last executing test programs:

26.892078519s ago: executing program 1 (id=2):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x1}, 0x18)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000300), &(0x7f0000000280)='system_u:object_r:hwdata_t:s0\x00', 0x1e, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2}, &(0x7f0000000180), 0x0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDSKBENT(r4, 0x4b47, &(0x7f0000000500)={0x2, 0xfc, 0x8})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
readahead(r5, 0x401000000, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x18)
r7 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x14806, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0x0, 0x700, &(0x7f0000000a40)="$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")
statx(r7, &(0x7f0000000040)='./file1\x00', 0x2000, 0x400, &(0x7f00000002c0))

26.689739642s ago: executing program 1 (id=6):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000001e000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0000e018"], 0x1c}}, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x803341)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffb, 0x6, 0x6, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000000)="0d0087ca01a5", 0x0, 0x400, 0x20004, 0x1, 0x0})

26.621984803s ago: executing program 1 (id=7):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000080)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}]}, 0x2, 0x53a, &(0x7f0000000c80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x40c80)
r2 = creat(&(0x7f0000000140)='./file0\x00', 0x82)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, &(0x7f00000002c0)) (async)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, &(0x7f00000002c0))
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x7}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x5, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x885, 0x0, 0x0, 0x0, 0x7}, [@alu={0x4, 0x1, 0x7, 0xa, 0xa, 0xffffffffffffffd9, 0xfffffffffffffff0}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}]}, &(0x7f0000000240)='syzkaller\x00', 0x10001, 0x19, &(0x7f0000000280)=""/25, 0x82200, 0x0, '\x00', 0x0, 0x25, r2, 0x8, &(0x7f0000000380)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x1, 0xd, 0x67a, 0xc}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000400)=[{0x4, 0x2, 0x1, 0x4}], 0x10, 0x200}, 0x94)
socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r5, {0xfff2, 0xb}, {}, {0xfffd}}}, 0x24}}, 0x80) (async)
sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r5, {0xfff2, 0xb}, {}, {0xfffd}}}, 0x24}}, 0x80)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000080), &(0x7f0000000340)='%pS    \x00'}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
rmdir(&(0x7f0000000180)='./file0\x00')

24.711613532s ago: executing program 1 (id=28):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRES32], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r2=>r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) (async)
r3 = syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x81, 0x11f4, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async, rerun: 32)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = memfd_create(&(0x7f00000001c0)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5) (async)
r6 = socket$key(0xf, 0x3, 0x2) (async)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) (async)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0)
sendmmsg(r6, &(0x7f0000000180), 0x3ef, 0x0)
fsetxattr$security_selinux(r5, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50) (async)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, &(0x7f0000000c40)={0xfffffff8, {{0x2, 0x4e22, @loopback}}}, 0x88) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) (async, rerun: 32)
r7 = socket$inet(0x2, 0x2, 0x0) (rerun: 32)
setsockopt$inet_msfilter(r7, 0x0, 0x29, 0x0, 0x1c)
r8 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r8, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40) (async, rerun: 32)
r9 = socket$netlink(0x10, 0x3, 0x0) (rerun: 32)
writev(r9, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) (async)
writev(r9, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_msfilter(r8, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f00"], 0x1c) (async, rerun: 32)
close(r1) (async, rerun: 32)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYRES8=r2, @ANYRES32=r4, @ANYRES8=r3, @ANYRESOCT=0x0, @ANYRESHEX=r7, @ANYRESHEX=r0, @ANYRES16=0x0, @ANYBLOB="5fd8df97aa053a30dd1609b1c4d8ea70984e1b1d47c59032d9ef5fe096385a98d740b7c16268b6b637f042c30db2857594871940d1c7b9a0e12543713474f378ae06a94a06e769517140"], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x20f004, &(0x7f0000000380), 0x1, 0x4a3, &(0x7f0000000d00)="$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")

23.694757608s ago: executing program 1 (id=39):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f0000000380)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@quota}, {@resuid}, {@lazytime}]}, 0x1, 0x443, &(0x7f0000001040)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x8)
r1 = open(0x0, 0x14507e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000001880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000200000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
io_setup(0x7d, &(0x7f0000000600)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xfffffe10, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

23.679112668s ago: executing program 32 (id=39):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f0000000380)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@quota}, {@resuid}, {@lazytime}]}, 0x1, 0x443, &(0x7f0000001040)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x8)
r1 = open(0x0, 0x14507e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000001880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000200000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
io_setup(0x7d, &(0x7f0000000600)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xfffffe10, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

2.570189541s ago: executing program 4 (id=355):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='io_uring_cqring_wait\x00', r2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x4006, &(0x7f0000000380)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@noblock_validity}, {@quota}, {@debug}, {@lazytime}]}, 0xfe, 0x44a, &(0x7f0000000780)="$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")
ftruncate(0xffffffffffffffff, 0x3)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000400)='./file0/file0\x00', 0x8a, &(0x7f00000001c0)={[{@usrjquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@journal_checksum}, {@minixdf}, {@grpjquota}, {@noinit_itable}]}, 0x1, 0x463, &(0x7f0000001040)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='.\x00', 0xe0, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@uname={'uname', 0x3d, '\xd0\xae\xde\xc1\xaa \xff\xd8\x1d\x1b\xf8\x93)!|\xb0X\xa3\x96\xed\xa2\xab@\xa2m\x93\xdd\b<\x00t\xdc\xabl\xab!\xae\x16\xc4\xcd\xf9{\xdc5_;A\xd2{eC\x014\\\xb3\xc4\xce\xc3yS2-\x01\xbe\xaarW\x96O\xd3\x0f\xe2\xd7/\x17\x1d\xa7.8\x9f8-\xea<\x8d\x91\x90j\xea\xd5\xd5\xae\xcc\xc0\x97\xef\x10\x92\xea\x98|+\x00\x00\x00\x00\x00\x00\x00\x00'}}]}})
pipe2(&(0x7f0000001cc0), 0x800) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='io_uring_cqring_wait\x00', r2}, 0x18) (async)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x4006, &(0x7f0000000380)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@noblock_validity}, {@quota}, {@debug}, {@lazytime}]}, 0xfe, 0x44a, &(0x7f0000000780)="$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") (async)
ftruncate(0xffffffffffffffff, 0x3) (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000400)='./file0/file0\x00', 0x8a, &(0x7f00000001c0)={[{@usrjquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@journal_checksum}, {@minixdf}, {@grpjquota}, {@noinit_itable}]}, 0x1, 0x463, &(0x7f0000001040)="$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") (async)
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='.\x00', 0xe0, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000)) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@uname={'uname', 0x3d, '\xd0\xae\xde\xc1\xaa \xff\xd8\x1d\x1b\xf8\x93)!|\xb0X\xa3\x96\xed\xa2\xab@\xa2m\x93\xdd\b<\x00t\xdc\xabl\xab!\xae\x16\xc4\xcd\xf9{\xdc5_;A\xd2{eC\x014\\\xb3\xc4\xce\xc3yS2-\x01\xbe\xaarW\x96O\xd3\x0f\xe2\xd7/\x17\x1d\xa7.8\x9f8-\xea<\x8d\x91\x90j\xea\xd5\xd5\xae\xcc\xc0\x97\xef\x10\x92\xea\x98|+\x00\x00\x00\x00\x00\x00\x00\x00'}}]}}) (async)

2.169230597s ago: executing program 5 (id=362):
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1b, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="184c9dd4918262450000000000000000000000000000b7080000000000007b8af8ff0000008a00b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffd3a400000000000007140000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7040000080000008500000095000000950000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a32"], 0x1ec}}, 0x0)

2.088387088s ago: executing program 4 (id=364):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000003780)=""/4090, 0xc26bfe8e8f6baca8}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid}, {@init_itable}, {@minixdf}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x10)
move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x11c, 0x0, 0x0, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2}, 0x18)
open_by_handle_at(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="000000000000000000000000e100200000"], 0x36f0516f)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r5, 0x894b, &(0x7f0000000b00))
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYRESOCT=r0], &(0x7f0000000380)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
memfd_create(0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r9)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r10, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)

