last executing test programs:

33.689641675s ago: executing program 4 (id=1352):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
fchdir(r1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0f00000004000000040000001200000000000000", @ANYRES8=r2, @ANYBLOB='\x00'/20, @ANYRES32=r1, @ANYBLOB="0000000000000000000000000000000000f8040a1b4021dcd04380d448f6765940ba71c7e9000000901d0a9c180000000000000000c539975d8a37"], 0x48)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_DELFLOWTABLE={0x20, 0x18, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELSET={0x28, 0xb, 0xa, 0x401, 0x0, 0x0, {0x3}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_DELRULE={0x68, 0x8, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x17}]}}}, {0x38, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0x4}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x3}, @NFTA_SYNPROXY_MSS={0x6, 0x1, 0x1, 0x0, 0x7}, @NFTA_SYNPROXY_WSCALE={0x5, 0x2, 0xd8}]}}}]}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0xa}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}}, @NFT_MSG_DELTABLE={0x28, 0x2, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x120}, 0x1, 0x0, 0x0, 0x4014}, 0x10)

33.595540776s ago: executing program 4 (id=1354):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @masq={{0x9}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3cd2e7b3d6526bf5}}}, 0x68}}, 0x0)
r1 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r1, &(0x7f0000001000)={&(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000600)}], 0x1}, 0x200048c0)

33.516516358s ago: executing program 4 (id=1358):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x9a, &(0x7f0000000340)={&(0x7f0000000380)={0x2, 0x3, 0x0, 0x3, 0x1f, 0x0, 0x700, 0x0, [@sadb_key={0x15, 0x9, 0x4d0, 0x0, "01d78771b90bd8a3b4914783c50400003d5b9538a9d03e6e9bfdac55c6c1569f24f0d71f276116571690b8be330981cd1d9501e7d4a8c03787a5734b053bdcaef33f0700000000000000ee4207101fa40410900a3245974194eb1058d41724ade8ca6140b261f6596fed281bac147bb3a6eded38cabfa3f20889f8f3817fa7ce48965d5de05da4f4a7ed0e7759aa456fdc6699ab7b8eff75c006"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0xf8}, 0x1, 0x7}, 0x0)

33.440894009s ago: executing program 4 (id=1360):
socket(0x10, 0x803, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f00000001c0)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@errors_continue}, {@orlov}, {@user_xattr}, {@quota}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_clone(0xfdba2180, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x100)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r7, 0x40345410, &(0x7f0000000280)={{0x1}})
readv(r7, &(0x7f0000000140)=[{&(0x7f0000000000)=""/47, 0x2f}], 0x1)
read(r7, &(0x7f00000002c0)=""/200, 0x39)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r7, 0x54a2)
bind$bt_hci(r6, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x2, &(0x7f0000002400)=<r8=>0x0)
io_submit(r8, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r6, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])
fallocate(r4, 0x0, 0xb7d4, 0x1001f0)

32.880694673s ago: executing program 4 (id=1372):
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[], 0x15)
r4 = dup(r3)
r5 = dup3(r3, r3, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)=r5}, 0x20)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f0000000000)='./file0\x00', 0x0)

32.620075687s ago: executing program 4 (id=1378):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000000780), 0x0, 0x4008804)

32.619260617s ago: executing program 32 (id=1378):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f0000000780), 0x0, 0x4008804)

3.912021469s ago: executing program 3 (id=1842):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01032757c38d085641a7260000000c000180080001"], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x8840)

3.90265518s ago: executing program 1 (id=1843):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0xffff8000, 0x4)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x4}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = socket(0x10, 0x803, 0x0)
socket$inet(0x2, 0x3, 0x8)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000000000)={0x8, {"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", 0x1000}}, 0x1006)
syz_io_uring_setup(0x3ac6, &(0x7f00000001c0)={0x0, 0x94a9, 0x10, 0x4, 0x3af}, &(0x7f0000000080), &(0x7f0000000100))
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r7, @ANYBLOB="00000000ac7b8af8ff00800000bfa200000000000007020000f8ffffffb70000000000200000000000"], &(0x7f0000001040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r7}, &(0x7f0000000000), &(0x7f00000005c0)=r8}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000001080)='ack_update_msk\x00', r6}, 0x18)
socket$xdp(0x2c, 0x3, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x34, &(0x7f00000010c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

3.88374698s ago: executing program 3 (id=1844):
syz_io_uring_setup(0x7219, 0x0, &(0x7f0000000040)=<r0=>0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x74, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r6, {0xfff2, 0x4}, {}, {0x5, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x44, 0x2, [@TCA_FLOW_EMATCHES={0x40, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x34, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{}, {0x5, 0x8}}}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c021}, 0x20040054)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x54, 0x0, 0x0, 0x0, &(0x7f00000001c0), 0x1, 0x20})
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="1f4b0000000000005afd308329caace186dd4142623d991b4cc032688e75c5d400"/42, @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@noquota}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x82f}}, {@grpquota}, {@debug}, {@debug}, {@grpid}]}, 0x80, 0x536, &(0x7f0000000680)="$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")
r7 = fspick(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000340)={'team_slave_1\x00', 0x8000})
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)

3.805018121s ago: executing program 2 (id=1846):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='wbt_lat\x00', r0, 0x0, 0x5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
get_mempolicy(0x0, 0x0, 0xa6, &(0x7f0000008000/0x2000)=nil, 0x2)

3.718890813s ago: executing program 2 (id=1848):
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x7)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000e00)='kfree\x00', r2, 0x0, 0x4ab}, 0x18)
syz_clone(0x2a801400, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bond_slave_1\x00', <r6=>0x0})
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f00000005c0)={r6, 0x11, 0x6, @broadcast}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {0x0, 0x6}, {0x0, 0xa}, {0x0, 0x6}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

3.618806264s ago: executing program 2 (id=1850):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000002080)=@newtaction={0xe7c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe68, 0x1, [@m_pedit={0xe64, 0x1, 0x0, 0x0, {{0xa}, {0xe38, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x14, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x4}]}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x6}, {0x1000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x7}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x2, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {0x0, 0x0, 0x10000000}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, {0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0x0, 0x800000}, {}, {}, {}, {0x0, 0x0, 0x2}, {0x4, 0xc000000}, {}, {0x0, 0x80000000}, {}, {}, {}, {}, {}, {}, {}, {0x9}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x23}, {0x0, 0x0, 0x0, 0x404}, {0x0, 0x0, 0x0, 0x12, 0xfffffffd}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x100000}, {}, {}, {}, {0x0, 0x0, 0x9f, 0x0, 0x0, 0x1}, {0x20000, 0x0, 0x9}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0xfffffffd}, {0xd38}, {}, {0x0, 0x0, 0x1, 0x0, 0x747}, {0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x9}, {0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x78}, {0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x2}], [{0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x5}, {0x1, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x70d565ae405ec13b}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {0x0, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe7c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00'})
sendmsg$nl_xfrm(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00')
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r7 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r7, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = syz_io_uring_setup(0x3a, &(0x7f0000000640)={0x0, 0xaddc, 0x10100, 0x1, 0x203}, &(0x7f0000000380)=<r9=>0x0, &(0x7f00000003c0)=<r10=>0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000400)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
syz_io_uring_submit(r9, r10, &(0x7f0000000600)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r11, 0x0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f00000002c0)=""/183, 0xb7}], 0x1}, 0x0, 0x80002101})
io_uring_enter(r8, 0xd81, 0x0, 0x0, 0x0, 0x0)
r13 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCMIWAIT(r13, 0x5453, 0x3000000)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r12)
sendmmsg$inet(r7, &(0x7f0000000440)=[{{&(0x7f00000003c0)={0x2, 0x1, @local}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064", 0x14}, {&(0x7f0000000100)="174640b6d80fb2eedc81ba60ccbb9df1", 0x10}], 0x2}}], 0x1, 0x840)
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r1, &(0x7f0000000040)={r4, 0xffffffffffffffff, 0xff})

3.27025134s ago: executing program 3 (id=1853):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x41}}, @in={0x2, 0x0, @local}, @in6={0xa, 0x0, 0x1, @private0}], 0x3c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000100))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000700)='kfree\x00', r3, 0x0, 0x7}, 0x18)
fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0xe01, 0x0, 0x0, {0x2}}], {0x14}}, 0x50}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b000000080000000c0000000400000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000f7ff835e0b05edc59f00009a2230fa0d1a8391f7976a6d6318b32d6a839b905eacdbfe00000000000000"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000100000000000000000000001811080010360f902b37279c75d685833f7ce5a27e0e25b8eba31a8297985db9634ddf64f0ef77502b733b5d99a7097e7ca598d3f972f5669d000000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r8}, 0x18)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r4}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/rcu_stall_count', 0x80000, 0x162)
signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0xc9ca]}, 0x8)

3.012917684s ago: executing program 1 (id=1856):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
write$RDMA_USER_CM_CMD_QUERY(r0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
sendmsg$nl_generic(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0x12, &(0x7f0000000100)={&(0x7f0000000600)={0x160, 0x2a, 0x671e3073b2f2f18b, 0x70bd27, 0x25dfdbfd, {0xc}, [@nested={0x2d, 0xcc, 0x0, 0x1, [@nested={0x4, 0x1b}, @nested={0x4, 0x9a}, @generic="35f79fb6da", @nested={0x4, 0xd9}, @nested={0x4, 0x139}, @typed={0xe, 0x57, 0x0, 0x0, @str='syzkaller\x00'}, @nested={0x4, 0x130}]}, @typed={0xe, 0xf8, 0x0, 0x0, @str='map_files\x00'}, @generic, @typed={0xc8, 0x9b, 0x0, 0x0, @binary="88513ca757161733401cddf85ee06cae62294e4192e0af20a28336b68a7f342595cd027b7572b291bbeb1e910ebb268a18146744330ea2ebb72160c7f18f70e5361545e9f11b6163d632037c89cb678bb23ba52292b356f51b3ded116239c36eded6519f492a8d5a88059815d760b0bac75ec35237bf4b07699057b52e50bb3a9ba07da66949af94101ee7e8fd203dfe3ca3f94a32671eaa755a6168bdd3c1970c593fec4208d8c586d4396e4f7cee45df434abe080e63543df95fe31aa3de679cee2a23"}, @generic="6d89d365f430e3e75b25e8539dd946e285620ec5bc74c82f60e5aa3e9e90ea2886547426fc4405cdd8f9185e269c0353f994b8c57fd82360a4ae6068fd387374c5b7192e"]}, 0x160}, 0x1, 0x0, 0x0, 0x80}, 0x240408c0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1e, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r0, @ANYBLOB="0000000000000000b70200004167c1c218d9f30f00000000850000008300ff00bf0900000000000055090100000000009500000800000000bf910016f6f610b5458e951aea720000000000b702000043e7b5538500000085000000b7000000000000009505641dacbc4a4391ec7c85b0805b04bd5ab0783e63b10b68dd88cfc6c3e4caff5c33b6d72653a35f7dba2404ebbc8c7e7a9a441e8f11b4376cd42e7d6df468e38f9965fd527a7694f70c46af1a4efa0dd9975b527d9bbc1eb32f2fd99d956eb7c3ad64b7"], &(0x7f0000000080)='syzkaller\x00', 0x8001, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
writev(r1, &(0x7f00000003c0)=[{&(0x7f00000002c0)="c1", 0x1}], 0x1)
msgrcv(0x0, 0x0, 0x0, 0x2, 0x3800)

2.972534774s ago: executing program 1 (id=1857):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00')
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000140), 0x106, 0x8}}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0xc0686611, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
setns(0xffffffffffffffff, 0x24020000)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
memfd_create(0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8000000003, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x5, 0x800000000003}, 0x115d2, 0x0, 0x10000005, 0x7, 0x3c, 0x8, 0xfffc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

2.955387584s ago: executing program 5 (id=1858):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, 0x0, &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)='n', 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
close(r0)

2.734241828s ago: executing program 2 (id=1859):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x38324, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2535}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x152610}], 0x1, 0x0, 0xe00}, 0x1f00)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r2, 0x0)
r3 = syz_clone(0x40200, 0x0, 0x49, 0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001000)={0x18, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='br_fdb_add\x00', r4}, 0xfffffe9e)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0)={'#! ', './file0'}, 0xb)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000080)}, 0x8010, 0x9f, 0x0, 0x0, 0x0, 0xfffffffc, 0xfffe, 0x0, 0x0, 0x0, 0xffff}, r3, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x10, 0x4, 0x0, 0xfb, 0x82, 0x80000000000, 0xa0001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={&(0x7f0000000080)}, 0x2292, 0x5, 0x0, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x40, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x0, 0x0, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000003100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_clone(0xae12e400, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, @void, @value}, 0x94)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r9 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r10 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r10, 0x0)
write$selinux_load(r9, &(0x7f0000000000)=ANY=[], 0xffa8)
fcntl$getownex(r8, 0x10, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000f40)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000e40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000f00)='kvm_dirty_ring_reset\x00', r7, 0x0, 0xfffffffffffffffd}, 0x18)

2.733918258s ago: executing program 5 (id=1860):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
socket$kcm(0x11, 0xa, 0x300)
syz_emit_ethernet(0x33, &(0x7f0000000500)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x11, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}, "00fd3c2d87"}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x7, 0x18, 0x0, @wg=@data={0x4, 0x80, 0x3}}}}}}, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040), 0x10)
listen(r1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
socket(0x28, 0x5, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4e20, @remote}, 0x10)
recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x40000101, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023893)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)

2.679281259s ago: executing program 5 (id=1862):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
socket$kcm(0x11, 0xa, 0x300)
syz_emit_ethernet(0x33, &(0x7f0000000500)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x11, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}, "00fd3c2d87"}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x7, 0x18, 0x0, @wg=@data={0x4, 0x80, 0x3}}}}}}, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040), 0x10)
listen(r1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x40000101, 0x0, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)

2.566891601s ago: executing program 5 (id=1863):
syz_io_uring_setup(0x7219, 0x0, &(0x7f0000000040)=<r0=>0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x74, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r6, {0xfff2, 0x4}, {}, {0x5, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x44, 0x2, [@TCA_FLOW_EMATCHES={0x40, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x34, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x1c, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{}, {0x5, 0x8}}}, @TCA_EM_META_LVALUE={0x4}]}}]}]}]}}]}, 0x74}, 0x1, 0x0, 0x0, 0x400c021}, 0x20040054)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x54, 0x0, 0x0, 0x0, &(0x7f00000001c0), 0x1, 0x20})
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="1f4b0000000000005afd308329caace186dd4142623d991b4cc032688e75c5d400"/42, @ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@noquota}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x82f}}, {@grpquota}, {@debug}, {@debug}, {@grpid}]}, 0x80, 0x536, &(0x7f0000000680)="$eJzs3c9rJFkdAPBv9XRn50dmO6sedMF1dVdmFp3uycbdDR7WEURPC+J6H2PSE8J00iHd2Z2EgJm/QBBR0ZNevAj+AYIMePEowoCeFVYU0YweBHVKqrqSyWa6k56xtzs/Ph+oqVevqvr7Xg2vUq/qURXAmfViRNyIiIdpmr4SEdUiv1RMsd2dsu0e7GzNZ1MSafr235JIirzd30qK+aVit/MR8bWvRHwzeTxue2Pz9lyz2Vgrluud5dV6e2Pz2tLy3GJjsbEyMzP9+uwbs6/NXh9KPS9HxJtf+tP3vv3TL7/5y8+++8ebf7maVTsmi/X76/EEskNUPmyDbtUr+bHYle2w9hTBjqtyXsPChV5bpGmaPkyr+3LujqRkAAAclF3AfigiPhURr0Q1zh1+OQsAAACcQOkXJuM/SfcJTQ8TffIBAACAE6SUj4FNSrViLMBklEq1WncM70fiYqnZanc+c6u1vrJw/4eTETEVldKtpWbjejFWeCoqSbY8nacfLb96YHkmIp6LiO9WL+TLtflWc2HcNz8AAADgjLh0oP//z2q3/w8AAACcMlOPZ5XGUQ4AAADgg9Oj/w8AAACcMvr/AAAAcKp99a23sind/f71wjsb67db71xbaLRv15bX52vzrbXV2mKrtZi/s2/5qN9rtlqrn4uV9Tv1TqPdqbc3Nm8ut9ZXOjeX3vcJbAAAAGCEnvvEvd8nEbH9+Qv5lJkYd6GAkSjvpZJi3qP1/+HZ7vy9ERUKGIlzA2zz3jMjKAgwcuVxFwAYm8q4CwCMXXLE+r6Dd35TzD853PIAAADDd+Vj/Z//H/4NgG2fCIATTiOGs+vA8/+0Oq6CACOXP/8fdMCviwU4VSoDjQAETrP/+/n/kdL0iQoEAAAM3WQ+JaVacXtvMkqlWi3icv5ZgEpya6nZuB4Rz0bE76qVZ7Ll6XzP5Mg+AwAAAAAAAAAAAAAAAAAAAAAAAADQlaZJpIe5cehaAAAA4ASIKP05+VX3Xf5Xqi9PHrw/MJH8K/8k8EREvPujt79/Z67TWZvO8v++l9/5QZH/6jjuYAAAAAAH7fbTd/vxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADBMD3a25h/sbKX/3tmaH2Xcv34xIqb24udTd005zufz81GJiIv/SKK8b78kIs4NIf723Yj4aK/4SVasvZC94l/44OPHVHEUesW/NIT4cJbdy84/N3q1v1K8mM97t79yxPuWn1b/81/snf/O9Wn/lweM8fz9n9f7xr8b8Xy59/lnN37SJ/5LURoo/je+vrnZb13644gr0Tv+/lj1zvJqvb2xeW1peW6xsdhYmZmZfn32jdnXZq/Xby01G8W/PWN85+O/eHhY/S/2iT91RP1fHqj2Ef+9f2fnw91kpVf8qy/1iP/rnxRbPB6/VPzt+3SRztZf2U1vd9P7vfCz375wWP0XHtW/8iT//1cHrP9QGgoAMDTtjc3bc81mY+0kJCpPs1fWSz8OhZc4folvDfUH0zRNszbVY9W9iBjkd5I4DoclT4z7zAQAAAzbo4v+cZcEAAAAAAAAAAAAAAAAAAAAzq4hvjNsot9r9g7G3N5LJd4MDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcG/8LAAD//3uY3uY=")
r7 = fspick(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000340)={'team_slave_1\x00', 0x8000})
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)

