last executing test programs:

1m16.85734606s ago: executing program 0 (id=1199):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
write$tcp_mem(r0, &(0x7f00000004c0)={0x5, 0x20, 0x10000, 0x20, 0xb13}, 0x48)
r1 = epoll_create1(0x80000)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r2, &(0x7f0000001980)=""/179, 0xb3)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r3}, &(0x7f0000000040), &(0x7f00000003c0)='%pi6   \x00'}, 0x20)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000100a7d9000000000020b208850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="500000002700010000000000000000000a010100000000a72e00000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x50}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r8=>r7, {<r9=>r7}}, './file0\x00'})
bind$unix(0xffffffffffffffff, 0x0, 0x0)
mq_notify(r9, &(0x7f00000012c0)={0x0, 0x17, 0x2, @thr={0x0, &(0x7f00000002c0)="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"}})
syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), r7)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
r11 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000001240)={[{@jqfmt_vfsold}, {@nodiscard}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@nodiscard}]}, 0x1, 0x4fa, &(0x7f0000000c80)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000001180)='objagg_obj_root_create\x00', r4, 0x0, 0x4}, 0x18)
write$tun(r10, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d0020400010110000000000000000000000000000000000ff02000001654133ff7f00000000"], 0x4a)
sendmsg$nl_generic(r8, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000011c0)=ANY=[@ANYRES64=r11], 0x20}, 0x1, 0x0, 0x0, 0xc841}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1m16.672836713s ago: executing program 0 (id=1200):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000003"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000300)="b9ff030768f1258c989e14f05c71", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2000000}, 0x50)

1m16.584556395s ago: executing program 0 (id=1204):
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'veth1_virt_wifi\x00'}}, 0x1e)
r3 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r3, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
close(r0)

1m16.581655574s ago: executing program 0 (id=1206):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x200000000000035a, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x0, 0xf}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f00000001c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000000)=0x1, r2, 0x0, 0x2, 0x4}}, 0x20)
r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x11, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffefffff, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xa1b96aadc3618c72}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r4}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x5b1, &(0x7f0000000a00)="$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")
r6 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r6, &(0x7f0000000140)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x2007, 0x3a, '\r', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5421, &(0x7f0000000040)=0xdc7d)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x80800)
setsockopt$IPT_SO_SET_REPLACE(r9, 0x0, 0x40, &(0x7f0000000140)=@nat={'nat\x00', 0x670, 0x5, 0x328, 0x150, 0x210, 0xfeffffff, 0xa8, 0xa8, 0x2b8, 0x2b8, 0xffffffff, 0x2b8, 0x2b8, 0x5, 0x0, {[{{@ip={@loopback, @broadcast, 0x0, 0x0, 'dvmrp1\x00', 'vlan1\x00'}, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x13, @rand_addr, @empty, @port, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x13, @broadcast, @loopback}}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, 0x0, 0x0, 'batadv_slave_1\x00', 'xfrm0\x00'}, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @rand_addr, @remote}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x388)
read(r9, &(0x7f0000000500)=""/28, 0x1c)
getpriority(0x7, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r10, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4c80c)
socket$nl_generic(0x10, 0x3, 0x10)

1m16.23322221s ago: executing program 0 (id=1210):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
write$tcp_mem(r0, &(0x7f00000004c0)={0x5, 0x20, 0x10000, 0x20, 0xb13}, 0x48)
r1 = epoll_create1(0x80000)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r2, &(0x7f0000001980)=""/179, 0xb3)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r3}, &(0x7f0000000040), &(0x7f00000003c0)='%pi6   \x00'}, 0x20)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000100a7d9000000000020b208850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000000}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="500000002700010000000000000000000a010100000000a72e00000000000000fe8000000000000000000000000000bb00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x50}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r8=>r7, {<r9=>r7}}, './file0\x00'})
bind$unix(0xffffffffffffffff, 0x0, 0x0)
mq_notify(r9, &(0x7f00000012c0)={0x0, 0x17, 0x2, @thr={0x0, &(0x7f00000002c0)="342f846a83da74a9de5938367827edccda815f6cef971290c3de9919b90d4e362735d90e55cdf7b98d39593713c6872d92b6025c90dc9262aaab4de40a03c3aabd6d8ad40152db32dbca4d942be6efdd8334438d7b4cbbe2e43aee1e5644a698ce77d69d8c46c618ae16c3bcc6a6b02d48f35ba2a4c59737c7ea06df1e48bf8bb61ece79dae7680d28a08bab4d7d0ab9ad54a832123002be28932eb79a5542e0f74f98852d6ce71087e43a13108ff3bfafc476604097fa92249adc8ef028ef72d5fb805580a65f2073fe57c3a213e6768bc4b68f3491a0ca23796780678712e70d1b815f9395f8f55310a9b8e207f17c24b0495a4a541524295c3886fe58bbafeac1ec2413cd08e6f3badfe589dc6e688743b472a02a664bf7a4e53f944a722cb18dba7141f9b24e0c4bf6795cdca108b9d9c141e94c695677c31f2ebc6c63f59b10e5add12ffd6bdfb1984739f6c98b3bd3ea217e395c1c2cc7708ef2e87d7c893e8bda44ccda6aaa76a86128eeeb1fc32f368b8c01ea0d0e1826ac0fc75484f52ef3c96378d5a4c7053229a83e81f5911500de0f3374161d9c133caab165590b43058afd116c3c55bac58454950b9b1b8753b2e5f7b8cdf666969021ae55e72de0cb5a6d04902decad72f66620026b7d69729759d00ff0e69de700fd4f9ee9d0db511c4dab22728c293431f8936eddfbfa78e4307f8636dd8a7284d16b0de79e59fdc4a4875763e477786676fc7de57665aa07b93866a07f0bd3b2cf01b844cdb6819bd3fc2219d27a227a93be12d2c954ac6751aa6ec64dccef6f55fabbddf37166e0f8c7ca14a153fbde231fe71c30c1ed627d327128fde38235991ca0fdbbc03d6dfcf3e23a7665fee9b6e0b457fde8aa7a72575d9d48448f616e762412549c3d8c5883ba77466850397397f5e63af88a84a6f6da805014ea3d2c6ce83f621be90231ea6650e16a303e23998fe98d4ed180d7b8f3517643d81bc8fa2ed912f224e0f9ac1067e4b9225c37d1db9eda88826f1f043b5718f38d913e25acb8894be24c7fc1de37907248357d08094b3d780d644c4f6a4a05bbe1cf873a74652c9480a650188f0d1b179e8214c52bbdab15ba3e5c9f197bfdc006688e666e53e0f6ba2bad1958d99fd6cf76c6b67743088346b62c74c745933afa8901a5a620ed4bb43ffd49a0c2d7f684d1764777e08d3dcbb1350eecf371d9daf937deced1dd1de5012f851964e3dcc80b12088528416f32dd98623fd9de5ca59233280c65e5b85aec7325a56ae83fbdeb3e107fdeec16de27d8c2da323a66960da6d68c90f720a55cb4a362ba32e85c2333f5f724124c3c683b8d07931751f92327a01518271929154db1239ec71ea5010ab31af108497eb0e2e3ba1e800b6632248c56d1ccce52e6e8f5a9035c4b1c35cfc01a3dce8a2af280f3d8fbd3a4aff2e7e361148f43020a75b98bc004ca3f356492d590ec8047669e09e68574b2a8bf316aac589e766f2742eccc062970b76c8991d1ebbc528e14fcbd093e7787d6cdc6649f471e5a9f93624ee6536fc86bf21d6f83a11a662fe5bf83807d4c4a7b563c842e16398a0170388c71d16bea3f51f5b4c3453788249f3995269870b78f980dca4d52dec20b06d9ba7c125401d6385045fad6ba911fab96e2ebf236d7ae12e6f9ed724f53f7d6efa2d77b863645b92d8df2bd52e582228e25cc5f9db41ef640d4f2b3e450b9395b1ec87df8153baf03dbf81201d1949c6dab4f6be2578013772fc66e8e46d5d7349c5b0187d145d9c9197391ca5752f9ddc276f918478849a1b8ff7c59b78c5cdde643ba6604e2d28c76ccef6360c4d9c3690b0204dde6082f926ce88311614013ae70ca3f960edf900d0887e121e68f2c7e44e5fab702f592364a5b379f9f0dd6daf49ab1bfbc53d5cfb0ddc02cbeece2cc99ec0f5097f32d92d4b0369b0d80fd4e909c95eacc901b6742d92bf4c85e0f52086f917153ceb76408a43bf1b4d2b8926fc56e3f2d554e840e56d52479377aa0ff0f4c4f8bd8def766e7216fd01cf537a5c3e9bba9255a5dda7ab01b042ce4db964955602f7c98fc5fd0db38e6b2a8a88aaf3c66c030fec5fc3422172d519b9af8a6da9da76ed81041ddcb5bbe08c1121537ab9f42bf24f60db2856c6dae9a0ece96671edeebaf56aa6ab170b3079c3f7da8e2746abc3f99dc12c99620c7e9e5795a0c60280a73a18ff3088d76128be607d221a9def0bc4984743101c14324cdcdf0d5a5c9336ce7dfd5563408cf85d581a13017edd1b6ad7318e562921f00afd6c83e60b2a33637e43f20c33634a66e8d9eb64f85fc850222c1307d02ab89e4d4054e3daafefbc8c0e0509b1c0b4adc5832e049dedd5f894fc5f6ca06b08fc2d1e64c450df3baeecc2db075b7db8661f46fd8b742a9476199804e51548fa076b5f10d6512e6aa88731405b28b3cb955ac013395b125315b419658ffd72048ce41fb67cbfecefa4b17daf62e1d070c18ac4ca8b0d6f8b4d2e6fc6fea0755eaad054b0f5ab228b811695d057c425c50718955ccacd80b79a213fc4f3493422d699e1a5d006aaa90324cc06282cf7be6b263727047102ce56cb490c59d29e3bdda52ea29a2bc562082b813bb06d9f6e080ce54c11b7f934ddf78a92da92de591fbcf99e8b8618f89b62accd072be6f0543693dcd21323e1a0326479fe59cf99db271917b9d57b58ff1eaa6d292be155af9ae149b5d1d3b0b0350a201372b488a8fc153e9e23e7113a9e5876595d7dc8b845c82a60899e2c36acb8c596e629aa8204d03bf70aa6f3b1c11cf1c5bd152de30124adcdaf52d4dec629f08ce109a8ec2c53e738763698939ff7d880cd290b2b793af3a94214d5309a1edff6f6598a80c28f89b3389b5ef1aba076b4007fc8c8f70ee06b8800d86938c1a7809a92638e7badeb5fc297007d872ee3436e63bebb719db811e31686f8c666fd790d46a16de593d1018b6e83c26497feb83a5eaf6d212fd8a6c61e04c2d353d8029b47304af163573a0072eeaf74a2a1ae1b0ca240ea4b10e5374a02865c8f362f039a8547f9e769df52ba6e0a9f72fd415f728dfa584933a5a8e13ff14661ca794d6e2e227ea84b965908922ebd9a6d60a06b01e0b31f16bd7b3f41e86c1cae9f7b4d88b614d9ae259acd019a7a9ec508fa2090835be0453456c30725ede424c1e075a36b335618886d8f0f60ecdb33b24da5b77e7f5a5875264c2f2d9fef6478ebd6252849ee0f54788db3b1f365163b64becf99d7b00b0dddcd116889b0858bfcfa77342817d54189e2a95faa792cc0346627ce5e8ee7367215acc496ecbee0c572e0a2cb280a67fec2bb487675c9df598e083c32b01eee6106aba2223b96af2d98f97fb1e22573c951af2b68a3ab9c28605e48e04e3e24bac80d0fdf49a5ead24dd33c32902b279fd05d275262b76316b205ab8f10ebdae2110129539bdccfdf9b403318fae35f7b0ae96b7272122808ab662b07cab9f38f9dd699a9507"}})
syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), r7)
r10 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
r11 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000001240)={[{@jqfmt_vfsold}, {@nodiscard}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@nodiscard}]}, 0x1, 0x4fa, &(0x7f0000000c80)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000001180)='objagg_obj_root_create\x00', r4, 0x0, 0x4}, 0x18)
write$tun(r10, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d0020400010110000000000000000000000000000000000ff02000001654133ff7f00000000"], 0x4a)
sendmsg$nl_generic(r8, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000011c0)=ANY=[@ANYRES64=r11], 0x20}, 0x1, 0x0, 0x0, 0xc841}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1m16.012164114s ago: executing program 0 (id=1214):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r1=>0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendto$packet(r0, &(0x7f0000000000)="05000806", 0x4, 0x0, &(0x7f0000000080)={0x11, 0x8100, r1, 0x1, 0x0, 0x6, @remote}, 0x14) (fail_nth: 2)

1m15.992732624s ago: executing program 32 (id=1214):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r1=>0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
sendto$packet(r0, &(0x7f0000000000)="05000806", 0x4, 0x0, &(0x7f0000000080)={0x11, 0x8100, r1, 0x1, 0x0, 0x6, @remote}, 0x14) (fail_nth: 2)

3.875453589s ago: executing program 4 (id=2526):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, 0x0, 0x2000400c)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBENT(r7, 0x4b46, &(0x7f0000000080)={0x40, 0x6, 0x9})
sched_setscheduler(0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001600)=[{{&(0x7f00000004c0)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e, &(0x7f0000000d00)=[{&(0x7f0000000740)="cda87faf4fa1530e216c2454b6507dd030ddd57c8e029353a348d4886b32015fb2c38b7d7742a00b8bb4f09a290eaf205aebbf15af0faa275a0ee1bb9dc1515e35f380346fbaa59c973d7a170714f076910a3b1b23908ab0f4f70caf07c7d04f55697a9b91eff6047a4d81a09ad39414879cb0cef19c9e4bb933c4d56440be62e5b04a933541e7172cc7bd257202150a0dfb23060951e02bf35ee739291bfa525a0b1e82f07913dc8668ae5335583f33d1d92731bd8faea16822d978b65cbfe2d637c27a72fbde79", 0xc8}, {&(0x7f0000000840)="ad8420b8586e1d81e390acec814a5c742a80946f2b6232d90180289c3ca56ad407689f597263d975b542a90db209ec6ecc51e909ed923cc462e47bb01b4d1706003f24eff3ab09294b26759e9d2c5fb89e2f75486e685eece2a4e055e8fd5515020af5dbca87770427264bae83d14e1387967336b53fe56017ff73065a39bd3d05b6ef47e9202238f703c6b809e62bae143ad830f591b77eb0e52f2ddafd599db7d7a50518069a395d422c34d13c87027398efb725cc1b3ac967e03299dbe29d7b6de5ae3d103eccf2f3e1a379825c8f97610c7d3d278bdb021cb926661cf9273eddc40e6470f3899e0f36f54e0b3bb8dfa933cfc1bbc9", 0xf7}, {&(0x7f0000000a00)="9e7907d2541112c12da4c103b0a74f3e1d1bbcce0740686475e36b8cb3bd847ffa0689e248c2f7441545c50e778ef0d98f1078722e3dff71c9ec792042d7f15fc840d1da6c27f48237d4283671c8ddd2d808a78b35987347607b39d597582f7ee08193e82cb1de4bef33ad2fb71b90fdead6b989cdbcd6c891947790f41b1aa5e320e27efb0a3c7da6d647091a87e58fae6bcb", 0x93}, {&(0x7f0000000540)="9a13a0b81591a0d2879957d5da750b7f6565b8a860d366330cb27883d023d2e109ead905b7db9117b1a0e238bf852c222c81471012108b31e9d811078da8bd9d3a3cbf43e4", 0x45}, {&(0x7f0000000940)="3bad997e3bb6fc7396ac51830f4862a7fe92a76a1a5e28a82f05ad1464cdea8f1a8d053a6f9b8cdb53b23d47565e6c985f6b32e9333a962a7652", 0x3a}, {&(0x7f0000000ac0)="b3e4de51411aaa5ff9eb3bd8b051cfa882e31c9300b8ea56577be8db6b62cbf05c573272bb1b96df09b89bb99a267c235ed524762103f85005a95ec4b39629cfedc85b2587936984cd7c6c603fcab9e2e71684be0394631fbbebf8fc37f502392da9afdaad2710bfc048d8ed0761802538d4ecffc6a48c2fe0b93dfc4e66090e98b4b89fb8fc50f771a3315dde6c414be5c2542a84a864066888770265a265666511ae6fdc4714c6c6138d2ebf826874fce080d50ac61afe0747d147c1d777f79d007443696214729935003f9ecbc515d712975b00bda0c83e4037be359fb7a414238fbfe8b7a77d42b3d780fcc542f30f085fb0", 0xf4}, {&(0x7f0000000bc0)}, {&(0x7f0000000c00)="09b55f3a77d299ff2ba62672b887c0170733fa153bfd05c5a50bf5021d5b06492958f46d20d7e8eb4791776b459e13dbfae3e2f54414b2549b47b880290d6efa912bca1299ab615d47ed629a233a28f6092605847096f7e14b93faafcada4caa4e4469e755ee7a5b5ee4393c69fa77ea6ad97ecbdd2fea0cf59e0e5a57c7db5146c2c3c1ea4ee10f9c7e943d34814bfb5f211c31e40518d5325f75ff056a7f5732e0c8a94d579080d6f4e29a3a04d9f021ced8401770e5ca7666173d1b7afad2c606b190a53a5505ca5ada", 0xcb}], 0x8, &(0x7f0000000d80)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0x1c, 0x1, 0x1, [r2, r6, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [r4, r3, 0xffffffffffffffff, r1]}}, @rights={{0x1c, 0x1, 0x1, [r2, 0xffffffffffffffff, r5]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, r3, r5, r2, r5]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}], 0x128, 0x44010}}, {{&(0x7f0000001380)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f00000014c0)=[{&(0x7f0000001400)="0431cc2e578e9fde6c7197eb948d905a308b9d513956e900e5f616b53416a8702755d11159efca9a9ed07a34d042b8737307389294656ddba74ba078ea7d705dde72fc15ee8aebb85a7013875428359360eed0944beb20785afd658d6b92fc1a4dddbec31cd24febbc9dbf6f15c5f8189d7a60a0e200991c9985422ca19ea3a32a2d85cc60633c667587b61359b9f833daddc90766", 0x95}], 0x1, &(0x7f0000001540)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [r7, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r5]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8, 0x49c0}}], 0x2, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x2, 0x1, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xb, 0x5}, {0xe, 0xffff}, {0xa, 0xfff2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_INGRESS={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x4048084)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x18)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r9, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r10 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDFONTOP_SET(r10, 0x4b72, &(0x7f0000000080)={0x0, 0x3000000, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"})
write$binfmt_misc(r8, &(0x7f0000000000), 0xfffffecc)