2.086428208s ago: executing program 5 (id=365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002680)=ANY=[@ANYBLOB="0600000004000000080000000600000010000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x50)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000180)={@rand_addr, @broadcast, <r1=>0x0}, &(0x7f0000000200)=0xc)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000940)={0xffffffffffffffff, 0xe0, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000ac0)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000540)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r2=>0x0, 0xb4, &(0x7f00000006c0)=[{}], 0x8, 0x10, &(0x7f0000000700), &(0x7f00000007c0), 0x8, 0x25, 0x8, 0x4, &(0x7f0000000800)}}, 0x10)
r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000002240)={0x8, 0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000500000000000000fc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000a465f8ff0800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000068b330000800000018290000", @ANYRES32=r0, @ANYBLOB="00000000ff018000ff110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000018160000", @ANYRES32=r0, @ANYBLOB="000000000000000018350000020000000000000000000000186900000a00000000000000000a000018590000100000000000000000000000bf91000000000000b7020000010000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x1df, 0xd7, &(0x7f00000005c0)=""/215, 0x41000, 0x0, '\x00', r1, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x7, 0x1}, 0x8, 0x10, 0x0, 0x0, r2, r3, 0x2, &(0x7f0000000a40)=[r0, r0, r0, r0], &(0x7f0000000a80)=[{0x0, 0x1, 0x5}, {0x0, 0x2, 0x6}], 0x10, 0x5}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000089ee70000400"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000030000009500000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001fc0)={r6, 0x0, 0xd2, 0x81, &(0x7f0000000cc0)="ce04e52e7f45eff4f0b7c6a366eb2e9737cce1a902ea62979075fd66cd7416a74dfdf7b0f59c3b35c1ede6671dd95f96e6dddd72ee3d6f118a21caf2cebbe2d67845dc0800edc7a66e96dc96eb2ab62d1516cabd1b0f40cba80a517e18863813edf40279706c1595572fd8d94a10f3b645628169775f9aa8a1c310233246da23bc704e9d9936d80a8e4bfb31221bafca8256f497ebd8fd9fbc7399bbe1d6f6d076cfe8cee406e85d1ee891d9df83a949056dbf7d8c3f8dba6f2c6c4887ad32d5f58a18609fb06b3becad7fef8d54c6a09894", &(0x7f0000000dc0)=""/129, 0x8, 0x0, 0x78, 0x78, &(0x7f0000001ec0)="749b01e1936a52cdcd9f55860dc14bfbcf588b9fb1c31e07f625f66372f25a9d0f8ce0e28f442e87d6945c6881be5baae7c536c7832d270b983e7bab5b4ba8e52acac585b22635603494e2497f9643c819e986673615750265f95f0ea2c89bc55f0805e0952b2f61b274e49f6a971e52da56fa5c7b840b2b", &(0x7f0000001f40)="36924fa87432690e19c825734c797f728f60165ec14261e23052aaecd02f90633f0f695b4b500511e82640c3c20363ee8c46d5225c41c7e8002b1e7b283d73836354b5eeab0cf1d0e3911ffceba84bc7d8f0026e860626a2b2df5b181e991eb8e203d21c207ee5f48e0080f2f2269f192a93415042c6463c", 0x4, 0x0, 0x1}, 0x50)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f0000000c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000c40)={&(0x7f0000002580)=ANY=[@ANYBLOB="4f000000cba916f5cb1da0001e4b204fe88a7e149a6d1692fe134c8bc338d9dd83dbea7060fed4eb8c3a688c56c52874d1b8c50e83194931cd6066c1ee392229203276cfce5f7941887ab3d78e66e300597efd4db69aee3be055f8084fc12c5b63aeab718f20034d769f57cccbc744", @ANYRES16=r5, @ANYBLOB="00082abd7000ffdbdf2515000000200001801400020076657468305f746f5f687372000000000800030000000000340001801400020076657468305f746f5f7465616d000000080003000100000014000200766c616e3100"/98], 0x68}, 0x1, 0x0, 0x0, 0x40044d5}, 0x4000000)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r7, &(0x7f0000000440), 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000024c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r8}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x6}, {0x0, [0x0, 0x61, 0x0, 0x30]}}, &(0x7f0000000ec0)=""/4096, 0x1e, 0x1000, 0x0, 0xffffffff}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181014100000000010000000000000e000a000f00000002800200121f", 0x2e}], 0x1}, 0x0)
listen(r7, 0x0)
r10 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r10, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r10, &(0x7f0000000580)=[{&(0x7f0000001180)="93", 0x1}], 0x1)
r11 = accept4$unix(r7, 0x0, 0x0, 0x80800)
recvmsg(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000740)=""/70, 0x46}], 0x1}, 0x4c2103a0)
r12 = syz_clone(0xd9299000, &(0x7f0000002380)="efe1", 0x2, &(0x7f0000002040), &(0x7f0000002080), &(0x7f00000020c0)="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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000002340)={&(0x7f0000002200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002300)={&(0x7f00000023c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0xffffffffffffff79}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
ioctl$BINDER_FREEZE(r3, 0x400c620e, &(0x7f00000021c0)={r12, 0x0, 0xbf5})

1.92185669s ago: executing program 5 (id=368):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000002780)=""/4096, 0xc26bfe8e8f6baca8}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x34}, 0x10)

1.790220332s ago: executing program 4 (id=372):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000500)='kfree\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r2)
close(0xffffffffffffffff)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x12, 0x9, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x4}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000040), 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000004c0)={r5, &(0x7f00000002c0), &(0x7f0000000300)=@tcp6=r3, 0x1}, 0x20)
close(r2)

1.788054412s ago: executing program 4 (id=373):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000074"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d)
ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6)
unshare(0x40000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x80, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x3c, 0x12, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x8}]}}}, {0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc8}}, 0x20050800)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000d80)={[{@mblk_io_submit}, {@dioread_nolock}, {@bh}, {@errors_continue}, {@nouid32}, {@quota}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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")
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000200))
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0x208e24b)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

1.728952613s ago: executing program 5 (id=374):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4)
syz_mount_image$msdos(&(0x7f00000011c0), &(0x7f0000001200)='./file0\x00', 0x2808480, &(0x7f0000000000)={[{@dots}, {@fat=@dos1xfloppy}, {@nodots}, {@fat=@dos1xfloppy}]}, 0x1, 0x11e9, &(0x7f0000002440)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff8003}, 0x94)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
creat(0x0, 0x0)
r1 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10b8}, 0xff00)
socket$kcm(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x0, 0x400007, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x50)
sendmsg$kcm(r1, &(0x7f0000002dc0)={&(0x7f0000001580)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xfffffffffffffffd}, 0x1, 0x5c4}, 0x80, &(0x7f00000029c0)=[{&(0x7f0000001480)="89", 0x1}], 0x1}, 0xc9)
open(0x0, 0x429e2, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x5, 0xa5d4}, 0x14c58, 0x5, 0x0, 0x1, 0x6, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x43, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
pread64(r6, &(0x7f0000001600)=""/196, 0xc4, 0x0)
set_tid_address(0x0)
r7 = io_uring_setup(0x2a59, &(0x7f0000000080)={0x0, 0x69be, 0x400})
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac14140f00000000000000001400020002000000ffffff53a2513743897e44000d0001007564703aa3"], 0x54}}, 0x0)

1.169459932s ago: executing program 0 (id=375):
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x1b, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="184c9dd4918262450000000000000000000000000000b7080000000000007b8af8ff0000008a00b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffd3a400000000000007140000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7040000080000008500000095000000950000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000500000ac4010000060a0b040000000000000000020000004c000480340001800b000100746172676574000024000280090001004d41524b000000000c00030002b51112d439c5920800024000000002140001800b0001006c6f6f6b75700000040002800900010073797a30000000000900020073797a32"], 0x1ec}}, 0x0)

1.026109444s ago: executing program 0 (id=378):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x0, 0x40000000, 0x5, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2, 0x0, 0x100}, 0x18)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000000c0)="d800000018008103e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901ac040098007f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f00000e970300"/216, 0xd8}], 0x1}, 0x48002)

992.955345ms ago: executing program 5 (id=379):
r0 = syz_open_dev$usbfs(0x0, 0x76, 0x103381)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000200)={[{@delalloc}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x10002}}, {@dioread_lock}, {@data_err_ignore}, {@mb_optimize_scan}, {@dioread_nolock}, {@nobarrier}, {@abort}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@norecovery}, {@errors_remount}]}, 0x1, 0x570, &(0x7f00000019c0)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c000006000000000000f183850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x8008551d, &(0x7f0000000180)=ANY=[@ANYBLOB="0ae500000100000081"])

989.459935ms ago: executing program 2 (id=380):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[], 0xff2e)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1004}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x4e, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0)
close(r2)
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000480)={0x88, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bridge0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_team\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x88}}, 0x20000000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)

935.712026ms ago: executing program 0 (id=381):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10e, &(0x7f0000000280)={[{@init_itable_val={'init_itable', 0x3d, 0x957}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@stripe={'stripe', 0x3d, 0x8}}, {@orlov}, {@errors_remount}]}, 0x4, 0x46b, &(0x7f00000009c0)="$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")
timer_create(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[], 0x48)
lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0) (fail_nth: 17)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0xa4000960)