2.243710445s ago: executing program 3 (id=1866):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0}, 0x18)
getpid()
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000ac0), 0x1, 0x44a, &(0x7f0000000400)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r2, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
syz_emit_ethernet(0x66, &(0x7f00000012c0)=ANY=[], 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8000, &(0x7f0000000100), 0x1, 0x7b2, &(0x7f00000007c0)="$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")
ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000040)={'bridge_slave_1\x00', 0x400})
r4 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f0000001540)=<r5=>0x0)
symlink(0x0, 0x0)
io_submit(r5, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r4, &(0x7f0000000000), 0x4000}])
lseek(r2, 0x1, 0x1)
getdents64(r2, 0x0, 0x0)
lremovexattr(&(0x7f0000000200)='./bus\x00', &(0x7f00000002c0)=ANY=[])
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(0xffffffffffffffff, 0x0, r6, 0x0, 0x46)
close(r6)

2.230765846s ago: executing program 5 (id=1867):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
socket$kcm(0x2, 0x3, 0x2)
write$tun(0xffffffffffffffff, &(0x7f0000000240)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x0, 0x14}, @ipv4=@tcp={{0x6, 0x4, 0x0, 0x8, 0xfc0, 0x68, 0x0, 0x3, 0x6, 0x0, @private=0xa010100, @remote, {[@end]}}, {{0x4e20, 0x4e22, 0x41424344, 0x41424344, 0x1, 0x0, 0x6, 0x10, 0x1, 0x0, 0x8, {[@mss={0x2, 0x4, 0xb}]}}, {"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"}}}}, 0xfce)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = dup(r1)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)

1.603599645s ago: executing program 3 (id=1870):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x38324, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2535}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x152610}], 0x1, 0x0, 0xe00}, 0x1f00)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r2, 0x0)
r3 = syz_clone(0x40200, 0x0, 0x49, 0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001000)={0x18, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='br_fdb_add\x00', r4}, 0xfffffe9e)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f00000004c0)={'#! ', './file0'}, 0xb)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000080)}, 0x8010, 0x9f, 0x0, 0x0, 0x0, 0xfffffffc, 0xfffe, 0x0, 0x0, 0x0, 0xffff}, r3, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x10, 0x4, 0x0, 0xfb, 0x82, 0x80000000000, 0xa0001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={&(0x7f0000000080)}, 0x2292, 0x5, 0x0, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x40, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x0, 0x0, 0x0)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000003100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
syz_clone(0xae12e400, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, @void, @value}, 0x94)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
r9 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r10 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r10, 0x0)
write$selinux_load(r9, &(0x7f0000000000)=ANY=[], 0xffa8)
fcntl$getownex(r8, 0x10, &(0x7f0000000000))
socket(0x40000000015, 0x5, 0x0)

1.582435666s ago: executing program 0 (id=1871):
syz_io_uring_setup(0x7219, 0x0, &(0x7f0000000040)=<r0=>0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, 0x0, 0x0, 0x4)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x64, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r6, {0xfff2, 0x4}, {}, {0x5, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x34, 0x2, [@TCA_FLOW_EMATCHES={0x30, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x24, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0xc, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}}}]}]}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x400c021}, 0x20040054)
syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x54, 0x0, 0x0, 0x0, &(0x7f00000001c0), 0x1, 0x20})
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYBLOB="1f4b0000000000005afd308329caace186dd4142623d991b4cc032688e75c5d400"/42, @ANYRES32, @ANYRES32], 0x20)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x19f, &(0x7f0000000100)={[{@noquota}, {@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x82f}}, {@grpquota}, {@debug}, {@debug}, {@grpid}]}, 0x80, 0x536, &(0x7f0000000680)="$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")
r7 = fspick(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000340)={'team_slave_1\x00', 0x8000})
pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r7, 0x7, 0x0, 0x0, 0x0)

1.525315597s ago: executing program 2 (id=1872):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
wait4(r2, 0x0, 0x40000000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0xfffffffc, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2000008, &(0x7f00000003c0), 0xfc, 0x53e, &(0x7f0000000940)="$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")
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="3700000013000318680907070000000f0000ff3f13000000170a001700000000040037000d00030001362564aa58b9a6c011f6bbf44dc4", 0x37}], 0x1)

1.472884357s ago: executing program 0 (id=1873):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0xa, 0x300)
socket$packet(0x11, 0xa, 0x300)
socket$kcm(0x11, 0xa, 0x300)
syz_emit_ethernet(0x33, &(0x7f0000000500)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x11, 0x0, @gue={{0x1, 0x1, 0x2, 0xc, 0x100, @void}, "00fd3c2d87"}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x7, 0x18, 0x0, @wg=@data={0x4, 0x80, 0x3}}}}}}, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040), 0x10)
listen(r1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0x40000101, 0x0, 0x0)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)

1.118476463s ago: executing program 0 (id=1874):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)=',-\x10*\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)='n', 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
close(r0)

1.022430464s ago: executing program 0 (id=1875):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&'], 0x10)
sendmsg$inet(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000bc0)=[{0x0}], 0x1}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f00000002c0)=r0}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
recvmsg$unix(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/229, 0xec1}], 0x1}, 0x0)

714.620219ms ago: executing program 0 (id=1876):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x147842, 0x49)
preadv2(r1, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), 0xffffffffffffffff)

606.051421ms ago: executing program 0 (id=1877):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x41}}, @in={0x2, 0x0, @local}, @in6={0xa, 0x0, 0x1, @private0}], 0x3c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f0000000100))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000700)='kfree\x00', r3, 0x0, 0x7}, 0x18)
fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000900)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0xe01, 0x0, 0x0, {0x2}}], {0x14}}, 0x50}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b000000080000000c0000000400000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000f7ff835e0b05edc59f00009a2230fa0d1a8391f7976a6d6318b32d6a839b905eacdbfe00000000000000"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="180000000100000000000000000000001811080010360f902b37279c75d685833f7ce5a27e0e25b8eba31a8297985db9634ddf64f0ef77502b733b5d99a7097e7ca598d3f972f5669d000000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r8}, 0x18)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r9}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r4}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/kernel/rcu_stall_count', 0x80000, 0x162)
signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0xc9ca]}, 0x8)

556.424492ms ago: executing program 3 (id=1878):
r0 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, 0x0, &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000540)='\x00', &(0x7f0000001c80)='n', 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0)
close(r0)

363.227785ms ago: executing program 5 (id=1879):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001b0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3}, 0x18)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r5 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="01002abd7000fcdbdf250100000008000100", @ANYRES32=r6, @ANYBLOB="3c00028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004"], 0x58}, 0x1, 0x0, 0x0, 0x24004000}, 0x24040840)

335.715555ms ago: executing program 1 (id=1880):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
clock_gettime(0x0, &(0x7f00000000c0))

273.479406ms ago: executing program 2 (id=1881):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00'}, 0x10)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000100)={{{@in=@local, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4e24, 0x0, 0x4e23, 0x3, 0xa}, {0x4, 0x4, 0x0, 0x0, 0xfffffffffffffffc, 0x9, 0x1, 0x2}, {0xcb29, 0x6, 0x20053e5, 0x20}, 0x0, 0x1, 0x1, 0x1, 0x2, 0x3}, {{@in6=@empty, 0x0, 0x6c}, 0x2, @in6=@remote, 0x34ff, 0x4, 0x2, 0x0, 0x0, 0x6}}, 0xe8)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01032757c38d085641a726"], 0x20}, 0x1, 0x0, 0x0, 0x20040005}, 0x8840)

182.989427ms ago: executing program 1 (id=1882):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000003c0)={'vxcan0\x00', <r1=>0x0})
sendmsg$can_bcm(r0, &(0x7f0000000040)={&(0x7f0000000340)={0x1d, r1}, 0x10, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=r1, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000004"], 0x20000600}, 0x1, 0x0, 0x0, 0x4040040}, 0x0)

0s ago: executing program 1 (id=1883):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000003c0)={'vxcan0\x00', <r1=>0x0})
sendmsg$can_bcm(r0, &(0x7f0000000040)={&(0x7f0000000340)={0x1d, r1}, 0x10, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=r1, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000004"], 0x20000600}, 0x1, 0x0, 0x0, 0x4040040}, 0x0)

kernel console output (not intermixed with test programs):