3.837151609s ago: executing program 4 (id=2528):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioprio_set$pid(0x1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000008c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9feb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x17)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
munlock(&(0x7f00005be000/0x3000)=nil, 0x3000)

3.672322022s ago: executing program 4 (id=2532):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000080), &(0x7f0000000180)='%ps    \x00'}, 0x20)
fcntl$setlease(r0, 0x400, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000340)='leases_conflict\x00', r2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0)

3.625746413s ago: executing program 4 (id=2533):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="12000000080000000800000008"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="18fffffff8000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.561335124s ago: executing program 4 (id=2534):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x893}, 0x24040084)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x3}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x44}}, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000000380)={0xa, 0x14e24}, 0x1c)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0)
splice(r3, 0x0, r2, 0x0, 0x7ffff000, 0x6)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)

1.215459991s ago: executing program 5 (id=2592):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_user(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='system_u:object_r:auth_cache_t root'], 0x27)

1.146478762s ago: executing program 2 (id=2594):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/vmstat\x00', 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x8000, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r1, 0x0, 0xffffffffffffffff}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x20058000)
unshare(0x40020000)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r1, @ANYRESOCT=0x0, @ANYRESOCT=r2], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800060000000000000002822ac1177fe0a515ec", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
sendmmsg(r0, &(0x7f0000000d80)=[{{&(0x7f0000000380)=@rxrpc=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000400)="33db7d19fcadfc97ba9883f0208e30951eeb464c3425941940a8dfe3bf1cf62feee65343d314b2c56d707e2ab2c6cfdc25e1351c04131a1a6ad78ac3c0b3fad981b23c603aee89dbfe3955a3282df942ab6cdc80a88ba7c6837e1f8ab52c62aed57a93adb3a1fd82527d941027af331f484dce151903534f62cd51c0c6084dea3d80bd97248d1c003322b811047b5990e7f0ad05573b456378c25576fa181c5aecae01d869f9cade3d76c9655f5c6b578b200026391d54e79a634ecf3de1d56c57829da4ac58a4db8c3394965e722c64d21586bda9f579bd03e50696e62838ca875515ee1fe80c818589179fa30bc04b", 0xf0}], 0x1, &(0x7f00000006c0)=[{0x70, 0x3a, 0x10000, "91a6f89847aa1150f264f2382ec5b34dd698722ba3867b3605b1d910e15afef6411b9e15a441ea556bbbd9f8520f1d0303d479a787253b387e3e7de1d54ae533dd2ca58bf1b44ecd70614a7ee53ac8b6b4b327cc6419d5ef24745ed00a134396"}, {0xd8, 0x109, 0x3f, "0ff0fc8ae8a4592b56bb8ee4e781dd76e57a47696a09055c503632d2d6cc3fcb025e166f7813cb499ec5db4b3b3e26ae1b2b5596588a2d0e17c68b435f74a6b5f45688e7f919a465ac896f13b814fb6286703195f940eab7ac4282347259821f787209b21504ef05d968776c779b9d916cc76479bbdbcc9e1a5cc0b7428a25571472800ccef09cfb03e1b7899ba4dc898556dc0f00d6bb1e1aaf230631cee846c86bca679f170c6f9d28b34f1c0916f20a73a7473bd725d2f3039e41e1148116b3d0"}, {0x88, 0x101, 0x838, "ba99d55d6a4a7ef7eb74779065f285da46e58de597b62c0c031e18cec04a6019f8b8daa2b9e98f3141c811156daabdf74ff09943d8b519f5bc9d84a41da0c98c72812be62b79cff89dfe6a6d535158000828ac49238f4b3f216063504c3dae56028bb559eff12a502c848c4eb6497493c9d6492498"}, {0x48, 0x101, 0x7, "6a21b837bc74ad51194e86f16635a80c8936a351de460f00d1af95d29740aa43e580c0f4ef95c28629668477a09954af96"}, {0xb8, 0x102, 0x1, "233005e09b512c8edaf97df27465fdac95c7116d41e9e1c1339a21d6e25737030ba0951cb883a94037bf22b4b11cf5cc8edc509dac517da00b19505ee37be87c5b44c71a18fcdc091d00567f12d0b16aac31fcd8145ea595a8206e9572b8de0e2ae0fc9663acdaed773dafc453ad2f68c1243c9947bd6c2879515cbbd4c843481b1e83ced8a9ef8f85f4532f9afe88d90fd97ac2df819f2eea00f3767fc23aa3ec92"}], 0x2d0}}, {{&(0x7f0000000500)=@x25, 0x80, &(0x7f0000000d00)=[{&(0x7f00000009c0)="31d6af31c1ad882c3c3c546c0da318f7b4455a7c732aa8459edc19df5347b22ec5bdbb028efe56a0a32166aba0db169f030da8326e7243ac8e86d19f0e5ae3a35f3603826c9ed60cada1fcf03808bbdf604c04b2c0b5c6486fdaec7e797f8dbba19781990198d6bad4f1da1388f49ee39efdd41164a9c374f3b21a77bb7484d88225da6c766423b5952a8d5c563bae278d199362442a79e20a74b5f65be7e5ef783f3ca0bfe5691e2f8a7de8d80d9c5183f4873b05500d855d6b3ab4967fdc8cb021dce540f9c8425fcf76428c8e4a1f617b617f85ca", 0xd6}, {&(0x7f0000000580)="bb64b36351772eaed86685292fa09a81a9fb678fef1803f8f729344ccf4e345cb4df0a7868f7deebf7529f95716c161f6238a596535c38f549a4707b21c780e516df0e569dd559bfc65bc7263122f735381ff2946c3c6fcc4961d9a2588ac822cf0892256fd3b39e6e7afb84c7724bd53acff52f599a0504c3864fc01af5d89763faece16359e763ed9bbbfc34498f1eb8fe84c03ee53b724304d360df2c0825f5aa11d0", 0xa4}, {&(0x7f0000000ac0)="fcec84c5789952cffe2a566b55018385aa32bbad03b60f669a15eb814bebfd3450f49e0b03de7e2878f294aa560770b7e5cee260d0c5c505705c1958e2550011b781a01d0317be4f6e3f2d6e4fb756bee4e825e786d51681c50810ae02ae43fb3b5748f05cd568e881215c70cdb4af5aaa9755c1c9f04ab9965db21867e56f2bd4a961d66549a763920249882ae7fd6997c9057d809208d0c2fa4fafe34618b0e625b26595b8bb0f3e523f5860b258aa22030e76e6aafffba124c7a4e7e89cd66d542270b31d1a6a4ac1fdf29218e65375d912668d5301479ee31af6456530cbdbb3f448fd48473115eccf078ffa5a0d", 0xf0}, {&(0x7f0000000bc0)="0ee6a47ae86c379852cb726dabf82e4693d2b67fd02a8ca14aece69ca6fda41ef238bc45e056cfca64c639a5e3bbadb5274cd9c2bd079705238a07ca5e8155a65ec1c926ee0364710d29e4c2124e6768e3f8a7809af74a6fa14d80399f0f8b9205c6c68bb20189b7e8", 0x69}, {&(0x7f0000000c40)="d8e3bf549b4ba98babab536566e9b0d6d114cfba8c1ad5b8725c3617b758b3a3289ae63714a7330f794414468a260437f2205be5662772cf05cecdb7e0070674ae8b73ae457649d4679f393ddc3e2d657a2c47a53730d0e85fcaa305a3a9d7e10782888938a5874481a49d8c579400eb94ce97886f3f0251771e29cb765a89f6d14ac879a8d8fa6a21aad689b04aa29d", 0x90}], 0x5}}], 0x2, 0x8800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r7 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000040)=@qipcrtr, 0x80)
read$qrtrtun(r7, 0x0, 0xeffd)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r8, 0x4b72, &(0x7f0000000000)={0x1, 0x0, 0x14, 0x15, 0x19a, 0x0})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f0000000e00)=r0, 0x4)
sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="a80100002100010027bd7000fedbdf2502"], 0x1a8}, 0x1, 0x0, 0x0, 0x40000}, 0x4000050)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r10, 0x8001000000000000, 0x40, &(0x7f0000001600)=@raw={'raw\x00', 0x8, 0x3, 0x488, 0x360, 0x11, 0x148, 0x360, 0x0, 0x3f8, 0x2a8, 0x2a8, 0x3f8, 0x2a8, 0x3, 0x0, {[{{@ip={@empty, @multicast1, 0xff000000, 0x0, 'team_slave_1\x00', 'virt_wifi0\x00', {0xff}, {0xff}, 0xda, 0x2, 0x8}, 0x0, 0x2f8, 0x358, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0x3, 0x7, 0x0, 0x20}, {0x3}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x2, 0x0, 0x0, './file0\x00'}}]}, @unspec=@CT1={0x0, 'CT\x00', 0x1, {0x10, 0x6b, 0x0, 0x8, 'syz0\x00', 'syz0\x00', {0xc}}}}, {{@uncond, 0x0, 0xffffffffffffffc1, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98, 0x0, {0x8800000000000000}}, {0x28}}}}, 0xdd832c09079c6e4c)
socket$vsock_stream(0x28, 0x1, 0x0)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="0180000000000000000001000000000000000b00000000030014"], 0x28}}, 0x40000)

1.106804943s ago: executing program 5 (id=2596):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x81c0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1}, 0x48)
r0 = io_uring_setup(0x1694, &(0x7f0000000080)={0x0, 0xf00e, 0x1, 0x0, 0x3})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0xeafc4}], 0x100000000000011a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)

1.070970284s ago: executing program 3 (id=2598):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8004}, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)}}], 0x1, 0x4000000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r0, &(0x7f0000000040), 0xe09)
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x9, 0x40000)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r0, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd00000080190000000000000800", [0x0, 0x2000000000001]}})

1.021421844s ago: executing program 3 (id=2599):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x2000000], 0x0, 0x0, 0x1}}, 0x40)

984.032015ms ago: executing program 5 (id=2601):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000008c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9feb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x17)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r3, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
munlock(&(0x7f00005be000/0x3000)=nil, 0x3000)

957.256245ms ago: executing program 3 (id=2602):
bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=ANY=[], 0x50)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/softnet_stat\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000080)={'pim6reg0\x00', 0x2})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
ioctl$TUNSETTXFILTER(r2, 0x400454d1, &(0x7f0000000380)=ANY=[@ANYBLOB="01000004"])
bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x1e, 0xc, &(0x7f0000000cc0)=ANY=[@ANYBLOB="8a8c74e4f7acd8e64a6bfcb0071e656e280ad5f88ac0280247bb57cc5eea40152289683957e853f7386b50f274000000000000fd4095cf9e098b71adcca29ba74688cb4b3f3a2873aa9b0baad37fc97356702539c6e3f0acd5e6aa81009f52f102bc98e16fabeb783ad2f7112b639e98ba505f3159ccbe0defc8b550f7e7472b785b1cf51a06f7182d297e28f63e0e8acc1205d85f4aa24766c65ce728e2ad05e5a6d0d744c4dc87668f00a4ef0c075b0be38eec2bb2ee225cb0774a7777777753946b0b951d1f863077d9b71505999c145ff93dbee8676d8907c6e315d68add07bef7c3f8982d38cdcd32e07eaee7a0c52f4a8a97e6d93213b118c31e19442cbb23f765d4359c9dea780a8f121d8bf2678a41ea212bc0e084a48177fe16e7fc5d0f638af44b62222c2b9816ed0949640e", @ANYBLOB="b5d1940370a97a8bf3a04ab5e83d661298620a0491e33c298578e94a1c8000424832b37f42e21ff794b9e7bf74183c1a3ec7fa7c9bbc500b1c5bc49dd279d4f53876390a5f06311aa7d5420352736b8a3e585efd0086c4a5ab29276e028d56911495c1f046b9ba5391776cb96301ad"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_lookup, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})

884.195416ms ago: executing program 3 (id=2604):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x10000}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f0000000c40)={{0x80}, 'port0\x00', 0x40, 0x400, 0x5, 0x6, 0x2, 0x40, 0x3, 0x0, 0x1, 0x5})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x60, 0x1b1878, 0x4, 0x2, 0x3e4, 0x0, 0x4, 0x0, 0x4, 0x3})
close(r1)

861.122487ms ago: executing program 2 (id=2605):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
socket$inet(0x2, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000010000000000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet(0x2, 0x5, 0x17)
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

814.875037ms ago: executing program 3 (id=2607):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={0x64, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5}, {0x5, 0x3, 0xe}, {0x5, 0x3, 0x6}, {0x5}, {0x5, 0x3, 0x7}, {0x5}]}]}, 0x64}, 0x1, 0x0, 0x0, 0xc082}, 0x8000)

720.791229ms ago: executing program 3 (id=2608):
futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, &(0x7f0000000000)={0x77359400}, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x200000, &(0x7f0000000040)={[{@grpquota}]}, 0x1, 0xbac, &(0x7f00000017c0)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r1 = msgget$private(0x0, 0x790)
msgsnd(r1, &(0x7f0000000d00)=ANY=[@ANYRES8], 0x401, 0x0)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x64, 0x1, 0x0, 0x0, 0x0, 0x210e, 0xc0002, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b80, 0x2, @perf_bp={&(0x7f0000000040), 0xe}, 0x14105, 0x32, 0xfffffbff, 0x3, 0x2, 0x0, 0xfffa, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0xb)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f0000000000))
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r4, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
msgctl$IPC_RMID(r1, 0x0)
close(0xffffffffffffffff)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x401, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_AF_SPEC={0x4}, @IFLA_OPERSTATE={0x5, 0x10, 0x9}]}, 0x48}, 0x1, 0x0, 0x0, 0x8010}, 0x4000000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x492492492492846, 0x0)
fcntl$setstatus(r7, 0x4, 0x42000)
ppoll(&(0x7f00000000c0)=[{r7, 0x1}], 0x1, 0x0, 0x0, 0x4e)
connect$unix(r6, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r8, 0x0, 0x2}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)

679.35356ms ago: executing program 5 (id=2610):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000900)=@bpf_tracing={0x1a, 0x16, &(0x7f00000009c0)=ANY=[@ANYBLOB="180000000080ffff000000000500000018110000", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000014000000b7030000000000000d00000083000000bf0900000000000055090100000000009500000000000000850000006000000018110000f4faae9ea122195a29642dc82fd19b3f174b71765a3091315e521288a140ff24a8eae364e9e42fc9292b0a138a258e7b210f2a321c65559248f10c58ccce580429854749b2a83cb6c88eae89c1803cba1d6ba9a084371f6e8800cefc0ce8aea24e14bf6213106a4106cf1a85e08cf823d56a7f5a91", @ANYRES32=0x1, @ANYBLOB="0000000000000000b702000000000000850000008600000018100000", @ANYRES32=0x1, @ANYBLOB="0000000000000000bf91000000000000b7020000000000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000800)='GPL\x00', 0x871, 0x1000, &(0x7f0000000c80)=""/4096, 0x40f00, 0x22, '\x00', 0x0, 0x17, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000840)={0x2, 0x5, 0x6, 0x3}, 0x10, 0x1ab94, 0xffffffffffffffff, 0x4, &(0x7f0000000880)=[0x1, 0xffffffffffffffff], &(0x7f00000008c0)=[{0x0, 0x3, 0x5}, {0x0, 0x1, 0x10, 0x3}, {0x4, 0x5, 0xc}, {0x4, 0x4, 0x3, 0xa}], 0x10, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000c00)={[], [{@smackfsroot={'smackfsroot', 0x3d, ')'}}, {@uid_lt}, {@audit}, {@context={'context', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, 'GPL\x00'}}]}, 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x4000000, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1e, 0x3)

655.78409ms ago: executing program 2 (id=2611):
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
socket$rds(0x15, 0x5, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r2, 0x10e, 0x1, 0x0, 0x0)
bind$netlink(r2, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfb}, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x10814, &(0x7f00000002c0), 0x1, 0x4f2, &(0x7f0000000600)="$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")
capset(0x0, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000000)=@ipv4_newroute={0x2c, 0x1a, 0x1, 0x80000000, 0x25dfdbfb, {0xa, 0x80, 0x80}, [@RTA_DST={0x8, 0x1, @local}, @RTA_IIF={0x8}]}, 0x2c}}, 0x20000050)
unshare(0x80)
setxattr$security_selinux(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180)='system_u:object_r:file_context_t:s0\x00', 0x24, 0x1)

585.438641ms ago: executing program 2 (id=2612):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x2000000], 0x0, 0x0, 0x1}}, 0x40)