913.660196ms ago: executing program 2 (id=382):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1) (async, rerun: 64)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (rerun: 64)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
ioctl$TUNSETOFFLOAD(r1, 0x400454ce, 0x6) (async)
r2 = epoll_create1(0x80000) (async)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f00000000c0)={0xe000001a}) (async)
read$char_usb(r3, &(0x7f0000001980)=""/179, 0xb3) (async)
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000000)={0x10}) (async, rerun: 64)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (rerun: 64)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYRES8=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xa, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18) (async)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newlink={0x180, 0x10, 0x1, 0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x41101}, [@IFLA_VF_PORTS={0x160, 0x18, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "be438fa3ca12ded2955ede1150d92e35"}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "ea6b75623564463177b2b5f54ef8701f"}, @IFLA_PORT_PROFILE={0x5, 0x2, '\x00'}]}, {0x44, 0x1, 0x0, 0x1, [@IFLA_PORT_VF={0x8, 0x1, 0x8c3}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x80}, @IFLA_PORT_VF={0x8, 0x1, 0x4}, @IFLA_PORT_VF={0x8, 0x1, 0x9}, @IFLA_PORT_PROFILE={0xf, 0x2, '\b\x00\xc8\xed\x95\xcf\x9fp\r\x82\xc0'}, @IFLA_PORT_VF={0x8, 0x1, 0xffffffff}, @IFLA_PORT_VF={0x8, 0x1, 0x1ff}]}, {0x40, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "653ba4ddaa4401c3e33165e0a54e0078"}, @IFLA_PORT_PROFILE={0x11, 0x2, '&!(*]X(/$++(\x00'}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "842003dcac3de95eece475f492b2c238"}]}, {0x44, 0x1, 0x0, 0x1, [@IFLA_PORT_HOST_UUID={0x14, 0x5, "7db4e779ef0bda36fdbecfc5bc526628"}, @IFLA_PORT_PROFILE={0x11, 0x2, 'sched_switch\x00'}, @IFLA_PORT_VF={0x8, 0x1, 0x7}, @IFLA_PORT_REQUEST={0x5, 0x6, 0x6}, @IFLA_PORT_VF={0x8, 0x1, 0xe}]}, {0x60, 0x1, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x8, 0x2, '{#:\x00'}, @IFLA_PORT_PROFILE={0x5, 0x2, '\x00'}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "c11ad6e8ae4a95a12fefc2f15fcab86c"}, @IFLA_PORT_VF={0x8, 0x1, 0x7}, @IFLA_PORT_INSTANCE_UUID={0x14, 0x4, "ec24d127bcfa023750912935f4d0db3f"}, @IFLA_PORT_VF={0x8, 0x1, 0xaaf}, @IFLA_PORT_HOST_UUID={0x14, 0x5, "6a4d90920ad129de665aeb609191baa9"}]}]}]}, 0x180}, 0x1, 0x0, 0x0, 0x5}, 0x0)

877.648076ms ago: executing program 2 (id=383):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r2, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bind$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1a000}, 0x0)

877.011947ms ago: executing program 2 (id=384):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'sit0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000eddbdf251b0000002000018008000100", @ANYRES32=r3, @ANYBLOB="140002"], 0x34}}, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80800800}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x58, 0x0, 0x0, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}]}, 0x58}, 0x1, 0x0, 0x0, 0x40400c0}, 0x4004000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r4, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0xf, &(0x7f0000000280)=ANY=[@ANYBLOB="1802000000000000000000000110000085100000010000009500000000000000180100002020732500000000002020207b1af8ff00000000bfa10000000000000500000000000000a502000008180000b70300000000002885000000760000001800000009000000000000000500000095"], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xa}, 0x16)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r5, 0x40505330, &(0x7f0000000140)={0x800100, 0xffffffff, 0x2, 0xe1db, 0x1101, 0xff})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x248}}, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x780f, 0x3, 0x0, 0x3ff, 0xd, 0xfffffffd, 0x1}, 0x1c)
recvmmsg$unix(r7, &(0x7f0000001e40)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000980)=""/4096, 0x1000}], 0x1}}], 0x1, 0x122a2, 0x0)
sendmmsg(r7, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x24, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}]}, 0x24}}, 0x0)
sendto$inet6(r7, &(0x7f0000000440)="961fd869f7c83c75a3da", 0xa, 0x8800, &(0x7f0000000480)={0xa, 0x4e23, 0x404, @ipv4={'\x00', '\xff\xff', @empty}, 0xfffffff2}, 0x1c)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x30, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}}, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r7, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x34, r8, 0x2, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xf0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x21c}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000005}, 0x4000014)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r11, 0xffffffffffffffff, 0x0)

868.893257ms ago: executing program 4 (id=385):
r0 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000001900), 0x100, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000040)=0x14)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000001940)={0x3c, 0xe, 0x7, 0xb, 0xb, 0x1, 0x5, 0x7c, 0xffffffffffffffff})
socket(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000b00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x103042, 0x0)
pwritev2(r2, &(0x7f0000000080), 0x0, 0x7fff, 0x1, 0x4)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000140)={[{@abort}, {@nodioread_nolock}, {@block_validity}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}]}, 0x2, 0x564, &(0x7f0000000700)="$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")
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
lseek(r3, 0x2, 0x4)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000004c0)={r4, 0x0, 0x0}, 0x20)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000019000100000000000000000000000000000000000000000000000000fe8000000000000000833449155bf3c2640000000000000002000010"], 0xb8}}, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22, 0x0, @loopback}, 0x1c)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x10, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0)
socket$netlink(0x10, 0x3, 0x13)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r8 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r8)

798.138988ms ago: executing program 5 (id=386):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001a80)={&(0x7f0000000400)=ANY=[], &(0x7f00000000c0)=""/169, 0x49, 0xa9, 0x1}, 0x28)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002abd7000fedbdf2509000000840004801300010062726f6164636173742d6c696e6b00004c00078008000400070000000800020082b00000080001000200000008000400d5380040080003000100010008000400070000000800020003000000080004000400000008000300"], 0x98}, 0x1, 0x0, 0x0, 0x48c0}, 0x80)
r1 = socket(0x400000000010, 0x3, 0x0)
write(r1, &(0x7f0000000040), 0x0)
socket(0x10, 0x3, 0x0)
r2 = socket(0x2000000000000021, 0x2, 0x10000000000002)
fcntl$setstatus(r2, 0x4, 0x2000)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
r4 = socket(0x25, 0x805, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r6, 0x1, 0x22, &(0x7f00000003c0)=0xb, 0x4)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r6, &(0x7f0000001080)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=""/29, 0x1d}, 0x5}], 0x1, 0x0, 0x0)
r7 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000340)=@o_path={&(0x7f00000002c0)='./file0\x00', 0x0, 0x2018, r1}, 0x18)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYRES32=r6], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x18)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000200009500"], &(0x7f00000001c0)='syzkaller\x00'}, 0x94)
r11 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000080)={'ipvlan1\x00', <r12=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r10, r12, 0x25, 0x0, @val=@netfilter}, 0x40)
sendmsg$nl_route_sched(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0xffffffff, 0x0, {0x0, 0x0, 0x74, r12, {0x0, 0x7}, {0x0, 0x4}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
close(r4)
recvmmsg$unix(r3, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000001480)}}], 0x1, 0x100, 0x0)
sendmmsg(r3, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)

797.315568ms ago: executing program 2 (id=387):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00'})

793.515738ms ago: executing program 2 (id=388):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000008000000e27f00000100000004000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000110000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000005b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10)
openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$RDS_GET_MR_FOR_DEST(r3, 0x114, 0x7, &(0x7f00000007c0)={@ethernet={0x1, @random="cb97982f95d7"}, {&(0x7f0000000900)=""/127, 0x7f}, &(0x7f0000000300), 0x9}, 0xa0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_GET(r4, &(0x7f00000008c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000880)={&(0x7f0000000600)={0x48, 0x0, 0x8, 0x70bd27, 0x25dfdbfe, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x3c}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x32}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @dev={0xac, 0x14, 0x14, 0x28}}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x5c}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @multicast2}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x1)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r3, 0x84, 0x78, &(0x7f0000000140), 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xb}]})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)

679.356419ms ago: executing program 0 (id=390):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280)=0xffffffffffffffff, 0x4)
syz_mount_image$msdos(&(0x7f00000011c0), &(0x7f0000001200)='./file0\x00', 0x2808480, &(0x7f0000000000)={[{@dots}, {@fat=@dos1xfloppy}, {@nodots}, {@fat=@dos1xfloppy}]}, 0x1, 0x11e9, &(0x7f0000002440)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff8003}, 0x94)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
creat(0x0, 0x0)
r1 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x10b8}, 0xff00)
socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r1, &(0x7f0000002dc0)={&(0x7f0000001580)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xfffffffffffffffd}, 0x1, 0x5c4}, 0x80, &(0x7f00000029c0)=[{&(0x7f0000001480)="89", 0x1}], 0x1}, 0xc9)
open(0x0, 0x429e2, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x590, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0x5, 0xa5d4}, 0x14c58, 0x5, 0x0, 0x1, 0x6, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x43, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
pread64(r6, &(0x7f0000001600)=""/196, 0xc4, 0x0)
set_tid_address(0x0)
r7 = io_uring_setup(0x2a59, &(0x7f0000000080)={0x0, 0x69be, 0x400})
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac14140f00000000000000001400020002000000ffffff53a2513743897e44000d0001007564703aa3"], 0x54}}, 0x0)