8.946034][ T6890] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.947415][ T6910] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  108.954558][ T6905] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  108.977430][ T6890] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.005013][ T6913] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1198'.
[  109.017308][ T6910] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.1197: lblock 2 mapped to illegal pblock 2 (length 1)
[  109.031657][ T6910] EXT4-fs (loop1): Remounting filesystem read-only
[  109.038511][ T6910] EXT4-fs (loop1): 1 orphan inode deleted
[  109.044746][ T6910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.057481][ T6905] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1195: iget: bad i_size value: 360287970189639690
[  109.071096][ T6905] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1195: Bad quota inode: 15, type: 2
[  109.072231][ T6890] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.082336][ T6905] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  109.091812][ T6910] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.151453][ T6890] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.260583][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.281886][ T6910] loop1: detected capacity change from 0 to 2048
[  109.337696][ T6910] Alternate GPT is invalid, using primary GPT.
[  109.344029][ T6910]  loop1: p1 p2 p3
[  109.359846][ T6936] loop2: detected capacity change from 0 to 164
[  109.396776][ T6936] syz.2.1206: attempt to access beyond end of device
[  109.396776][ T6936] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  109.427563][ T6936] syz.2.1206: attempt to access beyond end of device
[  109.427563][ T6936] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  109.459788][ T6936] iso9660: Corrupted directory entry in block 4 of inode 1792
[  109.509872][   T29] kauditd_printk_skb: 159 callbacks suppressed
[  109.509890][   T29] audit: type=1326 audit(1750545007.621:3729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe833e1d3df code=0x7ffc0000
[  109.542470][ T6943] loop4: detected capacity change from 0 to 1024
[  109.550030][ T6943] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  109.559002][   T29] audit: type=1326 audit(1750545007.651:3730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe833e1e9b7 code=0x7ffc0000
[  109.582399][   T29] audit: type=1326 audit(1750545007.651:3731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe833e1d290 code=0x7ffc0000
[  109.605926][   T29] audit: type=1326 audit(1750545007.651:3732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe833e1e52b code=0x7ffc0000
[  109.606667][ T6943] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  109.629287][   T29] audit: type=1326 audit(1750545007.661:3733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe833e1d58a code=0x7ffc0000
[  109.640898][ T6943] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  109.662875][   T29] audit: type=1326 audit(1750545007.661:3734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe833e1d58a code=0x7ffc0000
[  109.694272][   T29] audit: type=1326 audit(1750545007.661:3735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe833e1d197 code=0x7ffc0000
[  109.717826][   T29] audit: type=1326 audit(1750545007.661:3736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6942 comm="syz.4.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fe833e200ca code=0x7ffc0000
[  109.721295][ T6943] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 2: comm syz.4.1209: lblock 2 mapped to illegal pblock 2 (length 1)
[  109.756870][ T6943] EXT4-fs (loop4): Remounting filesystem read-only
[  109.763426][ T6943] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  109.771925][ T6943] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  109.780980][ T6943] EXT4-fs (loop4): 1 orphan inode deleted
[  109.787456][ T6943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.808075][ T6943] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.961156][ T6943] loop4: detected capacity change from 0 to 2048
[  109.972154][ T6952] SELinux: failed to load policy
[  109.978426][ T6963] FAULT_INJECTION: forcing a failure.
[  109.978426][ T6963] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.991619][ T6963] CPU: 1 UID: 0 PID: 6963 Comm: syz.3.1215 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  109.991655][ T6963] Tainted: [W]=WARN
[  109.991662][ T6963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  109.991676][ T6963] Call Trace:
[  109.991682][ T6963]  <TASK>
[  109.991729][ T6963]  __dump_stack+0x1d/0x30
[  109.991752][ T6963]  dump_stack_lvl+0xe8/0x140
[  109.991773][ T6963]  dump_stack+0x15/0x1b
[  109.991789][ T6963]  should_fail_ex+0x265/0x280
[  109.991867][ T6963]  should_fail+0xb/0x20
[  109.991895][ T6963]  should_fail_usercopy+0x1a/0x20
[  109.991986][ T6963]  _copy_to_user+0x20/0xa0
[  109.992008][ T6963]  simple_read_from_buffer+0xb5/0x130
[  109.992041][ T6963]  proc_fail_nth_read+0x100/0x140
[  109.992119][ T6963]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  109.992154][ T6963]  vfs_read+0x1a0/0x6f0
[  109.992247][ T6963]  ? __rcu_read_unlock+0x4f/0x70
[  109.992275][ T6963]  ? __rcu_read_unlock+0x4f/0x70
[  109.992296][ T6963]  ? __fget_files+0x184/0x1c0
[  109.992364][ T6963]  ksys_read+0xda/0x1a0
[  109.992517][ T6963]  __x64_sys_read+0x40/0x50
[  109.992550][ T6963]  x64_sys_call+0x2d77/0x2fb0
[  109.992571][ T6963]  do_syscall_64+0xd2/0x200
[  109.992590][ T6963]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  109.992678][ T6963]  ? clear_bhb_loop+0x40/0x90
[  109.992751][ T6963]  ? clear_bhb_loop+0x40/0x90
[  109.992773][ T6963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.992851][ T6963] RIP: 0033:0x7f0a83ffd33c
[  109.992922][ T6963] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  109.992941][ T6963] RSP: 002b:00007f0a82667030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  109.992961][ T6963] RAX: ffffffffffffffda RBX: 00007f0a84225fa0 RCX: 00007f0a83ffd33c
[  109.992974][ T6963] RDX: 000000000000000f RSI: 00007f0a826670a0 RDI: 0000000000000006
[  109.992986][ T6963] RBP: 00007f0a82667090 R08: 0000000000000000 R09: 0000000000000000
[  109.993068][ T6963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.993081][ T6963] R13: 0000000000000000 R14: 00007f0a84225fa0 R15: 00007ffe0aa80fd8
[  109.993101][ T6963]  </TASK>
[  110.224410][ T6943] Alternate GPT is invalid, using primary GPT.
[  110.230885][ T6943]  loop4: p1 p2 p3
[  110.287530][ T6971] loop3: detected capacity change from 0 to 256
[  110.468869][ T6983] syzkaller1: entered promiscuous mode
[  110.474435][ T6983] syzkaller1: entered allmulticast mode
[  111.048277][ T7035] xt_TPROXY: Can be used only with -p tcp or -p udp
[  111.127546][ T7031] loop2: detected capacity change from 0 to 512
[  111.168809][ T7031] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1236: Failed to acquire dquot type 1
[  111.198900][ T7031] EXT4-fs (loop2): 1 truncate cleaned up
[  111.204846][ T7035] wireguard0: entered promiscuous mode
[  111.211111][ T7031] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.223700][ T7037] loop1: detected capacity change from 0 to 512
[  111.243510][ T7031] ext4 filesystem being mounted at /273/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.254124][ T7037] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  111.271449][ T7037] EXT4-fs (loop1): 1 truncate cleaned up
[  111.286601][ T7037] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.301769][ T7037] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.360643][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.389483][ T7053] loop1: detected capacity change from 0 to 512
[  111.404057][ T7053] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  111.422619][ T7053] EXT4-fs (loop1): orphan cleanup on readonly fs
[  111.439769][ T7053] EXT4-fs error (device loop1): ext4_quota_enable:7124: inode #15: comm syz.1.1249: iget: bad i_size value: 360287970189639690
[  111.493293][ T7053] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.1249: Bad quota inode: 15, type: 2
[  111.509359][ T7056] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1248'.
[  111.520152][ T7053] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  111.536628][ T7053] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  111.543886][ T7053] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.562503][ T7053] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  111.572544][ T7053] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  111.592757][ T7053] EXT4-fs error (device loop1): ext4_quota_enable:7124: inode #15: comm syz.1.1249: iget: bad i_size value: 360287970189639690
[  111.592981][ T7053] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.1249: Bad quota inode: 15, type: 2
[  111.643994][ T7053] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  111.723730][ T7080] syzkaller1: entered promiscuous mode
[  111.723777][ T7080] syzkaller1: entered allmulticast mode
[  111.790864][ T7086] FAULT_INJECTION: forcing a failure.
[  111.790864][ T7086] name failslab, interval 1, probability 0, space 0, times 0
[  111.803740][ T7086] CPU: 0 UID: 0 PID: 7086 Comm: syz.2.1260 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  111.803810][ T7086] Tainted: [W]=WARN
[  111.803818][ T7086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  111.803833][ T7086] Call Trace:
[  111.803840][ T7086]  <TASK>
[  111.803850][ T7086]  __dump_stack+0x1d/0x30
[  111.803870][ T7086]  dump_stack_lvl+0xe8/0x140
[  111.803951][ T7086]  dump_stack+0x15/0x1b
[  111.803973][ T7086]  should_fail_ex+0x265/0x280
[  111.804005][ T7086]  should_failslab+0x8c/0xb0
[  111.804058][ T7086]  __kmalloc_noprof+0xa5/0x3e0
[  111.804088][ T7086]  ? security_sk_alloc+0x52/0x120
[  111.804123][ T7086]  ? should_failslab+0x8c/0xb0
[  111.804223][ T7086]  security_sk_alloc+0x52/0x120
[  111.804254][ T7086]  sk_prot_alloc+0xc2/0x190
[  111.804291][ T7086]  sk_alloc+0x34/0x360
[  111.804328][ T7086]  bpf_prog_test_run_skb+0x234/0xbd0
[  111.804434][ T7086]  ? __rcu_read_unlock+0x4f/0x70
[  111.804478][ T7086]  ? __fget_files+0x184/0x1c0
[  111.804497][ T7086]  ? __rcu_read_unlock+0x4f/0x70
[  111.804528][ T7086]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  111.804560][ T7086]  bpf_prog_test_run+0x22a/0x390
[  111.804585][ T7086]  __sys_bpf+0x3dc/0x790
[  111.804624][ T7086]  __x64_sys_bpf+0x41/0x50
[  111.804652][ T7086]  x64_sys_call+0x2478/0x2fb0
[  111.804788][ T7086]  do_syscall_64+0xd2/0x200
[  111.804806][ T7086]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  111.804910][ T7086]  ? clear_bhb_loop+0x40/0x90
[  111.804944][ T7086]  ? clear_bhb_loop+0x40/0x90
[  111.804966][ T7086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.804986][ T7086] RIP: 0033:0x7fd16052e929
[  111.805002][ T7086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.805019][ T7086] RSP: 002b:00007fd15eb97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  111.805038][ T7086] RAX: ffffffffffffffda RBX: 00007fd160755fa0 RCX: 00007fd16052e929
[  111.805124][ T7086] RDX: 000000000000001e RSI: 0000200000000080 RDI: 000000000000000a
[  111.805136][ T7086] RBP: 00007fd15eb97090 R08: 0000000000000000 R09: 0000000000000000
[  111.805149][ T7086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.805160][ T7086] R13: 0000000000000000 R14: 00007fd160755fa0 R15: 00007ffff4a03b08
[  111.805180][ T7086]  </TASK>
[  112.036920][ T3310] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.131609][ T7088] loop4: detected capacity change from 0 to 512
[  112.169502][ T7088] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1259: Failed to acquire dquot type 1
[  112.183905][ T7088] EXT4-fs (loop4): 1 truncate cleaned up
[  112.190446][ T7088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.203459][ T7088] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.390435][ T7120] loop3: detected capacity change from 0 to 512
[  112.391841][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.417604][ T7120] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  112.426774][ T7120] EXT4-fs (loop3): orphan cleanup on readonly fs
[  112.539024][ T7120] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1274: iget: bad i_size value: 360287970189639690
[  112.626328][ T7120] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1274: Bad quota inode: 15, type: 2
[  112.677810][ T7120] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  112.726434][ T7120] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  112.734337][ T7120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  112.778754][ T7120] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  112.783573][ T7175] lo speed is unknown, defaulting to 1000
[  112.810337][ T7120] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  112.854572][ T7120] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1274: iget: bad i_size value: 360287970189639690
[  112.889588][ T7120] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1274: Bad quota inode: 15, type: 2
[  113.002601][ T7120] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  113.166545][ T7213] netlink: 'syz.1.1290': attribute type 4 has an invalid length.
[  113.353704][ T7215] loop4: detected capacity change from 0 to 512
[  113.373439][ T5732] page_pool_release_retry() stalled pool shutdown: id 36, 3 inflight 60 sec
[  113.392074][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.415772][ T7219] syzkaller1: entered promiscuous mode
[  113.421501][ T7219] syzkaller1: entered allmulticast mode
[  113.495564][ T7215] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1286: Failed to acquire dquot type 1
[  113.508151][ T7215] EXT4-fs (loop4): 1 truncate cleaned up
[  113.514567][ T7215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.527724][ T7215] ext4 filesystem being mounted at /293/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.646943][ T7228] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 248: padding at end of block bitmap is not set
[  113.708693][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.879230][ T7250] loop4: detected capacity change from 0 to 512
[  113.888616][ T7250] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  113.925023][ T7250] EXT4-fs (loop4): orphan cleanup on readonly fs
[  113.956705][ T7250] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #15: comm syz.4.1303: iget: bad i_size value: 360287970189639690
[  114.017964][ T7250] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.1303: Bad quota inode: 15, type: 2
[  114.040289][ T7250] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  114.106955][ T7250] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  114.126990][ T7250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  114.194320][ T7250] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  114.366858][ T7250] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  114.393583][ T7250] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #15: comm syz.4.1303: iget: bad i_size value: 360287970189639690
[  114.393885][ T7250] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.1303: Bad quota inode: 15, type: 2
[  114.394757][ T7250] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  114.756437][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.779599][   T29] kauditd_printk_skb: 270 callbacks suppressed
[  114.779613][   T29] audit: type=1400 audit(1750545525.885:4001): avc:  denied  { create } for  pid=7273 comm="syz.2.1312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  114.843429][   T29] audit: type=1326 audit(1750545525.935:4002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7273 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd16052e929 code=0x7ffc0000
[  114.868158][   T29] audit: type=1326 audit(1750545525.955:4003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  114.891736][   T29] audit: type=1326 audit(1750545525.955:4004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  114.915203][   T29] audit: type=1326 audit(1750545525.955:4005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  114.938665][   T29] audit: type=1326 audit(1750545525.955:4006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  114.962895][   T29] audit: type=1326 audit(1750545526.075:4007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  115.003565][   T29] audit: type=1326 audit(1750545526.105:4008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  115.027195][   T29] audit: type=1326 audit(1750545526.105:4009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  115.051088][   T29] audit: type=1326 audit(1750545526.105:4010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7286 comm="syz.1.1315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc640a9e929 code=0x7ffc0000
[  115.054422][ T7294] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1320'.
[  115.097139][ T7297] loop2: detected capacity change from 0 to 512
[  115.099166][ T7298] loop4: detected capacity change from 0 to 512
[  115.137633][ T7292] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1318'.
[  115.150423][ T7297] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  115.158793][ T7298] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  115.161108][ T7297] EXT4-fs (loop2): orphan cleanup on readonly fs
[  115.189612][ T7298] EXT4-fs (loop4): orphan cleanup on readonly fs
[  115.193905][ T7297] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1319: iget: bad i_size value: 360287970189639690
[  115.206259][ T7298] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #15: comm syz.4.1321: iget: bad i_size value: 360287970189639690
[  115.234718][ T7298] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.1321: Bad quota inode: 15, type: 2
[  115.244676][ T7305] syzkaller1: entered promiscuous mode
[  115.251387][ T7305] syzkaller1: entered allmulticast mode
[  115.259179][ T7298] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  115.274819][ T7297] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1319: Bad quota inode: 15, type: 2
[  115.286680][ T7297] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  115.301582][ T7298] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  115.309337][ T7298] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.330028][ T7297] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  115.337443][ T7297] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.350156][ T7298] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  115.356271][ T7298] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  115.367780][ T7297] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  115.367922][ T7297] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  115.387022][ T7297] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1319: iget: bad i_size value: 360287970189639690
[  115.387304][ T7297] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1319: Bad quota inode: 15, type: 2
[  115.396110][ T7297] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  115.437280][ T7298] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #15: comm syz.4.1321: iget: bad i_size value: 360287970189639690
[  115.473850][ T7298] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.1321: Bad quota inode: 15, type: 2
[  115.485248][ T7298] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  115.509240][ T7317] syzkaller1: entered promiscuous mode
[  115.514813][ T7317] syzkaller1: entered allmulticast mode
[  115.569563][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.617822][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.658048][ T7334] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1333'.
[  115.687077][ T7327] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1332'.
[  116.087572][ T7366] loop2: detected capacity change from 0 to 512
[  116.095503][ T7366] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  116.103738][ T7366] EXT4-fs (loop2): orphan cleanup on readonly fs
[  116.110483][ T7366] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1346: iget: bad i_size value: 360287970189639690
[  116.126636][ T7366] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1346: Bad quota inode: 15, type: 2
[  116.284940][ T7366] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  116.321293][ T7366] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  116.331673][ T7366] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.367757][ T7366] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  116.377970][ T7381] loop3: detected capacity change from 0 to 512