559.446301ms ago: executing program 4 (id=2614):
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000140)={@private0, <r0=>0x0}, &(0x7f0000000180)=0x14)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
readv(r1, &(0x7f0000002a40)=[{&(0x7f00000007c0)=""/4096, 0x1000}], 0x1)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0x20, &(0x7f0000000400)={&(0x7f0000000600)=""/251, 0xfb, <r3=>0x0, &(0x7f0000000300)=""/133, 0x85}}, 0x10)
r4 = dup(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x10, 0x21, &(0x7f00000004c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, [@cb_func={0x18, 0xb, 0x4, 0x0, 0xffffffffffffffff}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff8}, @generic={0x6, 0x8, 0xa, 0x8, 0x8}, @map_idx={0x18, 0xb, 0x5, 0x0, 0xb}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}}, @jmp={0x5, 0x0, 0xb, 0x5, 0x1, 0x10, 0x8}, @jmp={0x5, 0x1, 0xd, 0x4, 0x6, 0xc, 0x10}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x5, 0x41, &(0x7f00000000c0)=""/65, 0x41100, 0x9, '\x00', r0, @fallback=0x11, r1, 0x8, &(0x7f0000000200)={0x2, 0x2}, 0x8, 0x10, 0x0, 0x0, r3, r4, 0x9, 0x0, &(0x7f0000000740)=[{0x4, 0x5, 0x2, 0xa}, {0x1, 0x5, 0x4, 0x3}, {0x101, 0x4, 0x10, 0x8}, {0x4, 0x2, 0x2, 0xa}, {0x3, 0x2, 0xe, 0x1}, {0x2, 0x2, 0x3, 0x4}, {0x5, 0x3, 0x1, 0x8}, {0x5, 0x1, 0xe, 0x9}, {0x4, 0x2, 0x5, 0x9}], 0x10, 0x4cda}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003380)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000080)={&(0x7f0000000180), &(0x7f0000000040)=""/12, 0x0, &(0x7f00000005c0), 0x4, r6}, 0x38)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b00)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x33, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x18)
r8 = gettid()
r9 = openat$ptp0(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001880)=ANY=[@ANYBLOB="1e00000006000000000000005877000080b00000", @ANYRES32=r1, @ANYBLOB="ffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000002000000030000000b00000000000000", @ANYRES32=r2, @ANYBLOB="000000006e6fb294f80100ca861dc017cbd36a0fc665c4415836aa13859f1aac635243729b29bb177342c4285740d1f9467249ff4d5908283266b49ddf9404533d4efdd30461c725e472ce98840ab241788dcd8f71bf82e2789e12b63e210a7e235c4c5c89bad15d3748a20e9925feeee550ae04035d490c0c38c50a021b2c1d4f1c08"], 0x50)
read$ptp(r9, 0x0, 0x0)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc)=<r10=>0x0)
timer_settime(r10, 0x1, 0x0, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x0, 0xc, &(0x7f00000003c0)=ANY=[], 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x2e, r2, 0x0, 0x0, 0xfffffff1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)

541.327521ms ago: executing program 2 (id=2616):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="01000000120000007f00000001"], 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r2, 0x0, 0x178}, 0x18)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0a41, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4002})
write$tun(r3, &(0x7f0000000980)=ANY=[@ANYRES64=r0, @ANYRES32=0x41424344, @ANYRESDEC, @ANYBLOB="e18000079078000c1e61063bcc55e2fb4b662a463b24b28a4fafb428a89d60f9547d33690c48bf9581455479f14cea31faf5030027c508ed14d3cc9f1b20adaecc3b4c664e61295f92adc7b03928e6f24a8ee8e299effe97537d57096d808d21b4948d018596a46de500000013d3b3875dfd9a3f6328f33f09ceec09986b30406704e2560f04592cb4869c77658fcb3eca004c77b183c5840dbb0fd30bcd067737d3f07dff1755aac0e628d921d141b089c153"], 0xe6)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001540)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r4}, 0x18)
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000040))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r6 = socket(0x10, 0x803, 0x0)
fgetxattr(r0, &(0x7f0000000500)=@known='trusted.overlay.upper\x00', &(0x7f0000000780)=""/220, 0xdc)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00'}, 0x18)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newtfilter={0x44, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r8, {0x3, 0x1}, {}, {0x3, 0xf}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x3e, 0x16, 0x8, 0x8}]}}]}}]}, 0x44}}, 0x200400d4)
lsm_set_self_attr(0x69, 0x0, 0x42, 0x0)

500.781612ms ago: executing program 1 (id=2617):
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x80)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000940)=""/3, 0x3, 0x3, 0x4, 0x0, 0x2, 0xc08}}, 0x120)
readv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}, {0x0, 0x4}], 0x2)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000780)='mm_page_free\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket$kcm(0xa, 0x2, 0x3a)
sendmsg$kcm(r3, &(0x7f00000005c0)={&(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000080), 0x1}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x1000}], 0x0, 0xa}, 0x20)

495.187272ms ago: executing program 5 (id=2618):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={0x64, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5}, {0x5, 0x3, 0xe}, {0x5, 0x3, 0x6}, {0x5}, {0x5, 0x3, 0x7}, {0x5}]}]}, 0x64}, 0x1, 0x0, 0x0, 0xc082}, 0x8000)

439.635593ms ago: executing program 1 (id=2619):
setreuid(0xee01, 0xee01)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = getpgid(0x0)
fcntl$setownex(r1, 0xf, &(0x7f0000000140)={0x0, r2})
sendmmsg$unix(r0, &(0x7f0000006c40), 0x0, 0x20040001)

411.237914ms ago: executing program 5 (id=2620):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x2)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000280), &(0x7f0000000080)=0x4)
r1 = syz_open_dev$loop(&(0x7f0000000500), 0x5, 0x8000)
r2 = openat$selinux_checkreqprot(0xffffffffffffff9c, 0x0, 0x101000, 0x0)
ioctl$LOOP_SET_FD(r1, 0x4c00, r2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0500000001000000400000004000000041000000", @ANYRES32, @ANYBLOB="000000000000000000000000f7ffffff00000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000180), 0x1003, r3}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000b80)={r3, &(0x7f00000014c0), &(0x7f0000000b40)=""/31}, 0x20)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x441, 0x20)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f00000002c0)='./file1\x00', 0x2fffffd)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r8, 0x0)
fallocate(r7, 0x8, 0x4000, 0x4000)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000711223000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r10, 0x0, 0x8000000000004}, 0x18)

361.270004ms ago: executing program 1 (id=2621):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
socket$inet(0x2, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000010000000000000000000000850000004100000085000000d000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet(0x2, 0x5, 0x17)
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

247.272206ms ago: executing program 1 (id=2622):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000180)=@usbdevfs_driver={0x20, 0x1ff, &(0x7f0000000080)="6e50d3fabb6640ff2421fa7eb1fe24ced31b8d1d5b0bbf5b56"})
r1 = openat$incfs(0xffffffffffffff9c, 0x0, 0x0, 0x1ef)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendto$inet6(r0, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0xe3, @dev={0xfe, 0x80, '\x00', 0x6}, 0x1}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x3c, r4, 0x1, 0x70bd2e, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_TX={0x5, 0x18, 0x1}, @ETHTOOL_A_COALESCE_PKT_RATE_LOW={0x8, 0xd, 0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x104}, 0x20000000)
sendmsg$ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000380)={0x1148, r4, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_SOPASS={0x1004, 0x3, "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"}, @ETHTOOL_A_WOL_MODES={0x130, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x50, 0x4, "6b6fd9aaf92e1abe1383e4a79d72d87878899b799642be4b9f2d249254be8707f9aad0a4affe3e295da199534166b126516a5fcc49e14b9fb5f306248bd06954c94b041f27f3127c7429c052"}, @ETHTOOL_A_BITSET_BITS={0xc8, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ',/]-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '\'*\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd5}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x13, 0x2, '/+#:\'\\-@$[!@\'/\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xff}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffff0001}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '#+-\xaf^\\\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xffffffff}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}]}]}, 0x1148}, 0x1, 0x0, 0x0, 0x40d4}, 0x8810)
shutdown(r0, 0x1)

189.014867ms ago: executing program 1 (id=2623):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x800020, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RELDISP(r0, 0x5605)
r1 = socket(0x6, 0x3, 0x2)
getsockopt(r1, 0x200000000114, 0x2710, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x80000}, 0x18)
io_uring_setup(0x6c4, &(0x7f0000000080)={0x0, 0x4075, 0x18, 0x2})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)
r4 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x800020, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RELDISP(r0, 0x5605) (async)
socket(0x6, 0x3, 0x2) (async)
getsockopt(r1, 0x200000000114, 0x2710, 0x0, &(0x7f0000000000)) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x80000}, 0x18) (async)
io_uring_setup(0x6c4, &(0x7f0000000080)={0x0, 0x4075, 0x18, 0x2}) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0) (async)
io_uring_setup(0x1694, &(0x7f0000000080)) (async)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a) (async)

21.31244ms ago: executing program 1 (id=2624):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x893}, 0x24040084)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x3}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x44}}, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000000380)={0xa, 0x14e24}, 0x1c)
connect$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r3, &(0x7f00000092c0), 0x4ff, 0x0)
splice(r3, 0x0, r2, 0x0, 0x7ffff000, 0x6)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)

0s ago: executing program 2 (id=2625):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
r1 = syz_io_uring_setup(0xbda, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0x1, 0x40000333}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
r4 = socket$qrtr(0x2a, 0x2, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
connect$qrtr(r4, &(0x7f0000000380)={0x2a, 0xffffffff00000002, 0x7ffe}, 0xc)
bind$qrtr(r4, &(0x7f0000000500)={0x2a, 0x1, 0x4001}, 0xc)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r6, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0xc, 0xfc}, 0x1c)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r5, &(0x7f0000000280)={&(0x7f0000000000), 0xc, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="7800000002080102000000000000000005000000050003001100000006000240000400000900010072797a31000000002c00048008000240000000000800014000000001080002400000000608000140000095b308000140000000010600024080f300000900010073797a31000000000500030011000000"], 0x78}, 0x1, 0x0, 0x0, 0x2000c084}, 0x8010)

kernel console output (not intermixed with test programs):