527.828002ms ago: executing program 3 (id=394):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r3=>0x0})
socket$inet_sctp(0x2, 0x5, 0x84)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c000000100003052cbd7000fedbdf2500000020", @ANYRES32=0x0, @ANYBLOB="0000000000080400240012800b0001006d61637365630000140002800500060000000000050007000000000008000500", @ANYRES32=r3], 0x4c}}, 0x0)

527.291852ms ago: executing program 4 (id=395):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
setitimer(0x2, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="1400000010000100"], 0x84}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/consoles\x00', 0x0, 0x0)
read$msr(r1, &(0x7f00000001c0)=""/19, 0x13)
socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000200)={0x0, <r2=>0x0}, &(0x7f0000000740)=0xc)
setuid(r2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x4, 0x3c8, 0xffffffff, 0x0, 0x0, 0x1d0, 0xffffffff, 0xffffffff, 0x2f8, 0x2f8, 0x2f8, 0xffffffff, 0x4, &(0x7f0000000100), {[{{@uncond, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@ah={{0x30}, {[0x4d2, 0x4d2], 0x5, 0x61, 0x2}}]}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x7f, 0x65}}}, {{@ipv6={@mcast2, @mcast1, [0xff, 0xff000000, 0x0, 0xff000000], [0xff000000, 0xff000000, 0xff, 0xffffff00], 'pim6reg0\x00', 'veth1_macvtap\x00', {}, {0xff}, 0xf7, 0xa3, 0x0, 0x1}, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}, {{@uncond, 0x0, 0x100, 0x128, 0x0, {}, [@common=@ah={{0x30}, {[0x4d6, 0x4d2], 0x70f8, 0x3, 0x1}}, @common=@mh={{0x28}, {"d0a7", 0x1}}]}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x428)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
writev(r3, &(0x7f0000000780)=[{&(0x7f0000000100)="452e2e7c8bd8018d531b71", 0xb}], 0x1)
setpriority(0x2, 0xff, 0x0)

390.650714ms ago: executing program 3 (id=396):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x2001880, &(0x7f0000000380)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@dioread_nolock}, {@errors_remount}, {@resgid}], [{@audit}, {@smackfsroot={'smackfsroot', 0x3d, 'queue0\x00'}}, {@appraise}]}, 0x1, 0x580, &(0x7f00000005c0)="$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")
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x81)
close(r2)
socket$caif_stream(0x25, 0x1, 0x1)
recvmsg$unix(r2, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x40010142)
openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000500)='kfree\x00', r4, 0x0, 0x401}, 0x18)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000f8ffff07000000000000000800"/28], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xf, &(0x7f0000002280)=ANY=[@ANYBLOB="1800000002000000000000000000001018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x18)
r10 = socket$kcm(0x10, 0x2, 0x10)
r11 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r11, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r11, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r11, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r11, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r11, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r11, &(0x7f0000004b80)=[{{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f00000008c0)="3bcbdb0fcfa026557d2ea2b0fa34b7b3ddf4e60fe678186210e935989ea66d7c81fcd371943f18f118107da91cf43c5479ca82428e90b96b3635a98e39939ef5109511d949224164c044f18fb4d64db5c0404f01b99fba50263ee03e82a28fcd751660b0cab68a62a8b6eac29946c988fc747092d35e935ad8442feece96b4ee481cf95a8feb6ec3d6e5cff03f59eb97136d7cb400c1d0ed4ed9b83090abb113aa4e926069", 0xa5}, {&(0x7f0000000980)="742f311a83a225186454bcfd09e48b60d703de616d0e6f11523b39811b58bc14", 0x20}], 0x2}}, {{0x0, 0x0, &(0x7f0000004080)=[{&(0x7f0000000f00)="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", 0x81e}], 0x1}}], 0x2, 0x4)
sendto$inet(r11, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r7, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'})
close_range(r6, 0xffffffffffffffff, 0x0)

319.762135ms ago: executing program 0 (id=397):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x50)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c7, &(0x7f0000001940)="$eJzs3c9rI3UUAPA3+TGJekgOnkRwQA+elt29ekmRFhZzcslBPWhxd0GaIGyhsCqOe/LqxYN/gyD4h3jx7kHwKnizQmFkJpMmaWPalKai/XwO7et8v2++b37QTgN5+ejVycGjLJ48/+LX6HaTaAxiEMdJ9KMRM1/FksE3AQD8lx0XRfxRTG2Sl0REd3tlAQBbdLm//615+OONlAUAbNHD995/Z2c43H03y7qxN/n6aFT+Z19+n47vPIlPYhyP42704iSielBoR/W0UIZ7RVHkrazUjzcm+dGozJx8+FO9/53f6xcLSv3q6+nTRpX/YLh7L5tayM/LOl6s1x+U69+PXrx8mryUf39FfozSePP1hfrvRC9+/jg+jXE8qoqY5395L8veLr798/MPyvLK/CQ/GnWqeXNF4wYvCwAAAAAAAAAAAAAAAAAAAAAA/3N36t45naj695Sb6v47zZPyh3ZkM/3l/jzT/Flrn6X+QEVR5EWz6rKz92C4ezfLsqKeOM9vxSutxcaCAAAAAAAAAAAAAAAAAAAAcHsdPvvsYH88fvz0WoJZN4BWRPz1MOKq+xmUQZ3+Wqyf3KnX3B+PG3W4PKe1uCWaszlJxNoyyoO4ptNyUfDCuZrr4PsfNt1h9+I57dVrHT5rXuF6/VIG+dmh2d11sJ+sPoedmG3p1ot+l0bM56RxyTLSfxoqYpPbL1051Nv4UqYvVUG+Zk4k6wp767fpmau3JGePIq3O6sr0dh0spJ+5Ny51P0d3mn7+d0WiWwcAAAAAAAAAAAAAAAAAAGzV/N2/Kwafr01tFJ2tlQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN2r++f8bBHlEtOsdXDA5jaeH//IhAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcAv8HQAA///SP1Xh")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
flock(r1, 0x5)
syz_mount_image$iso9660(&(0x7f0000000280), &(0x7f0000000000)='./file0\x00', 0xa0c4cc, &(0x7f0000000f80)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYRESHEX, @ANYRES32], 0x1, 0x5a9, &(0x7f0000000540)="$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")
r2 = getpid()
capset(&(0x7f0000000640)={0x20080522, r2}, &(0x7f0000000bc0)={0x4, 0x4466, 0xfffffffe, 0x6, 0x0, 0x2})
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, 0x0, 0x4851dbceba3b1c35)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="2000000012140002000000000000000008004f000300000008000121f4a82600"], 0x20}}, 0x4000)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x5, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9, 0xffff}, {0xc}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x1, 0x0, 0x1, 0x2}}, {0x8, 0x1b, [0x0, 0x7]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x84}, 0x40)
syz_clone(0x104000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
sendto(r3, &(0x7f00000004c0)="c0c3fb3eec7abd85786b28a0ea9bca198377d5691c262630d546cc0bb93995c8f475c2401a03e6050c4a788ab14630f12b0fee55872a996b2aac139ba831c7f88f8a9730ffe05a5fad141e132324f22a49a95a108bc65d9edddf25a5ffb5ba96cdef5c286ba89e6a5d5fe702167318bc26242e047fb8e287e145427f712f5aa696a8f1d60a0a3ae2da880412413bc9a81426d501eb4c24ee4a5e71d76f5214f794286a9cd1a1a71a919eb92272cbdbc4286c1f6bd7ef7cfaaf6ce8ebd5e39a5d77448f59a0f0cb983b534d6741af576eaf851934295fbde2ddb59c0776e7f509b6", 0xe1, 0x800, &(0x7f0000000740)=@in={0x2, 0x4e24, @remote}, 0x80)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000000300))
timer_settime(0x0, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(0xffffffffffffffff, &(0x7f0000000080)={0xc, 0x8, 0x144, {0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = open(&(0x7f00000001c0)='.\x00', 0x0, 0x0)
getdents(r6, &(0x7f0000000900)=""/4105, 0x1009)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000980), r7)

142.977598ms ago: executing program 3 (id=398):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) (async)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x9, 0x0, 0x0, 0x40f00, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000000)=0x110, 0x4)
sendmmsg$inet(r2, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, &(0x7f00000016c0)=[{&(0x7f0000001540)="94", 0xffe3}], 0x1}}], 0x1, 0x4000800)
recvfrom(r2, &(0x7f0000000200)=""/131, 0xf92e58a67d38802c, 0x2101, 0x0, 0x0) (async)
recvfrom(r2, &(0x7f0000000200)=""/131, 0xf92e58a67d38802c, 0x2101, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
alarm(0xfb)
dup(r0) (async)
r3 = dup(r0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) (async)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0) (async)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(r3, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[@ANYBLOB="0000000093574ad2ea6b23768ba31b0f95a79cb0ab2e68f5ee97897c256d97dfd7a104c42e1d0fc1f67dc4cabff264114c36edf70dc87a91c33aece00e863d30a224de957e6a28eedd6d0f7db553063794b32e99fb204ce6e8a590ca1376e13eeaa1c816d441f8490e23f28d3093ab74bcc2d3cd9174e95c57a1b5674652c67f0e5be5e63a691a43f4f1cc52b8e8e5348bf9265031db08995eafd5264010e1de19c82fe75227db67b8b829503c3be7fefed8756c", @ANYRES16=r5, @ANYBLOB="01002cbd7000fcdbdf25080000000800030000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000040)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x10000, 0x1}, 0x8002, 0x0, 0x1003, 0x2, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000300000001000000", @ANYRES32], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r6, &(0x7f0000000140), &(0x7f0000000000)=""/48}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fsopen(&(0x7f00000009c0)='9p\x00', 0x0) (async)
fsopen(&(0x7f00000009c0)='9p\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r7, 0x0, 0x0, 0x0, 0x0)