[  116.384962][ T7366] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  116.401022][ T7366] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1346: iget: bad i_size value: 360287970189639690
[  116.415879][ T7366] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1346: Bad quota inode: 15, type: 2
[  116.432342][ T7366] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  116.435614][ T7381] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1344: Failed to acquire dquot type 1
[  116.466606][ T7381] EXT4-fs (loop3): 1 truncate cleaned up
[  116.472888][ T7381] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.485580][ T7381] ext4 filesystem being mounted at /235/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.610894][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.676729][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.769463][ T7401] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1356'.
[  116.813463][ T7401] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1356'.
[  116.827069][ T7411] loop4: detected capacity change from 0 to 1024
[  116.834121][ T7411] EXT4-fs: Ignoring removed oldalloc option
[  116.875174][ T7411] EXT4-fs: Ignoring removed orlov option
[  116.899170][ T7411] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  116.920978][ T7411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.045131][ T7411] lo speed is unknown, defaulting to 1000
[  117.538076][ T7436] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.544084][ T7454] lo speed is unknown, defaulting to 1000
[  117.570324][ T7456] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1377'.
[  117.592102][ T7456] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1377'.
[  117.723051][ T7461] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1379'.
[  117.921151][ T7469] lo speed is unknown, defaulting to 1000
[  118.000330][ T7488] loop3: detected capacity change from 0 to 128
[  118.037052][ T7488] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.075564][ T7488] ext4 filesystem being mounted at /246/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  118.121092][ T7469] chnl_net:caif_netlink_parms(): no params data found
[  118.169837][ T7497] FAULT_INJECTION: forcing a failure.
[  118.169837][ T7497] name failslab, interval 1, probability 0, space 0, times 0
[  118.182581][ T7497] CPU: 0 UID: 0 PID: 7497 Comm: syz.2.1390 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  118.182623][ T7497] Tainted: [W]=WARN
[  118.182631][ T7497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.182647][ T7497] Call Trace:
[  118.182654][ T7497]  <TASK>
[  118.182735][ T7497]  __dump_stack+0x1d/0x30
[  118.182760][ T7497]  dump_stack_lvl+0xe8/0x140
[  118.182838][ T7497]  dump_stack+0x15/0x1b
[  118.182859][ T7497]  should_fail_ex+0x265/0x280
[  118.182902][ T7497]  should_failslab+0x8c/0xb0
[  118.182975][ T7497]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  118.183093][ T7497]  ? sidtab_sid2str_get+0xa0/0x130
[  118.183121][ T7497]  ? skb_put+0xa9/0xf0
[  118.183158][ T7497]  kmemdup_noprof+0x2b/0x70
[  118.183201][ T7497]  sidtab_sid2str_get+0xa0/0x130
[  118.183228][ T7497]  security_sid_to_context_core+0x1eb/0x2e0
[  118.183251][ T7497]  security_sid_to_context+0x27/0x40
[  118.183271][ T7497]  avc_audit_post_callback+0x9d/0x520
[  118.183315][ T7497]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  118.183409][ T7497]  common_lsm_audit+0x1bb/0x230
[  118.183432][ T7497]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  118.183470][ T7497]  slow_avc_audit+0x104/0x140
[  118.183576][ T7497]  avc_has_perm+0x128/0x150
[  118.183609][ T7497]  selinux_socket_recvmsg+0x175/0x1b0
[  118.183644][ T7497]  security_socket_recvmsg+0x50/0x90
[  118.183707][ T7497]  sock_recvmsg+0x38/0x170
[  118.183802][ T7497]  __sys_recvfrom+0x122/0x1f0
[  118.183843][ T7497]  __x64_sys_recvfrom+0x76/0x90
[  118.183899][ T7497]  x64_sys_call+0x1a52/0x2fb0
[  118.183923][ T7497]  do_syscall_64+0xd2/0x200
[  118.183945][ T7497]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  118.183969][ T7497]  ? clear_bhb_loop+0x40/0x90
[  118.184009][ T7497]  ? clear_bhb_loop+0x40/0x90
[  118.184037][ T7497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.184062][ T7497] RIP: 0033:0x7fd16052e929
[  118.184160][ T7497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.184181][ T7497] RSP: 002b:00007fd15eb97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002d
[  118.184226][ T7497] RAX: ffffffffffffffda RBX: 00007fd160755fa0 RCX: 00007fd16052e929
[  118.184238][ T7497] RDX: 0000000000040000 RSI: 0000200000000140 RDI: 0000000000000007
[  118.184250][ T7497] RBP: 00007fd15eb97090 R08: 0000000000000000 R09: 0000000000000000
[  118.184264][ T7497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.184335][ T7497] R13: 0000000000000000 R14: 00007fd160755fa0 R15: 00007ffff4a03b08
[  118.184377][ T7497]  </TASK>
[  118.496279][ T3321] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.619712][ T7469] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.627064][ T7469] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.634705][ T7469] bridge_slave_0: entered allmulticast mode
[  118.645248][ T7469] bridge_slave_0: entered promiscuous mode
[  118.702916][ T7469] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.710351][ T7469] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.735735][ T7469] bridge_slave_1: entered allmulticast mode
[  118.748938][ T7469] bridge_slave_1: entered promiscuous mode
[  118.790965][ T7524] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1392'.
[  118.844294][ T7469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.872616][ T7528] capability: warning: `syz.2.1399' uses deprecated v2 capabilities in a way that may be insecure
[  118.879690][ T7469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.936768][ T7469] team0: Port device team_slave_0 added
[  118.958914][ T7530] syzkaller1: entered promiscuous mode
[  118.964488][ T7530] syzkaller1: entered allmulticast mode
[  118.975228][ T7469] team0: Port device team_slave_1 added
[  119.005409][ T7469] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.012478][ T7469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.038657][ T7469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.070152][ T7469] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.077384][ T7469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.103476][ T7469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.204308][ T7469] hsr_slave_0: entered promiscuous mode
[  119.232982][ T7469] hsr_slave_1: entered promiscuous mode
[  119.246691][ T7469] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.254496][ T7469] Cannot create hsr debugfs directory
[  119.289299][ T7544] syzkaller1: entered promiscuous mode
[  119.294828][ T7544] syzkaller1: entered allmulticast mode
[  119.466738][ T7469] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  119.491005][ T7469] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  119.587289][ T7559] SELinux: syz.0.1411 (7559) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  119.613749][ T7558] 8021q: VLANs not supported on ip_vti0
[  119.640675][ T7469] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  119.651205][ T7469] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  119.872651][ T7469] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.910111][ T7583] loop2: detected capacity change from 0 to 512
[  119.911040][ T7469] 8021q: adding VLAN 0 to HW filter on device team0
[  119.924307][ T7583] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  119.942634][ T7469] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  119.953058][ T7469] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  119.956837][ T7583] EXT4-fs (loop2): orphan cleanup on readonly fs
[  119.974089][ T7185] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.981192][ T7185] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.029688][ T7583] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1416: iget: bad i_size value: 360287970189639690
[  120.054372][ T7185] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.061510][ T7185] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.076520][ T7583] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1416: Bad quota inode: 15, type: 2
[  120.111599][ T7583] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  120.140906][ T7593] syzkaller1: entered promiscuous mode
[  120.146526][ T7593] syzkaller1: entered allmulticast mode
[  120.157855][ T7583] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  120.210045][ T7583] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  120.222547][ T7469] 8021q: adding VLAN 0 to HW filter on device batadv0
[  120.292824][ T7604] __nla_validate_parse: 3 callbacks suppressed
[  120.292841][ T7604] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1419'.
[  120.309647][ T7583] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  120.333812][ T7583] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  120.357559][ T7583] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1416: iget: bad i_size value: 360287970189639690
[  120.380713][ T7583] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1416: Bad quota inode: 15, type: 2
[  120.397728][ T7583] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  120.459935][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.594702][   T29] kauditd_printk_skb: 124 callbacks suppressed
[  120.594719][   T29] audit: type=1326 audit(1750545531.695:4133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.634415][ T7469] veth0_vlan: entered promiscuous mode
[  120.668351][ T7469] veth1_vlan: entered promiscuous mode
[  120.678377][   T29] audit: type=1326 audit(1750545531.755:4134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.701964][   T29] audit: type=1326 audit(1750545531.755:4135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.725770][   T29] audit: type=1326 audit(1750545531.755:4136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.749562][   T29] audit: type=1326 audit(1750545531.755:4137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.772022][ T7469] veth0_macvtap: entered promiscuous mode
[  120.773336][   T29] audit: type=1326 audit(1750545531.755:4138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.802517][   T29] audit: type=1326 audit(1750545531.755:4139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.807001][ T7469] veth1_macvtap: entered promiscuous mode
[  120.825948][   T29] audit: type=1326 audit(1750545531.755:4140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.854973][   T29] audit: type=1326 audit(1750545531.755:4141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.878510][   T29] audit: type=1326 audit(1750545531.755:4142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7619 comm="syz.3.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  120.947672][ T7469] batman_adv: batadv0: Interface activated: batadv_slave_0
[  121.004699][ T7469] batman_adv: batadv0: Interface activated: batadv_slave_1
[  121.030794][ T7642] syzkaller1: entered promiscuous mode
[  121.036452][ T7642] syzkaller1: entered allmulticast mode
[  121.049747][ T7469] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.058538][ T7469] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.067368][ T7469] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.076209][ T7469] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.177971][ T7649] warn_alloc: 8 callbacks suppressed
[  121.177986][ T7649] syz.3.1430: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  121.197982][ T7649] CPU: 0 UID: 0 PID: 7649 Comm: syz.3.1430 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  121.198098][ T7649] Tainted: [W]=WARN
[  121.198106][ T7649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  121.198123][ T7649] Call Trace:
[  121.198130][ T7649]  <TASK>
[  121.198138][ T7649]  __dump_stack+0x1d/0x30
[  121.198165][ T7649]  dump_stack_lvl+0xe8/0x140
[  121.198243][ T7649]  dump_stack+0x15/0x1b
[  121.198263][ T7649]  warn_alloc+0x12b/0x1a0
[  121.198307][ T7649]  __vmalloc_node_range_noprof+0x9c/0xe00
[  121.198347][ T7649]  ? probe_sched_wakeup+0x85/0xa0
[  121.198454][ T7649]  ? ttwu_do_activate+0x1cf/0x210
[  121.198511][ T7649]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  121.198543][ T7649]  ? __rcu_read_unlock+0x4f/0x70
[  121.198568][ T7649]  ? avc_has_perm_noaudit+0x1b1/0x200
[  121.198683][ T7649]  ? should_fail_ex+0x30/0x280
[  121.198751][ T7649]  ? xskq_create+0x36/0xe0
[  121.198832][ T7649]  vmalloc_user_noprof+0x7d/0xb0
[  121.198865][ T7649]  ? xskq_create+0x80/0xe0
[  121.198951][ T7649]  xskq_create+0x80/0xe0
[  121.198972][ T7649]  xsk_init_queue+0x95/0xf0
[  121.199012][ T7649]  xsk_setsockopt+0x35c/0x510
[  121.199038][ T7649]  ? __pfx_xsk_setsockopt+0x10/0x10
[  121.199099][ T7649]  __sys_setsockopt+0x181/0x200
[  121.199178][ T7649]  __x64_sys_setsockopt+0x64/0x80
[  121.199277][ T7649]  x64_sys_call+0x2bd5/0x2fb0
[  121.199297][ T7649]  do_syscall_64+0xd2/0x200
[  121.199338][ T7649]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  121.199362][ T7649]  ? clear_bhb_loop+0x40/0x90
[  121.199381][ T7649]  ? clear_bhb_loop+0x40/0x90
[  121.199401][ T7649]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.199484][ T7649] RIP: 0033:0x7f0a83ffe929
[  121.199554][ T7649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.199577][ T7649] RSP: 002b:00007f0a82667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  121.199598][ T7649] RAX: ffffffffffffffda RBX: 00007f0a84225fa0 RCX: 00007f0a83ffe929
[  121.199609][ T7649] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000010
[  121.199620][ T7649] RBP: 00007f0a84080b39 R08: 0000000000000004 R09: 0000000000000000
[  121.199740][ T7649] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.199755][ T7649] R13: 0000000000000000 R14: 00007f0a84225fa0 R15: 00007ffe0aa80fd8
[  121.199847][ T7649]  </TASK>
[  121.199855][ T7649] Mem-Info:
[  121.289342][ T7646] infiniband syz1: set active
[  121.293314][ T7649] active_anon:22366 inactive_anon:2 isolated_anon:0
[  121.293314][ T7649]  active_file:18595 inactive_file:5103 isolated_file:0
[  121.293314][ T7649]  unevictable:0 dirty:2 writeback:0
[  121.293314][ T7649]  slab_reclaimable:3101 slab_unreclaimable:27287
[  121.293314][ T7649]  mapped:29561 shmem:18693 pagetables:1237
[  121.293314][ T7649]  sec_pagetables:0 bounce:0
[  121.293314][ T7649]  kernel_misc_reclaimable:0
[  121.293314][ T7649]  free:1778790 free_pcp:11691 free_cma:0
[  121.298339][ T7646] infiniband syz1: added syz_tun
[  121.302711][ T7649] Node 0 active_anon:89464kB inactive_anon:8kB active_file:74380kB inactive_file:20412kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:118244kB dirty:8kB writeback:0kB shmem:74772kB writeback_tmp:0kB kernel_stack:4816kB pagetables:4948kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  121.369698][ T7646] RDS/IB: syz1: added
[  121.386620][ T7649] Node 0 
[  121.395624][ T7646] smc: adding ib device syz1 with port count 1
[  121.403032][ T7649] DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  121.411038][ T7646] smc:    ib device syz1 port 1 has pnetid 
[  121.419040][ T7649] lowmem_reserve[]: 0 2882 7860 7860
[  121.419080][ T7649] Node 0 DMA32 free:2947736kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951364kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  121.607613][ T7649] lowmem_reserve[]: 0 0 4978 4978
[  121.612701][ T7649] Node 0 Normal free:4152064kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:89384kB inactive_anon:8kB active_file:74380kB inactive_file:20412kB unevictable:0kB writepending:0kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:43088kB local_pcp:35360kB free_cma:0kB
[  121.644594][ T7649] lowmem_reserve[]: 0 0 0 0
[  121.649236][ T7649] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  121.661970][ T7649] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947736kB
[  121.678229][ T7649] Node 0 Normal: 0*4kB 0*8kB 4*16kB (UM) 80*32kB (UE) 27*64kB (UE) 212*128kB (UM) 196*256kB (UME) 178*512kB (UME) 150*1024kB (U) 2*2048kB (ME) 933*4096kB (UM) = 4152064kB
[  121.695603][ T7649] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  121.704954][ T7649] 39535 total pagecache pages
[  121.709852][ T7649] 22 pages in swap cache
[  121.714234][ T7649] Free swap  = 123592kB
[  121.718487][ T7649] Total swap = 124996kB
[  121.722665][ T7649] 2097051 pages RAM
[  121.726522][ T7649] 0 pages HighMem/MovableOnly
[  121.731226][ T7649] 80810 pages reserved
[  122.107934][ T7670] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1437'.
[  122.124359][ T7670] bond0: (slave bond_slave_1): Releasing backup interface
[  122.268933][ T7672] loop2: detected capacity change from 0 to 512
[  122.289969][ T7672] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1433: Failed to acquire dquot type 1
[  122.306942][ T7672] EXT4-fs (loop2): 1 truncate cleaned up
[  122.308991][ T7679] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1439'.
[  122.319091][ T7672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.357063][ T7672] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.543252][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.575300][ T7684] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1441'.
[  122.737733][ T7688] syzkaller1: entered promiscuous mode
[  122.743261][ T7688] syzkaller1: entered allmulticast mode
[  123.018267][ T7699] syzkaller1: entered promiscuous mode
[  123.023799][ T7699] syzkaller1: entered allmulticast mode
[  123.094564][ T7703] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1450'.
[  123.198333][ T7707] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1452'.
[  123.239125][ T7715] loop3: detected capacity change from 0 to 1024
[  123.247088][ T7715] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  123.256085][ T7715] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  123.274385][ T7715] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  123.282724][ T7705] loop2: detected capacity change from 0 to 512
[  123.292226][ T7715] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.1455: lblock 2 mapped to illegal pblock 2 (length 1)
[  123.306759][ T7715] EXT4-fs (loop3): Remounting filesystem read-only
[  123.308540][ T7705] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1451: Failed to acquire dquot type 1
[  123.325297][ T7715] EXT4-fs (loop3): 1 orphan inode deleted
[  123.325426][ T7705] EXT4-fs (loop2): 1 truncate cleaned up
[  123.332602][ T7715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.337667][ T7705] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.361552][ T7705] ext4 filesystem being mounted at /331/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.372902][ T7715] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.407698][ T7715] loop3: detected capacity change from 0 to 2048
[  123.438483][ T7715] Alternate GPT is invalid, using primary GPT.
[  123.444846][ T7715]  loop3: p1 p2 p3
[  123.504428][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.652469][ T7739] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.1463'.
[  123.770057][ T7743] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1462'.
[  123.828982][ T7746] loop2: detected capacity change from 0 to 1024
[  123.841872][ T7746] EXT4-fs: Ignoring removed oldalloc option
[  123.861575][ T7746] EXT4-fs: Ignoring removed orlov option
[  123.868778][ T7746] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  123.889887][ T7746] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.892895][ T7748] syzkaller1: entered promiscuous mode
[  123.907945][ T7748] syzkaller1: entered allmulticast mode
[  124.094806][ T7754] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1466'.
[  124.115280][ T7752] siw: device registration error -23
[  124.348153][ T7766] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1470'.
[  125.702565][   T29] kauditd_printk_skb: 121 callbacks suppressed