'syz.1.1668': attribute type 27 has an invalid length.
[  134.989695][ T8535] syz.4.1667: attempt to access beyond end of device
[  134.989695][ T8535] loop4: rw=2049, sector=256, nr_sectors = 12 limit=256
[  135.014124][ T8539] netlink: 'syz.2.1670': attribute type 4 has an invalid length.
[  135.024251][ T3380] lo speed is unknown, defaulting to 1000
[  135.030017][ T3380] syz2: Port: 1 Link DOWN
[  135.035213][ T8539] netlink: 'syz.2.1670': attribute type 4 has an invalid length.
[  135.045744][ T3380] lo speed is unknown, defaulting to 1000
[  135.051728][ T3380] syz2: Port: 1 Link ACTIVE
[  135.150023][ T8552] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1676'.
[  135.159880][ T8551] pim6reg1: entered promiscuous mode
[  135.165634][ T8551] pim6reg1: entered allmulticast mode
[  135.188309][ T8554] FAULT_INJECTION: forcing a failure.
[  135.188309][ T8554] name failslab, interval 1, probability 0, space 0, times 0
[  135.201139][ T8554] CPU: 1 UID: 0 PID: 8554 Comm: syz.1.1677 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  135.201175][ T8554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.201198][ T8554] Call Trace:
[  135.201262][ T8554]  <TASK>
[  135.201271][ T8554]  __dump_stack+0x1d/0x30
[  135.201296][ T8554]  dump_stack_lvl+0xe8/0x140
[  135.201319][ T8554]  dump_stack+0x15/0x1b
[  135.201340][ T8554]  should_fail_ex+0x265/0x280
[  135.201377][ T8554]  ? audit_log_d_path+0x8d/0x150
[  135.201470][ T8554]  should_failslab+0x8c/0xb0
[  135.201496][ T8554]  __kmalloc_cache_noprof+0x4c/0x320
[  135.201525][ T8554]  audit_log_d_path+0x8d/0x150
[  135.201561][ T8554]  audit_log_d_path_exe+0x42/0x70
[  135.201591][ T8554]  audit_log_task+0x1e9/0x250
[  135.201621][ T8554]  audit_seccomp+0x61/0x100
[  135.201660][ T8554]  ? __seccomp_filter+0x68c/0x10d0
[  135.201731][ T8554]  __seccomp_filter+0x69d/0x10d0
[  135.201753][ T8554]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  135.201785][ T8554]  ? vfs_write+0x75e/0x8e0
[  135.201850][ T8554]  __secure_computing+0x82/0x150
[  135.201871][ T8554]  syscall_trace_enter+0xcf/0x1e0
[  135.201958][ T8554]  do_syscall_64+0xac/0x200
[  135.201982][ T8554]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  135.202078][ T8554]  ? clear_bhb_loop+0x40/0x90
[  135.202098][ T8554]  ? clear_bhb_loop+0x40/0x90
[  135.202122][ T8554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.202149][ T8554] RIP: 0033:0x7f143100e9a9
[  135.202167][ T8554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.202248][ T8554] RSP: 002b:00007f142f677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000047
[  135.202271][ T8554] RAX: ffffffffffffffda RBX: 00007f1431235fa0 RCX: 00007f143100e9a9
[  135.202287][ T8554] RDX: 0000200000000100 RSI: 000000000000000c RDI: 0000000000000000
[  135.202301][ T8554] RBP: 00007f142f677090 R08: 0000000000000000 R09: 0000000000000000
[  135.202344][ T8554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.202359][ T8554] R13: 0000000000000000 R14: 00007f1431235fa0 R15: 00007ffce40b3c98
[  135.202378][ T8554]  </TASK>
[  135.466500][ T8558] loop3: detected capacity change from 0 to 4096
[  135.469627][ T8561] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1680'.
[  135.482191][ T8561] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1680'.
[  135.484348][ T8558] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.521294][ T8561] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1680'.
[  135.530866][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.633277][ T8578] FAULT_INJECTION: forcing a failure.
[  135.633277][ T8578] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.646443][ T8578] CPU: 1 UID: 0 PID: 8578 Comm: syz.5.1683 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  135.646477][ T8578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.646493][ T8578] Call Trace:
[  135.646502][ T8578]  <TASK>
[  135.646511][ T8578]  __dump_stack+0x1d/0x30
[  135.646535][ T8578]  dump_stack_lvl+0xe8/0x140
[  135.646634][ T8578]  dump_stack+0x15/0x1b
[  135.646655][ T8578]  should_fail_ex+0x265/0x280
[  135.646694][ T8578]  should_fail+0xb/0x20
[  135.646727][ T8578]  should_fail_usercopy+0x1a/0x20
[  135.646770][ T8578]  _copy_to_user+0x20/0xa0
[  135.646789][ T8578]  simple_read_from_buffer+0xb5/0x130
[  135.646825][ T8578]  proc_fail_nth_read+0x100/0x140
[  135.646863][ T8578]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.646901][ T8578]  vfs_read+0x19d/0x6f0
[  135.646940][ T8578]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  135.647040][ T8578]  ? __rcu_read_unlock+0x4f/0x70
[  135.647064][ T8578]  ? __fget_files+0x184/0x1c0
[  135.647090][ T8578]  ksys_read+0xda/0x1a0
[  135.647156][ T8578]  __x64_sys_read+0x40/0x50
[  135.647191][ T8578]  x64_sys_call+0x2d77/0x2fb0
[  135.647216][ T8578]  do_syscall_64+0xd2/0x200
[  135.647256][ T8578]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  135.647288][ T8578]  ? clear_bhb_loop+0x40/0x90
[  135.647438][ T8578]  ? clear_bhb_loop+0x40/0x90
[  135.647467][ T8578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.647492][ T8578] RIP: 0033:0x7fb44fcad3bc
[  135.647509][ T8578] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  135.647591][ T8578] RSP: 002b:00007fb44e317030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.647614][ T8578] RAX: ffffffffffffffda RBX: 00007fb44fed5fa0 RCX: 00007fb44fcad3bc
[  135.647626][ T8578] RDX: 000000000000000f RSI: 00007fb44e3170a0 RDI: 0000000000000006
[  135.647666][ T8578] RBP: 00007fb44e317090 R08: 0000000000000000 R09: 0000000000000000
[  135.647682][ T8578] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002
[  135.647718][ T8578] R13: 0000000000000000 R14: 00007fb44fed5fa0 R15: 00007fff07667458
[  135.647736][ T8578]  </TASK>
[  135.889660][ T8569] netlink: 'syz.3.1681': attribute type 13 has an invalid length.
[  135.897683][ T8569] netlink: 'syz.3.1681': attribute type 27 has an invalid length.
[  135.972232][ T8592] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1690'.
[  136.061981][ T8611] veth0: entered promiscuous mode
[  136.067263][ T8609] veth0: left promiscuous mode
[  136.073958][ T8600] vhci_hcd: default hub control req: 0000 v0000 i0000 l65535
[  136.158270][ T8626] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.204266][ T8626] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.240645][ T8633] loop1: detected capacity change from 0 to 1024
[  136.274862][ T8626] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.285697][ T8633] EXT4-fs: Ignoring removed nobh option
[  136.291392][ T8633] EXT4-fs: Ignoring removed bh option
[  136.334835][ T8647] loop4: detected capacity change from 0 to 512
[  136.357296][ T8633] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.378680][ T8626] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.391309][ T8652] SELinux: syz.3.1709 (8652) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  136.459462][ T8626] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.471228][ T8626] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.483624][ T8626] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.497374][ T8626] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.540364][ T8665] 9pnet_fd: Insufficient options for proto=fd
[  136.556819][ T8667] team0: Port device dummy0 added
[  136.574924][ T8665] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  136.594081][ T8665] team0: Failed to send options change via netlink (err -105)
[  136.601983][ T8665] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  136.611135][ T8665] team0: Port device dummy0 removed
[  136.619199][ T8665] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  136.643765][    T9] srz1: Port: 1 Link ACTIVE
[  136.668185][ T8676] loop3: detected capacity change from 0 to 128
[  136.683469][ T8676] vfat: Unknown parameter './bus'
[  136.730886][ T8680] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.793777][ T8685] loop2: detected capacity change from 0 to 2048
[  136.813473][ T8680] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.821485][ T3487]  loop2: p2 p3 < > p4
[  136.827439][ T3487] loop2: partition table partially beyond EOD, truncated
[  136.835097][ T3487] loop2: p3 start 4284289 is beyond EOD, truncated
[  136.844003][ T8685]  loop2: p2 p3 < > p4
[  136.848099][ T8685] loop2: partition table partially beyond EOD, truncated
[  136.856301][ T8685] loop2: p3 start 4284289 is beyond EOD, truncated
[  136.874747][ T8680] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.889498][ T8619] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1700: Allocating blocks 497-513 which overlap fs metadata
[  136.942678][ T8680] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.978018][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.010136][ T8688] FAULT_INJECTION: forcing a failure.
[  137.010136][ T8688] name failslab, interval 1, probability 0, space 0, times 0
[  137.022879][ T8688] CPU: 0 UID: 0 PID: 8688 Comm: syz.1.1720 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  137.022916][ T8688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  137.022932][ T8688] Call Trace:
[  137.022941][ T8688]  <TASK>
[  137.022948][ T8688]  __dump_stack+0x1d/0x30
[  137.022969][ T8688]  dump_stack_lvl+0xe8/0x140
[  137.023021][ T8688]  dump_stack+0x15/0x1b
[  137.023076][ T8688]  should_fail_ex+0x265/0x280
[  137.023170][ T8688]  ? audit_log_d_path+0x8d/0x150
[  137.023207][ T8688]  should_failslab+0x8c/0xb0
[  137.023235][ T8688]  __kmalloc_cache_noprof+0x4c/0x320
[  137.023270][ T8688]  audit_log_d_path+0x8d/0x150
[  137.023356][ T8688]  audit_log_d_path_exe+0x42/0x70
[  137.023469][ T8688]  audit_log_task+0x1e9/0x250
[  137.023506][ T8688]  audit_seccomp+0x61/0x100
[  137.023586][ T8688]  ? __seccomp_filter+0x68c/0x10d0
[  137.023614][ T8688]  __seccomp_filter+0x69d/0x10d0
[  137.023724][ T8688]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  137.023762][ T8688]  ? vfs_write+0x75e/0x8e0
[  137.023795][ T8688]  ? __rcu_read_unlock+0x4f/0x70
[  137.023835][ T8688]  ? __fget_files+0x184/0x1c0
[  137.023856][ T8688]  __secure_computing+0x82/0x150
[  137.023949][ T8688]  syscall_trace_enter+0xcf/0x1e0
[  137.023975][ T8688]  do_syscall_64+0xac/0x200
[  137.024002][ T8688]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.024026][ T8688]  ? clear_bhb_loop+0x40/0x90
[  137.024046][ T8688]  ? clear_bhb_loop+0x40/0x90
[  137.024100][ T8688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.024122][ T8688] RIP: 0033:0x7f143100e9a9
[  137.024140][ T8688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.024199][ T8688] RSP: 002b:00007f142f677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[  137.024222][ T8688] RAX: ffffffffffffffda RBX: 00007f1431235fa0 RCX: 00007f143100e9a9
[  137.024238][ T8688] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  137.024254][ T8688] RBP: 00007f142f677090 R08: 0000000000000000 R09: 0000000000000000
[  137.024341][ T8688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.024357][ T8688] R13: 0000000000000000 R14: 00007f1431235fa0 R15: 00007ffce40b3c98
[  137.024381][ T8688]  </TASK>
[  137.276969][   T29] kauditd_printk_skb: 258 callbacks suppressed
[  137.277020][   T29] audit: type=1326 audit(137.256:12662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0ab5a8ea37 code=0x7ffc0000
[  137.329482][   T29] audit: type=1326 audit(137.266:12663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0ab5a8d310 code=0x7ffc0000
[  137.331995][ T8691] SELinux: syz.1.1721 (8691) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  137.352512][   T29] audit: type=1326 audit(137.266:12664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0ab5a8e5ab code=0x7ffc0000
[  137.352542][   T29] audit: type=1326 audit(137.266:12665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0ab5a8e5ab code=0x7ffc0000
[  137.411883][   T29] audit: type=1326 audit(137.266:12666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f0ab5ac1265 code=0x7ffc0000
[  137.424807][ T3728] udevd[3728]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  137.434754][   T29] audit: type=1326 audit(137.266:12667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0ab5a8e5ab code=0x7ffc0000
[  137.434784][   T29] audit: type=1326 audit(137.266:12668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0ab5a8d60a code=0x7ffc0000
[  137.434808][   T29] audit: type=1326 audit(137.266:12669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0ab5a8d60a code=0x7ffc0000
[  137.493529][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  137.513331][   T29] audit: type=1326 audit(137.376:12670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab5a8e9a9 code=0x7ffc0000
[  137.545776][   T29] audit: type=1326 audit(137.376:12671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8684 comm="syz.2.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ab5a8e9a9 code=0x7ffc0000
[  137.588631][ T8695] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1723'.
[  137.604752][ T8697] SELinux: failed to load policy
[  137.617929][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  137.626038][ T8700] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1725'.
[  137.656782][ T8706] loop9: detected capacity change from 0 to 7
[  137.666234][ T8706] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.676909][ T8706] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.684867][ T8706]  loop9: unable to read partition table
[  137.693537][ T8707] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1727'.
[  137.701311][ T8706] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  137.701311][ T8706] 
) failed (rc=-5)
[  137.702635][ T8707] validate_nla: 2 callbacks suppressed
[  137.702685][ T8707] netlink: 'syz.2.1727': attribute type 7 has an invalid length.
[  137.718085][ T3299] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.721374][ T8707] netlink: 'syz.2.1727': attribute type 8 has an invalid length.
[  137.729695][ T3299] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.736919][ T8707] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1727'.
[  137.746028][ T3299] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.781616][ T3299] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.791288][ T3299] Buffer I/O error on dev loop9, logical block 0, async page read
[  137.840670][ T8719] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  137.848015][ T8719] syzkaller0: entered promiscuous mode
[  137.853581][ T8719] syzkaller0: entered allmulticast mode
[  137.866453][ T8721] FAULT_INJECTION: forcing a failure.
[  137.866453][ T8721] name failslab, interval 1, probability 0, space 0, times 0
[  137.879259][ T8721] CPU: 0 UID: 0 PID: 8721 Comm: syz.4.1732 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  137.879340][ T8721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  137.879357][ T8721] Call Trace:
[  137.879373][ T8721]  <TASK>
[  137.879382][ T8721]  __dump_stack+0x1d/0x30
[  137.879409][ T8721]  dump_stack_lvl+0xe8/0x140
[  137.879436][ T8721]  dump_stack+0x15/0x1b
[  137.879457][ T8721]  should_fail_ex+0x265/0x280
[  137.879498][ T8721]  should_failslab+0x8c/0xb0
[  137.879582][ T8721]  kmem_cache_alloc_node_noprof+0x57/0x320
[  137.879655][ T8721]  ? __alloc_skb+0x101/0x320
[  137.879684][ T8721]  __alloc_skb+0x101/0x320
[  137.879722][ T8721]  sock_omalloc+0x81/0xf0
[  137.879766][ T8721]  msg_zerocopy_realloc+0x84/0x420
[  137.879811][ T8721]  ? should_fail_ex+0x30/0x280
[  137.879900][ T8721]  __ip_append_data+0x864/0x24b0
[  137.879940][ T8721]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  137.879972][ T8721]  ? __alloc_skb+0x223/0x320
[  137.880013][ T8721]  ? kernel_text_address+0x94/0xb0
[  137.880150][ T8721]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  137.880197][ T8721]  ? __kernel_text_address+0xd/0x40
[  137.880229][ T8721]  ? arch_stack_walk+0xfc/0x150
[  137.880287][ T8721]  ? skb_set_owner_w+0x16a/0x1c0
[  137.880355][ T8721]  ip_append_data+0xd6/0x130
[  137.880385][ T8721]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  137.880459][ T8721]  udp_sendmsg+0x282/0x13b0
[  137.880487][ T8721]  ? xas_load+0x413/0x430
[  137.880530][ T8721]  ? __rcu_read_unlock+0x4f/0x70
[  137.880628][ T8721]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  137.880698][ T8721]  ? __account_obj_stock+0x211/0x350
[  137.880738][ T8721]  udpv6_sendmsg+0x59f/0x1580
[  137.880846][ T8721]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  137.880959][ T8721]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  137.881005][ T8721]  inet6_sendmsg+0xac/0xd0
[  137.881145][ T8721]  __sock_sendmsg+0x8b/0x180
[  137.881177][ T8721]  ____sys_sendmsg+0x345/0x4e0
[  137.881231][ T8721]  ___sys_sendmsg+0x17b/0x1d0
[  137.881312][ T8721]  __sys_sendmmsg+0x178/0x300
[  137.881407][ T8721]  __x64_sys_sendmmsg+0x57/0x70
[  137.881434][ T8721]  x64_sys_call+0x2f2f/0x2fb0
[  137.881488][ T8721]  do_syscall_64+0xd2/0x200
[  137.881578][ T8721]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  137.881692][ T8721]  ? clear_bhb_loop+0x40/0x90
[  137.881761][ T8721]  ? clear_bhb_loop+0x40/0x90
[  137.881790][ T8721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.881818][ T8721] RIP: 0033:0x7f65ce50e9a9
[  137.881837][ T8721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.881919][ T8721] RSP: 002b:00007f65ccb6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  137.881939][ T8721] RAX: ffffffffffffffda RBX: 00007f65ce735fa0 RCX: 00007f65ce50e9a9
[  137.881950][ T8721] RDX: 0000000000000002 RSI: 00002000000008c0 RDI: 0000000000000006
[  137.881962][ T8721] RBP: 00007f65ccb6f090 R08: 0000000000000000 R09: 0000000000000000
[  137.881973][ T8721] R10: 000000000404c484 R11: 0000000000000246 R12: 0000000000000001
[  137.882025][ T8721] R13: 0000000000000000 R14: 00007f65ce735fa0 R15: 00007ffd2a64b398
[  137.882052][ T8721]  </TASK>
[  138.190760][ T8723] loop3: detected capacity change from 0 to 1024
[  138.209822][ T8718] tipc: Resetting bearer <eth:syzkaller0>
[  138.224877][ T8723] EXT4-fs: Ignoring removed nobh option
[  138.230504][ T8723] EXT4-fs: Ignoring removed bh option
[  138.237271][ T8718] tipc: Disabling bearer <eth:syzkaller0>
[  138.266212][ T8723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.299730][ T8738] SELinux: syz.4.1736 (8738) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  138.305918][ T8716] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.1730: Allocating blocks 497-513 which overlap fs metadata
[  138.355864][ T8716] EXT4-fs (loop3): pa ffff88810535f4d0: logic 0, phys. 113, len 25
[  138.363931][ T8716] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 22, pa_free 23
[  138.471448][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.509532][ T8757] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1742'.
[  138.525081][ T8757] bond1: entered promiscuous mode
[  138.530212][ T8757] bond1: entered allmulticast mode
[  138.530417][ T8756] loop4: detected capacity change from 0 to 2048
[  138.535796][ T8757] 8021q: adding VLAN 0 to HW filter on device bond1
[  138.554184][ T8756] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.568393][ T8756] cgroup: No subsys list or none specified
[  138.620759][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.687477][ T8775] SELinux: syz.4.1748 (8775) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  138.934762][    T9] hid-generic 0003:0004:0000.001C: unknown main item tag 0x0
[  138.942260][    T9] hid-generic 0003:0004:0000.001C: unknown main item tag 0x0
[  138.949663][    T9] hid-generic 0003:0004:0000.001C: unknown main item tag 0x0
[  138.963544][    T9] hid-generic 0003:0004:0000.001C: hidraw0: USB HID v0.02 Device [syz0] on syz1
[  139.107444][ T8792] FAULT_INJECTION: forcing a failure.
[  139.107444][ T8792] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  139.120865][ T8792] CPU: 0 UID: 0 PID: 8792 Comm: syz.2.1754 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  139.120901][ T8792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.120916][ T8792] Call Trace:
[  139.120997][ T8792]  <TASK>
[  139.121006][ T8792]  __dump_stack+0x1d/0x30
[  139.121033][ T8792]  dump_stack_lvl+0xe8/0x140
[  139.121057][ T8792]  dump_stack+0x15/0x1b
[  139.121077][ T8792]  should_fail_ex+0x265/0x280
[  139.121107][ T8792]  should_fail_alloc_page+0xf2/0x100
[  139.121143][ T8792]  __alloc_frozen_pages_noprof+0xff/0x360
[  139.121244][ T8792]  alloc_pages_mpol+0xb3/0x250
[  139.121330][ T8792]  folio_alloc_mpol_noprof+0x39/0x80
[  139.121368][ T8792]  shmem_get_folio_gfp+0x3cf/0xd60
[  139.121397][ T8792]  ? __rcu_read_unlock+0x34/0x70
[  139.121429][ T8792]  shmem_fault+0xf6/0x250
[  139.121465][ T8792]  __do_fault+0xb9/0x200
[  139.121492][ T8792]  handle_mm_fault+0xf78/0x2be0
[  139.121513][ T8792]  ? __rcu_read_lock+0x37/0x50
[  139.121591][ T8792]  __get_user_pages+0x1036/0x1fb0
[  139.121631][ T8792]  __mm_populate+0x243/0x3a0
[  139.121687][ T8792]  vm_mmap_pgoff+0x232/0x2e0
[  139.121791][ T8792]  ksys_mmap_pgoff+0xc2/0x310
[  139.121832][ T8792]  ? __x64_sys_mmap+0x49/0x70
[  139.121862][ T8792]  x64_sys_call+0x1602/0x2fb0
[  139.121890][ T8792]  do_syscall_64+0xd2/0x200
[  139.121927][ T8792]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  139.121957][ T8792]  ? clear_bhb_loop+0x40/0x90
[  139.121980][ T8792]  ? clear_bhb_loop+0x40/0x90
[  139.122022][ T8792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.122083][ T8792] RIP: 0033:0x7f0ab5a8e9a9