119.802788ms ago: executing program 3 (id=399):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001980)={0x11, 0x14, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000440)='kfree\x00', r1}, 0x18)
syz_emit_ethernet(0x7e, &(0x7f0000000000)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @dev, @local, {[@noop, @generic={0x86, 0x4, "c045"}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x0, [{@loopback}]}, @timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{}, {}, {@local}, {@private}, {@multicast2}]}]}}}}}}}, 0x0)
r2 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80880)
write$P9_RLOCK(r5, &(0x7f00000000c0)={0x8, 0x35, 0x2, 0x1}, 0x8)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x13, r2, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r2, 0x6e2, 0x600, 0x65, 0x0, 0x0)

71.927169ms ago: executing program 3 (id=400):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x84, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000100001fffffffffffffff5000000000a20000000000a03000000000000000000070000040900010073797a300000000048000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a300000000008000540000000210c0009800800014000000005600000000c0a010300000000000000000700fffe0900020073797a31000000000900010073797a300000000034000380300000802c000180250001002130404c6bfef3a31e2587ebd76200eb3ea056f39e3ab8a93c358099bf8cf3007d00000014000000110001"], 0xf0}}, 0x0)

12.01111ms ago: executing program 3 (id=401):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r3, 0x560e, &(0x7f0000000000))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=@base={0x4, 0x4, 0x4, 0x10005, 0x800}, 0x48)
close_range(r6, 0xffffffffffffffff, 0x0)
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = fsopen(0x0, 0x0)
fsmount(r7, 0x0, 0x0)
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r8, <r9=>0xffffffffffffffff}, 0x4)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff0000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r10}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")