[  125.702583][   T29] audit: type=1326 audit(1750546562.812:4258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.732573][   T29] audit: type=1326 audit(1750546562.812:4259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.756235][   T29] audit: type=1326 audit(1750546562.812:4260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.779982][   T29] audit: type=1326 audit(1750546562.812:4261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.803453][   T29] audit: type=1326 audit(1750546562.812:4262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.826989][   T29] audit: type=1326 audit(1750546562.812:4263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.850707][   T29] audit: type=1326 audit(1750546562.812:4264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.874302][   T29] audit: type=1326 audit(1750546562.812:4265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.897728][   T29] audit: type=1326 audit(1750546562.812:4266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  125.921110][   T29] audit: type=1326 audit(1750546562.812:4267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7783 comm="syz.3.1478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  127.294381][ T7728] syz.1.1460 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  127.305502][ T7728] CPU: 1 UID: 0 PID: 7728 Comm: syz.1.1460 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  127.305572][ T7728] Tainted: [W]=WARN
[  127.305579][ T7728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.305591][ T7728] Call Trace:
[  127.305598][ T7728]  <TASK>
[  127.305605][ T7728]  __dump_stack+0x1d/0x30
[  127.305626][ T7728]  dump_stack_lvl+0xe8/0x140
[  127.305647][ T7728]  dump_stack+0x15/0x1b
[  127.305668][ T7728]  dump_header+0x81/0x220
[  127.305732][ T7728]  oom_kill_process+0x334/0x3f0
[  127.305764][ T7728]  out_of_memory+0x979/0xb80
[  127.305808][ T7728]  try_charge_memcg+0x5e6/0x9e0
[  127.305901][ T7728]  charge_memcg+0x51/0xc0
[  127.306002][ T7728]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  127.306037][ T7728]  __read_swap_cache_async+0x1df/0x350
[  127.306077][ T7728]  swap_cluster_readahead+0x277/0x3e0
[  127.306141][ T7728]  swapin_readahead+0xde/0x6f0
[  127.306172][ T7728]  ? __filemap_get_folio+0x4f7/0x6b0
[  127.306204][ T7728]  ? __rcu_read_unlock+0x34/0x70
[  127.306305][ T7728]  ? swap_cache_get_folio+0x77/0x200
[  127.306385][ T7728]  do_swap_page+0x301/0x2430
[  127.306409][ T7728]  ? css_rstat_updated+0xcd/0x5b0
[  127.306521][ T7728]  ? __pfx_default_wake_function+0x10/0x10
[  127.306555][ T7728]  handle_mm_fault+0x9a5/0x2be0
[  127.306596][ T7728]  ? mas_walk+0xf2/0x120
[  127.306683][ T7728]  do_user_addr_fault+0x636/0x1090
[  127.306827][ T7728]  exc_page_fault+0x62/0xa0
[  127.306882][ T7728]  asm_exc_page_fault+0x26/0x30
[  127.306906][ T7728] RIP: 0033:0x7fc64095d9f6
[  127.306925][ T7728] Code: 29 45 38 1c 10 75 23 83 c0 01 44 39 d0 75 dc 48 89 f0 25 ff 1f 00 00 49 89 34 c1 41 88 3c 00 31 c0 c3 66 90 41 38 3c 10 74 0b <41> 88 3c 10 31 c0 49 89 34 d1 c3 b8 01 00 00 00 c3 66 0f 1f 84 00
[  127.306986][ T7728] RSP: 002b:00007ffff3680948 EFLAGS: 00010246
[  127.307069][ T7728] RAX: 0000000081eadbba RBX: 00007fc6417f5720 RCX: 0000000000000000
[  127.307081][ T7728] RDX: 0000000000001bba RSI: ffffffff81eadbba RDI: 000000000000000f
[  127.307092][ T7728] RBP: ffffffff81eadbba R08: 00007fc640cb0000 R09: 00007fc640cb2000
[  127.307103][ T7728] R10: 0000000081eadbbe R11: 000000000000000f R12: 000000000000000f
[  127.307200][ T7728] R13: 0000000000000000 R14: ffffffff81eadea0 R15: 0000000000000011
[  127.307213][ T7728]  ? __import_iovec+0x30/0x540
[  127.307243][ T7728]  ? iovec_from_user+0x7a/0x210
[  127.307340][ T7728]  ? iovec_from_user+0x7a/0x210
[  127.307447][ T7728]  </TASK>
[  127.541684][ T7728] memory: usage 307200kB, limit 307200kB, failcnt 1386
[  127.548605][ T7728] memory+swap: usage 307928kB, limit 9007199254740988kB, failcnt 0
[  127.556567][ T7728] kmem: usage 299532kB, limit 9007199254740988kB, failcnt 0
[  127.563881][ T7728] Memory cgroup stats for /syz1:
[  127.564442][ T7728] cache 0
[  127.572405][ T7728] rss 7847936
[  127.575833][ T7728] shmem 0
[  127.578818][ T7728] mapped_file 0
[  127.582363][ T7728] dirty 0
[  127.585332][ T7728] writeback 0
[  127.588683][ T7728] workingset_refault_anon 472
[  127.593362][ T7728] workingset_refault_file 1267
[  127.598269][ T7728] swap 745472
[  127.601558][ T7728] swapcached 0
[  127.604928][ T7728] pgpgin 96771
[  127.608316][ T7728] pgpgout 94854
[  127.611784][ T7728] pgfault 113292
[  127.615331][ T7728] pgmajfault 384
[  127.618953][ T7728] inactive_anon 0
[  127.622612][ T7728] active_anon 0
[  127.626100][ T7728] inactive_file 7847936
[  127.630277][ T7728] active_file 0
[  127.633777][ T7728] unevictable 0
[  127.637256][ T7728] hierarchical_memory_limit 314572800
[  127.642677][ T7728] hierarchical_memsw_limit 9223372036854771712
[  127.648859][ T7728] total_cache 0
[  127.652325][ T7728] total_rss 7847936
[  127.656157][ T7728] total_shmem 0
[  127.659620][ T7728] total_mapped_file 0
[  127.663604][ T7728] total_dirty 0
[  127.667206][ T7728] total_writeback 0
[  127.671019][ T7728] total_workingset_refault_anon 472
[  127.676268][ T7728] total_workingset_refault_file 1267
[  127.681559][ T7728] total_swap 745472
[  127.685366][ T7728] total_swapcached 0
[  127.689339][ T7728] total_pgpgin 96771
[  127.693262][ T7728] total_pgpgout 94854
[  127.697363][ T7728] total_pgfault 113292
[  127.701450][ T7728] total_pgmajfault 384
[  127.705519][ T7728] total_inactive_anon 0
[  127.709715][ T7728] total_active_anon 0
[  127.713744][ T7728] total_inactive_file 7847936
[  127.718492][ T7728] total_active_file 0
[  127.722483][ T7728] total_unevictable 0
[  127.726563][ T7728] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.1460,pid=7728,uid=0
[  127.741280][ T7728] Memory cgroup out of memory: Killed process 7728 (syz.1.1460) total-vm:93884kB, anon-rss:8616kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:156kB oom_score_adj:1000
[  128.387111][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.602852][ T7813] loop2: detected capacity change from 0 to 512
[  128.823180][ T7813] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  128.857097][ T7823] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1495'.
[  128.866722][ T7813] EXT4-fs (loop2): orphan cleanup on readonly fs
[  128.881605][ T7813] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1485: iget: bad i_size value: 360287970189639690
[  128.918037][ T7813] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1485: Bad quota inode: 15, type: 2
[  128.952589][ T7813] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  129.014488][ T7813] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  129.042655][ T7813] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  129.073798][ T7813] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  129.098006][ T7813] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  129.118012][ T7813] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1485: iget: bad i_size value: 360287970189639690
[  129.188937][ T7813] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1485: Bad quota inode: 15, type: 2
[  129.287094][ T7813] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  129.338167][ T7849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1507'.
[  129.472471][ T7865] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1512'.
[  129.482272][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.631388][ T7868] loop3: detected capacity change from 0 to 512
[  129.649897][ T7868] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1505: Failed to acquire dquot type 1
[  129.680534][ T7868] EXT4-fs (loop3): 1 truncate cleaned up
[  129.687371][ T7868] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.700498][ T7868] ext4 filesystem being mounted at /288/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.873068][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.012482][ T7905] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.088402][ T7905] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.157353][ T7905] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.220810][ T7905] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.319651][ T7905] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.372491][ T7905] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.385347][ T7905] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.400439][ T7905] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  130.721504][ T7941] loop5: detected capacity change from 0 to 512
[  130.729846][ T7941] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  130.738190][ T7941] EXT4-fs (loop5): orphan cleanup on readonly fs
[  130.738258][ T7934] loop2: detected capacity change from 0 to 512
[  130.744899][ T7941] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1553: iget: bad i_size value: 360287970189639690
[  130.764867][ T7941] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1553: Bad quota inode: 15, type: 2
[  130.777043][ T7941] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  130.793156][ T7941] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  130.798380][ T7934] __quota_error: 156 callbacks suppressed
[  130.798398][ T7934] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  130.800439][ T7941] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  130.805638][ T7934] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  130.838283][ T7934] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1537: Failed to acquire dquot type 1
[  130.850637][ T7941] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  130.860278][   T29] audit: type=1326 audit(1750546567.972:4422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  130.883854][   T29] audit: type=1326 audit(1750546567.972:4423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  130.893299][ T7941] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  130.907226][   T29] audit: type=1326 audit(1750546567.972:4424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  130.916885][ T7934] EXT4-fs (loop2): 1 truncate cleaned up
[  130.938809][   T29] audit: type=1326 audit(1750546567.972:4425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  130.938899][   T29] audit: type=1326 audit(1750546567.972:4426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  130.947152][ T7934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.968052][   T29] audit: type=1326 audit(1750546567.972:4427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  131.029630][ T7934] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.030223][ T7941] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1553: iget: bad i_size value: 360287970189639690
[  131.055111][ T7941] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1553: Bad quota inode: 15, type: 2
[  131.067035][ T7941] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  131.093183][   T29] audit: type=1326 audit(1750546568.202:4428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  131.116742][   T29] audit: type=1326 audit(1750546568.202:4429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7945 comm="syz.3.1544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0a83ffe929 code=0x7ffc0000
[  131.143639][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.167926][ T7950] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.201226][ T7954] FAULT_INJECTION: forcing a failure.
[  131.201226][ T7954] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.214381][ T7954] CPU: 0 UID: 0 PID: 7954 Comm: syz.3.1547 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  131.214418][ T7954] Tainted: [W]=WARN
[  131.214426][ T7954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.214465][ T7954] Call Trace:
[  131.214470][ T7954]  <TASK>
[  131.214477][ T7954]  __dump_stack+0x1d/0x30
[  131.214580][ T7954]  dump_stack_lvl+0xe8/0x140
[  131.214604][ T7954]  dump_stack+0x15/0x1b
[  131.214623][ T7954]  should_fail_ex+0x265/0x280
[  131.214659][ T7954]  should_fail+0xb/0x20
[  131.214691][ T7954]  should_fail_usercopy+0x1a/0x20
[  131.214756][ T7954]  _copy_to_user+0x20/0xa0
[  131.214781][ T7954]  __htab_map_lookup_and_delete_batch+0xf01/0x10a0
[  131.214894][ T7954]  ? __fget_files+0x184/0x1c0
[  131.214918][ T7954]  ? __rcu_read_unlock+0x4f/0x70
[  131.214959][ T7954]  htab_map_lookup_batch+0x2d/0x40
[  131.214994][ T7954]  ? __pfx_htab_map_lookup_batch+0x10/0x10
[  131.215024][ T7954]  bpf_map_do_batch+0x1b7/0x380
[  131.215088][ T7954]  ? security_bpf+0x2b/0x90
[  131.215118][ T7954]  __sys_bpf+0x640/0x790
[  131.215154][ T7954]  __x64_sys_bpf+0x41/0x50
[  131.215265][ T7954]  x64_sys_call+0x2478/0x2fb0
[  131.215292][ T7954]  do_syscall_64+0xd2/0x200
[  131.215309][ T7954]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  131.215341][ T7954]  ? clear_bhb_loop+0x40/0x90
[  131.215371][ T7954]  ? clear_bhb_loop+0x40/0x90
[  131.215397][ T7954]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.215445][ T7954] RIP: 0033:0x7f0a83ffe929
[  131.215506][ T7954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.215530][ T7954] RSP: 002b:00007f0a82667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  131.215623][ T7954] RAX: ffffffffffffffda RBX: 00007f0a84225fa0 RCX: 00007f0a83ffe929
[  131.215640][ T7954] RDX: 0000000000000038 RSI: 00002000000001c0 RDI: 0000000000000018
[  131.215656][ T7954] RBP: 00007f0a82667090 R08: 0000000000000000 R09: 0000000000000000
[  131.215672][ T7954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.215687][ T7954] R13: 0000000000000000 R14: 00007f0a84225fa0 R15: 00007ffe0aa80fd8
[  131.215724][ T7954]  </TASK>
[  131.457250][ T7950] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.493653][ T7961] FAULT_INJECTION: forcing a failure.
[  131.493653][ T7961] name failslab, interval 1, probability 0, space 0, times 0
[  131.506538][ T7961] CPU: 1 UID: 0 PID: 7961 Comm: syz.1.1549 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  131.506622][ T7961] Tainted: [W]=WARN
[  131.506631][ T7961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.506646][ T7961] Call Trace:
[  131.506654][ T7961]  <TASK>
[  131.506662][ T7961]  __dump_stack+0x1d/0x30
[  131.506689][ T7961]  dump_stack_lvl+0xe8/0x140
[  131.506708][ T7961]  dump_stack+0x15/0x1b
[  131.506724][ T7961]  should_fail_ex+0x265/0x280
[  131.506805][ T7961]  should_failslab+0x8c/0xb0
[  131.506833][ T7961]  __kvmalloc_node_noprof+0x123/0x4e0
[  131.506992][ T7961]  ? seq_read_iter+0x13e/0x940
[  131.507064][ T7961]  seq_read_iter+0x13e/0x940
[  131.507086][ T7961]  ? __alloc_frozen_pages_noprof+0x15f/0x360
[  131.507126][ T7961]  kernfs_fop_read_iter+0xc4/0x300
[  131.507220][ T7961]  ? iov_iter_bvec+0xa4/0xd0
[  131.507246][ T7961]  copy_splice_read+0x3c1/0x5f0
[  131.507352][ T7961]  ? __pfx_copy_splice_read+0x10/0x10
[  131.507433][ T7961]  splice_direct_to_actor+0x26c/0x680
[  131.507471][ T7961]  ? __pfx_direct_splice_actor+0x10/0x10
[  131.507542][ T7961]  do_splice_direct+0xda/0x150
[  131.507571][ T7961]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  131.507688][ T7961]  do_sendfile+0x380/0x650
[  131.507723][ T7961]  __x64_sys_sendfile64+0x105/0x150
[  131.507753][ T7961]  x64_sys_call+0xb39/0x2fb0
[  131.507780][ T7961]  do_syscall_64+0xd2/0x200
[  131.507805][ T7961]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  131.507860][ T7961]  ? clear_bhb_loop+0x40/0x90
[  131.507921][ T7961]  ? clear_bhb_loop+0x40/0x90
[  131.508013][ T7961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.508059][ T7961] RIP: 0033:0x7fc640a9e929
[  131.508077][ T7961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.508099][ T7961] RSP: 002b:00007fc63f107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  131.508123][ T7961] RAX: ffffffffffffffda RBX: 00007fc640cc5fa0 RCX: 00007fc640a9e929
[  131.508139][ T7961] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000005
[  131.508154][ T7961] RBP: 00007fc63f107090 R08: 0000000000000000 R09: 0000000000000000
[  131.508198][ T7961] R10: 000000000000001c R11: 0000000000000246 R12: 0000000000000001
[  131.508211][ T7961] R13: 0000000000000000 R14: 00007fc640cc5fa0 R15: 00007ffff36808c8
[  131.508242][ T7961]  </TASK>
[  131.787367][ T7950] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.848244][ T7950] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.119761][ T7988] warn_alloc: 4 callbacks suppressed
[  132.119778][ T7988] syz.0.1563: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  132.139889][ T7988] CPU: 0 UID: 0 PID: 7988 Comm: syz.0.1563 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  132.140054][ T7988] Tainted: [W]=WARN
[  132.140063][ T7988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  132.140075][ T7988] Call Trace:
[  132.140082][ T7988]  <TASK>
[  132.140089][ T7988]  __dump_stack+0x1d/0x30
[  132.140111][ T7988]  dump_stack_lvl+0xe8/0x140
[  132.140135][ T7988]  dump_stack+0x15/0x1b
[  132.140215][ T7988]  warn_alloc+0x12b/0x1a0
[  132.140263][ T7988]  __vmalloc_node_range_noprof+0x9c/0xe00
[  132.140307][ T7988]  ? probe_sched_wakeup+0x85/0xa0
[  132.140336][ T7988]  ? ttwu_do_activate+0x1cf/0x210
[  132.140403][ T7988]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  132.140524][ T7988]  ? __rcu_read_unlock+0x4f/0x70
[  132.140554][ T7988]  ? avc_has_perm_noaudit+0x1b1/0x200
[  132.140591][ T7988]  ? should_fail_ex+0x30/0x280
[  132.140630][ T7988]  ? xskq_create+0x36/0xe0
[  132.140660][ T7988]  vmalloc_user_noprof+0x7d/0xb0
[  132.140800][ T7988]  ? xskq_create+0x80/0xe0
[  132.140829][ T7988]  xskq_create+0x80/0xe0
[  132.140857][ T7988]  xsk_init_queue+0x95/0xf0
[  132.140882][ T7988]  xsk_setsockopt+0x35c/0x510
[  132.140901][ T7988]  ? __pfx_xsk_setsockopt+0x10/0x10
[  132.140971][ T7988]  __sys_setsockopt+0x181/0x200
[  132.141086][ T7988]  __x64_sys_setsockopt+0x64/0x80
[  132.141196][ T7988]  x64_sys_call+0x2bd5/0x2fb0
[  132.141227][ T7988]  do_syscall_64+0xd2/0x200
[  132.141310][ T7988]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  132.141425][ T7988]  ? clear_bhb_loop+0x40/0x90
[  132.141455][ T7988]  ? clear_bhb_loop+0x40/0x90
[  132.141489][ T7988]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.141518][ T7988] RIP: 0033:0x7f0e6e6de929
[  132.141613][ T7988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.141638][ T7988] RSP: 002b:00007f0e6cd47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  132.141665][ T7988] RAX: ffffffffffffffda RBX: 00007f0e6e905fa0 RCX: 00007f0e6e6de929
[  132.141730][ T7988] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000010
[  132.141783][ T7988] RBP: 00007f0e6e760b39 R08: 0000000000000004 R09: 0000000000000000
[  132.141800][ T7988] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.141816][ T7988] R13: 0000000000000000 R14: 00007f0e6e905fa0 R15: 00007fff197f3da8
[  132.141838][ T7988]  </TASK>
[  132.141845][ T7988] Mem-Info:
[  132.382959][ T7988] active_anon:22468 inactive_anon:2 isolated_anon:0
[  132.382959][ T7988]  active_file:18690 inactive_file:2239 isolated_file:0
[  132.382959][ T7988]  unevictable:0 dirty:151 writeback:0
[  132.382959][ T7988]  slab_reclaimable:3163 slab_unreclaimable:28499
[  132.382959][ T7988]  mapped:29613 shmem:18693 pagetables:1359
[  132.382959][ T7988]  sec_pagetables:0 bounce:0
[  132.382959][ T7988]  kernel_misc_reclaimable:0
[  132.382959][ T7988]  free:1861573 free_pcp:3459 free_cma:0
[  132.428083][ T7988] Node 0 active_anon:89872kB inactive_anon:8kB active_file:74760kB inactive_file:8956kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:118452kB dirty:604kB writeback:0kB shmem:74772kB writeback_tmp:0kB kernel_stack:4880kB pagetables:5436kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  132.456942][ T7988] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  132.485830][ T7988] lowmem_reserve[]: 0 2882 7860 7860
[  132.491188][ T7988] Node 0 DMA32 free:2947736kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951364kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  132.521467][ T7988] lowmem_reserve[]: 0 0 4978 4978
[  132.526699][ T7988] Node 0 Normal free:4483196kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:89872kB inactive_anon:8kB active_file:74760kB inactive_file:8956kB unevictable:0kB writepending:604kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:10208kB local_pcp:7180kB free_cma:0kB
[  132.558680][ T7988] lowmem_reserve[]: 0 0 0 0
[  132.563265][ T7988] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  132.576229][ T7988] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947736kB
[  132.592425][ T7988] Node 0 Normal: 213*4kB (UME) 199*8kB (UME) 93*16kB (UME) 151*32kB (UME) 85*64kB (UME) 194*128kB (UM) 220*256kB (UME) 202*512kB (UME) 158*1024kB (UM) 77*2048kB (UME) 968*4096kB (UM) = 4483196kB