[  139.122142][ T8792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.122159][ T8792] RSP: 002b:00007f0ab40f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  139.122177][ T8792] RAX: ffffffffffffffda RBX: 00007f0ab5cb5fa0 RCX: 00007f0ab5a8e9a9
[  139.122193][ T8792] RDX: b635773f06ebbeea RSI: 0000000000b36000 RDI: 0000200000000000
[  139.122209][ T8792] RBP: 00007f0ab40f7090 R08: ffffffffffffffff R09: 0000000028f43000
[  139.122223][ T8792] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000002
[  139.122314][ T8792] R13: 0000000000000000 R14: 00007f0ab5cb5fa0 R15: 00007ffcaa518b18
[  139.122341][ T8792]  </TASK>
[  139.364717][ T8796] loop1: detected capacity change from 0 to 764
[  139.414966][ T8799] loop1: detected capacity change from 0 to 512
[  139.434597][ T8799] EXT4-fs: Ignoring removed mblk_io_submit option
[  139.441141][ T8799] EXT4-fs: Ignoring removed bh option
[  139.454588][ T8799] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  139.464813][ T8799] EXT4-fs (loop1): can't mount with commit=, fs mounted w/o journal
[  139.599806][ T8803] loop1: detected capacity change from 0 to 512
[  139.615054][ T8805] loop2: detected capacity change from 0 to 1024
[  139.623051][ T8807] SELinux: syz.3.1760 (8807) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  139.657173][ T8805] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1759: Failed to acquire dquot type 0
[  139.694805][ T8803] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.744362][ T8805] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  139.774947][ T8805] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.1759: corrupted inode contents
[  139.789395][ T8805] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #13: comm syz.2.1759: mark_inode_dirty error
[  139.804596][ T8805] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.1759: corrupted inode contents
[  139.818213][ T8805] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.1759: mark_inode_dirty error
[  139.830791][ T8805] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.1759: corrupted inode contents
[  139.843941][ T8805] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  139.852859][ T8805] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.1759: corrupted inode contents
[  139.865984][ T8805] EXT4-fs error (device loop2): ext4_truncate:4597: inode #13: comm syz.2.1759: mark_inode_dirty error
[  139.877227][ T8805] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  139.892040][ T8827] loop3: detected capacity change from 0 to 1024
[  139.898983][ T8827] EXT4-fs: Ignoring removed nobh option
[  139.904636][ T8827] EXT4-fs: Ignoring removed bh option
[  139.910778][ T8805] EXT4-fs (loop2): 1 truncate cleaned up
[  139.916988][ T8805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.934247][ T8827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.947487][ T8805] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  139.967366][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.204202][ T8842] SELinux: syz.2.1771 (8842) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  140.216364][ T8822] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.1765: Allocating blocks 497-513 which overlap fs metadata
[  140.302711][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.370014][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.506811][ T8855] loop1: detected capacity change from 0 to 1024
[  140.514590][ T8855] EXT4-fs: Ignoring removed nobh option
[  140.520195][ T8855] EXT4-fs: Ignoring removed bh option
[  140.543015][ T8855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.765598][ T8871] SELinux: syz.2.1782 (8871) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  140.851685][ T8876] __nla_validate_parse: 2 callbacks suppressed
[  140.851703][ T8876] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1784'.
[  140.879476][ T8854] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1776: Allocating blocks 497-513 which overlap fs metadata
[  140.883342][ T8876] lo speed is unknown, defaulting to 1000
[  140.933974][ T8879] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1786'.
[  140.943051][ T8879] netlink: 'syz.4.1786': attribute type 7 has an invalid length.
[  140.950814][ T8879] netlink: 'syz.4.1786': attribute type 8 has an invalid length.
[  140.958690][ T8879] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1786'.
[  140.970321][ T8879] loop9: detected capacity change from 0 to 7
[  141.053361][ T8859] EXT4-fs (loop1): pa ffff888106d45b60: logic 624, phys. 465, len 3
[  141.061598][ T8859] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  141.081919][ T8885] loop2: detected capacity change from 0 to 8192
[  141.104843][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.139674][ T8896] loop1: detected capacity change from 0 to 164
[  141.156592][ T8885] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  141.172357][ T8896] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  141.182287][ T8900] loop3: detected capacity change from 0 to 1024
[  141.233569][ T8900] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.285396][ T8680] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.302633][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.317097][ T8908] random: crng reseeded on system resumption
[  141.319846][ T8680] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.350725][ T8680] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.363459][ T8680] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.364395][ T8910] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1795'.
[  141.560019][ T8932] loop2: detected capacity change from 0 to 164
[  141.575470][ T1036] hid-generic 0003:0004:0000.001D: unknown main item tag 0x0
[  141.583003][ T1036] hid-generic 0003:0004:0000.001D: unknown main item tag 0x0
[  141.590626][ T1036] hid-generic 0003:0004:0000.001D: unknown main item tag 0x0
[  141.602401][ T8934] loop4: detected capacity change from 0 to 1764
[  141.627451][ T8934] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  141.638453][ T1036] hid-generic 0003:0004:0000.001D: hidraw0: USB HID v0.02 Device [syz0] on syz1
[  141.695311][ T8944] loop1: detected capacity change from 0 to 512
[  141.702153][ T8944] EXT4-fs: Ignoring removed nomblk_io_submit option
[  141.725375][ T8944] EXT4-fs (loop1): external journal device major/minor numbers have changed
[  141.764846][ T8934] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1805'.
[  141.776742][ T8948] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(13)
[  141.783395][ T8948] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  141.791148][ T8948] vhci_hcd vhci_hcd.0: Device attached
[  141.802471][ T8944] EXT4-fs (loop1): failed to open journal device unknown-block(0,3) -6
[  141.814817][ T8944] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  142.001349][ T8969] pim6reg1: entered promiscuous mode
[  142.006771][ T8969] pim6reg1: entered allmulticast mode
[  142.019583][ T8969] loop5: detected capacity change from 0 to 1024
[  142.031112][ T3400] usb 5-1: new low-speed USB device number 2 using vhci_hcd
[  142.041835][ T8969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.113697][ T8973] loop3: detected capacity change from 0 to 1024
[  142.133003][ T8973] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.146001][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.287688][   T29] kauditd_printk_skb: 283 callbacks suppressed
[  142.287702][   T29] audit: type=1326 audit(142.266:12953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f65ce505967 code=0x7ffc0000
[  142.316956][   T29] audit: type=1326 audit(142.266:12954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f65ce4aab89 code=0x7ffc0000
[  142.339910][   T29] audit: type=1326 audit(142.266:12955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f65ce50e9a9 code=0x7ffc0000
[  142.363519][   T29] audit: type=1326 audit(142.346:12956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f65ce505967 code=0x7ffc0000
[  142.386409][   T29] audit: type=1326 audit(142.346:12957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f65ce4aab89 code=0x7ffc0000
[  142.409367][   T29] audit: type=1326 audit(142.346:12958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f65ce50e9a9 code=0x7ffc0000
[  142.444664][   T29] audit: type=1326 audit(142.416:12959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f65ce505967 code=0x7ffc0000
[  142.467605][   T29] audit: type=1326 audit(142.416:12960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f65ce4aab89 code=0x7ffc0000
[  142.490475][   T29] audit: type=1326 audit(142.416:12961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f65ce50e9a9 code=0x7ffc0000
[  142.513362][   T29] audit: type=1326 audit(142.416:12962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8963 comm="syz.4.1812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f65ce505967 code=0x7ffc0000
[  142.539131][ T8949] vhci_hcd: connection reset by peer
[  142.605891][ T4315] vhci_hcd: stop threads
[  142.610192][ T4315] vhci_hcd: release socket
[  142.614742][ T4315] vhci_hcd: disconnect device
[  142.640868][ T8973] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 18: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  142.663046][ T8985] loop9: detected capacity change from 0 to 7
[  142.697228][ T8987] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1819'.
[  142.775083][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.860657][ T9000] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.904651][ T9000] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.937339][ T9008] loop1: detected capacity change from 0 to 1024
[  142.946726][ T4499] hid-generic 0003:0004:0000.001E: unknown main item tag 0x0
[  142.954252][ T4499] hid-generic 0003:0004:0000.001E: unknown main item tag 0x0
[  142.961684][ T4499] hid-generic 0003:0004:0000.001E: unknown main item tag 0x0
[  142.973282][ T9008] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  142.982546][ T4499] hid-generic 0003:0004:0000.001E: hidraw0: USB HID v0.02 Device [syz0] on syz1
[  142.983790][ T9000] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.006335][ T9008] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  143.044120][ T9013] loop1: detected capacity change from 0 to 128
[  143.052742][ T9000] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.087012][ T9015] loop9: detected capacity change from 0 to 7
[  143.139309][ T9017] loop1: detected capacity change from 0 to 512
[  143.168615][ T9017] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.207017][ T9021] pim6reg: entered allmulticast mode
[  143.215164][ T9021] pim6reg: left allmulticast mode
[  143.227230][ T9017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.794133][ T9049] netlink: 'syz.4.1840': attribute type 1 has an invalid length.
[  143.802046][ T9049] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1840'.
[  143.988177][ T9053] FAULT_INJECTION: forcing a failure.
[  143.988177][ T9053] name failslab, interval 1, probability 0, space 0, times 0
[  144.000943][ T9053] CPU: 1 UID: 0 PID: 9053 Comm: syz.4.1841 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  144.001053][ T9053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  144.001068][ T9053] Call Trace:
[  144.001075][ T9053]  <TASK>
[  144.001084][ T9053]  __dump_stack+0x1d/0x30
[  144.001110][ T9053]  dump_stack_lvl+0xe8/0x140
[  144.001199][ T9053]  dump_stack+0x15/0x1b
[  144.001220][ T9053]  should_fail_ex+0x265/0x280
[  144.001259][ T9053]  should_failslab+0x8c/0xb0
[  144.001287][ T9053]  kmem_cache_alloc_noprof+0x50/0x310
[  144.001319][ T9053]  ? skb_clone+0x151/0x1f0
[  144.001363][ T9053]  skb_clone+0x151/0x1f0
[  144.001412][ T9053]  __netlink_deliver_tap+0x2c9/0x500
[  144.001465][ T9053]  ? netlink_attachskb+0x2d1/0x610
[  144.001498][ T9053]  netlink_sendskb+0x126/0x150
[  144.001551][ T9053]  netlink_unicast+0x28a/0x680
[  144.001582][ T9053]  netlink_ack+0x4c8/0x500
[  144.001665][ T9053]  netlink_rcv_skb+0x192/0x220
[  144.001701][ T9053]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  144.001770][ T9053]  rtnetlink_rcv+0x1c/0x30
[  144.001816][ T9053]  netlink_unicast+0x5a5/0x680
[  144.001847][ T9053]  netlink_sendmsg+0x58b/0x6b0
[  144.001870][ T9053]  ? __pfx_netlink_sendmsg+0x10/0x10
[  144.001895][ T9053]  __sock_sendmsg+0x142/0x180
[  144.001925][ T9053]  ____sys_sendmsg+0x31e/0x4e0
[  144.001997][ T9053]  ___sys_sendmsg+0x17b/0x1d0
[  144.002120][ T9053]  __x64_sys_sendmsg+0xd4/0x160
[  144.002161][ T9053]  x64_sys_call+0x2999/0x2fb0
[  144.002187][ T9053]  do_syscall_64+0xd2/0x200
[  144.002291][ T9053]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  144.002422][ T9053]  ? clear_bhb_loop+0x40/0x90
[  144.002457][ T9053]  ? clear_bhb_loop+0x40/0x90
[  144.002477][ T9053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.002537][ T9053] RIP: 0033:0x7f65ce50e9a9
[  144.002551][ T9053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.002567][ T9053] RSP: 002b:00007f65ccb6f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  144.002583][ T9053] RAX: ffffffffffffffda RBX: 00007f65ce735fa0 RCX: 00007f65ce50e9a9
[  144.002594][ T9053] RDX: 0000000010000800 RSI: 0000200000000040 RDI: 0000000000000003
[  144.002605][ T9053] RBP: 00007f65ccb6f090 R08: 0000000000000000 R09: 0000000000000000
[  144.002696][ T9053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.002712][ T9053] R13: 0000000000000000 R14: 00007f65ce735fa0 R15: 00007ffd2a64b398
[  144.002786][ T9053]  </TASK>
[  144.452576][ T3175] hid-generic 0003:0004:0000.001F: unknown main item tag 0x0
[  144.460166][ T3175] hid-generic 0003:0004:0000.001F: unknown main item tag 0x0
[  144.467613][ T3175] hid-generic 0003:0004:0000.001F: unknown main item tag 0x0
[  144.496597][ T3175] hid-generic 0003:0004:0000.001F: hidraw0: USB HID v0.02 Device [syz0] on syz1
[  144.534085][ T9074] ALSA: seq fatal error: cannot create timer (-19)
[  144.744315][ T9110] SELinux: syz.4.1856 (9110) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  144.783281][ T9112] loop4: detected capacity change from 0 to 512
[  144.795208][ T9112] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  144.801814][ T9112] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  144.809499][ T9112] vhci_hcd vhci_hcd.0: Device attached
[  144.875753][ T9091] loop2: detected capacity change from 0 to 8192
[  145.046260][ T9112] loop4: detected capacity change from 0 to 8192
[  145.057469][ T9113] vhci_hcd: connection closed
[  145.057860][   T37] vhci_hcd: stop threads
[  145.066912][   T37] vhci_hcd: release socket
[  145.071410][   T37] vhci_hcd: disconnect device
[  145.414812][ T9116] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1858'.
[  145.423958][ T9116] netlink: 'syz.2.1858': attribute type 7 has an invalid length.
[  145.431719][ T9116] netlink: 'syz.2.1858': attribute type 8 has an invalid length.
[  145.439499][ T9116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1858'.
[  145.484122][ T9118] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1859'.
[  145.589412][ T9127] xt_connbytes: Forcing CT accounting to be enabled
[  145.596488][ T9127] Cannot find set identified by id 0 to match
[  145.690828][ T9139] loop4: detected capacity change from 0 to 256
[  145.697786][ T9142] Cannot find add_set index 0 as target
[  145.707463][ T9143] SELinux: syz.3.1867 (9143) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  145.711528][ T9139] vfat: Unknown parameter 'shortnamnumtail'
[  145.727757][ T9142] SELinux: security_context_str_to_sid (��) failed with errno=-22
[  145.895767][ T9156] __nla_validate_parse: 1 callbacks suppressed
[  145.895787][ T9156] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1869'.
[  145.911142][ T9156] netlink: 'syz.3.1869': attribute type 7 has an invalid length.
[  145.918985][ T9156] netlink: 'syz.3.1869': attribute type 8 has an invalid length.
[  145.926859][ T9156] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1869'.
[  145.957147][ T9000] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.983334][ T9000] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.998386][ T9160] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.014495][ T9000] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.029268][ T9000] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.044330][ T9160] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.112760][ T9160] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.162585][ T9160] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.212811][ T9160] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.244536][ T9160] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.272111][ T9160] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.306243][ T9160] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.326015][ T9194] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1887'.
[  146.365336][ T9198] Invalid ELF header magic: != ELF
[  146.405749][ T9200] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1890'.
[  146.439022][ T9198] loop2: detected capacity change from 0 to 8192
[  146.706434][ T9243] lo speed is unknown, defaulting to 1000
[  146.863219][ T9253] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1908'.
[  146.893913][ T9253] SELinux: syz.4.1908 (9253) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  147.041208][ T3400] usb 5-1: enqueue for inactive port 0
[  147.161093][ T3400] usb 5-1: enqueue for inactive port 0
[  147.241129][ T3400] vhci_hcd: vhci_device speed not set
[  147.339356][ T9270] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1913'.
[  147.406616][   T29] kauditd_printk_skb: 836 callbacks suppressed
[  147.406709][   T29] audit: type=1400 audit(147.386:13799): avc:  denied  { create } for  pid=9273 comm="syz.2.1915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  147.435294][   T29] audit: type=1400 audit(147.416:13800): avc:  denied  { bind } for  pid=9273 comm="syz.2.1915" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[  147.508563][ T9278] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1917'.
[  147.539056][ T9278] netlink: 92 bytes leftover after parsing attributes in process `syz.5.1917'.
[  147.582720][   T29] audit: type=1400 audit(147.566:13801): avc:  denied  { read write } for  pid=9282 comm="syz.5.1919" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  147.613301][   T29] audit: type=1400 audit(147.566:13802): avc:  denied  { open } for  pid=9282 comm="syz.5.1919" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  147.637046][   T29] audit: type=1400 audit(147.566:13803): avc:  denied  { ioctl } for  pid=9282 comm="syz.5.1919" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  147.665100][   T29] audit: type=1400 audit(147.646:13804): avc:  denied  { kexec_image_load } for  pid=9282 comm="syz.5.1919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  147.735786][ T9283] lo speed is unknown, defaulting to 1000
[  147.821505][   T29] audit: type=1400 audit(147.806:13805): avc:  denied  { create } for  pid=9290 comm="syz.1.1921" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  147.864962][ T9291] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1921'.
[  147.885066][ T9293] SELinux: syz.4.1922 (9293) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  147.932348][   T29] audit: type=1400 audit(147.906:13806): avc:  denied  { write } for  pid=9290 comm="syz.1.1921" path="socket:[26156]" dev="sockfs" ino=26156 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  147.937581][ T9297] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1924'.
[  148.002025][   T29] audit: type=1400 audit(147.976:13807): avc:  denied  { mount } for  pid=9298 comm="syz.1.1925" name="/" dev="ramfs" ino=27152 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  148.425868][ T9341] loop2: detected capacity change from 0 to 164
[  148.437766][   T29] audit: type=1400 audit(148.416:13808): avc:  denied  { mounton } for  pid=9340 comm="syz.2.1940" path="/364/file0" dev="tmpfs" ino=1982 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  148.465905][ T9341] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  148.486036][ T9341] RDS: rds_bind could not find a transport for ::ffff:100.1.1.1, load rds_tcp or rds_rdma?
[  148.507671][ T9341] netlink: 'syz.2.1940': attribute type 10 has an invalid length.
[  148.517884][ T9341] bond0: (slave dummy0): Releasing backup interface
[  148.528882][ T9341] team0: Failed to send options change via netlink (err -105)
[  148.536569][ T9341] team0: Port device dummy0 added
[  148.544696][ T3418] srz1: Port: 1 Link DOWN
[  148.554182][ T9341] netlink: 'syz.2.1940': attribute type 10 has an invalid length.
[  148.562736][ T9341] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  148.573784][ T9341] team0: Failed to send options change via netlink (err -105)
[  148.581364][ T9341] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  148.590438][ T9341] team0: Port device dummy0 removed
[  148.883350][ T9350] loop2: detected capacity change from 0 to 512
[  148.903779][ T9350] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1943: bg 0: block 248: padding at end of block bitmap is not set
[  148.918597][ T9350] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1943: Failed to acquire dquot type 1
[  148.930707][ T9350] EXT4-fs (loop2): 1 truncate cleaned up
