 1 UID: 0 PID: 5171 Comm: syz.2.483 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   75.116332][ T5171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   75.116347][ T5171] Call Trace:
[   75.116354][ T5171]  <TASK>
[   75.116362][ T5171]  __dump_stack+0x1d/0x30
[   75.116387][ T5171]  dump_stack_lvl+0xe8/0x140
[   75.116441][ T5171]  dump_stack+0x15/0x1b
[   75.116456][ T5171]  should_fail_ex+0x265/0x280
[   75.116549][ T5171]  should_failslab+0x8c/0xb0
[   75.116575][ T5171]  __kmalloc_noprof+0xa5/0x3e0
[   75.116605][ T5171]  ? __list_lru_init+0x72/0x2e0
[   75.116644][ T5171]  __list_lru_init+0x72/0x2e0
[   75.116694][ T5171]  alloc_super+0x4df/0x570
[   75.116764][ T5171]  sget_fc+0x24e/0x6e0
[   75.116864][ T5171]  ? __pfx_set_anon_super_fc+0x10/0x10
[   75.116890][ T5171]  ? __pfx_mqueue_fill_super+0x10/0x10
[   75.116987][ T5171]  get_tree_nodev+0x2a/0x100
[   75.117014][ T5171]  mqueue_get_tree+0x63/0x90
[   75.117037][ T5171]  vfs_get_tree+0x54/0x1d0
[   75.117073][ T5171]  fc_mount+0x18/0x70
[   75.117155][ T5171]  mq_init_ns+0x249/0x2f0
[   75.117183][ T5171]  copy_ipcs+0x214/0x3b0
[   75.117207][ T5171]  create_new_namespaces+0x12a/0x3d0
[   75.117247][ T5171]  unshare_nsproxy_namespaces+0xe8/0x120
[   75.117280][ T5171]  ksys_unshare+0x3d0/0x6d0
[   75.117305][ T5171]  ? trace_sys_enter+0xd0/0x110
[   75.117328][ T5171]  __x64_sys_unshare+0x1f/0x30
[   75.117408][ T5171]  x64_sys_call+0x2d4b/0x2fb0
[   75.117436][ T5171]  do_syscall_64+0xd2/0x200
[   75.117452][ T5171]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   75.117481][ T5171]  ? clear_bhb_loop+0x40/0x90
[   75.117501][ T5171]  ? clear_bhb_loop+0x40/0x90
[   75.117599][ T5171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.117618][ T5171] RIP: 0033:0x7f3ed672e9a9
[   75.117636][ T5171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.117669][ T5171] RSP: 002b:00007f3ed4d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   75.117691][ T5171] RAX: ffffffffffffffda RBX: 00007f3ed6955fa0 RCX: 00007f3ed672e9a9
[   75.117703][ T5171] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000068040200
[   75.117713][ T5171] RBP: 00007f3ed4d97090 R08: 0000000000000000 R09: 0000000000000000
[   75.117724][ T5171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.117735][ T5171] R13: 0000000000000000 R14: 00007f3ed6955fa0 R15: 00007ffde49a95d8
[   75.117751][ T5171]  </TASK>
[   75.367345][ T5172] loop4: detected capacity change from 0 to 256
[   75.418791][ T5178] loop3: detected capacity change from 0 to 2048
[   75.438762][ T5178] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.452403][ T5178] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.465002][ T5183] netlink: 16 bytes leftover after parsing attributes in process `'.