[  132.611796][ T7988] Node 0 hugepages_total=6 hugepages_free=3 hugepages_surp=2 hugepages_size=2048kB
[  132.621183][ T7988] 39623 total pagecache pages
[  132.625882][ T7988] 7 pages in swap cache
[  132.630063][ T7988] Free swap  = 123772kB
[  132.634212][ T7988] Total swap = 124996kB
[  132.638442][ T7988] 2097051 pages RAM
[  132.642255][ T7988] 0 pages HighMem/MovableOnly
[  132.646955][ T7988] 80810 pages reserved
[  132.767019][ T8016] loop5: detected capacity change from 0 to 512
[  132.791820][ T8016] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  132.803352][ T8016] EXT4-fs (loop5): orphan cleanup on readonly fs
[  132.814771][ T8016] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1570: iget: bad i_size value: 360287970189639690
[  132.829169][ T8016] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1570: Bad quota inode: 15, type: 2
[  132.852697][ T8016] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  132.878893][ T8016] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  132.892054][ T8016] EXT4-fs mount: 1 callbacks suppressed
[  132.892073][ T8016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  132.913614][ T8016] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  132.948687][ T8016] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  132.982313][ T8016] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1570: iget: bad i_size value: 360287970189639690
[  133.023062][ T8016] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1570: Bad quota inode: 15, type: 2
[  133.058244][ T8016] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  133.164411][ T7469] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.625100][ T7950] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  133.648425][ T7950] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  133.670803][ T7950] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  133.709380][ T7950] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  133.867927][ T8056] loop3: detected capacity change from 0 to 512
[  133.921876][ T8056] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1584: Failed to acquire dquot type 1
[  133.936180][ T8056] EXT4-fs (loop3): 1 truncate cleaned up
[  133.942608][ T8056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.956576][ T8056] ext4 filesystem being mounted at /296/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.277842][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.360463][ T8092] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.436565][ T8092] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.538199][ T8092] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.611068][ T8092] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.713426][ T8092] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.761034][ T8106] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1608'.
[  134.775553][ T8092] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.812530][ T8092] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.824929][ T8092] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.890146][ T8119] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.955336][ T8113] loop2: detected capacity change from 0 to 8192
[  134.971256][ T8127] loop5: detected capacity change from 0 to 512
[  134.984779][ T8127] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  134.994996][ T8119] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.008778][ T8113] vfat: Unknown parameter '0000000000000000000000300000000000000000000003'
[  135.010006][ T8127] EXT4-fs (loop5): orphan cleanup on readonly fs
[  135.025426][ T8127] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1615: iget: bad i_size value: 360287970189639690
[  135.040168][ T8127] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1615: Bad quota inode: 15, type: 2
[  135.051575][ T8127] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  135.067313][ T8127] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  135.076640][ T8127] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.096594][ T8127] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  135.108425][ T8119] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.124192][ T8127] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  135.156944][ T8127] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1615: iget: bad i_size value: 360287970189639690
[  135.157748][ T8145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1617'.
[  135.179621][ T8127] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1615: Bad quota inode: 15, type: 2
[  135.190919][ T8127] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  135.192203][ T8119] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.272087][ T8119] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.286633][ T8119] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.303532][ T8119] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.307537][ T8119] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.332366][ T7469] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.467458][ T8165] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1626'.
[  135.537932][ T8173] loop2: detected capacity change from 0 to 8192
[  135.573863][ T8173] vfat: Unknown parameter '0177777777777777777777701777777777777777777777ÿÿÿÿÿÿÿÿ0xffffffffffffffff'
[  135.771525][ T8185] loop2: detected capacity change from 0 to 512
[  135.780079][ T8185] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  135.792615][ T8185] EXT4-fs (loop2): orphan cleanup on readonly fs
[  135.819815][ T8185] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1634: iget: bad i_size value: 360287970189639690
[  135.820300][ T8185] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1634: Bad quota inode: 15, type: 2
[  135.834046][ T8185] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  135.844828][ T8185] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  135.845457][ T8185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.849553][ T8185] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  135.850037][ T8185] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  135.876627][ T8185] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1634: iget: bad i_size value: 360287970189639690
[  135.876853][ T8185] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1634: Bad quota inode: 15, type: 2
[  135.877049][ T8185] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  135.945222][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.194902][ T8200] netlink: 'syz.3.1639': attribute type 1 has an invalid length.
[  136.202828][ T8200] netlink: 80 bytes leftover after parsing attributes in process `syz.3.1639'.
[  136.240469][ T8200] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1639'.
[  136.258357][ T8200] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  136.266201][ T8200] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.282915][ T8200] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.290582][ T8200] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.302533][ T8204] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1641'.
[  136.312590][ T8208] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.368665][ T8208] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.417657][ T8208] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.450032][   T29] kauditd_printk_skb: 189 callbacks suppressed
[  136.450101][   T29] audit: type=1326 audit(1750546573.562:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.480404][   T29] audit: type=1326 audit(1750546573.562:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.503976][   T29] audit: type=1326 audit(1750546573.562:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.527456][   T29] audit: type=1326 audit(1750546573.562:4620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.550894][   T29] audit: type=1326 audit(1750546573.562:4621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.574415][   T29] audit: type=1326 audit(1750546573.562:4622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.597860][   T29] audit: type=1326 audit(1750546573.562:4623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.621282][   T29] audit: type=1326 audit(1750546573.562:4624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.644800][   T29] audit: type=1326 audit(1750546573.562:4625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.668442][   T29] audit: type=1326 audit(1750546573.562:4626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8218 comm="syz.0.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  136.695671][ T8208] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.799746][ T8208] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.811861][ T8208] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.860411][ T8208] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.931240][ T8208] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.206487][ T8300] loop3: detected capacity change from 0 to 512
[  139.214598][ T8300] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  139.240579][ T8300] EXT4-fs (loop3): orphan cleanup on readonly fs
[  139.247592][ T8300] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1680: iget: bad i_size value: 360287970189639690
[  139.262026][ T8300] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1680: Bad quota inode: 15, type: 2
[  139.273530][ T8300] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  139.289522][ T8300] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  139.297278][ T8300] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  139.319752][ T8300] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  139.330332][ T8300] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  139.346628][ T8300] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1680: iget: bad i_size value: 360287970189639690
[  139.361137][ T8300] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1680: Bad quota inode: 15, type: 2
[  139.374805][ T8300] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  139.457428][ T8316] loop5: detected capacity change from 0 to 8192
[  139.466828][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.477356][ T8316] vfat: Unknown parameter '0000000000000000000000300000000000000000000003'
[  139.497892][ T8312] loop2: detected capacity change from 0 to 512
[  139.508167][ T8312] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1684: Failed to acquire dquot type 1
[  139.520970][ T8312] EXT4-fs (loop2): 1 truncate cleaned up
[  139.527546][ T8312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.540932][ T8312] ext4 filesystem being mounted at /369/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.679639][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.828596][ T8345] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.1696'.
[  139.868593][ T8350] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.950547][ T8350] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.048700][ T8350] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.098077][ T8350] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.167474][ T8350] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.179345][ T8350] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.191604][ T8350] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.203857][ T8350] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.263530][ T8387] loop2: detected capacity change from 0 to 1024
[  140.287711][ T8387] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.317569][ T8387] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  140.318354][ T8387] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  140.355890][ T8387] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.1715: lblock 2 mapped to illegal pblock 2 (length 1)
[  140.398423][ T8387] EXT4-fs (loop2): Remounting filesystem read-only
[  140.405216][ T8387] EXT4-fs (loop2): 1 orphan inode deleted
[  140.412412][ T8387] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.425598][ T8387] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.467474][ T8387] loop2: detected capacity change from 0 to 2048
[  140.523825][ T8387] Alternate GPT is invalid, using primary GPT.
[  140.530266][ T8387]  loop2: p1 p2 p3
[  140.960266][ T8432] loop5: detected capacity change from 0 to 8192
[  140.967864][ T8432] vfat: Unknown parameter '0000000000000000000000300000000000000000000003'
[  141.007647][ T8444] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1741'.
[  141.016816][ T8444] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1741'.
[  141.036513][ T8444] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1741'.
[  141.045514][ T8444] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1741'.
[  141.236155][ T8459] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1746'.
[  141.272526][ T8471] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1752'.
[  141.339456][ T7144] smc: removing ib device syz1
[  141.345126][ T5731] syz1: Port: 1 Link DOWN
[  141.350521][ T8481] FAULT_INJECTION: forcing a failure.
[  141.350521][ T8481] name failslab, interval 1, probability 0, space 0, times 0
[  141.363400][ T8481] CPU: 0 UID: 0 PID: 8481 Comm: syz.0.1755 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  141.363506][ T8481] Tainted: [W]=WARN
[  141.363515][ T8481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  141.363531][ T8481] Call Trace:
[  141.363540][ T8481]  <TASK>
[  141.363551][ T8481]  __dump_stack+0x1d/0x30
[  141.363588][ T8481]  dump_stack_lvl+0xe8/0x140
[  141.363614][ T8481]  dump_stack+0x15/0x1b
[  141.363695][ T8481]  should_fail_ex+0x265/0x280
[  141.363735][ T8481]  should_failslab+0x8c/0xb0
[  141.363837][ T8481]  __kmalloc_noprof+0xa5/0x3e0
[  141.363870][ T8481]  ? nla_strdup+0x78/0xc0
[  141.363988][ T8481]  nla_strdup+0x78/0xc0
[  141.364013][ T8481]  nf_tables_newtable+0x3ba/0xea0
[  141.364067][ T8481]  nfnetlink_rcv+0xb96/0x1690
[  141.364204][ T8481]  netlink_unicast+0x59e/0x670
[  141.364248][ T8481]  netlink_sendmsg+0x58b/0x6b0
[  141.364358][ T8481]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.364394][ T8481]  __sock_sendmsg+0x142/0x180
[  141.364456][ T8481]  ____sys_sendmsg+0x31e/0x4e0
[  141.364502][ T8481]  ___sys_sendmsg+0x17b/0x1d0
[  141.364563][ T8481]  __x64_sys_sendmsg+0xd4/0x160
[  141.364655][ T8481]  x64_sys_call+0x2999/0x2fb0
[  141.364708][ T8481]  do_syscall_64+0xd2/0x200
[  141.364771][ T8481]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  141.364804][ T8481]  ? clear_bhb_loop+0x40/0x90
[  141.364874][ T8481]  ? clear_bhb_loop+0x40/0x90
[  141.364902][ T8481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.364929][ T8481] RIP: 0033:0x7f0e6e6de929
[  141.364955][ T8481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.364981][ T8481] RSP: 002b:00007f0e6cd47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  141.365005][ T8481] RAX: ffffffffffffffda RBX: 00007f0e6e905fa0 RCX: 00007f0e6e6de929
[  141.365039][ T8481] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  141.365052][ T8481] RBP: 00007f0e6cd47090 R08: 0000000000000000 R09: 0000000000000000
[  141.365067][ T8481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.365081][ T8481] R13: 0000000000000000 R14: 00007f0e6e905fa0 R15: 00007fff197f3da8
[  141.365107][ T8481]  </TASK>
[  141.600476][ T8477] loop2: detected capacity change from 0 to 1024
[  141.604293][   T29] kauditd_printk_skb: 504 callbacks suppressed
[  141.604312][   T29] audit: type=1326 audit(1750546578.712:5127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd16052d290 code=0x7ffc0000
[  141.636585][   T29] audit: type=1326 audit(1750546578.712:5128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd16052e52b code=0x7ffc0000
[  141.685159][ T8477] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  141.719710][ T8477] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  141.733543][ T8491] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1758'.
[  141.766003][   T29] audit: type=1326 audit(1750546578.752:5129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd16052d58a code=0x7ffc0000
[  141.789457][   T29] audit: type=1326 audit(1750546578.752:5130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd16052d58a code=0x7ffc0000
[  141.813077][   T29] audit: type=1326 audit(1750546578.752:5131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd16052d197 code=0x7ffc0000
[  141.836815][   T29] audit: type=1326 audit(1750546578.752:5132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8476 comm="syz.2.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fd1605300ca code=0x7ffc0000
[  141.836916][   T29] audit: type=1326 audit(1750546578.822:5133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8488 comm="syz.0.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  141.837011][   T29] audit: type=1326 audit(1750546578.822:5134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8488 comm="syz.0.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  141.837129][   T29] audit: type=1326 audit(1750546578.832:5135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8488 comm="syz.0.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  141.837157][   T29] audit: type=1326 audit(1750546578.832:5136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8488 comm="syz.0.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  141.862541][ T8477] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000]
[  141.863598][ T8477] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 2: comm syz.2.1753: lblock 2 mapped to illegal pblock 2 (length 1)
[  141.863735][ T8477] EXT4-fs (loop2): Remounting filesystem read-only
[  141.863814][ T8477] EXT4-fs (loop2): 1 orphan inode deleted
[  141.868416][ T8477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.869261][ T8477] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.943225][ T8477] loop2: detected capacity change from 0 to 2048
[  142.056129][ T8477] Alternate GPT is invalid, using primary GPT.
[  142.121110][ T8477]  loop2: p1 p2 p3
[  142.209704][ T8505] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1764'.
[  142.278661][ T8522] loop5: detected capacity change from 0 to 512
[  142.296811][ T8522] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  142.307509][ T8522] EXT4-fs (loop5): orphan cleanup on readonly fs
[  142.316359][ T8522] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1769: iget: bad i_size value: 360287970189639690
[  142.360844][ T8522] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1769: Bad quota inode: 15, type: 2
[  142.375309][ T8527] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1771'.
[  142.380557][ T8522] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  142.401110][ T8522] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  142.408311][ T8522] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  142.408757][ T8529] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.441538][ T8522] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  142.451634][ T8522] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  142.466735][ T8522] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1769: iget: bad i_size value: 360287970189639690
[  142.481105][ T8522] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1769: Bad quota inode: 15, type: 2
[  142.493019][ T8529] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.502955][ T8522] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  142.548062][ T8529] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.568629][ T8538] warn_alloc: 13 callbacks suppressed
[  142.568643][ T8538] syz.3.1773: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  142.588864][ T8538] CPU: 0 UID: 0 PID: 8538 Comm: syz.3.1773 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  142.588907][ T8538] Tainted: [W]=WARN
[  142.588916][ T8538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  142.588933][ T8538] Call Trace:
[  142.588941][ T8538]  <TASK>
[  142.588951][ T8538]  __dump_stack+0x1d/0x30
[  142.588993][ T8538]  dump_stack_lvl+0xe8/0x140
[  142.589018][ T8538]  dump_stack+0x15/0x1b
[  142.589039][ T8538]  warn_alloc+0x12b/0x1a0
[  142.589080][ T8538]  ? css_rstat_updated+0xcd/0x5b0
[  142.589142][ T8538]  __vmalloc_node_range_noprof+0x9c/0xe00
[  142.589250][ T8538]  ? tracing_record_taskinfo_sched_switch+0x21b/0x260