[  148.937125][ T9350] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.951799][ T9350] EXT4-fs error (device loop2): ext4_lookup:1791: inode #2: comm syz.2.1943: deleted inode referenced: 12
[  149.121200][ T9359] 9pnet_fd: Insufficient options for proto=fd
[  149.127600][ T9359] 9pnet_fd: Insufficient options for proto=fd
[  149.761229][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.897132][ T9387] loop3: detected capacity change from 0 to 256
[  149.999622][ T9395] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  150.804843][ T9416] loop2: detected capacity change from 0 to 512
[  150.812064][ T9416] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.825591][ T9416] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.863755][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.904970][ T9424] FAULT_INJECTION: forcing a failure.
[  150.904970][ T9424] name failslab, interval 1, probability 0, space 0, times 0
[  150.917755][ T9424] CPU: 1 UID: 0 PID: 9424 Comm: syz.4.1970 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  150.917789][ T9424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.917824][ T9424] Call Trace:
[  150.917832][ T9424]  <TASK>
[  150.917842][ T9424]  __dump_stack+0x1d/0x30
[  150.917866][ T9424]  dump_stack_lvl+0xe8/0x140
[  150.917963][ T9424]  dump_stack+0x15/0x1b
[  150.917984][ T9424]  should_fail_ex+0x265/0x280
[  150.918032][ T9424]  should_failslab+0x8c/0xb0
[  150.918056][ T9424]  kmem_cache_alloc_noprof+0x50/0x310
[  150.918237][ T9424]  ? security_inode_alloc+0x37/0x100
[  150.918267][ T9424]  security_inode_alloc+0x37/0x100
[  150.918382][ T9424]  inode_init_always_gfp+0x4b7/0x500
[  150.918415][ T9424]  ? __pfx_sock_alloc_inode+0x10/0x10
[  150.918440][ T9424]  alloc_inode+0x58/0x170
[  150.918488][ T9424]  __sock_create+0x122/0x5b0
[  150.918530][ T9424]  __sys_socketpair+0x170/0x430
[  150.918562][ T9424]  ? ksys_write+0x192/0x1a0
[  150.918665][ T9424]  __x64_sys_socketpair+0x52/0x60
[  150.918752][ T9424]  x64_sys_call+0x23f2/0x2fb0
[  150.918833][ T9424]  do_syscall_64+0xd2/0x200
[  150.918852][ T9424]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  150.918920][ T9424]  ? clear_bhb_loop+0x40/0x90
[  150.919009][ T9424]  ? clear_bhb_loop+0x40/0x90
[  150.919030][ T9424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.919052][ T9424] RIP: 0033:0x7f65ce50e9a9
[  150.919070][ T9424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.919091][ T9424] RSP: 002b:00007f65ccb6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  150.919146][ T9424] RAX: ffffffffffffffda RBX: 00007f65ce735fa0 RCX: 00007f65ce50e9a9
[  150.919158][ T9424] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  150.919170][ T9424] RBP: 00007f65ccb6f090 R08: 0000000000000000 R09: 0000000000000000
[  150.919182][ T9424] R10: 0000200000000940 R11: 0000000000000246 R12: 0000000000000001
[  150.919193][ T9424] R13: 0000000000000000 R14: 00007f65ce735fa0 R15: 00007ffd2a64b398
[  150.919214][ T9424]  </TASK>
[  150.919224][ T9424] net_ratelimit: 29 callbacks suppressed
[  150.919234][ T9424] socket: no more sockets
[  151.018112][ T9435] loop2: detected capacity change from 0 to 1024
[  151.145150][ T9435] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  151.159592][ T9435] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  151.216283][ T9449] __nla_validate_parse: 8 callbacks suppressed
[  151.216302][ T9449] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.1978'.
[  151.306017][ T9454] 9pnet_fd: Insufficient options for proto=fd
[  151.319734][ T9454] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1979'.
[  151.356627][ T9459] loop4: detected capacity change from 0 to 164
[  151.382409][ T9459] iso9660: Unknown parameter '?'
[  151.468708][ T9468] SELinux: syz.4.1986 (9468) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  151.847581][ T9492] SELinux: syz.5.1996 (9492) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  152.054694][ T9498] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  152.108157][ T9502] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1998'.
[  152.154181][ T9502] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9502 comm=syz.1.1998
[  152.539474][ T9520] lo speed is unknown, defaulting to 1000
[  152.885706][ T9522] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2002'.
[  153.028771][ T9532] loop4: detected capacity change from 0 to 128
[  153.040925][   T29] kauditd_printk_skb: 108 callbacks suppressed
[  153.040940][   T29] audit: type=1400 audit(153.016:13915): avc:  denied  { read } for  pid=9519 comm="syz.2.2002" name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  153.070040][   T29] audit: type=1400 audit(153.016:13916): avc:  denied  { open } for  pid=9519 comm="syz.2.2002" path="/dev/input/event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  153.126990][ T9532] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  153.200423][ T9541] netlink: 'syz.1.2004': attribute type 13 has an invalid length.
[  153.233583][ T3314] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  153.245105][   T29] audit: type=1400 audit(153.126:13917): avc:  denied  { add_name } for  pid=9530 comm="syz.4.2003" name="mnt" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  153.265220][   T29] audit: type=1400 audit(153.126:13918): avc:  denied  { create } for  pid=9530 comm="syz.4.2003" name="mnt" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  153.284933][   T29] audit: type=1400 audit(153.156:13919): avc:  denied  { read write open } for  pid=9530 comm="syz.4.2003" path="/459/mnt/mnt" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  153.366230][   T29] audit: type=1326 audit(153.296:13920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9538 comm="syz.5.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  153.389205][   T29] audit: type=1326 audit(153.296:13921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9538 comm="syz.5.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  153.412266][   T29] audit: type=1326 audit(153.296:13922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9538 comm="syz.5.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  153.435179][   T29] audit: type=1326 audit(153.296:13923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9538 comm="syz.5.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  153.458177][   T29] audit: type=1326 audit(153.296:13924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9538 comm="syz.5.2005" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  153.514623][ T9541] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.521898][ T9541] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.674965][ T9570] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  153.864023][ T9614] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2010'.
[  153.874702][ T9614] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9614 comm=syz.1.2010
[  153.993771][ T9637] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2015'.
[  154.002991][ T9637] netlink: 'syz.1.2015': attribute type 7 has an invalid length.
[  154.010746][ T9637] netlink: 'syz.1.2015': attribute type 8 has an invalid length.
[  154.018705][ T9637] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2015'.
[  154.243344][ T9676] tipc: Started in network mode
[  154.248301][ T9676] tipc: Node identity d638eec595d5, cluster identity 4711
[  154.255744][ T9676] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  154.264391][ T9676] syzkaller0: entered promiscuous mode
[  154.269988][ T9676] syzkaller0: entered allmulticast mode
[  154.280260][ T9676] tipc: Resetting bearer <eth:syzkaller0>
[  154.288213][ T9674] tipc: Resetting bearer <eth:syzkaller0>
[  154.296221][ T9674] tipc: Disabling bearer <eth:syzkaller0>
[  154.362010][ T9690] SELinux: syz.5.2021 (9690) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  154.395694][ T9694] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2022'.
[  154.405726][ T9694] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9694 comm=syz.5.2022
[  154.442696][ T9701] loop9: detected capacity change from 0 to 7
[  154.802679][ T9762] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.846157][ T9762] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.913222][ T9762] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.932658][ T9780] loop3: detected capacity change from 0 to 1024
[  154.961581][ T9762] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.991916][ T9780] EXT4-fs: Ignoring removed nobh option
[  154.997542][ T9780] EXT4-fs: Ignoring removed bh option
[  155.032946][ T9780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.069933][ T9762] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.087413][ T9762] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.113053][ T9762] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.136944][ T9803] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2033'.
[  155.155648][ T9762] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.173176][ T9803] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9803 comm=syz.1.2033
[  155.227522][ T9807] lo speed is unknown, defaulting to 1000
[  155.350421][ T9769] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.2031: Allocating blocks 497-513 which overlap fs metadata
[  155.450262][ T9833] loop9: detected capacity change from 0 to 7
[  155.496030][ T9780] EXT4-fs (loop3): pa ffff888106d45bd0: logic 576, phys. 449, len 4
[  155.504195][ T9780] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  155.565703][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.567250][ T9853] netlink: 'syz.4.2043': attribute type 3 has an invalid length.
[  155.585654][ T9853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9853 comm=syz.4.2043
[  155.598834][ T9853] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2043'.
[  155.634704][ T9857] loop3: detected capacity change from 0 to 1024
[  155.655002][ T9857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.671870][ T9857] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.2042: Allocating blocks 481-513 which overlap fs metadata
[  155.734572][ T9857] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.2042: Allocating blocks 465-513 which overlap fs metadata
[  155.766333][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.816223][ T9868] usb usb7: usbfs: process 9868 (syz.3.2047) did not claim interface 0 before use
[  155.886551][ T9870] loop5: detected capacity change from 0 to 128
[  155.893248][ T9870] EXT4-fs: test_dummy_encryption option not supported
[  155.903738][ T9870] loop5: detected capacity change from 0 to 512
[  155.972094][ T9870] EXT4-fs error (device loop5): ext4_orphan_get:1419: comm syz.5.2045: bad orphan inode 11862016
[  155.984795][ T9870] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  156.158528][ T9876] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9876 comm=syz.3.2049
[  156.178546][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  156.192968][ T9878] loop4: detected capacity change from 0 to 512
[  156.220192][ T9878] ext4: Unknown parameter 'noacl'
[  156.496693][ T9896] loop3: detected capacity change from 0 to 256
[  156.620649][ T9902] __nla_validate_parse: 1 callbacks suppressed
[  156.620666][ T9902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2058'.
[  156.766359][ T9902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2058'.
[  156.777528][ T9914] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2061'.
[  156.792418][ T9914] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=9914 comm=syz.4.2061
[  156.857091][ T9918] loop4: detected capacity change from 0 to 512
[  156.877552][ T9918] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.902050][ T9918] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.2063: corrupted inode contents
[  156.915431][ T9918] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.2063: mark_inode_dirty error
[  156.927398][ T9918] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.2063: corrupted inode contents
[  156.940489][ T9918] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.2063: mark_inode_dirty error
[  156.954993][ T9918] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2063'.
[  157.222150][ T9926] netlink: 340 bytes leftover after parsing attributes in process `syz.2.2065'.
[  157.231986][ T9926] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2065'.
[  157.359825][ T9935] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2069'.
[  157.375057][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  157.387446][ T9933] loop9: detected capacity change from 0 to 7
[  157.550876][ T9944] syz.1.2072: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  157.565559][ T9944] CPU: 0 UID: 0 PID: 9944 Comm: syz.1.2072 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  157.565586][ T9944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.565598][ T9944] Call Trace:
[  157.565604][ T9944]  <TASK>
[  157.565671][ T9944]  __dump_stack+0x1d/0x30
[  157.565695][ T9944]  dump_stack_lvl+0xe8/0x140
[  157.565714][ T9944]  dump_stack+0x15/0x1b
[  157.565729][ T9944]  warn_alloc+0x12b/0x1a0
[  157.565816][ T9944]  ? audit_log_end+0x1d7/0x1f0
[  157.565861][ T9944]  ? audit_log_end+0x1d7/0x1f0
[  157.565894][ T9944]  __vmalloc_node_range_noprof+0x9c/0xe00
[  157.566000][ T9944]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  157.566035][ T9944]  ? __rcu_read_unlock+0x4f/0x70
[  157.566057][ T9944]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  157.566113][ T9944]  ? perf_cgroup_switch+0x10c/0x480
[  157.566227][ T9944]  ? should_fail_ex+0x30/0x280
[  157.566265][ T9944]  ? xskq_create+0x36/0xe0
[  157.566297][ T9944]  vmalloc_user_noprof+0x7d/0xb0
[  157.566356][ T9944]  ? xskq_create+0x80/0xe0
[  157.566378][ T9944]  xskq_create+0x80/0xe0
[  157.566445][ T9944]  xsk_init_queue+0x95/0xf0
[  157.566472][ T9944]  xsk_setsockopt+0x35c/0x510
[  157.566497][ T9944]  ? __pfx_xsk_setsockopt+0x10/0x10
[  157.566524][ T9944]  __sys_setsockopt+0x184/0x200
[  157.566560][ T9944]  __x64_sys_setsockopt+0x64/0x80
[  157.566620][ T9944]  x64_sys_call+0x2bd5/0x2fb0
[  157.566640][ T9944]  do_syscall_64+0xd2/0x200
[  157.566658][ T9944]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  157.566698][ T9944]  ? clear_bhb_loop+0x40/0x90
[  157.566800][ T9944]  ? clear_bhb_loop+0x40/0x90
[  157.566828][ T9944]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.566848][ T9944] RIP: 0033:0x7f143100e9a9
[  157.566862][ T9944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.566937][ T9944] RSP: 002b:00007f142f677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  157.566956][ T9944] RAX: ffffffffffffffda RBX: 00007f1431235fa0 RCX: 00007f143100e9a9
[  157.566968][ T9944] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  157.566980][ T9944] RBP: 00007f1431090d69 R08: 0000000000000004 R09: 0000000000000000
[  157.566995][ T9944] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  157.567012][ T9944] R13: 0000000000000000 R14: 00007f1431235fa0 R15: 00007ffce40b3c98
[  157.567032][ T9944]  </TASK>
[  157.567060][ T9944] Mem-Info:
[  157.692461][ T9950] loop3: detected capacity change from 0 to 164
[  157.694450][ T9944] active_anon:85828 inactive_anon:2 isolated_anon:0
[  157.694450][ T9944]  active_file:20617 inactive_file:2324 isolated_file:0
[  157.694450][ T9944]  unevictable:1 dirty:462 writeback:0
[  157.694450][ T9944]  slab_reclaimable:3335 slab_unreclaimable:62704
[  157.694450][ T9944]  mapped:38794 shmem:77882 pagetables:1798
[  157.694450][ T9944]  sec_pagetables:0 bounce:0
[  157.694450][ T9944]  kernel_misc_reclaimable:0
[  157.694450][ T9944]  free:1749469 free_pcp:5879 free_cma:0
[  157.716276][ T9950] iso9660: Unknown parameter '?'
[  157.719594][ T9944] Node 0 active_anon:343312kB inactive_anon:8kB active_file:82468kB inactive_file:9296kB unevictable:4kB isolated(anon):0kB isolated(file):0kB mapped:155176kB dirty:1848kB writeback:0kB shmem:311528kB writeback_tmp:0kB kernel_stack:4224kB pagetables:7192kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  157.783676][ T9949] lo speed is unknown, defaulting to 1000
[  157.787229][ T9944] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  157.929685][ T9944] lowmem_reserve[]: 0 2882 7860 7860
[  157.935120][ T9944] Node 0 DMA32 free:2947720kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951348kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  157.965498][ T9944] lowmem_reserve[]: 0 0 4978 4978
[  157.970576][ T9944] Node 0 Normal free:4026908kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:351664kB inactive_anon:8kB active_file:86180kB inactive_file:9296kB unevictable:4kB writepending:1848kB present:5242880kB managed:5098240kB mlocked:4kB bounce:0kB free_pcp:15120kB local_pcp:5264kB free_cma:0kB
[  158.002638][ T9944] lowmem_reserve[]: 0 0 0 0
[  158.007231][ T9944] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  158.020192][ T9944] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 2*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947720kB
[  158.036492][ T9944] Node 0 Normal: 1*4kB (U) 3*8kB (UME) 0*16kB 0*32kB 34*64kB (UM) 97*128kB (UM) 75*256kB (UM) 61*512kB (UME) 51*1024kB (UE) 41*2048kB (UME) 932*4096kB (UM) = 4018716kB
[  158.053597][ T9944] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  158.062954][ T9944] 105401 total pagecache pages
[  158.067754][ T9944] 2 pages in swap cache
[  158.072071][ T9944] Free swap  = 124988kB
[  158.076266][ T9944] Total swap = 124996kB
[  158.080464][ T9944] 2097051 pages RAM
[  158.084364][ T9944] 0 pages HighMem/MovableOnly
[  158.089059][ T9944] 80814 pages reserved
[  158.108235][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.229350][   T29] kauditd_printk_skb: 133 callbacks suppressed
[  158.229377][   T29] audit: type=1326 audit(158.206:14058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.259033][   T29] audit: type=1326 audit(158.206:14059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.320479][   T29] audit: type=1326 audit(158.256:14060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f143100d310 code=0x7ffc0000
[  158.343555][   T29] audit: type=1326 audit(158.256:14061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f143100d310 code=0x7ffc0000
[  158.366543][   T29] audit: type=1326 audit(158.256:14062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.389656][   T29] audit: type=1326 audit(158.256:14063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.412610][   T29] audit: type=1326 audit(158.256:14064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.435401][   T29] audit: type=1326 audit(158.256:14065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.458478][   T29] audit: type=1326 audit(158.256:14066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.481606][   T29] audit: type=1326 audit(158.256:14067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9958 comm="syz.1.2076" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143100e9a9 code=0x7ffc0000
[  158.801012][ T9972] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2081'.
[  158.810035][ T9972] netlink: 'syz.3.2081': attribute type 18 has an invalid length.
[  158.827017][ T9972] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  158.835384][ T9972] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  158.843628][ T9972] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  158.851855][ T9972] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  158.862706][ T9974] autofs: Unknown parameter 'no9� ��P��G!8�����E�8-�� ����Ŗ�Eeլ(�	Ir�\��u}ib�����T0;��my�[Gc��#�>Qk��bY�&���#�w�@/VV�L�~1�2��l�h<y����M�v��^7 !J�>�O�h'���rK1�\kU{!�e���ܚ7���
[  158.862706][ T9974] �U�e�[���%#s'
[  158.943784][ T9976] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2082'.
[  158.974044][ T9976] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2082'.
[  159.078270][ T9981] loop3: detected capacity change from 0 to 512
[  159.120014][ T9981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.182247][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.238236][ T9990] netlink: 'syz.1.2088': attribute type 25 has an invalid length.
[  159.860630][T10018] loop9: detected capacity change from 0 to 7
[  160.007941][T10022] SELinux: syz.4.2098 (10022) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  160.367675][T10043] FAULT_INJECTION: forcing a failure.
[  160.367675][T10043] name failslab, interval 1, probability 0, space 0, times 0
[  160.380365][T10043] CPU: 0 UID: 0 PID: 10043 Comm: syz.4.2105 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  160.380397][T10043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  160.380487][T10043] Call Trace:
[  160.380494][T10043]  <TASK>
[  160.380504][T10043]  __dump_stack+0x1d/0x30
[  160.380530][T10043]  dump_stack_lvl+0xe8/0x140
[  160.380552][T10043]  dump_stack+0x15/0x1b
[  160.380574][T10043]  should_fail_ex+0x265/0x280
[  160.380659][T10043]  should_failslab+0x8c/0xb0
[  160.380687][T10043]  kmem_cache_alloc_node_noprof+0x57/0x320
[  160.380722][T10043]  ? alloc_vmap_area+0x231/0xe50
[  160.380930][T10043]  alloc_vmap_area+0x231/0xe50
[  160.380972][T10043]  ? __kmalloc_cache_node_noprof+0x18a/0x320
[  160.381079][T10043]  __get_vm_area_node+0x173/0x1d0
[  160.381116][T10043]  __vmalloc_node_range_noprof+0x273/0xe00
[  160.381198][T10043]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  160.381251][T10043]  ? mntput_no_expire+0x6f/0x3c0
[  160.381304][T10043]  ? __rcu_read_unlock+0x4f/0x70