[   75.474266][ T5183] capability: warning: `' uses 32-bit capabilities (legacy support in use)
[   75.540504][ T3438] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.622455][ T3438] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.670628][ T5192] loop4: detected capacity change from 0 to 1024
[   75.704842][ T3438] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.722533][ T5192] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.779274][ T5192] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.491: Allocating blocks 449-513 which overlap fs metadata
[   75.799941][ T3438] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.881556][ T5210] EXT4-fs (loop4): pa ffff8881069deaf0: logic 48, phys. 177, len 21
[   75.889720][ T5210] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[   75.915905][ T3438] bridge_slave_1: left allmulticast mode
[   75.921672][ T3438] bridge_slave_1: left promiscuous mode
[   75.927406][ T3438] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.954555][ T3438] bridge_slave_0: left allmulticast mode
[   75.960277][ T3438] bridge_slave_0: left promiscuous mode
[   75.965975][ T3438] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.993022][ T3438] batman_adv: batadv0: Interface deactivated: ip6gretap1
[   76.005252][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.076341][ T3438] batman_adv: batadv0: Removing interface: ip6gretap1
[   76.098976][ T5225] netlink: 16 bytes leftover after parsing attributes in process `syz.4.499'.
[   76.165827][ T3438] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   76.176486][ T3438] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   76.187592][ T3438] bond0 (unregistering): Released all slaves
[   76.607045][ T5239] loop2: detected capacity change from 0 to 256
[   76.607179][ T3306] ==================================================================
[   76.621480][ T3306] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[   76.631326][ T3306] 
[   76.632149][ T5184] syz.0.484 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   76.633653][ T3306] read-write to 0xffffffff868099c0 of 8 bytes by interrupt on cpu 1:
[   76.633677][ T3306]  tick_do_update_jiffies64+0x113/0x1c0
[   76.647706][ T5184] CPU: 1 UID: 0 PID: 5184 Comm: syz.0.484 Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   76.647755][ T5184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.647773][ T5184] Call Trace:
[   76.647782][ T5184]  <TASK>
[   76.647794][ T5184]  __dump_stack+0x1d/0x30
[   76.647822][ T5184]  dump_stack_lvl+0xe8/0x140
[   76.647849][ T5184]  dump_stack+0x15/0x1b
[   76.647895][ T5184]  dump_header+0x81/0x220
[   76.648009][ T5184]  oom_kill_process+0x334/0x3f0
[   76.648101][ T5184]  out_of_memory+0x979/0xb80
[   76.648310][ T5184]  try_charge_memcg+0x5e6/0x9e0
[   76.648412][ T5184]  obj_cgroup_charge_pages+0xa6/0x150
[   76.648460][ T5184]  __memcg_kmem_charge_page+0x9f/0x170
[   76.648503][ T5184]  __alloc_frozen_pages_noprof+0x188/0x360
[   76.648557][ T5184]  alloc_pages_mpol+0xb3/0x250
[   76.648603][ T5184]  alloc_pages_noprof+0x90/0x130
[   76.648645][ T5184]  __vmalloc_node_range_noprof+0x6f2/0xe00
[   76.648732][ T5184]  __kvmalloc_node_noprof+0x30f/0x4e0
[   76.648769][ T5184]  ? ip_set_alloc+0x1f/0x30
[   76.648807][ T5184]  ? ip_set_alloc+0x1f/0x30
[   76.648863][ T5184]  ip_set_alloc+0x1f/0x30
[   76.648900][ T5184]  hash_netiface_create+0x282/0x740
[   76.648972][ T5184]  ? __pfx_hash_netiface_create+0x10/0x10
[   76.649014][ T5184]  ip_set_create+0x3cc/0x960
[   76.649068][ T5184]  ? __nla_parse+0x40/0x60
[   76.649144][ T5184]  nfnetlink_rcv_msg+0x4c3/0x590
[   76.649267][ T5184]  ? selinux_capable+0x1f9/0x270
[   76.649313][ T5184]  netlink_rcv_skb+0x120/0x220