[  142.589288][ T8538]  ? probe_sched_wakeup+0x85/0xa0
[  142.589327][ T8538]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  142.589360][ T8538]  ? __rcu_read_unlock+0x4f/0x70
[  142.589388][ T8538]  ? avc_has_perm_noaudit+0x1b1/0x200
[  142.589448][ T8538]  vmalloc_user_noprof+0x7d/0xb0
[  142.589529][ T8538]  ? xskq_create+0x80/0xe0
[  142.589556][ T8538]  xskq_create+0x80/0xe0
[  142.589576][ T8538]  xsk_init_queue+0x95/0xf0
[  142.589647][ T8538]  xsk_setsockopt+0x35c/0x510
[  142.589674][ T8538]  ? __pfx_xsk_setsockopt+0x10/0x10
[  142.589700][ T8538]  __sys_setsockopt+0x181/0x200
[  142.589742][ T8538]  __x64_sys_setsockopt+0x64/0x80
[  142.589902][ T8538]  x64_sys_call+0x2bd5/0x2fb0
[  142.589927][ T8538]  do_syscall_64+0xd2/0x200
[  142.589946][ T8538]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  142.589977][ T8538]  ? clear_bhb_loop+0x40/0x90
[  142.590001][ T8538]  ? clear_bhb_loop+0x40/0x90
[  142.590099][ T8538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.590125][ T8538] RIP: 0033:0x7f0a83ffe929
[  142.590153][ T8538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.590270][ T8538] RSP: 002b:00007f0a82667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  142.590287][ T8538] RAX: ffffffffffffffda RBX: 00007f0a84225fa0 RCX: 00007f0a83ffe929
[  142.590321][ T8538] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000010
[  142.590337][ T8538] RBP: 00007f0a84080b39 R08: 0000000000000004 R09: 0000000000000000
[  142.590352][ T8538] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  142.590367][ T8538] R13: 0000000000000000 R14: 00007f0a84225fa0 R15: 00007ffe0aa80fd8
[  142.590392][ T8538]  </TASK>
[  142.590540][ T8538] Mem-Info:
[  142.591061][ T7469] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.604575][ T8538] active_anon:24740 inactive_anon:2 isolated_anon:0
[  142.604575][ T8538]  active_file:20675 inactive_file:2243 isolated_file:0
[  142.604575][ T8538]  unevictable:0 dirty:211 writeback:0
[  142.604575][ T8538]  slab_reclaimable:3152 slab_unreclaimable:27360
[  142.604575][ T8538]  mapped:32333 shmem:21634 pagetables:1133
[  142.604575][ T8538]  sec_pagetables:0 bounce:0
[  142.604575][ T8538]  kernel_misc_reclaimable:0
[  142.604575][ T8538]  free:1858981 free_pcp:4345 free_cma:0
[  142.604645][ T8538] Node 0 active_anon:98960kB inactive_anon:8kB active_file:82700kB inactive_file:8972kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:129332kB dirty:844kB writeback:0kB shmem:86536kB writeback_tmp:0kB kernel_stack:4704kB pagetables:4532kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  142.913640][ T8538] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  142.942370][ T8538] lowmem_reserve[]: 0 2882 7860 7860
[  142.947868][ T8538] Node 0 DMA32 free:2947736kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951364kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  142.978349][ T8538] lowmem_reserve[]: 0 0 4978 4978
[  142.983514][ T8538] Node 0 Normal free:4472828kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:98796kB inactive_anon:8kB active_file:82700kB inactive_file:8980kB unevictable:0kB writepending:848kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:13876kB local_pcp:9860kB free_cma:0kB
[  143.015613][ T8538] lowmem_reserve[]: 0 0 0 0
[  143.020250][ T8538] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  143.033074][ T8538] Node 0 DMA32: 2*4kB (M) 2*8kB (M) 4*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947736kB
[  143.049221][ T8538] Node 0 Normal: 265*4kB (UME) 67*8kB (UME) 22*16kB (UE) 101*32kB (UME) 104*64kB (UME) 278*128kB (UM) 237*256kB (UME) 207*512kB (UME) 167*1024kB (UM) 76*2048kB (UME) 960*4096kB (UM) = 4472892kB
[  143.068705][ T8538] Node 0 hugepages_total=4 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  143.078087][ T8538] 44552 total pagecache pages
[  143.082773][ T8538] 7 pages in swap cache
[  143.087003][ T8538] Free swap  = 123780kB
[  143.091208][ T8538] Total swap = 124996kB
[  143.095395][ T8538] 2097051 pages RAM
[  143.099238][ T8538] 0 pages HighMem/MovableOnly
[  143.103923][ T8538] 80810 pages reserved
[  143.147172][ T8529] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.207269][ T8529] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.268004][ T8529] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.295054][ T8557] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  143.316652][ T8529] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.329148][ T8529] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  143.400439][ T8565] loop2: detected capacity change from 0 to 512
[  143.423591][ T8565] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  143.436260][ T8565] EXT4-fs (loop2): orphan cleanup on readonly fs
[  143.447679][ T8565] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1786: iget: bad i_size value: 360287970189639690
[  143.526060][ T8565] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1786: Bad quota inode: 15, type: 2
[  143.541238][ T8565] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  143.580928][ T8565] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  143.588899][ T8565] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.606897][ T8565] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  143.621464][ T8565] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  143.640355][ T8565] EXT4-fs error (device loop2): ext4_quota_enable:7124: inode #15: comm syz.2.1786: iget: bad i_size value: 360287970189639690
[  143.655139][ T8565] EXT4-fs error (device loop2): ext4_quota_enable:7127: comm syz.2.1786: Bad quota inode: 15, type: 2
[  143.667383][ T8565] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  143.727473][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.742310][ T8583] loop5: detected capacity change from 0 to 512
[  143.748762][ T8592] wireguard0: entered promiscuous mode
[  143.754297][ T8592] wireguard0: entered allmulticast mode
[  143.758672][ T8583] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1792: Failed to acquire dquot type 1
[  143.780484][ T8583] EXT4-fs (loop5): 1 truncate cleaned up
[  143.786912][ T8583] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.799766][ T8583] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.800398][ T8597] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.887744][ T8597] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.930589][ T7469] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.948953][ T8597] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.987621][ T8597] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.285796][ T8631] FAULT_INJECTION: forcing a failure.
[  144.285796][ T8631] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.299163][ T8631] CPU: 0 UID: 0 PID: 8631 Comm: syz.1.1810 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  144.299204][ T8631] Tainted: [W]=WARN
[  144.299262][ T8631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.299275][ T8631] Call Trace:
[  144.299281][ T8631]  <TASK>
[  144.299288][ T8631]  __dump_stack+0x1d/0x30
[  144.299310][ T8631]  dump_stack_lvl+0xe8/0x140
[  144.299334][ T8631]  dump_stack+0x15/0x1b
[  144.299354][ T8631]  should_fail_ex+0x265/0x280
[  144.299492][ T8631]  should_fail+0xb/0x20
[  144.299519][ T8631]  should_fail_usercopy+0x1a/0x20
[  144.299590][ T8631]  _copy_to_user+0x20/0xa0
[  144.299614][ T8631]  simple_read_from_buffer+0xb5/0x130
[  144.299653][ T8631]  proc_fail_nth_read+0x100/0x140
[  144.299734][ T8631]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  144.299777][ T8631]  vfs_read+0x1a0/0x6f0
[  144.299827][ T8631]  ? __rcu_read_unlock+0x4f/0x70
[  144.299848][ T8631]  ? __fget_files+0x184/0x1c0
[  144.299865][ T8631]  ? __sys_setsockopt+0x18e/0x200
[  144.299906][ T8631]  ksys_read+0xda/0x1a0
[  144.299944][ T8631]  __x64_sys_read+0x40/0x50
[  144.299984][ T8631]  x64_sys_call+0x2d77/0x2fb0
[  144.300071][ T8631]  do_syscall_64+0xd2/0x200
[  144.300090][ T8631]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  144.300115][ T8631]  ? clear_bhb_loop+0x40/0x90
[  144.300135][ T8631]  ? clear_bhb_loop+0x40/0x90
[  144.300173][ T8631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.300193][ T8631] RIP: 0033:0x7fc640a9d33c
[  144.300230][ T8631] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  144.300365][ T8631] RSP: 002b:00007fc63f107030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  144.300387][ T8631] RAX: ffffffffffffffda RBX: 00007fc640cc5fa0 RCX: 00007fc640a9d33c
[  144.300399][ T8631] RDX: 000000000000000f RSI: 00007fc63f1070a0 RDI: 0000000000000007
[  144.300410][ T8631] RBP: 00007fc63f107090 R08: 0000000000000000 R09: 0000000000000000
[  144.300421][ T8631] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.300434][ T8631] R13: 0000000000000000 R14: 00007fc640cc5fa0 R15: 00007ffff36808c8
[  144.300459][ T8631]  </TASK>
[  144.396222][ T8624] SELinux: failed to load policy
[  145.176051][ T8597] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.188995][ T8597] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.219481][ T8597] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.248784][ T8597] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.363515][ T8679] __nla_validate_parse: 4 callbacks suppressed
[  145.363534][ T8679] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1830'.
[  145.665000][ T8693] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1836'.
[  145.745266][ T8700] FAULT_INJECTION: forcing a failure.
[  145.745266][ T8700] name failslab, interval 1, probability 0, space 0, times 0
[  145.758092][ T8700] CPU: 0 UID: 0 PID: 8700 Comm: syz.3.1838 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  145.758150][ T8700] Tainted: [W]=WARN
[  145.758157][ T8700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  145.758170][ T8700] Call Trace:
[  145.758178][ T8700]  <TASK>
[  145.758187][ T8700]  __dump_stack+0x1d/0x30
[  145.758207][ T8700]  dump_stack_lvl+0xe8/0x140
[  145.758226][ T8700]  dump_stack+0x15/0x1b
[  145.758244][ T8700]  should_fail_ex+0x265/0x280
[  145.758367][ T8700]  should_failslab+0x8c/0xb0
[  145.758397][ T8700]  kmem_cache_alloc_noprof+0x50/0x310
[  145.758459][ T8700]  ? __anon_vma_prepare+0xcd/0x2f0
[  145.758509][ T8700]  __anon_vma_prepare+0xcd/0x2f0
[  145.758601][ T8700]  handle_mm_fault+0x1d19/0x2be0
[  145.758658][ T8700]  ? __rcu_read_unlock+0x4f/0x70
[  145.758692][ T8700]  do_user_addr_fault+0x3fe/0x1090
[  145.758786][ T8700]  exc_page_fault+0x62/0xa0
[  145.758822][ T8700]  asm_exc_page_fault+0x26/0x30
[  145.758848][ T8700] RIP: 0010:rep_movs_alternative+0x33/0x90
[  145.758874][ T8700] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[  145.758891][ T8700] RSP: 0018:ffffc9000d5f7d90 EFLAGS: 00050216
[  145.758961][ T8700] RAX: 4c5f80b5ea570c10 RBX: 0000000000000011 RCX: 0000000000000011
[  145.758978][ T8700] RDX: 0000000000000000 RSI: ffffc9000d5f7de8 RDI: 0000200000000740
[  145.758993][ T8700] RBP: 0000000080111500 R08: 0000000000000845 R09: 0000000000000000
[  145.759008][ T8700] R10: 0001c9000d5f7de8 R11: 0001c9000d5f7df8 R12: 0000200000000751
[  145.759023][ T8700] R13: 00007ffffffff000 R14: 0000200000000740 R15: ffffc9000d5f7de8
[  145.759047][ T8700]  _copy_to_user+0x7c/0xa0
[  145.759158][ T8700]  do_vfs_ioctl+0x8be/0x11d0
[  145.759194][ T8700]  ? selinux_file_ioctl+0x2e3/0x370
[  145.759264][ T8700]  ? __fget_files+0x184/0x1c0
[  145.759286][ T8700]  __se_sys_ioctl+0x82/0x140
[  145.759360][ T8700]  __x64_sys_ioctl+0x43/0x50
[  145.759467][ T8700]  x64_sys_call+0x19a8/0x2fb0
[  145.759497][ T8700]  do_syscall_64+0xd2/0x200
[  145.759518][ T8700]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  145.759551][ T8700]  ? clear_bhb_loop+0x40/0x90
[  145.759594][ T8700]  ? clear_bhb_loop+0x40/0x90
[  145.759619][ T8700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.759651][ T8700] RIP: 0033:0x7f0a83ffe929
[  145.759670][ T8700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.759692][ T8700] RSP: 002b:00007f0a82667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  145.759767][ T8700] RAX: ffffffffffffffda RBX: 00007f0a84225fa0 RCX: 00007f0a83ffe929
[  145.759780][ T8700] RDX: 0000200000000740 RSI: 0000000080111500 RDI: 0000000000000003
[  145.759791][ T8700] RBP: 00007f0a82667090 R08: 0000000000000000 R09: 0000000000000000
[  145.759806][ T8700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.759874][ T8700] R13: 0000000000000000 R14: 00007f0a84225fa0 R15: 00007ffe0aa80fd8
[  145.759898][ T8700]  </TASK>
[  146.179687][ T8702] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1839'.
[  146.418960][ T8717] loop3: detected capacity change from 0 to 512
[  146.439491][ T8721] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1845'.
[  146.439981][ T8717] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  146.466306][ T8717] EXT4-fs (loop3): orphan cleanup on readonly fs
[  146.476539][ T8717] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1844: iget: bad i_size value: 360287970189639690
[  146.509260][ T8668] syz.5.1826 (8668) used greatest stack depth: 5880 bytes left
[  146.533849][ T8717] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1844: Bad quota inode: 15, type: 2
[  146.574385][ T8717] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  146.595661][ T8717] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  146.608633][ T8731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1848'.
[  146.608879][ T8717] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  146.653929][ T8736] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.658608][   T29] kauditd_printk_skb: 248 callbacks suppressed
[  146.658630][   T29] audit: type=1326 audit(1750546583.762:5381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8737 comm="syz.2.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd16052e929 code=0x7ffc0000
[  146.695028][   T29] audit: type=1326 audit(1750546583.792:5382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8740 comm="syz.0.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  146.718743][   T29] audit: type=1326 audit(1750546583.792:5383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8740 comm="syz.0.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  146.742328][   T29] audit: type=1326 audit(1750546583.792:5384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8740 comm="syz.0.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  146.765815][   T29] audit: type=1326 audit(1750546583.792:5385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8740 comm="syz.0.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  146.769283][ T8717] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  146.789427][   T29] audit: type=1326 audit(1750546583.792:5386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8740 comm="syz.0.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  146.789469][   T29] audit: type=1326 audit(1750546583.792:5387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8740 comm="syz.0.1851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e6e6de929 code=0x7ffc0000
[  146.845687][   T29] audit: type=1326 audit(1750546583.802:5388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8737 comm="syz.2.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd16052e929 code=0x7ffc0000
[  146.869409][   T29] audit: type=1326 audit(1750546583.802:5389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8737 comm="syz.2.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd16052e929 code=0x7ffc0000
[  146.892871][   T29] audit: type=1326 audit(1750546583.802:5390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8737 comm="syz.2.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd16052e929 code=0x7ffc0000
[  146.917028][ T8717] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  146.927736][ T8717] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #15: comm syz.3.1844: iget: bad i_size value: 360287970189639690
[  146.941319][ T8717] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.1844: Bad quota inode: 15, type: 2
[  146.952534][ T8717] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  146.953639][ T8736] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.993965][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.040803][ T8736] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.115602][ T8736] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.204270][ T8736] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.222513][ T8736] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.242285][ T8736] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.256494][ T8736] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.618097][ T8770] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1861'.
[  147.770323][ T8777] loop5: detected capacity change from 0 to 512
[  147.796055][ T8777] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  147.804361][ T8777] EXT4-fs (loop5): orphan cleanup on readonly fs
[  147.845486][ T8777] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1863: iget: bad i_size value: 360287970189639690
[  147.893298][ T8777] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1863: Bad quota inode: 15, type: 2
[  147.893645][ T8777] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  147.899692][ T8777] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  147.900148][ T8777] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  147.909344][ T8777] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  147.917594][ T8777] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  147.960844][ T8777] EXT4-fs error (device loop5): ext4_quota_enable:7124: inode #15: comm syz.5.1863: iget: bad i_size value: 360287970189639690
[  147.961412][ T8777] EXT4-fs error (device loop5): ext4_quota_enable:7127: comm syz.5.1863: Bad quota inode: 15, type: 2
[  147.972259][ T8777] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[  148.033291][ T7469] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.070234][ T8772] SELinux: failed to load policy
[  148.094349][ T8792] loop3: detected capacity change from 0 to 512
[  148.137594][ T8792] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.1866: corrupted in-inode xattr: invalid ea_ino
[  148.391799][ T8792] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.1866: couldn't read orphan inode 15 (err -117)
[  148.404749][ T8792] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  148.659572][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.471944][ T8818] loop2: detected capacity change from 0 to 512
[  149.590388][ T8818] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1872: Failed to acquire dquot type 1
[  149.677291][ T8818] EXT4-fs (loop2): 1 truncate cleaned up
[  149.746016][ T8818] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.786130][ T8818] ext4 filesystem being mounted at /391/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.977034][ T8831] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.995653][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.054428][ T8831] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.074603][ T8836] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1881'.
[  150.131196][ T8831] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.250595][ T8831] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.307331][    C0] ==================================================================
[  150.315559][    C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  150.322803][    C0] 
[  150.325142][    C0] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 1:
[  150.333243][    C0]  can_can_gw_rcv+0x807/0x820
[  150.337961][    C0]  can_rcv_filter+0xc7/0x4f0
[  150.342600][    C0]  can_receive+0x163/0x1c0
[  150.347062][    C0]  canfd_rcv+0xed/0x190
[  150.351269][    C0]  __netif_receive_skb+0x120/0x270
[  150.356416][    C0]  process_backlog+0x229/0x420
[  150.361214][    C0]  __napi_poll+0x66/0x3a0
[  150.365568][    C0]  net_rx_action+0x391/0x830
[  150.370189][    C0]  handle_softirqs+0xba/0x290
[  150.374893][    C0]  do_softirq+0x5d/0x90
[  150.379077][    C0]  __local_bh_enable_ip+0x70/0x80
[  150.384128][    C0]  _raw_spin_unlock_bh+0x36/0x40
[  150.389102][    C0]  batadv_nc_purge_paths+0x22b/0x270
[  150.394444][    C0]  batadv_nc_worker+0x3d8/0xae0
[  150.399331][    C0]  process_scheduled_works+0x4ce/0x9d0
[  150.404827][    C0]  worker_thread+0x582/0x770
[  150.409463][    C0]  kthread+0x486/0x510
[  150.413567][    C0]  ret_from_fork+0xdd/0x150