[  160.381365][T10043]  ? selinux_capable+0x1f9/0x270
[  160.381454][T10043]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  160.381519][T10043]  __vmalloc_noprof+0x83/0xc0
[  160.381554][T10043]  ? bpf_prog_alloc_no_stats+0x47/0x390
[  160.381597][T10043]  bpf_prog_alloc_no_stats+0x47/0x390
[  160.381680][T10043]  ? bpf_prog_alloc+0x2a/0x150
[  160.381717][T10043]  bpf_prog_alloc+0x3c/0x150
[  160.381751][T10043]  bpf_prog_load+0x514/0x1070
[  160.381870][T10043]  ? security_bpf+0x2b/0x90
[  160.381889][T10043]  __sys_bpf+0x51d/0x790
[  160.381923][T10043]  __x64_sys_bpf+0x41/0x50
[  160.381960][T10043]  x64_sys_call+0x2478/0x2fb0
[  160.381979][T10043]  do_syscall_64+0xd2/0x200
[  160.381997][T10043]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  160.382024][T10043]  ? clear_bhb_loop+0x40/0x90
[  160.382075][T10043]  ? clear_bhb_loop+0x40/0x90
[  160.382104][T10043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.382130][T10043] RIP: 0033:0x7f65ce50e9a9
[  160.382150][T10043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.382217][T10043] RSP: 002b:00007f65ccb6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  160.382241][T10043] RAX: ffffffffffffffda RBX: 00007f65ce735fa0 RCX: 00007f65ce50e9a9
[  160.382257][T10043] RDX: 0000000000000094 RSI: 00002000000004c0 RDI: 0000000000000005
[  160.382273][T10043] RBP: 00007f65ccb6f090 R08: 0000000000000000 R09: 0000000000000000
[  160.382286][T10043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.382297][T10043] R13: 0000000000000000 R14: 00007f65ce735fa0 R15: 00007ffd2a64b398
[  160.382339][T10043]  </TASK>
[  160.645646][T10044] loop3: detected capacity change from 0 to 1024
[  160.701724][T10044] EXT4-fs: Ignoring removed nobh option
[  160.707353][T10044] EXT4-fs: Ignoring removed bh option
[  160.775314][T10048] gtp0: entered promiscuous mode
[  160.780318][T10048] gtp0: entered allmulticast mode
[  160.825784][T10044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.893674][T10065] FAULT_INJECTION: forcing a failure.
[  160.893674][T10065] name failslab, interval 1, probability 0, space 0, times 0
[  160.906382][T10065] CPU: 1 UID: 0 PID: 10065 Comm: �� Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  160.906577][T10065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  160.906594][T10065] Call Trace:
[  160.906603][T10065]  <TASK>
[  160.906612][T10065]  __dump_stack+0x1d/0x30
[  160.906633][T10065]  dump_stack_lvl+0xe8/0x140
[  160.906653][T10065]  dump_stack+0x15/0x1b
[  160.906726][T10065]  should_fail_ex+0x265/0x280
[  160.906764][T10065]  should_failslab+0x8c/0xb0
[  160.906788][T10065]  kmem_cache_alloc_noprof+0x50/0x310
[  160.906813][T10065]  ? alloc_empty_file+0x76/0x200
[  160.906839][T10065]  alloc_empty_file+0x76/0x200
[  160.906934][T10065]  alloc_file_pseudo+0xc6/0x160
[  160.906966][T10065]  __shmem_file_setup+0x1de/0x210
[  160.907065][T10065]  shmem_file_setup+0x3b/0x50
[  160.907171][T10065]  __se_sys_memfd_create+0x2c3/0x590
[  160.907210][T10065]  __x64_sys_memfd_create+0x31/0x40
[  160.907242][T10065]  x64_sys_call+0x122f/0x2fb0
[  160.907262][T10065]  do_syscall_64+0xd2/0x200
[  160.907328][T10065]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  160.907372][T10065]  ? clear_bhb_loop+0x40/0x90
[  160.907439][T10065]  ? clear_bhb_loop+0x40/0x90
[  160.907474][T10065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.907501][T10065] RIP: 0033:0x7fb44fcae9a9
[  160.907517][T10065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.907553][T10065] RSP: 002b:00007fb44e316e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  160.907629][T10065] RAX: ffffffffffffffda RBX: 0000000000000512 RCX: 00007fb44fcae9a9
[  160.907643][T10065] RDX: 00007fb44e316ef0 RSI: 0000000000000000 RDI: 00007fb44fd316fc
[  160.907658][T10065] RBP: 0000200000000380 R08: 00007fb44e316bb7 R09: 00007fb44e316e40
[  160.907672][T10065] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000080
[  160.907687][T10065] R13: 00007fb44e316ef0 R14: 00007fb44e316eb0 R15: 0000200000000040
[  160.907709][T10065]  </TASK>
[  161.326274][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.414322][T10094] loop9: detected capacity change from 0 to 7
[  161.547082][T10111] loop5: detected capacity change from 0 to 1024
[  161.583497][T10111] EXT4-fs: Ignoring removed orlov option
[  161.589309][T10111] EXT4-fs: Ignoring removed orlov option
[  161.595088][T10111] EXT4-fs: Ignoring removed nomblk_io_submit option
[  161.632263][T10111] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.707127][T10137] loop2: detected capacity change from 0 to 164
[  161.714954][T10111] __nla_validate_parse: 2 callbacks suppressed
[  161.714967][T10111] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2126'.
[  161.731073][T10137] iso9660: Unknown parameter '?'
[  161.758167][T10140] raw_sendmsg: syz.3.2134 forgot to set AF_INET. Fix it!
[  161.779170][T10115] loop4: detected capacity change from 0 to 1024
[  161.811796][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.821648][T10115] EXT4-fs: Ignoring removed nobh option
[  161.827344][T10115] EXT4-fs: Ignoring removed bh option
[  161.863769][T10115] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.892321][T10134] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.2129: Allocating blocks 497-513 which overlap fs metadata
[  161.973331][T10134] EXT4-fs (loop4): pa ffff888106d45cb0: logic 0, phys. 113, len 25
[  161.981441][T10134] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 23, pa_free 24
[  162.069892][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.070661][T10173] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2146'.
[  162.115197][T10177] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2148'.
[  162.130686][T10177] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10177 comm=syz.5.2148
[  162.170193][T10180] loop5: detected capacity change from 0 to 2048
[  162.192336][T10180] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  162.261080][T10183] netlink: 'syz.5.2149': attribute type 27 has an invalid length.
[  162.289606][T10183] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.296954][T10183] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.358279][T10183] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  162.367108][T10183] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  162.375633][T10183] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  162.384287][T10183] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  162.394202][T10183] veth5: left promiscuous mode
[  162.413972][T10184] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.422249][T10184] 8021q: adding VLAN 0 to HW filter on device team0
[  162.430705][T10184] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  162.542238][T10187] loop3: detected capacity change from 0 to 256
[  162.552913][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.602681][T10191] loop2: detected capacity change from 0 to 512
[  162.625553][T10195] loop5: detected capacity change from 0 to 512
[  162.627082][T10191] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.661427][T10195] ext4: Unknown parameter 'nouser_xattr'
[  162.729072][T10206] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2156'.
[  162.738947][T10206] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2156'.
[  162.793596][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.810688][T10210] siw: device registration error -23
[  162.862938][T10212] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2159'.
[  162.863045][T10218] netlink: 'syz.4.2163': attribute type 10 has an invalid length.
[  162.879837][T10218] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2163'.
[  162.894084][T10212] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10212 comm=syz.5.2159
[  162.998203][T10233] tipc: Failed to clone mcast rcv buffer
[  163.037417][T10235] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2168'.
[  163.054418][T10231] loop5: detected capacity change from 0 to 1024
[  163.063324][T10231] EXT4-fs: Ignoring removed nobh option
[  163.069011][T10231] EXT4-fs: Ignoring removed bh option
[  163.075573][T10235] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2168'.
[  163.088104][T10238] random: crng reseeded on system resumption
[  163.130268][T10231] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.267557][   T29] kauditd_printk_skb: 521 callbacks suppressed
[  163.267576][   T29] audit: type=1326 audit(163.246:14589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.5.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  163.298263][   T29] audit: type=1326 audit(163.246:14590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.5.2166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  163.327141][   T29] audit: type=1400 audit(163.306:14591): avc:  denied  { setopt } for  pid=10215 comm="syz.1.2162" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  163.328549][T10253] loop9: detected capacity change from 0 to 7
[  163.353413][   T29] audit: type=1400 audit(163.336:14592): avc:  denied  { read } for  pid=10215 comm="syz.1.2162" path="socket:[28406]" dev="sockfs" ino=28406 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  163.387781][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.418147][T10259] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2176'.
[  163.461496][T10259] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10259 comm=syz.5.2176
[  163.513406][   T29] audit: type=1326 audit(163.476:14593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10262 comm="syz.3.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  163.536643][   T29] audit: type=1326 audit(163.476:14594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10262 comm="syz.3.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  163.559704][   T29] audit: type=1326 audit(163.476:14595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10262 comm="syz.3.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  163.582774][   T29] audit: type=1326 audit(163.476:14596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10262 comm="syz.3.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  163.605749][   T29] audit: type=1326 audit(163.476:14597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10262 comm="syz.3.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  163.628751][   T29] audit: type=1326 audit(163.476:14598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10262 comm="syz.3.2178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  163.703950][T10272] vlan2: entered promiscuous mode
[  163.709077][T10272] erspan0: entered promiscuous mode
[  163.793980][T10277] lo speed is unknown, defaulting to 1000
[  163.864968][T10290] loop9: detected capacity change from 0 to 7
[  163.947594][T10294] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10294 comm=syz.5.2189
[  163.968714][T10299] loop2: detected capacity change from 0 to 128
[  163.997383][T10299] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  164.014913][T10299] netlink: 'syz.2.2191': attribute type 1 has an invalid length.
[  164.032773][ T3310] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.694142][T10326] loop4: detected capacity change from 0 to 1024
[  164.701772][T10326] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  164.712766][T10326] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  164.722612][T10326] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  164.733472][T10326] EXT4-fs (loop4): invalid journal inode
[  164.739287][T10326] EXT4-fs (loop4): can't get journal size
[  164.745591][T10326] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #3: comm syz.4.2200: blocks 2-2 from inode overlap system zone
[  164.760334][T10326] EXT4-fs (loop4): failed to initialize system zone (-117)
[  164.767727][T10326] EXT4-fs (loop4): mount failed
[  164.830491][T10334] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10334 comm=syz.3.2202
[  165.082909][T10358] tipc: Started in network mode
[  165.087931][T10358] tipc: Node identity 6273daaf54f1, cluster identity 4711
[  165.095156][T10358] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  165.666648][T10363] loop4: detected capacity change from 0 to 164
[  165.675159][T10363] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  165.688895][T10363] netlink: 'syz.4.2213': attribute type 10 has an invalid length.
[  165.700783][T10363] team0: Port device dummy0 added
[  165.733308][T10365] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10365 comm=syz.4.2214
[  165.765974][T10367] loop9: detected capacity change from 0 to 7
[  165.824103][T10371] loop5: detected capacity change from 0 to 512
[  165.833056][T10371] EXT4-fs: dax option not supported
[  165.858287][T10371] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  165.892753][T10372] loop4: detected capacity change from 0 to 1024
[  165.901562][T10372] EXT4-fs: Ignoring removed nobh option
[  165.907462][T10372] EXT4-fs: Ignoring removed bh option
[  165.944327][T10372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.101072][ T3407] tipc: Node number set to 914545327
[  166.110257][T10390] 9pnet_fd: Insufficient options for proto=fd
[  166.196727][T10416] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10416 comm=syz.5.2222
[  166.363138][T10430] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10430 comm=syz.3.2225
[  166.474003][T10369] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.2216: Allocating blocks 497-513 which overlap fs metadata
[  166.560500][T10399] EXT4-fs (loop4): pa ffff88810535f5b0: logic 564, phys. 321, len 12
[  166.568706][T10399] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  166.599469][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.334097][T10446] lo speed is unknown, defaulting to 1000
[  167.397191][T10446] loop2: detected capacity change from 0 to 1024
[  167.475285][T10448] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  167.555267][T10446] EXT4-fs (loop2): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.634579][T10448] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  167.728964][T10462] __nla_validate_parse: 14 callbacks suppressed
[  167.728981][T10462] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2234'.
[  167.755304][T10448] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  167.767302][T10467] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2236'.
[  167.781085][T10470] SELinux: syz.4.2237 (10470) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  167.799757][T10462] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2234'.
[  167.809314][T10467] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10467 comm=syz.5.2236
[  167.842790][T10474] SELinux: syz.4.2240 (10474) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  167.860769][T10476] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2239'.
[  167.875537][T10448] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  167.931229][T10448] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  167.954475][T10448] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  167.994786][T10448] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  168.015913][T10448] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  168.025104][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  168.230058][T10490] loop9: detected capacity change from 0 to 7
[  168.248999][T10491] lo speed is unknown, defaulting to 1000
[  168.334684][   T29] kauditd_printk_skb: 362 callbacks suppressed
[  168.334702][   T29] audit: type=1326 audit(168.316:14961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  168.397762][   T29] audit: type=1326 audit(168.346:14962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  168.420878][   T29] audit: type=1326 audit(168.356:14963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  168.444054][   T29] audit: type=1326 audit(168.356:14964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  168.467073][   T29] audit: type=1326 audit(168.356:14965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  168.490272][   T29] audit: type=1326 audit(168.356:14966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb44fcad310 code=0x7ffc0000
[  168.513283][   T29] audit: type=1326 audit(168.366:14967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb44fcb01d7 code=0x7ffc0000
[  168.536408][   T29] audit: type=1326 audit(168.366:14968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  168.559404][   T29] audit: type=1326 audit(168.366:14969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fb44fcb01d7 code=0x7ffc0000
[  168.582513][   T29] audit: type=1326 audit(168.366:14970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10492 comm="syz.5.2246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb44fcad60a code=0x7ffc0000
[  168.612771][T10494] loop5: detected capacity change from 0 to 1024
[  168.619843][T10494] EXT4-fs: Ignoring removed orlov option
[  168.644497][T10494] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.763937][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.783900][T10502] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2249'.
[  168.822849][T10506] FAULT_INJECTION: forcing a failure.
[  168.822849][T10506] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.836086][T10506] CPU: 0 UID: 0 PID: 10506 Comm: syz.5.2250 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  168.836121][T10506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.836135][T10506] Call Trace:
[  168.836173][T10506]  <TASK>
[  168.836182][T10506]  __dump_stack+0x1d/0x30
[  168.836232][T10506]  dump_stack_lvl+0xe8/0x140
[  168.836256][T10506]  dump_stack+0x15/0x1b
[  168.836274][T10506]  should_fail_ex+0x265/0x280
[  168.836312][T10506]  should_fail+0xb/0x20
[  168.836372][T10506]  should_fail_usercopy+0x1a/0x20
[  168.836422][T10506]  _copy_to_user+0x20/0xa0
[  168.836446][T10506]  simple_read_from_buffer+0xb5/0x130
[  168.836504][T10506]  proc_fail_nth_read+0x100/0x140
[  168.836544][T10506]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.836601][T10506]  vfs_read+0x19d/0x6f0
[  168.836637][T10506]  ? percpu_counter_add_batch+0xb6/0x130
[  168.836721][T10506]  ? __rcu_read_unlock+0x4f/0x70
[  168.836749][T10506]  ? __fget_files+0x184/0x1c0
[  168.836775][T10506]  ksys_read+0xda/0x1a0
[  168.836887][T10506]  __x64_sys_read+0x40/0x50
[  168.836916][T10506]  x64_sys_call+0x2d77/0x2fb0
[  168.836940][T10506]  do_syscall_64+0xd2/0x200
[  168.836963][T10506]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  168.836999][T10506]  ? clear_bhb_loop+0x40/0x90
[  168.837018][T10506]  ? clear_bhb_loop+0x40/0x90
[  168.837041][T10506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.837107][T10506] RIP: 0033:0x7fb44fcad3bc
[  168.837201][T10506] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  168.837219][T10506] RSP: 002b:00007fb44e317030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  168.837291][T10506] RAX: ffffffffffffffda RBX: 00007fb44fed5fa0 RCX: 00007fb44fcad3bc
[  168.837306][T10506] RDX: 000000000000000f RSI: 00007fb44e3170a0 RDI: 0000000000000004
[  168.837321][T10506] RBP: 00007fb44e317090 R08: 0000000000000000 R09: 0000000000000000
[  168.837336][T10506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.837351][T10506] R13: 0000000000000000 R14: 00007fb44fed5fa0 R15: 00007fff07667458
[  168.837371][T10506]  </TASK>
[  168.840217][T10502] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10502 comm=syz.3.2249
[  169.003328][T10514] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2253'.
[  169.113035][T10523] netlink: 332 bytes leftover after parsing attributes in process `syz.3.2256'.
[  169.154573][T10523] netlink: 'syz.3.2256': attribute type 9 has an invalid length.
[  169.162443][T10523] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2256'.
[  169.171717][T10523] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2256'.
[  169.306806][T10541] SELinux: syz.5.2263 (10541) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  169.475262][T10563] loop5: detected capacity change from 0 to 256
[  169.533273][T10570] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2269'.
[  169.614831][T10577] loop5: detected capacity change from 0 to 2048
[  169.684414][T10579] loop4: detected capacity change from 0 to 128
[  169.695146][T10579] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.731960][T10579] lo speed is unknown, defaulting to 1000
[  169.882251][ T3487]  loop5: p1 < > p4
[  169.899237][ T3487] loop5: p4 size 8388608 extends beyond EOD, truncated
[  170.350528][T10590] loop3: detected capacity change from 0 to 1024
[  170.401762][T10590] EXT4-fs: Ignoring removed nobh option
[  170.407428][T10590] EXT4-fs: Ignoring removed bh option
[  170.503096][T10590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.605977][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.640508][T10577]  loop5: p1 < > p4
[  170.668770][T10577] loop5: p4 size 8388608 extends beyond EOD, truncated
[  170.818543][ T3487] udevd[3487]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  170.831871][ T3728] udevd[3728]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  171.205046][T10619] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.263174][T10625] loop2: detected capacity change from 0 to 164
[  171.312231][T10625] iso9660: Unknown parameter '?'