[   76.649355][ T5184]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   76.649397][ T5184]  nfnetlink_rcv+0x16b/0x1690
[   76.649452][ T5184]  ? __kfree_skb+0x109/0x150
[   76.649492][ T5184]  ? nlmon_xmit+0x4f/0x60
[   76.649518][ T5184]  ? consume_skb+0x49/0x150
[   76.649556][ T5184]  ? nlmon_xmit+0x4f/0x60
[   76.649659][ T5184]  ? dev_hard_start_xmit+0x3b0/0x3e0
[   76.649755][ T5184]  ? __dev_queue_xmit+0x11c0/0x1fb0
[   76.649828][ T5184]  ? __dev_queue_xmit+0x182/0x1fb0
[   76.649920][ T5184]  ? ref_tracker_free+0x37d/0x3e0
[   76.649965][ T5184]  ? __netlink_deliver_tap+0x4dc/0x500
[   76.650076][ T5184]  netlink_unicast+0x5a5/0x680
[   76.650118][ T5184]  netlink_sendmsg+0x58b/0x6b0
[   76.650146][ T5184]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.650171][ T5184]  __sock_sendmsg+0x142/0x180
[   76.650279][ T5184]  ____sys_sendmsg+0x31e/0x4e0
[   76.650330][ T5184]  ___sys_sendmsg+0x17b/0x1d0
[   76.650391][ T5184]  __x64_sys_sendmsg+0xd4/0x160
[   76.650480][ T5184]  x64_sys_call+0x2999/0x2fb0
[   76.650511][ T5184]  do_syscall_64+0xd2/0x200
[   76.650536][ T5184]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   76.650572][ T5184]  ? clear_bhb_loop+0x40/0x90
[   76.650673][ T5184]  ? clear_bhb_loop+0x40/0x90
[   76.650701][ T5184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.650730][ T5184] RIP: 0033:0x7f75e0f2e9a9
[   76.650750][ T5184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.650774][ T5184] RSP: 002b:00007f75df597038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.650835][ T5184] RAX: ffffffffffffffda RBX: 00007f75e1155fa0 RCX: 00007f75e0f2e9a9
[   76.650902][ T5184] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 000000000000000a
[   76.650918][ T5184] RBP: 00007f75e0fb0d69 R08: 0000000000000000 R09: 0000000000000000
[   76.650966][ T5184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.651061][ T5184] R13: 0000000000000000 R14: 00007f75e1155fa0 R15: 00007ffd0b717058
[   76.651085][ T5184]  </TASK>
[   76.651094][ T5184] memory: usage 307200kB, limit 307200kB, failcnt 465
[   76.655692][ T3306]  tick_nohz_handler+0x7f/0x2d0
[   76.661266][ T5184] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[   76.673565][ T3306]  __hrtimer_run_queues+0x20c/0x5a0
[   76.673592][ T3306]  hrtimer_interrupt+0x21a/0x460
[   76.673619][ T3306]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[   76.673648][ T3306]  sysvec_apic_timer_interrupt+0x6f/0x80
[   76.683823][ T5184] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   76.687064][ T3306]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   76.687094][ T3306]  __sanitizer_cov_trace_pc+0x8/0x70
[   76.690022][ T5184] Memory cgroup stats for /syz0
[   76.694345][ T3306]  vsnprintf+0x821/0x890
[   76.698955][ T5184] :
[   76.703069][ T3306]  sprintf+0x88/0xb0
[   76.742607][ T5184] cache 0
[   76.743106][ T3306]  info_print_prefix+0x144/0x1a0
[   76.748102][ T5184] rss 0
[   76.753843][ T3306]  record_print_text+0xa1/0x2a0
[   76.759241][ T5184] shmem 0
[   76.763723][ T3306]  printk_get_next_message+0x41d/0x510
[   76.768271][ T5184] mapped_file 0
[   76.772557][ T3306]  console_flush_all+0x290/0x730
[   76.777771][ T5184] dirty 0
[   76.783459][ T3306]  console_unlock+0xa1/0x330
[   76.788081][ T5184] writeback 0
[   76.792451][ T3306]  vprintk_emit+0x388/0x650
[   76.797453][ T5184] workingset_refault_anon 119
[   76.802366][ T3306]  vprintk_default+0x26/0x30
[   76.807228][ T5184] workingset_refault_file 274
[   76.812569][ T3306]  vprintk+0x1d/0x30
[   76.817312][ T5184] swap 208896
[   76.821846][ T3306]  _printk+0x79/0xa0
[   76.826184][ T5184] swapcached 0
[   76.826194][ T5184] pgpgin 92283
[   76.830675][ T3306]  set_capacity_and_notify+0x14c/0x1f0
[   76.830715][ T3306]  loop_set_size+0x2e/0x70
[   76.835043][ T5184] pgpgout 92283