0s ago: executing program 0 (id=402):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000500)='kfree\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r2)
close(0xffffffffffffffff)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x12, 0x9, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x4}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4}, &(0x7f0000000040), &(0x7f0000000140)=r3}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
close(r2)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.153' (ED25519) to the list of known hosts.
[   24.803362][   T29] audit: type=1400 audit(1752606127.896:62): avc:  denied  { mounton } for  pid=3294 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   24.804215][ T3294] cgroup: Unknown subsys name 'net'
[   24.826087][   T29] audit: type=1400 audit(1752606127.896:63): avc:  denied  { mount } for  pid=3294 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   24.853427][   T29] audit: type=1400 audit(1752606127.926:64): avc:  denied  { unmount } for  pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   24.951081][ T3294] cgroup: Unknown subsys name 'cpuset'
[   24.957207][ T3294] cgroup: Unknown subsys name 'rlimit'
[   25.125829][   T29] audit: type=1400 audit(1752606128.216:65): avc:  denied  { setattr } for  pid=3294 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   25.149114][   T29] audit: type=1400 audit(1752606128.216:66): avc:  denied  { create } for  pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   25.169582][   T29] audit: type=1400 audit(1752606128.216:67): avc:  denied  { write } for  pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   25.190007][   T29] audit: type=1400 audit(1752606128.216:68): avc:  denied  { read } for  pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   25.196802][ T3298] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   25.210323][   T29] audit: type=1400 audit(1752606128.226:69): avc:  denied  { mounton } for  pid=3294 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   25.243653][   T29] audit: type=1400 audit(1752606128.226:70): avc:  denied  { mount } for  pid=3294 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   25.266950][   T29] audit: type=1400 audit(1752606128.316:71): avc:  denied  { relabelto } for  pid=3298 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   25.302328][ T3294] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   27.221363][ T3305] chnl_net:caif_netlink_parms(): no params data found
[   27.285876][ T3311] chnl_net:caif_netlink_parms(): no params data found
[   27.318633][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.325802][ T3305] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.332954][ T3305] bridge_slave_0: entered allmulticast mode
[   27.339554][ T3305] bridge_slave_0: entered promiscuous mode
[   27.356926][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.364114][ T3305] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.371281][ T3305] bridge_slave_1: entered allmulticast mode
[   27.377570][ T3305] bridge_slave_1: entered promiscuous mode
[   27.398494][ T3305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   27.410749][ T3307] chnl_net:caif_netlink_parms(): no params data found
[   27.422903][ T3305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   27.453636][ T3304] chnl_net:caif_netlink_parms(): no params data found
[   27.468532][ T3305] team0: Port device team_slave_0 added
[   27.491786][ T3305] team0: Port device team_slave_1 added
[   27.520643][ T3311] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.527773][ T3311] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.534974][ T3311] bridge_slave_0: entered allmulticast mode
[   27.541349][ T3311] bridge_slave_0: entered promiscuous mode
[   27.563763][ T3311] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.570993][ T3311] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.578141][ T3311] bridge_slave_1: entered allmulticast mode
[   27.584586][ T3311] bridge_slave_1: entered promiscuous mode
[   27.600606][ T3307] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.607668][ T3307] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.614813][ T3307] bridge_slave_0: entered allmulticast mode
[   27.621221][ T3307] bridge_slave_0: entered promiscuous mode
[   27.629493][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.636683][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.643907][ T3307] bridge_slave_1: entered allmulticast mode
[   27.650352][ T3307] bridge_slave_1: entered promiscuous mode
[   27.661249][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_0
[   27.668212][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   27.694129][ T3305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   27.705356][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_1
[   27.712335][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   27.738266][ T3305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   27.755927][ T3310] chnl_net:caif_netlink_parms(): no params data found
[   27.772896][ T3304] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.779961][ T3304] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.787246][ T3304] bridge_slave_0: entered allmulticast mode
[   27.793486][ T3304] bridge_slave_0: entered promiscuous mode
[   27.805893][ T3311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   27.824633][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   27.833809][ T3304] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.840969][ T3304] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.848475][ T3304] bridge_slave_1: entered allmulticast mode
[   27.854884][ T3304] bridge_slave_1: entered promiscuous mode
[   27.861969][ T3311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   27.876308][ T3305] hsr_slave_0: entered promiscuous mode
[   27.882418][ T3305] hsr_slave_1: entered promiscuous mode
[   27.889012][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   27.915599][ T3304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   27.936237][ T3304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   27.955541][ T3307] team0: Port device team_slave_0 added
[   27.963959][ T3311] team0: Port device team_slave_0 added
[   27.977118][ T3307] team0: Port device team_slave_1 added
[   27.984352][ T3311] team0: Port device team_slave_1 added
[   28.025474][ T3304] team0: Port device team_slave_0 added
[   28.031307][ T3310] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.038350][ T3310] bridge0: port 1(bridge_slave_0) entered disabled state
[   28.045603][ T3310] bridge_slave_0: entered allmulticast mode
[   28.052096][ T3310] bridge_slave_0: entered promiscuous mode
[   28.069596][ T3304] team0: Port device team_slave_1 added
[   28.075631][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_0
[   28.082603][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.108589][ T3311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   28.119371][ T3310] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.126472][ T3310] bridge0: port 2(bridge_slave_1) entered disabled state
[   28.133704][ T3310] bridge_slave_1: entered allmulticast mode
[   28.140111][ T3310] bridge_slave_1: entered promiscuous mode
[   28.153637][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   28.160615][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.186625][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   28.202006][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_1
[   28.208998][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.234907][ T3311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   28.257311][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   28.264325][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.290299][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   28.307070][ T3304] batman_adv: batadv0: Adding interface: batadv_slave_0
[   28.314078][ T3304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.340092][ T3304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   28.359817][ T3310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   28.380021][ T3304] batman_adv: batadv0: Adding interface: batadv_slave_1
[   28.387083][ T3304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.413073][ T3304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   28.424817][ T3310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   28.453846][ T3310] team0: Port device team_slave_0 added
[   28.463116][ T3311] hsr_slave_0: entered promiscuous mode
[   28.469121][ T3311] hsr_slave_1: entered promiscuous mode
[   28.475131][ T3311] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   28.482706][ T3311] Cannot create hsr debugfs directory
[   28.497924][ T3310] team0: Port device team_slave_1 added
[   28.524885][ T3307] hsr_slave_0: entered promiscuous mode
[   28.530844][ T3307] hsr_slave_1: entered promiscuous mode
[   28.536736][ T3307] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   28.544480][ T3307] Cannot create hsr debugfs directory
[   28.554296][ T3304] hsr_slave_0: entered promiscuous mode
[   28.560151][ T3304] hsr_slave_1: entered promiscuous mode
[   28.566964][ T3304] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   28.574621][ T3304] Cannot create hsr debugfs directory
[   28.594715][ T3310] batman_adv: batadv0: Adding interface: batadv_slave_0
[   28.601715][ T3310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.627638][ T3310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   28.638931][ T3310] batman_adv: batadv0: Adding interface: batadv_slave_1
[   28.645902][ T3310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   28.671940][ T3310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   28.711836][ T3305] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   28.720593][ T3305] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   28.739564][ T3305] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   28.762587][ T3305] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   28.789086][ T3310] hsr_slave_0: entered promiscuous mode
[   28.795243][ T3310] hsr_slave_1: entered promiscuous mode
[   28.801336][ T3310] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   28.808976][ T3310] Cannot create hsr debugfs directory
[   28.907778][ T3311] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   28.918349][ T3311] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   28.935640][ T3311] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   28.946047][ T3311] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   28.967778][ T3307] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   28.978151][ T3307] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   28.986899][ T3307] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   28.999968][ T3307] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   29.033718][ T3305] 8021q: adding VLAN 0 to HW filter on device bond0
[   29.047381][ T3304] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   29.059625][ T3304] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   29.076568][ T3305] 8021q: adding VLAN 0 to HW filter on device team0
[   29.084073][ T3304] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   29.095935][ T3304] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   29.111958][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.119029][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.140380][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.147451][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.165815][ T3311] 8021q: adding VLAN 0 to HW filter on device bond0
[   29.174058][ T3310] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   29.204501][ T3311] 8021q: adding VLAN 0 to HW filter on device team0
[   29.212079][ T3310] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   29.227801][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.234899][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.253806][ T3310] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   29.264168][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.271302][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.283747][ T3310] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   29.295597][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   29.341054][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   29.349626][ T3305] 8021q: adding VLAN 0 to HW filter on device batadv0
[   29.362558][ T3304] 8021q: adding VLAN 0 to HW filter on device bond0
[   29.373958][ T1356] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.381055][ T1356] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.392771][ T2117] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.399904][ T2117] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.430788][ T3304] 8021q: adding VLAN 0 to HW filter on device team0
[   29.458584][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.465769][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.478009][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.485189][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.498600][ T3311] 8021q: adding VLAN 0 to HW filter on device batadv0
[   29.508074][ T3307] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   29.546069][ T3310] 8021q: adding VLAN 0 to HW filter on device bond0
[   29.563777][ T3310] 8021q: adding VLAN 0 to HW filter on device team0
[   29.582227][ T3304] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   29.609914][ T3305] veth0_vlan: entered promiscuous mode