[  171.365053][T10619] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.485666][T10619] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.644687][T10619] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  171.864309][T10619] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  171.923614][T10619] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  171.935897][T10619] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  171.951782][T10619] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  172.283338][T10662] 9pnet: p9_errstr2errno: server reported unknown error 
[  172.378509][T10666] loop3: detected capacity change from 0 to 128
[  172.426921][T10666] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  172.524245][ T3305] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  172.783919][T10686] FAULT_INJECTION: forcing a failure.
[  172.783919][T10686] name failslab, interval 1, probability 0, space 0, times 0
[  172.796693][T10686] CPU: 1 UID: 0 PID: 10686 Comm: syz.2.2306 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  172.796729][T10686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.796749][T10686] Call Trace:
[  172.796754][T10686]  <TASK>
[  172.796760][T10686]  __dump_stack+0x1d/0x30
[  172.796781][T10686]  dump_stack_lvl+0xe8/0x140
[  172.796803][T10686]  dump_stack+0x15/0x1b
[  172.796824][T10686]  should_fail_ex+0x265/0x280
[  172.796910][T10686]  should_failslab+0x8c/0xb0
[  172.797003][T10686]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  172.797038][T10686]  ? sidtab_sid2str_get+0xa0/0x130
[  172.797093][T10686]  kmemdup_noprof+0x2b/0x70
[  172.797120][T10686]  sidtab_sid2str_get+0xa0/0x130
[  172.797149][T10686]  security_sid_to_context_core+0x1eb/0x2e0
[  172.797207][T10686]  security_sid_to_context+0x27/0x40
[  172.797227][T10686]  selinux_lsmprop_to_secctx+0x67/0xf0
[  172.797250][T10686]  security_lsmprop_to_secctx+0x43/0x80
[  172.797287][T10686]  audit_log_task_context+0x77/0x190
[  172.797354][T10686]  audit_log_task+0xf4/0x250
[  172.797394][T10686]  audit_seccomp+0x61/0x100
[  172.797436][T10686]  ? __seccomp_filter+0x68c/0x10d0
[  172.797522][T10686]  __seccomp_filter+0x69d/0x10d0
[  172.797550][T10686]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  172.797645][T10686]  ? vfs_write+0x75e/0x8e0
[  172.797727][T10686]  __secure_computing+0x82/0x150
[  172.797746][T10686]  syscall_trace_enter+0xcf/0x1e0
[  172.797770][T10686]  do_syscall_64+0xac/0x200
[  172.797792][T10686]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  172.797885][T10686]  ? clear_bhb_loop+0x40/0x90
[  172.797904][T10686]  ? clear_bhb_loop+0x40/0x90
[  172.797924][T10686]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.797948][T10686] RIP: 0033:0x7f0ab5a8e9a9
[  172.797966][T10686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.797991][T10686] RSP: 002b:00007f0ab40f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000112
[  172.798011][T10686] RAX: ffffffffffffffda RBX: 00007f0ab5cb5fa0 RCX: 00007f0ab5a8e9a9
[  172.798023][T10686] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  172.798034][T10686] RBP: 00007f0ab40f7090 R08: 0000000000000000 R09: 0000000000000000
[  172.798048][T10686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.798109][T10686] R13: 0000000000000000 R14: 00007f0ab5cb5fa0 R15: 00007ffcaa518b18
[  172.798127][T10686]  </TASK>
[  173.542762][   T29] kauditd_printk_skb: 356 callbacks suppressed
[  173.542779][   T29] audit: type=1400 audit(173.526:15326): avc:  denied  { write } for  pid=10711 comm="syz.3.2315" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  173.575359][T10712] loop3: detected capacity change from 0 to 512
[  173.595253][T10712] ext4: Unknown parameter 'noacl'
[  173.608936][T10714] loop5: detected capacity change from 0 to 1024
[  173.635170][T10714] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  173.693575][T10714] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  173.775964][   T29] audit: type=1400 audit(173.756:15327): avc:  denied  { name_connect } for  pid=10720 comm="syz.5.2318" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  174.015860][   T29] audit: type=1400 audit(173.996:15328): avc:  denied  { setopt } for  pid=10731 comm="syz.5.2322" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  174.057539][T10735] lo speed is unknown, defaulting to 1000
[  174.070580][T10736] loop3: detected capacity change from 0 to 2048
[  174.082057][T10737] blktrace: Concurrent blktraces are not allowed on sg0
[  174.089215][   T29] audit: type=1400 audit(174.066:15329): avc:  denied  { append } for  pid=10731 comm="syz.5.2322" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  174.112832][   T29] audit: type=1400 audit(174.066:15330): avc:  denied  { open } for  pid=10731 comm="syz.5.2322" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  174.136520][   T29] audit: type=1400 audit(174.066:15331): avc:  denied  { ioctl } for  pid=10731 comm="syz.5.2322" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  174.291327][ T3314] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  174.307111][T10736] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.362448][T10736] loop9: detected capacity change from 0 to 7
[  174.397585][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.414568][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.422579][ T3487]  loop9: unable to read partition table
[  174.422919][   T29] audit: type=1400 audit(174.396:15332): avc:  denied  { read write } for  pid=10733 comm="syz.3.2323" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  174.450768][   T29] audit: type=1400 audit(174.396:15333): avc:  denied  { open } for  pid=10733 comm="syz.3.2323" path="/455/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  174.491531][T10736] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.500523][T10752] loop2: detected capacity change from 0 to 1024
[  174.510355][T10752] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  174.532256][T10752] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  174.579351][T10736] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.587358][T10736]  loop9: unable to read partition table
[  174.597094][T10748] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  174.605630][   T29] audit: type=1326 audit(174.586:15334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10747 comm="syz.5.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  174.628745][   T29] audit: type=1326 audit(174.586:15335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10747 comm="syz.5.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fb44fcae9a9 code=0x7ffc0000
[  174.633250][T10736] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  174.633250][T10736] 
) failed (rc=-5)
[  174.665761][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.675250][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.683993][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.729883][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.745595][ T3487] Buffer I/O error on dev loop9, logical block 0, async page read
[  174.856735][T10777] __nla_validate_parse: 1 callbacks suppressed
[  174.856749][T10777] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2335'.
[  174.881941][T10777] loop2: detected capacity change from 0 to 1764
[  174.915818][T10780] loop2: detected capacity change from 0 to 1024
[  174.935505][T10780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.992318][T10780] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.2336: inode #2914228195: comm syz.2.2336: iget: illegal inode #
[  175.067361][T10780] EXT4-fs (loop2): Remounting filesystem read-only
[  175.080683][T10780] EXT4-fs warning (device loop2): ext4_xattr_block_set:2190: inode #19: comm syz.2.2336: dec ref error=-30
[  175.194435][T10786] team0 (unregistering): Port device team_slave_0 removed
[  175.203458][ T3310] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.227353][T10786] team0 (unregistering): Port device team_slave_1 removed
[  175.255445][T10789] loop4: detected capacity change from 0 to 1024
[  175.263959][T10789] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  175.325604][T10789] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  175.479008][T10812] loop4: detected capacity change from 0 to 512
[  175.486786][T10812] ext4: Unknown parameter 'nouser_xattr'
[  175.664251][T10812] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2346'.
[  175.694776][T10826] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  175.707565][ T3407] Process accounting resumed
[  175.718294][T10734] syz.3.2323 (10734) used greatest stack depth: 5880 bytes left
[  175.742707][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.905159][T10857] loop4: detected capacity change from 0 to 512
[  175.912984][T10857] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  175.924270][T10857] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #17: comm syz.4.2363: iget: bad extra_isize 1568 (inode size 256)
[  175.937706][T10857] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2363: couldn't read orphan inode 17 (err -117)
[  175.950457][T10857] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.977735][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.999986][T10861] loop4: detected capacity change from 0 to 1024
[  176.007056][T10861] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  176.017538][T10861] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  176.728494][T10889] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  176.771984][T10893] lo speed is unknown, defaulting to 1000
[  176.859039][T10899] netlink: 404 bytes leftover after parsing attributes in process `syz.5.2377'.
[  177.145817][T10917] loop3: detected capacity change from 0 to 1024
[  177.152757][T10917] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  177.163472][T10917] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  177.252000][T10923] loop3: detected capacity change from 0 to 8192
[  177.531781][T10928] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2391'.
[  177.928778][T10949] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  178.226661][T10973] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2407'.
[  178.313916][T10982] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  178.517774][T10995] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2416'.
[  178.536461][T10995] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=10995 comm=syz.2.2416
[  178.553802][   T29] kauditd_printk_skb: 846 callbacks suppressed
[  178.553815][   T29] audit: type=1326 audit(178.536:16182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f737b1e5967 code=0x7ffc0000
[  178.582979][   T29] audit: type=1326 audit(178.536:16183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f737b18ab89 code=0x7ffc0000
[  178.605951][   T29] audit: type=1326 audit(178.536:16184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  178.650283][   T29] audit: type=1326 audit(178.566:16185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f737b1e5967 code=0x7ffc0000
[  178.671145][T11007] loop4: detected capacity change from 0 to 1024
[  178.673552][   T29] audit: type=1326 audit(178.566:16186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f737b18ab89 code=0x7ffc0000
[  178.680442][T11007] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  178.702493][   T29] audit: type=1326 audit(178.566:16187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  178.702532][   T29] audit: type=1326 audit(178.566:16188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f737b1e5967 code=0x7ffc0000
[  178.702614][   T29] audit: type=1326 audit(178.566:16189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f737b18ab89 code=0x7ffc0000
[  178.754735][T11007] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  178.756736][   T29] audit: type=1326 audit(178.566:16190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  178.812544][   T29] audit: type=1326 audit(178.576:16191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10989 comm="syz.3.2414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f737b1e5967 code=0x7ffc0000
[  179.373575][T11047] loop5: detected capacity change from 0 to 512
[  179.380427][T11047] ext4: Unknown parameter 'noacl'
[  180.540842][T11106] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65128 sclass=netlink_route_socket pid=11106 comm=syz.1.2457
[  180.560463][T11108] loop5: detected capacity change from 0 to 1024
[  180.589683][T11108] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040e01c, mo2=0002]
[  180.600887][T11108] System zones: 0-1, 3-36
[  180.609465][T11108] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.643294][T11117] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  180.858373][T11145] lo speed is unknown, defaulting to 1000
[  180.907603][T11145] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11145 comm=syz.1.2471
[  180.945295][T11148] x_tables: duplicate underflow at hook 1
[  181.057065][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.090020][T11154] loop5: detected capacity change from 0 to 1024
[  181.097152][T11154] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  181.107843][T11154] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  181.268808][T11174] loop5: detected capacity change from 0 to 512
[  181.276010][T11174] ext4: Unknown parameter 'noacl'
[  181.303057][T11176] loop9: detected capacity change from 0 to 7
[  181.345909][T11182] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  181.546876][T11205] loop9: detected capacity change from 0 to 7
[  181.583816][T11208] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  181.604102][T11210] SELinux: syz.5.2500 (11210) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  181.737721][T11239] loop9: detected capacity change from 0 to 7
[  181.749582][T11241] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  181.829635][T11249] loop5: detected capacity change from 0 to 1024
[  181.855926][T11249] EXT4-fs: Ignoring removed nobh option
[  181.861807][T11249] EXT4-fs: Ignoring removed bh option
[  181.915310][T11249] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.022204][T11276] loop9: detected capacity change from 0 to 7
[  182.157870][T11288] SELinux: syz.2.2527 (11288) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  182.273728][T11237] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.2509: Allocating blocks 497-513 which overlap fs metadata
[  182.298968][T11295] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2529'.
[  182.338384][T11298] bridge: RTM_NEWNEIGH bridge0 with NTF_USE is not supported
[  182.352682][T11299] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 3, id = 0
[  182.373471][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.888599][T11344] lo speed is unknown, defaulting to 1000
[  183.006787][T11344] netlink: 'syz.1.2545': attribute type 2 has an invalid length.
[  183.200486][T11371] netlink: 'syz.1.2552': attribute type 30 has an invalid length.
[  183.608921][   T29] kauditd_printk_skb: 1013 callbacks suppressed
[  183.608950][   T29] audit: type=1326 audit(183.586:17205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.640004][   T29] audit: type=1326 audit(183.586:17206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.663392][   T29] audit: type=1326 audit(183.586:17207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.667724][T11400] loop9: detected capacity change from 0 to 7
[  183.686710][   T29] audit: type=1326 audit(183.586:17208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.715867][   T29] audit: type=1326 audit(183.596:17209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.738976][   T29] audit: type=1326 audit(183.596:17210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.762127][   T29] audit: type=1326 audit(183.596:17211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.785529][   T29] audit: type=1326 audit(183.596:17212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.808760][   T29] audit: type=1326 audit(183.596:17213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  183.832140][   T29] audit: type=1326 audit(183.596:17214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11396 comm="syz.3.2563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f737b1ee9a9 code=0x7ffc0000
[  184.134668][T11441] pim6reg: entered allmulticast mode
[  184.172501][T11441] pim6reg: left allmulticast mode
[  184.228076][T11443] lo speed is unknown, defaulting to 1000
[  184.235001][T11443] lo speed is unknown, defaulting to 1000
[  184.241874][T11443] lo speed is unknown, defaulting to 1000
[  184.250573][T11443] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  184.273390][T11443] lo speed is unknown, defaulting to 1000
[  184.280074][T11443] lo speed is unknown, defaulting to 1000
[  184.287323][T11443] lo speed is unknown, defaulting to 1000
[  184.295109][T11443] lo speed is unknown, defaulting to 1000
[  184.303198][T11443] lo speed is unknown, defaulting to 1000
[  184.310446][T11443] lo speed is unknown, defaulting to 1000
[  184.375988][T11446] lo speed is unknown, defaulting to 1000
[  184.407428][T11446] lo speed is unknown, defaulting to 1000
[  184.415569][T11454] SELinux: syz.5.2581 (11454) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  184.630830][T11471] loop9: detected capacity change from 0 to 7
[  184.713585][T11477] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2590'.
[  184.727669][T11477] netlink: 132 bytes leftover after parsing attributes in process `syz.5.2590'.
[  184.819862][T11485] SELinux: syz.5.2592 (11485) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  184.876579][T11488] lo speed is unknown, defaulting to 1000
[  184.902963][T11488] lo speed is unknown, defaulting to 1000
[  184.950715][T11497] loop9: detected capacity change from 0 to 7
[  184.958519][T11495] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  185.043626][T11488] netlink: 404 bytes leftover after parsing attributes in process `syz.2.2594'.
[  185.363012][T11523] loop5: detected capacity change from 0 to 1024
[  185.390126][T11523] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[  185.427018][T11523] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@
) failed with errno=-22
[  185.471539][T11539] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.552635][T11539] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.644066][T11539] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.733907][T11539] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.777089][T11550] loop5: detected capacity change from 0 to 1024
[  185.805612][T11539] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.817892][T11539] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.827563][T11550] EXT4-fs: Ignoring removed nobh option
[  185.833317][T11550] EXT4-fs: Ignoring removed bh option
[  185.843073][T11539] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.855820][T11539] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.923032][T11550] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.040426][T11556] ==================================================================
[  186.048556][T11556] BUG: KCSAN: data-race in file_update_time / inode_set_ctime_current
[  186.056752][T11556] 
[  186.059105][T11556] write to 0xffff888106eef140 of 8 bytes by task 11549 on cpu 0:
[  186.066845][T11556]  inode_set_ctime_current+0x533/0x770
[  186.072338][T11556]  inode_update_timestamps+0x84/0x270
[  186.077739][T11556]  file_update_time+0x20e/0x2b0
[  186.082632][T11556]  ext4_page_mkwrite+0x18b/0xba0
[  186.087628][T11556]  do_wp_page+0xe5a/0x2400
[  186.092080][T11556]  handle_mm_fault+0x77d/0x2be0
[  186.096963][T11556]  do_user_addr_fault+0x636/0x1090
[  186.102129][T11556]  exc_page_fault+0x62/0xa0
[  186.106678][T11556]  asm_exc_page_fault+0x26/0x30
[  186.111543][T11556] 
[  186.113873][T11556] read to 0xffff888106eef140 of 8 bytes by task 11556 on cpu 1:
[  186.121628][T11556]  file_update_time+0xca/0x2b0
[  186.126452][T11556]  ext4_page_mkwrite+0x18b/0xba0
[  186.131428][T11556]  handle_mm_fault+0x15cb/0x2be0
[  186.136391][T11556]  do_user_addr_fault+0x793/0x1090
[  186.141527][T11556]  exc_page_fault+0x62/0xa0
[  186.146052][T11556]  asm_exc_page_fault+0x26/0x30
[  186.150925][T11556]  rep_movs_alternative+0x4a/0x90
[  186.155993][T11556]  _copy_to_user+0x7c/0xa0
[  186.160467][T11556]  rng_dev_read+0x3ef/0x740
[  186.165022][T11556]  vfs_readv+0x3f8/0x690
[  186.169282][T11556]  __x64_sys_preadv+0xfd/0x1c0
[  186.174062][T11556]  x64_sys_call+0x1503/0x2fb0
[  186.178755][T11556]  do_syscall_64+0xd2/0x200
[  186.183274][T11556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.189196][T11556] 
[  186.191525][T11556] value changed: 0x00000000000000b9 -> 0x00000000000000ba
[  186.198641][T11556] 
[  186.200978][T11556] Reported by Kernel Concurrency Sanitizer on:
[  186.207145][T11556] CPU: 1 UID: 0 PID: 11556 Comm: syz.5.2620 Not tainted 6.16.0-rc6-syzkaller-00279-gbf61759db409 #0 PREEMPT(voluntary) 
[  186.219660][T11556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.229743][T11556] ==================================================================
[  186.416436][T11556] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.2620: Allocating blocks 497-513 which overlap fs metadata
[  186.447051][T11549] EXT4-fs (loop5): pa ffff888106d45d90: logic 560, phys. 433, len 5
[  186.455203][T11549] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  186.486091][ T7164] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.