[   76.835054][ T5184] pgfault 75948
[   76.840314][ T3306]  loop_configure+0x8d3/0xa50
[   76.845532][ T5184] pgmajfault 98
[   76.845542][ T5184] inactive_anon 0
[   76.850636][ T3306]  lo_ioctl+0x559/0x15d0
[   76.855670][ T5184] active_anon 0
[   76.855680][ T5184] inactive_file 0
[   76.861117][ T3306]  blkdev_ioctl+0x34f/0x440
[   76.865930][ T5184] active_file 0
[   76.865940][ T5184] unevictable 0
[   76.870681][ T3306]  __se_sys_ioctl+0xce/0x140
[   76.870715][ T3306]  __x64_sys_ioctl+0x43/0x50
[   76.875990][ T5184] hierarchical_memory_limit 314572800
[   76.880654][ T3306]  x64_sys_call+0x19a8/0x2fb0
[   76.880683][ T3306]  do_syscall_64+0xd2/0x200
[   76.885428][ T5184] hierarchical_memsw_limit 9223372036854771712
[   76.890102][ T3306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.890129][ T3306] 
[   76.890135][ T3306] read to 0xffffffff868099c0 of 8 bytes by task 3306 on cpu 0:
[   76.890153][ T3306]  mem_cgroup_flush_stats_ratelimited+0x29/0x70
[   76.894986][ T5184] total_cache 0
[   76.894996][ T5184] total_rss 0
[   76.899652][ T3306]  count_shadow_nodes+0x6a/0x230
[   76.904166][ T5184] total_shmem 0
[   76.904177][ T5184] total_mapped_file 0
[   76.910218][ T3306]  do_shrink_slab+0x60/0x680
[   76.910250][ T3306]  shrink_slab+0x448/0x760
[   76.914923][ T5184] total_dirty 0
[   76.914934][ T5184] total_writeback 0
[   76.919592][ T3306]  shrink_node+0x6c3/0x2120
[   76.919622][ T3306]  do_try_to_free_pages+0x3f6/0xcd0
[   76.925517][ T5184] total_workingset_refault_anon 119
[   76.929917][ T3306]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[   76.929939][ T3306]  try_charge_memcg+0x358/0x9e0
[   76.929978][ T3306]  charge_memcg+0x51/0xc0
[   76.949615][ T5184] total_workingset_refault_file 274
[   76.957970][ T3306]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   76.965956][ T5184] total_swap 208896
[   76.965967][ T5184] total_swapcached 0
[   76.973919][ T3306]  __read_swap_cache_async+0x1df/0x350
[   76.981950][ T5184] total_pgpgin 92283
[   76.989897][ T3306]  swap_cluster_readahead+0x277/0x3e0
[   76.989937][ T3306]  swapin_readahead+0xde/0x6f0
[   76.997923][ T5184] total_pgpgout 92283
[   77.000927][ T3306]  do_swap_page+0x301/0x2430
[   77.007705][ T5184] total_pgfault 75948
[   77.012523][ T3306]  handle_mm_fault+0x9a5/0x2be0
[   77.020435][ T5184] total_pgmajfault 98
[   77.025603][ T3306]  do_user_addr_fault+0x636/0x1090
[   77.030669][ T5184] total_inactive_anon 0
[   77.036413][ T3306]  exc_page_fault+0x62/0xa0
[   77.042082][ T5184] total_active_anon 0
[   77.049330][ T3306]  asm_exc_page_fault+0x26/0x30
[   77.049356][ T3306] 
[   77.049361][ T3306] value changed: 0x00000000ffffa885 -> 0x00000000ffffa886
[   77.055323][ T5184] total_inactive_file 0
[   77.055334][ T5184] total_active_file 0
[   77.060600][ T3306] 
[   77.060608][ T3306] Reported by Kernel Concurrency Sanitizer on:
[   77.060622][ T3306] CPU: 0 UID: 0 PID: 3306 Comm: syz-executor Not tainted 6.16.0-rc6-syzkaller-00253-g4871b7cb27f4 #0 PREEMPT(voluntary) 
[   77.060653][ T3306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   77.060665][ T3306] ==================================================================
[   77.466331][ T5184] total_unevictable 0
[   77.470336][ T5184] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.484,pid=5175,uid=0
[   77.484856][ T5184] Memory cgroup out of memory: Killed process 5175 (syz.0.484) total-vm:95676kB, anon-rss:1072kB, file-rss:22472kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   77.589785][ T3438] hsr_slave_0: left promiscuous mode
[   77.595666][ T3438] hsr_slave_1: left promiscuous mode
[   77.602705][ T3438] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   77.610160][ T3438] batman_adv: batadv0: Removing interface: batadv_slave_0