[   29.627217][ T1356] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.634350][ T1356] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.644495][ T1356] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.651577][ T1356] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.685089][ T3305] veth1_vlan: entered promiscuous mode
[   29.697431][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   29.723343][ T3304] 8021q: adding VLAN 0 to HW filter on device batadv0
[   29.733049][ T3310] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   29.748595][ T3305] veth0_macvtap: entered promiscuous mode
[   29.776631][ T3305] veth1_macvtap: entered promiscuous mode
[   29.803707][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.814297][ T3311] veth0_vlan: entered promiscuous mode
[   29.832136][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.844969][ T3311] veth1_vlan: entered promiscuous mode
[   29.852940][ T3305] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.861793][ T3305] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.870545][ T3305] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.879234][ T3305] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.898919][ T3310] 8021q: adding VLAN 0 to HW filter on device batadv0
[   29.909338][ T3311] veth0_macvtap: entered promiscuous mode
[   29.926529][ T3311] veth1_macvtap: entered promiscuous mode
[   29.960635][   T29] kauditd_printk_skb: 9 callbacks suppressed
[   29.960650][   T29] audit: type=1400 audit(1752606133.046:81): avc:  denied  { mounton } for  pid=3305 comm="syz-executor" path="/root/syzkaller.0PPSYV/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   29.964881][ T3304] veth0_vlan: entered promiscuous mode
[   29.967169][   T29] audit: type=1400 audit(1752606133.056:82): avc:  denied  { mount } for  pid=3305 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   29.994310][ T3304] veth1_vlan: entered promiscuous mode
[   30.024153][   T29] audit: type=1400 audit(1752606133.116:83): avc:  denied  { mounton } for  pid=3305 comm="syz-executor" path="/root/syzkaller.0PPSYV/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   30.037101][ T3307] veth0_vlan: entered promiscuous mode
[   30.049321][   T29] audit: type=1400 audit(1752606133.116:84): avc:  denied  { mount } for  pid=3305 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   30.060337][ T3307] veth1_vlan: entered promiscuous mode
[   30.076490][   T29] audit: type=1400 audit(1752606133.116:85): avc:  denied  { mounton } for  pid=3305 comm="syz-executor" path="/root/syzkaller.0PPSYV/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   30.086702][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.108499][   T29] audit: type=1400 audit(1752606133.116:86): avc:  denied  { mounton } for  pid=3305 comm="syz-executor" path="/root/syzkaller.0PPSYV/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4452 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   30.108528][   T29] audit: type=1400 audit(1752606133.116:87): avc:  denied  { unmount } for  pid=3305 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   30.142566][   T29] audit: type=1400 audit(1752606133.236:88): avc:  denied  { mounton } for  pid=3305 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   30.169530][ T3304] veth0_macvtap: entered promiscuous mode
[   30.185766][   T29] audit: type=1400 audit(1752606133.236:89): avc:  denied  { mount } for  pid=3305 comm="syz-executor" name="/" dev="gadgetfs" ino=4454 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   30.197428][ T3304] veth1_macvtap: entered promiscuous mode
[   30.226964][ T3307] veth0_macvtap: entered promiscuous mode
[   30.235945][ T3305] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   30.253291][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_1
[   30.264302][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.271993][ T3307] veth1_macvtap: entered promiscuous mode
[   30.286057][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.295195][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_1
[   30.302862][ T3311] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   30.311705][ T3311] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   30.320648][ T3311] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   30.329414][ T3311] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   30.342193][ T3304] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   30.350971][ T3304] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   30.359664][ T3304] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   30.368379][ T3304] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   30.380173][   T29] audit: type=1400 audit(1752606133.466:90): avc:  denied  { read write } for  pid=3305 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   30.425294][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   30.435893][ T3474] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   30.437007][ T3310] veth0_vlan: entered promiscuous mode
[   30.465151][ T3474] loop1: detected capacity change from 0 to 164
[   30.472475][ T3307] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   30.481403][ T3307] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   30.490162][ T3307] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   30.498958][ T3307] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   30.511641][ T3474] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   30.522754][ T3310] veth1_vlan: entered promiscuous mode
[   30.531103][ T3474] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   30.536513][ T3310] veth0_macvtap: entered promiscuous mode
[   30.545352][ T3474] Symlink component flag not implemented
[   30.551101][ T3474] Symlink component flag not implemented
[   30.557458][ T3474] Symlink component flag not implemented (7)
[   30.563576][ T3474] Symlink component flag not implemented (116)
[   30.583907][ T3310] veth1_macvtap: entered promiscuous mode
[   30.597154][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.629486][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_1
[   30.654064][ T3310] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   30.662987][ T3310] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   30.671777][ T3310] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   30.680482][ T3310] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   30.693973][ T3482] loop1: detected capacity change from 0 to 512
[   30.754078][ T3486] FAULT_INJECTION: forcing a failure.
[   30.754078][ T3486] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   30.767355][ T3486] CPU: 0 UID: 0 PID: 3486 Comm: syz.2.3 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   30.767375][ T3486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   30.767385][ T3486] Call Trace:
[   30.767388][ T3486]  <TASK>
[   30.767392][ T3486]  __dump_stack+0x1d/0x30
[   30.767466][ T3486]  dump_stack_lvl+0xe8/0x140
[   30.767477][ T3486]  dump_stack+0x15/0x1b
[   30.767486][ T3486]  should_fail_ex+0x265/0x280
[   30.767508][ T3486]  should_fail+0xb/0x20
[   30.767593][ T3486]  should_fail_usercopy+0x1a/0x20
[   30.767610][ T3486]  strncpy_from_user+0x25/0x230
[   30.767623][ T3486]  ? kmem_cache_alloc_noprof+0x186/0x310
[   30.767706][ T3486]  ? getname_flags+0x80/0x3b0
[   30.767718][ T3486]  getname_flags+0xae/0x3b0
[   30.767729][ T3486]  user_path_at+0x28/0x130
[   30.767743][ T3486]  do_fchmodat+0x9c/0x180
[   30.767808][ T3486]  __x64_sys_chmod+0x38/0x50
[   30.767884][ T3486]  x64_sys_call+0x1529/0x2fb0
[   30.767896][ T3486]  do_syscall_64+0xd2/0x200
[   30.767906][ T3486]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   30.767921][ T3486]  ? clear_bhb_loop+0x40/0x90
[   30.767995][ T3486]  ? clear_bhb_loop+0x40/0x90
[   30.768035][ T3486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   30.768046][ T3486] RIP: 0033:0x7f1df9f3e929
[   30.768058][ T3486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   30.768068][ T3486] RSP: 002b:00007f1df85a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000005a
[   30.768081][ T3486] RAX: ffffffffffffffda RBX: 00007f1dfa165fa0 RCX: 00007f1df9f3e929
[   30.768088][ T3486] RDX: 0000000000000000 RSI: 0000000000000100 RDI: 0000200000001180
[   30.768122][ T3486] RBP: 00007f1df85a7090 R08: 0000000000000000 R09: 0000000000000000
[   30.768128][ T3486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   30.768135][ T3486] R13: 0000000000000000 R14: 00007f1dfa165fa0 R15: 00007fff4271d348
[   30.768144][ T3486]  </TASK>
[   30.769409][ T3488] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'.
[   30.771013][ T3482] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   30.860964][ T3501] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   30.942186][ T3504] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10'.
[   30.947473][ T3482] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   30.958419][ T3504] netlink: 'syz.4.10': attribute type 1 has an invalid length.
[   30.980161][ T3490] loop0: detected capacity change from 0 to 2048
[   30.986682][ T3504] netlink: 161700 bytes leftover after parsing attributes in process `syz.4.10'.
[   30.999209][ T3505] process 'syz.3.9' launched './file1' with NULL argv: empty string added
[   31.067460][ T3507] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7'.
[   31.067460][ T3482] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7'.
[   31.093459][ T3297] Alternate GPT is invalid, using primary GPT.
[   31.099847][ T3297]  loop0: p2 p3 p7
[   31.102804][ T3510] loop2: detected capacity change from 0 to 1024
[   31.120684][ T3510] =======================================================
[   31.120684][ T3510] WARNING: The mand mount option has been deprecated and
[   31.120684][ T3510]          and is ignored by this kernel. Remove the mand
[   31.120684][ T3510]          option from the mount to silence this warning.
[   31.120684][ T3510] =======================================================
[   31.163681][ T3510] EXT4-fs: Ignoring removed oldalloc option
[   31.175755][ T3490] Alternate GPT is invalid, using primary GPT.
[   31.182124][ T3490]  loop0: p2 p3 p7
[   31.212209][ T3510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   31.341661][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.363367][ T3528] lo speed is unknown, defaulting to 1000
[   31.370154][ T3528] lo speed is unknown, defaulting to 1000
[   31.376745][ T3528] lo speed is unknown, defaulting to 1000
[   31.404628][ T3529] loop4: detected capacity change from 0 to 1024
[   31.553276][ T3528] infiniband syz0: set active
[   31.555061][ T3534] netlink: 24 bytes leftover after parsing attributes in process `syz.2.15'.
[   31.558105][ T3528] infiniband syz0: added lo
[   31.571518][ T3420] lo speed is unknown, defaulting to 1000
[   31.579109][ T3536] loop0: detected capacity change from 0 to 512
[   31.596019][ T3528] RDS/IB: syz0: added
[   31.600111][ T3528] smc: adding ib device syz0 with port count 1
[   31.607362][ T3528] smc:    ib device syz0 port 1 has pnetid 
[   31.614006][ T3420] lo speed is unknown, defaulting to 1000
[   31.647243][ T3528] lo speed is unknown, defaulting to 1000
[   31.668280][ T3536] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   31.704991][ T3536] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   31.722435][ T3528] lo speed is unknown, defaulting to 1000
[   31.737227][ T3536] EXT4-fs error (device loop0): ext4_empty_dir:3075: inode #12: comm syz.0.16: invalid size
[   31.748799][ T3536] EXT4-fs (loop0): Remounting filesystem read-only
[   31.756473][ T3528] lo speed is unknown, defaulting to 1000
[   31.790804][ T3528] lo speed is unknown, defaulting to 1000
[   31.798311][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   31.809972][   T31] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   31.823999][ T3528] lo speed is unknown, defaulting to 1000
[   31.840198][ T3550] loop0: detected capacity change from 0 to 128
[   31.891777][ T3550] syz.0.19: attempt to access beyond end of device
[   31.891777][ T3550] loop0: rw=0, sector=121, nr_sectors = 920 limit=128
[   31.933635][ T3528] syz.3.14 (3528) used greatest stack depth: 10616 bytes left
[   31.958762][ T3552] netlink: 24 bytes leftover after parsing attributes in process `syz.3.20'.
[   31.999246][ T3556] IPv6: Can't replace route, no match found
[   32.079809][ T3562] loop0: detected capacity change from 0 to 8192
[   32.092844][ T3558] netlink: 8 bytes leftover after parsing attributes in process `syz.3.24'.
[   32.120771][ T3558] IPVS: Error joining to the multicast group
[   32.234626][ T3566] loop3: detected capacity change from 0 to 128
[   32.304114][ T3568] FAULT_INJECTION: forcing a failure.
[   32.304114][ T3568] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   32.317491][ T3568] CPU: 0 UID: 0 PID: 3568 Comm: syz.0.27 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   32.317515][ T3568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   32.317540][ T3568] Call Trace:
[   32.317548][ T3568]  <TASK>
[   32.317555][ T3568]  __dump_stack+0x1d/0x30
[   32.317576][ T3568]  dump_stack_lvl+0xe8/0x140
[   32.317648][ T3568]  dump_stack+0x15/0x1b
[   32.317662][ T3568]  should_fail_ex+0x265/0x280
[   32.317687][ T3568]  should_fail_alloc_page+0xf2/0x100
[   32.317738][ T3568]  __alloc_frozen_pages_noprof+0xff/0x360
[   32.317853][ T3568]  alloc_pages_mpol+0xb3/0x250
[   32.317933][ T3568]  vma_alloc_folio_noprof+0x1aa/0x300
[   32.317960][ T3568]  handle_mm_fault+0xec2/0x2be0
[   32.317979][ T3568]  ? __rcu_read_lock+0x37/0x50
[   32.318036][ T3568]  __get_user_pages+0x1036/0x1fb0
[   32.318066][ T3568]  __mm_populate+0x243/0x3a0
[   32.318119][ T3568]  do_mlock+0x47f/0x520
[   32.318142][ T3568]  ? fput+0x8f/0xc0
[   32.318163][ T3568]  ? ksys_write+0x192/0x1a0