[  150.418104][    C0]  ret_from_fork_asm+0x1a/0x30
[  150.422888][    C0] 
[  150.425225][    C0] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 0:
[  150.433316][    C0]  can_can_gw_rcv+0x807/0x820
[  150.438129][    C0]  can_rcv_filter+0xc7/0x4f0
[  150.442761][    C0]  can_receive+0x163/0x1c0
[  150.447234][    C0]  canfd_rcv+0xed/0x190
[  150.451441][    C0]  __netif_receive_skb+0x120/0x270
[  150.456602][    C0]  process_backlog+0x229/0x420
[  150.461397][    C0]  __napi_poll+0x66/0x3a0
[  150.465755][    C0]  net_rx_action+0x391/0x830
[  150.470369][    C0]  handle_softirqs+0xba/0x290
[  150.475075][    C0]  run_ksoftirqd+0x1c/0x30
[  150.479519][    C0]  smpboot_thread_fn+0x32b/0x530
[  150.484497][    C0]  kthread+0x486/0x510
[  150.488602][    C0]  ret_from_fork+0xdd/0x150
[  150.493152][    C0]  ret_from_fork_asm+0x1a/0x30
[  150.497960][    C0] 
[  150.500296][    C0] value changed: 0x000036cf -> 0x000036d0
[  150.506114][    C0] 
[  150.508456][    C0] Reported by Kernel Concurrency Sanitizer on:
[  150.514620][    C0] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  150.528527][    C0] Tainted: [W]=WARN
[  150.532337][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.542404][    C0] ==================================================================
[  150.671804][    C0] ==================================================================
[  150.679949][    C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter
[  150.687219][    C0] 
[  150.689558][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 1:
[  150.697648][    C0]  can_rcv_filter+0xd9/0x4f0
[  150.702306][    C0]  can_receive+0x163/0x1c0
[  150.706762][    C0]  canfd_rcv+0xed/0x190
[  150.710966][    C0]  __netif_receive_skb+0x120/0x270
[  150.716109][    C0]  process_backlog+0x229/0x420
[  150.720907][    C0]  __napi_poll+0x66/0x3a0
[  150.725263][    C0]  net_rx_action+0x391/0x830
[  150.729901][    C0]  handle_softirqs+0xba/0x290
[  150.734613][    C0]  do_softirq+0x5d/0x90
[  150.738806][    C0]  __local_bh_enable_ip+0x70/0x80
[  150.743862][    C0]  copy_fpstate_to_sigframe+0x311/0x7d0
[  150.749537][    C0]  get_sigframe+0x34d/0x490
[  150.754068][    C0]  x64_setup_rt_frame+0xa8/0x580
[  150.759050][    C0]  arch_do_signal_or_restart+0x27c/0x480
[  150.764712][    C0]  exit_to_user_mode_loop+0x7a/0x100
[  150.770031][    C0]  do_syscall_64+0x1d6/0x200
[  150.774636][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.780541][    C0] 
[  150.782868][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 0:
[  150.790941][    C0]  can_rcv_filter+0xd9/0x4f0
[  150.795553][    C0]  can_receive+0x163/0x1c0
[  150.799992][    C0]  canfd_rcv+0xed/0x190
[  150.804166][    C0]  __netif_receive_skb+0x120/0x270
[  150.809289][    C0]  process_backlog+0x229/0x420
[  150.814072][    C0]  __napi_poll+0x66/0x3a0
[  150.818419][    C0]  net_rx_action+0x391/0x830
[  150.823024][    C0]  handle_softirqs+0xba/0x290
[  150.827716][    C0]  do_softirq+0x5d/0x90
[  150.831884][    C0]  __local_bh_enable_ip+0x70/0x80
[  150.836921][    C0]  _raw_spin_unlock_bh+0x36/0x40
[  150.841886][    C0]  lock_sock_nested+0x112/0x140
[  150.846772][    C0]  tcp_recvmsg+0x114/0x490
[  150.851213][    C0]  inet_recvmsg+0xb7/0x290
[  150.855643][    C0]  sock_recvmsg+0xf6/0x170
[  150.860077][    C0]  sock_read_iter+0x152/0x1a0
[  150.864772][    C0]  vfs_read+0x5ca/0x6f0
[  150.868956][    C0]  ksys_read+0xda/0x1a0
[  150.873134][    C0]  __x64_sys_read+0x40/0x50
[  150.877677][    C0]  x64_sys_call+0x2d77/0x2fb0
[  150.882369][    C0]  do_syscall_64+0xd2/0x200
[  150.886894][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.892805][    C0] 
[  150.895137][    C0] value changed: 0x000000000000a2f4 -> 0x000000000000a2f5
[  150.902263][    C0] 
[  150.904609][    C0] Reported by Kernel Concurrency Sanitizer on:
[  150.910877][    C0] CPU: 0 UID: 0 PID: 3300 Comm: syz-executor Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  150.925055][    C0] Tainted: [W]=WARN
[  150.928871][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.938945][    C0] ==================================================================
Connection to 10.128.1.89 closed by remote host.
[  153.348020][    C0] ==================================================================
[  153.356167][    C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  153.363408][    C0] 
[  153.365753][    C0] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 1:
[  153.373852][    C0]  can_can_gw_rcv+0x807/0x820
[  153.378561][    C0]  can_rcv_filter+0xc7/0x4f0
[  153.383214][    C0]  can_receive+0x163/0x1c0
[  153.387681][    C0]  canfd_rcv+0xed/0x190
[  153.391871][    C0]  __netif_receive_skb+0x120/0x270
[  153.397016][    C0]  process_backlog+0x229/0x420
[  153.401833][    C0]  __napi_poll+0x66/0x3a0
[  153.406190][    C0]  net_rx_action+0x391/0x830
[  153.410804][    C0]  handle_softirqs+0xba/0x290
[  153.415504][    C0]  do_softirq+0x5d/0x90
[  153.419688][    C0]  __local_bh_enable_ip+0x70/0x80
[  153.424744][    C0]  _raw_spin_unlock_bh+0x36/0x40
[  153.429744][    C0]  page_pool_release+0x302/0x860
[  153.434720][    C0]  page_pool_release_retry+0x1f/0x190
[  153.440135][    C0]  process_scheduled_works+0x4ce/0x9d0
[  153.445637][    C0]  worker_thread+0x582/0x770
[  153.450283][    C0]  kthread+0x486/0x510
[  153.454373][    C0]  ret_from_fork+0xdd/0x150
[  153.458905][    C0]  ret_from_fork_asm+0x1a/0x30
[  153.463703][    C0] 
[  153.466039][    C0] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 0:
[  153.474144][    C0]  can_can_gw_rcv+0x807/0x820
[  153.478859][    C0]  can_rcv_filter+0xc7/0x4f0
[  153.483496][    C0]  can_receive+0x163/0x1c0
[  153.487958][    C0]  canfd_rcv+0xed/0x190
[  153.492145][    C0]  __netif_receive_skb+0x120/0x270
[  153.497282][    C0]  process_backlog+0x229/0x420
[  153.502076][    C0]  __napi_poll+0x66/0x3a0
[  153.506431][    C0]  net_rx_action+0x391/0x830
[  153.511050][    C0]  handle_softirqs+0xba/0x290
[  153.515772][    C0]  do_softirq+0x5d/0x90
[  153.519951][    C0]  __local_bh_enable_ip+0x70/0x80
[  153.524998][    C0]  kernel_fpu_end+0x9d/0xd0
[  153.529538][    C0]  blake2s_compress+0x5f/0xd0
[  153.534239][    C0]  blake2s_final+0x6a/0xa0
[  153.538696][    C0]  hmac+0x14e/0x270
[  153.542535][    C0]  message_ephemeral+0x134/0x1d0
[  153.547504][    C0]  wg_noise_handshake_create_initiation+0x1ac/0x5a0
[  153.554134][    C0]  wg_packet_handshake_send_worker+0xb2/0x160
[  153.560232][    C0]  process_scheduled_works+0x4ce/0x9d0
[  153.565729][    C0]  worker_thread+0x582/0x770
[  153.570369][    C0]  kthread+0x486/0x510
[  153.574467][    C0]  ret_from_fork+0xdd/0x150
[  153.578998][    C0]  ret_from_fork_asm+0x1a/0x30
[  153.583893][    C0] 
[  153.586239][    C0] value changed: 0x0005c0cc -> 0x0005c0cd
[  153.592411][    C0] 
[  153.594749][    C0] Reported by Kernel Concurrency Sanitizer on:
[  153.600929][    C0] CPU: 0 UID: 0 PID: 7189 Comm: kworker/u8:54 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  153.615204][    C0] Tainted: [W]=WARN
[  153.619053][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.629149][    C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker
[  153.636150][    C0] ==================================================================
[  153.700669][    C0] ==================================================================
[  153.708815][    C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter
[  153.716069][    C0] 
[  153.718409][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 1:
[  153.726505][    C0]  can_rcv_filter+0xd9/0x4f0
[  153.731289][    C0]  can_receive+0x163/0x1c0
[  153.735742][    C0]  canfd_rcv+0xed/0x190
[  153.739938][    C0]  __netif_receive_skb+0x120/0x270
[  153.745086][    C0]  process_backlog+0x229/0x420
[  153.749923][    C0]  __napi_poll+0x66/0x3a0
[  153.754279][    C0]  net_rx_action+0x391/0x830
[  153.758903][    C0]  handle_softirqs+0xba/0x290
[  153.763611][    C0]  do_softirq+0x5d/0x90
[  153.767796][    C0]  __local_bh_enable_ip+0x70/0x80
[  153.772857][    C0]  _raw_write_unlock_bh+0x1f/0x30
[  153.777917][    C0]  ___neigh_create+0x10ad/0x1290
[  153.782885][    C0]  __neigh_create+0x54/0x70
[  153.787413][    C0]  ip6_finish_output2+0x627/0xd30
[  153.792467][    C0]  ip6_finish_output+0x3a2/0x530
[  153.797437][    C0]  ip6_output+0xfd/0x240
[  153.801716][    C0]  mld_sendpack+0x427/0x6e0
[  153.806277][    C0]  mld_ifc_work+0x55c/0x840
[  153.810811][    C0]  process_scheduled_works+0x4ce/0x9d0
[  153.816310][    C0]  worker_thread+0x582/0x770
[  153.820943][    C0]  kthread+0x486/0x510
[  153.825041][    C0]  ret_from_fork+0xdd/0x150
[  153.829575][    C0]  ret_from_fork_asm+0x1a/0x30
[  153.834374][    C0] 
[  153.836720][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 0:
[  153.844817][    C0]  can_rcv_filter+0xd9/0x4f0
[  153.849450][    C0]  can_receive+0x163/0x1c0
[  153.853915][    C0]  canfd_rcv+0xed/0x190
[  153.858109][    C0]  __netif_receive_skb+0x120/0x270
[  153.863255][    C0]  process_backlog+0x229/0x420
[  153.868062][    C0]  __napi_poll+0x66/0x3a0
[  153.872428][    C0]  net_rx_action+0x391/0x830
[  153.877047][    C0]  handle_softirqs+0xba/0x290
[  153.881766][    C0]  run_ksoftirqd+0x1c/0x30
[  153.886209][    C0]  smpboot_thread_fn+0x32b/0x530
[  153.891184][    C0]  kthread+0x486/0x510
[  153.895278][    C0]  ret_from_fork+0xdd/0x150
[  153.899809][    C0]  ret_from_fork_asm+0x1a/0x30
[  153.904614][    C0] 
[  153.906965][    C0] value changed: 0x000000000006550a -> 0x000000000006550b
[  153.914094][    C0] 
[  153.916430][    C0] Reported by Kernel Concurrency Sanitizer on:
[  153.922602][    C0] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  153.936529][    C0] Tainted: [W]=WARN
[  153.940441][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.950531][    C0] ==================================================================
[  156.392755][    C1] ==================================================================
[  156.400900][    C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  156.408141][    C1] 
[  156.410480][    C1] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 0:
[  156.418603][    C1]  can_can_gw_rcv+0x807/0x820
[  156.423315][    C1]  can_rcv_filter+0xc7/0x4f0
[  156.427949][    C1]  can_receive+0x163/0x1c0
[  156.432404][    C1]  canfd_rcv+0xed/0x190
[  156.436595][    C1]  __netif_receive_skb+0x120/0x270
[  156.441737][    C1]  process_backlog+0x229/0x420
[  156.446535][    C1]  __napi_poll+0x66/0x3a0
[  156.450890][    C1]  net_rx_action+0x391/0x830
[  156.455516][    C1]  handle_softirqs+0xba/0x290
[  156.460227][    C1]  do_softirq+0x5d/0x90
[  156.464420][    C1]  __local_bh_enable_ip+0x70/0x80
[  156.469468][    C1]  _raw_spin_unlock_bh+0x36/0x40
[  156.474440][    C1]  bpf_link_free+0x7b/0x340
[  156.479003][    C1]  bpf_link_release+0x45/0x60
[  156.483720][    C1]  __fput+0x298/0x650
[  156.487728][    C1]  ____fput+0x1c/0x30
[  156.491732][    C1]  task_work_run+0x12e/0x1a0
[  156.496347][    C1]  do_exit+0x47f/0x1590
[  156.500539][    C1]  do_group_exit+0xff/0x140
[  156.505417][    C1]  get_signal+0xe59/0xf70
[  156.509790][    C1]  arch_do_signal_or_restart+0x96/0x480
[  156.515374][    C1]  exit_to_user_mode_loop+0x7a/0x100
[  156.520682][    C1]  do_syscall_64+0x1d6/0x200
[  156.525286][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.531202][    C1] 
[  156.533542][    C1] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 1:
[  156.541634][    C1]  can_can_gw_rcv+0x807/0x820
[  156.546338][    C1]  can_rcv_filter+0xc7/0x4f0
[  156.550949][    C1]  can_receive+0x163/0x1c0
[  156.555403][    C1]  canfd_rcv+0xed/0x190
[  156.559592][    C1]  __netif_receive_skb+0x120/0x270
[  156.564737][    C1]  process_backlog+0x229/0x420
[  156.569531][    C1]  __napi_poll+0x66/0x3a0
[  156.573882][    C1]  net_rx_action+0x391/0x830
[  156.578497][    C1]  handle_softirqs+0xba/0x290
[  156.583201][    C1]  run_ksoftirqd+0x1c/0x30
[  156.587654][    C1]  smpboot_thread_fn+0x32b/0x530
[  156.592630][    C1]  kthread+0x486/0x510
[  156.596711][    C1]  ret_from_fork+0xdd/0x150
[  156.601242][    C1]  ret_from_fork_asm+0x1a/0x30
[  156.606646][    C1] 
[  156.608984][    C1] value changed: 0x000beb4a -> 0x000beb4b
[  156.614715][    C1] 
[  156.617051][    C1] Reported by Kernel Concurrency Sanitizer on:
[  156.623228][    C1] CPU: 1 UID: 0 PID: 22 Comm: ksoftirqd/1 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  156.637149][    C1] Tainted: [W]=WARN
[  156.640964][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.651043][    C1] ==================================================================
[  156.724492][    C0] ==================================================================
[  156.732623][    C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter
[  156.739889][    C0] 
[  156.742230][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 1:
[  156.750318][    C0]  can_rcv_filter+0xd9/0x4f0
[  156.754951][    C0]  can_receive+0x163/0x1c0
[  156.759407][    C0]  canfd_rcv+0xed/0x190
[  156.763598][    C0]  __netif_receive_skb+0x120/0x270
[  156.768741][    C0]  process_backlog+0x229/0x420
[  156.773543][    C0]  __napi_poll+0x66/0x3a0
[  156.777905][    C0]  net_rx_action+0x391/0x830
[  156.782531][    C0]  handle_softirqs+0xba/0x290
[  156.787236][    C0]  run_ksoftirqd+0x1c/0x30
[  156.791687][    C0]  smpboot_thread_fn+0x32b/0x530
[  156.796667][    C0]  kthread+0x486/0x510
[  156.800759][    C0]  ret_from_fork+0xdd/0x150
[  156.805290][    C0]  ret_from_fork_asm+0x1a/0x30
[  156.810090][    C0] 
[  156.812430][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 0:
[  156.820521][    C0]  can_rcv_filter+0xd9/0x4f0
[  156.825145][    C0]  can_receive+0x163/0x1c0
[  156.829594][    C0]  canfd_rcv+0xed/0x190
[  156.833797][    C0]  __netif_receive_skb+0x120/0x270
[  156.838939][    C0]  process_backlog+0x229/0x420
[  156.843732][    C0]  __napi_poll+0x66/0x3a0
[  156.848088][    C0]  net_rx_action+0x391/0x830
[  156.852705][    C0]  handle_softirqs+0xba/0x290
[  156.857422][    C0]  do_softirq+0x5d/0x90
[  156.861614][    C0]  __local_bh_enable_ip+0x70/0x80
[  156.866664][    C0]  _raw_write_unlock_bh+0x1f/0x30
[  156.871744][    C0]  sk_common_release+0xd8/0x220
[  156.876635][    C0]  udp_lib_close+0x15/0x20
[  156.881093][    C0]  inet_release+0xcb/0xf0
[  156.885470][    C0]  inet6_release+0x3e/0x60
[  156.889920][    C0]  sock_release+0x4b/0xe0
[  156.894284][    C0]  udp_tunnel_sock_release+0x4d/0x60
[  156.899613][    C0]  wg_socket_reinit+0x129/0x150
[  156.904506][    C0]  wg_netns_pre_exit+0xa5/0x130
[  156.909393][    C0]  ops_undo_list+0xb5/0x410
[  156.913936][    C0]  cleanup_net+0x2de/0x4d0
[  156.918382][    C0]  process_scheduled_works+0x4ce/0x9d0
[  156.923885][    C0]  worker_thread+0x582/0x770
[  156.928517][    C0]  kthread+0x486/0x510
[  156.932615][    C0]  ret_from_fork+0xdd/0x150
[  156.937141][    C0]  ret_from_fork_asm+0x1a/0x30
[  156.941934][    C0] 
[  156.944276][    C0] value changed: 0x00000000000c8ce3 -> 0x00000000000c8ce5
[  156.951409][    C0] 
[  156.953747][    C0] Reported by Kernel Concurrency Sanitizer on:
[  156.959923][    C0] CPU: 0 UID: 0 PID: 7189 Comm: kworker/u8:54 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  156.974219][    C0] Tainted: [W]=WARN
[  156.978042][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.988119][    C0] Workqueue: netns cleanup_net
[  156.992922][    C0] ==================================================================
[  159.415700][    C1] ==================================================================
[  159.423839][    C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv
[  159.431081][    C1] 
[  159.433421][    C1] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 0:
[  159.441513][    C1]  can_can_gw_rcv+0x807/0x820
[  159.446219][    C1]  can_rcv_filter+0xc7/0x4f0
[  159.450856][    C1]  can_receive+0x163/0x1c0
[  159.455319][    C1]  canfd_rcv+0xed/0x190
[  159.459518][    C1]  __netif_receive_skb+0x120/0x270
[  159.464654][    C1]  process_backlog+0x229/0x420
[  159.469506][    C1]  __napi_poll+0x66/0x3a0
[  159.473872][    C1]  net_rx_action+0x391/0x830
[  159.478490][    C1]  handle_softirqs+0xba/0x290
[  159.483218][    C1]  do_softirq+0x5d/0x90
[  159.487403][    C1]  __local_bh_enable_ip+0x70/0x80
[  159.492472][    C1]  _raw_spin_unlock_bh+0x36/0x40
[  159.497444][    C1]  batadv_tt_purge+0x2cd/0x610
[  159.502249][    C1]  process_scheduled_works+0x4ce/0x9d0
[  159.507747][    C1]  worker_thread+0x582/0x770
[  159.512376][    C1]  kthread+0x486/0x510
[  159.516474][    C1]  ret_from_fork+0xdd/0x150
[  159.521008][    C1]  ret_from_fork_asm+0x1a/0x30
[  159.525800][    C1] 
[  159.528140][    C1] read-write to 0xffff88811136a020 of 4 bytes by interrupt on cpu 1:
[  159.536227][    C1]  can_can_gw_rcv+0x807/0x820
[  159.540927][    C1]  can_rcv_filter+0xc7/0x4f0
[  159.545552][    C1]  can_receive+0x163/0x1c0
[  159.550013][    C1]  canfd_rcv+0xed/0x190
[  159.554297][    C1]  __netif_receive_skb+0x120/0x270
[  159.559431][    C1]  process_backlog+0x229/0x420
[  159.564226][    C1]  __napi_poll+0x66/0x3a0
[  159.568583][    C1]  net_rx_action+0x391/0x830
[  159.573204][    C1]  handle_softirqs+0xba/0x290
[  159.577926][    C1]  do_softirq+0x5d/0x90
[  159.582114][    C1]  __local_bh_enable_ip+0x70/0x80
[  159.587240][    C1]  _raw_spin_unlock_bh+0x36/0x40
[  159.592209][    C1]  sync_thread_master+0x312/0x8b0
[  159.597270][    C1]  kthread+0x486/0x510
[  159.601363][    C1]  ret_from_fork+0xdd/0x150
[  159.605891][    C1]  ret_from_fork_asm+0x1a/0x30
[  159.610677][    C1] 
[  159.613018][    C1] value changed: 0x001230b9 -> 0x001230bb
[  159.618781][    C1] 
[  159.621120][    C1] Reported by Kernel Concurrency Sanitizer on:
[  159.627301][    C1] CPU: 1 UID: 0 PID: 4232 Comm: ipvs-m:5:0 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  159.641334][    C1] Tainted: [W]=WARN
[  159.645156][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.655240][    C1] ==================================================================
[  159.733033][    C0] ==================================================================
[  159.741180][    C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter
[  159.748446][    C0] 
[  159.750794][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 1:
[  159.758892][    C0]  can_rcv_filter+0xd9/0x4f0
[  159.763526][    C0]  can_receive+0x163/0x1c0
[  159.767986][    C0]  canfd_rcv+0xed/0x190
[  159.772189][    C0]  __netif_receive_skb+0x120/0x270
[  159.777340][    C0]  process_backlog+0x229/0x420
[  159.782143][    C0]  __napi_poll+0x66/0x3a0
[  159.786520][    C0]  net_rx_action+0x391/0x830
[  159.791146][    C0]  handle_softirqs+0xba/0x290
[  159.795847][    C0]  do_softirq+0x5d/0x90
[  159.800028][    C0]  __local_bh_enable_ip+0x70/0x80
[  159.805078][    C0]  napi_threaded_poll_loop+0x3af/0x4a0
[  159.810587][    C0]  napi_threaded_poll+0xda/0x160
[  159.815566][    C0]  kthread+0x486/0x510
[  159.819667][    C0]  ret_from_fork+0xdd/0x150
[  159.824208][    C0]  ret_from_fork_asm+0x1a/0x30
[  159.829000][    C0] 
[  159.831437][    C0] read-write to 0xffff888101a28248 of 8 bytes by interrupt on cpu 0:
[  159.839529][    C0]  can_rcv_filter+0xd9/0x4f0
[  159.844179][    C0]  can_receive+0x163/0x1c0
[  159.848642][    C0]  canfd_rcv+0xed/0x190
[  159.852854][    C0]  __netif_receive_skb+0x120/0x270
[  159.858008][    C0]  process_backlog+0x229/0x420
[  159.862814][    C0]  __napi_poll+0x66/0x3a0
[  159.867176][    C0]  net_rx_action+0x391/0x830
[  159.871802][    C0]  handle_softirqs+0xba/0x290
[  159.876510][    C0]  run_ksoftirqd+0x1c/0x30
[  159.880962][    C0]  smpboot_thread_fn+0x32b/0x530
[  159.885943][    C0]  kthread+0x486/0x510
[  159.890039][    C0]  ret_from_fork+0xdd/0x150
[  159.894570][    C0]  ret_from_fork_asm+0x1a/0x30
[  159.899373][    C0] 
[  159.901720][    C0] value changed: 0x000000000012caf6 -> 0x000000000012caf7
[  159.908847][    C0] 
[  159.911189][    C0] Reported by Kernel Concurrency Sanitizer on:
[  159.917458][    C0] CPU: 0 UID: 0 PID: 14 Comm: ksoftirqd/0 Tainted: G        W           6.16.0-rc2-syzkaller-00278-g3f75bfff44be #0 PREEMPT(voluntary) 
[  159.931481][    C0] Tainted: [W]=WARN
[  159.935302][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.945466][    C0] ==================================================================