[   77.621544][ T3438] veth1_macvtap: left promiscuous mode
[   77.627124][ T3438] veth0_macvtap: left promiscuous mode
[   77.632759][ T3438] veth1_vlan: left promiscuous mode
[   77.638212][ T3438] veth0_vlan: left promiscuous mode
[   77.704418][ T3438] team0 (unregistering): Port device team_slave_1 removed
[   77.714084][ T3438] team0 (unregistering): Port device team_slave_0 removed
[   77.785007][ T5201] chnl_net:caif_netlink_parms(): no params data found
[   77.819134][ T5201] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.826214][ T5201] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.833528][ T5201] bridge_slave_0: entered allmulticast mode
[   77.839893][ T5201] bridge_slave_0: entered promiscuous mode
[   77.846660][ T5201] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.853739][ T5201] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.860959][ T5201] bridge_slave_1: entered allmulticast mode
[   77.867679][ T5201] bridge_slave_1: entered promiscuous mode
[   77.884475][ T5201] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.895202][ T5201] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.914247][ T5201] team0: Port device team_slave_0 added
[   77.920801][ T5201] team0: Port device team_slave_1 added
[   77.936292][ T5201] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.943380][ T5201] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.969351][ T5201] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.980639][ T5201] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.987640][ T5201] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.013635][ T5201] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.040228][ T5201] hsr_slave_0: entered promiscuous mode
[   78.046273][ T5201] hsr_slave_1: entered promiscuous mode
[   78.052144][ T5201] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.059804][ T5201] Cannot create hsr debugfs directory
[   78.124497][ T5201] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   78.133372][ T5201] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   78.142127][ T5201] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   78.150568][ T5201] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   78.166212][ T5201] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.173327][ T5201] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.180623][ T5201] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.187744][ T5201] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.214918][ T5201] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.226872][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.234713][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.245816][ T5201] 8021q: adding VLAN 0 to HW filter on device team0
[   78.255890][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.262967][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.273372][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.280538][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.341514][ T5201] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.444139][ T5201] veth0_vlan: entered promiscuous mode
[   78.452104][ T5201] veth1_vlan: entered promiscuous mode
[   78.467631][ T5201] veth0_macvtap: entered promiscuous mode
[   78.474940][ T5201] veth1_macvtap: entered promiscuous mode
[   78.486374][ T5201] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.498040][ T5201] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.506529][ T5201] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.515261][ T5201] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.524023][ T5201] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.532735][ T5201] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0