[   32.318184][ T3568]  __x64_sys_mlock+0x36/0x50
[   32.318233][ T3568]  x64_sys_call+0x28f4/0x2fb0
[   32.318245][ T3568]  do_syscall_64+0xd2/0x200
[   32.318307][ T3568]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   32.318322][ T3568]  ? clear_bhb_loop+0x40/0x90
[   32.318375][ T3568]  ? clear_bhb_loop+0x40/0x90
[   32.318386][ T3568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   32.318398][ T3568] RIP: 0033:0x7fbd0f1ee929
[   32.318407][ T3568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   32.318417][ T3568] RSP: 002b:00007fbd0d857038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   32.318443][ T3568] RAX: ffffffffffffffda RBX: 00007fbd0f415fa0 RCX: 00007fbd0f1ee929
[   32.318450][ T3568] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 00002000007d8000
[   32.318457][ T3568] RBP: 00007fbd0d857090 R08: 0000000000000000 R09: 0000000000000000
[   32.318463][ T3568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   32.318470][ T3568] R13: 0000000000000000 R14: 00007fbd0f415fa0 R15: 00007fff2ce72ff8
[   32.318480][ T3568]  </TASK>
[   32.549246][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.571857][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.603283][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.617621][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.661772][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.664915][ T3573] can0: slcan on ttyS3.
[   32.684837][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.696938][ T3575] rdma_rxe: rxe_newlink: failed to add lo
[   32.790458][ T3572] can0 (unregistered): slcan off ttyS3.
[   32.800514][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.830810][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.867170][ T3598] IPv6: Can't replace route, no match found
[   32.874644][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   32.878883][ T3599] loop4: detected capacity change from 0 to 1024
[   32.912564][ T3599] EXT4-fs: Ignoring removed nobh option
[   32.918650][ T3599] EXT4-fs: quotafile must be on filesystem root
[   32.954699][ T3305] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz-executor: invalid size
[   33.087786][ T3599] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   33.412916][ T3613] netlink: 16 bytes leftover after parsing attributes in process `syz.3.37'.
[   33.438432][ T3613] loop3: detected capacity change from 0 to 512
[   33.471077][ T3606] loop4: detected capacity change from 0 to 8192
[   33.490301][ T3613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   33.522976][ T3613] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   33.554589][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.569366][ T3606]  loop4: p2 p3 p4
[   33.577207][ T3606] loop4: p2 start 2936012800 is beyond EOD, truncated
[   33.584089][ T3606] loop4: p3 start 1912602624 is beyond EOD, truncated
[   33.591073][ T3606] loop4: p4 size 656640 extends beyond EOD, truncated
[   33.602073][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   33.615361][ T3601] GPL (3601) used greatest stack depth: 10192 bytes left
[   33.649540][ T3625] loop2: detected capacity change from 0 to 8192
[   33.675848][ T3633] netlink: 332 bytes leftover after parsing attributes in process `syz.0.41'.
[   33.692796][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.705170][ T3635] netlink: 'syz.4.43': attribute type 6 has an invalid length.
[   33.724441][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   33.811947][ T3625] tipc: Started in network mode
[   33.815707][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   33.816943][ T3625] tipc: Node identity ac14140f, cluster identity 4711
[   33.842697][ T3625] tipc: New replicast peer: 255.255.255.83
[   33.848629][ T3625] tipc: Enabled bearer <udp:£>, priority 10
[   33.853540][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   33.867921][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   33.868089][ T3638] loop3: detected capacity change from 0 to 8192
[   33.885854][ T3648] vhci_hcd: invalid port number 0
[   33.893765][ T3648] program syz.0.46 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   33.909075][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   33.937878][ T3629] lo speed is unknown, defaulting to 1000
[   33.979159][ T3625] syz.2.38 (3625) used greatest stack depth: 9760 bytes left
[   34.020211][   T12] bridge_slave_1: left allmulticast mode
[   34.025952][   T12] bridge_slave_1: left promiscuous mode
[   34.031669][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.061234][   T12] bridge_slave_0: left allmulticast mode
[   34.066953][   T12] bridge_slave_0: left promiscuous mode
[   34.072703][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.162559][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   34.172955][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   34.182594][   T12] bond0 (unregistering): Released all slaves
[   34.274745][ T3665] program syz.2.51 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   34.327501][   T12] hsr_slave_0: left promiscuous mode
[   34.340072][   T12] hsr_slave_1: left promiscuous mode
[   34.360769][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   34.368204][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   34.387029][ T3689] IPv6: Can't replace route, no match found
[   34.431357][   T10] IPVS: starting estimator thread 0...
[   34.438341][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   34.445910][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   34.456378][   T12] veth1_vlan: left promiscuous mode
[   34.469699][   T12] veth0_vlan: left promiscuous mode
[   34.520777][ T3697] IPVS: using max 2400 ests per chain, 120000 per kthread
[   34.544986][ T3707] loop2: detected capacity change from 0 to 8192
[   34.601844][   T12] team0 (unregistering): Port device team_slave_1 removed
[   34.619425][   T12] team0 (unregistering): Port device team_slave_0 removed
[   34.681564][ T3689] @: renamed from vlan0 (while UP)
[   34.701767][ T3629] chnl_net:caif_netlink_parms(): no params data found
[   34.720065][ T3716] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41232 sclass=netlink_route_socket pid=3716 comm=syz.0.63
[   34.821305][ T3629] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.828397][ T3629] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.854584][ T3629] bridge_slave_0: entered allmulticast mode
[   34.861553][ T3629] bridge_slave_0: entered promiscuous mode
[   34.868440][ T3629] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.875664][ T3629] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.887967][ T3629] bridge_slave_1: entered allmulticast mode
[   34.896022][ T3629] bridge_slave_1: entered promiscuous mode
[   34.925707][ T3629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.944310][ T3629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.960872][   T10] tipc: Node number set to 2886997007
[   34.961725][ T3730] syz.2.67 uses obsolete (PF_INET,SOCK_PACKET)
[   34.982342][ T3629] team0: Port device team_slave_0 added
[   34.989363][ T3629] team0: Port device team_slave_1 added
[   35.022466][ T3629] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.029481][ T3629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.055549][ T3629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.067892][ T3629] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.075635][ T3629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.101688][ T3629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.157425][ T3629] hsr_slave_0: entered promiscuous mode
[   35.164550][ T3629] hsr_slave_1: entered promiscuous mode
[   35.194900][   T29] kauditd_printk_skb: 362 callbacks suppressed
[   35.194916][   T29] audit: type=1400 audit(1752606138.286:449): avc:  denied  { create } for  pid=3757 comm="syz.2.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   35.197724][ T3758] loop2: detected capacity change from 0 to 512
[   35.210306][   T29] audit: type=1400 audit(1752606138.286:450): avc:  denied  { write } for  pid=3757 comm="syz.2.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   35.246973][ T3758] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   35.261993][ T3758] EXT4-fs (loop2): invalid journal inode
[   35.267817][ T3758] EXT4-fs (loop2): can't get journal size
[   35.279333][ T3758] EXT4-fs (loop2): 1 truncate cleaned up
[   35.286280][ T3758] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.349869][ T3629] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   35.370142][   T29] audit: type=1400 audit(1752606138.456:451): avc:  denied  { read write } for  pid=3774 comm="syz.3.70" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   35.394064][   T29] audit: type=1400 audit(1752606138.456:452): avc:  denied  { open } for  pid=3774 comm="syz.3.70" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   35.418234][   T29] audit: type=1400 audit(1752606138.496:453): avc:  denied  { sqpoll } for  pid=3757 comm="syz.2.69" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   35.448520][ T3629] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   35.475717][ T3629] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   35.501149][ T3629] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   35.507960][   T29] audit: type=1400 audit(1752606138.596:454): avc:  denied  { write } for  pid=3782 comm="syz.3.72" path="socket:[6154]" dev="sockfs" ino=6154 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   35.543459][   T29] audit: type=1400 audit(1752606138.636:455): avc:  denied  { create } for  pid=3757 comm="syz.2.69" name="blkio.bfq.avg_queue_size" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   35.565183][   T29] audit: type=1400 audit(1752606138.636:456): avc:  denied  { read append open } for  pid=3757 comm="syz.2.69" path="/14/file0/blkio.bfq.avg_queue_size" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   35.598582][ T3629] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.605719][ T3629] bridge0: port 2(bridge_slave_1) entered forwarding state
[   35.613092][ T3629] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.620222][ T3629] bridge0: port 1(bridge_slave_0) entered forwarding state
[   35.658471][ T3629] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.680032][ T3629] 8021q: adding VLAN 0 to HW filter on device team0
[   35.731291][ T3804] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   35.737696][ T3804] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   35.752250][   T29] audit: type=1400 audit(1752606138.846:457): avc:  denied  { mounton } for  pid=3803 comm="syz.3.75" path="/23/file0" dev="tmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   35.774767][   T29] audit: type=1400 audit(1752606138.846:458): avc:  denied  { mount } for  pid=3803 comm="syz.3.75" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   35.826212][ T3629] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   35.836765][ T3629] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   35.850407][    C1] hrtimer: interrupt took 47370 ns
[   35.870260][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.889530][ T3806] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[   35.889530][ T3806]    program syz.4.76 not setting count and/or reply_len properly
[   35.913259][ T3815] xt_TPROXY: Can be used only with -p tcp or -p udp
[   36.012742][ T3830] loop3: detected capacity change from 0 to 128
[   36.025397][ T3833] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   36.035252][ T3833] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   36.045455][ T3830] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   36.062858][ T3629] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.070146][ T3830] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   36.092378][ T3830] EXT4-fs error (device loop3): ext4_validate_block_bitmap:423: comm syz.3.79: bg 0: bad block bitmap checksum
[   36.266614][ T3310] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   36.290890][ T3855] loop4: detected capacity change from 0 to 8192
[   36.297954][ T3629] veth0_vlan: entered promiscuous mode
[   36.320387][ T3866] __nla_validate_parse: 6 callbacks suppressed
[   36.320401][ T3866] netlink: 642 bytes leftover after parsing attributes in process `syz.0.83'.
[   36.323137][ T3868] loop3: detected capacity change from 0 to 2048
[   36.351122][ T3629] veth1_vlan: entered promiscuous mode
[   36.371851][ T3866] netlink: 4 bytes leftover after parsing attributes in process `syz.0.83'.
[   36.376502][ T3629] veth0_macvtap: entered promiscuous mode
[   36.386757][ T3868] EXT4-fs: Ignoring removed mblk_io_submit option
[   36.393272][ T3868] EXT4-fs: Ignoring removed i_version option
[   36.416095][ T3629] veth1_macvtap: entered promiscuous mode
[   36.428475][ T3629] batman_adv: batadv0: Interface activated: batadv_slave_0
[   36.443825][ T3629] batman_adv: batadv0: Interface activated: batadv_slave_1
[   36.452049][ T3868] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.453844][ T3629] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   36.472900][ T3629] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   36.481841][ T3629] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   36.490631][ T3629] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   36.535402][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.574171][ T3888] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   36.666757][ T3899] IPv6: Can't replace route, no match found
[   36.684901][ T3895] Zero length message leads to an empty skb
[   36.764822][ T3917] loop3: detected capacity change from 0 to 1024
[   36.791819][ T3925] FAULT_INJECTION: forcing a failure.
[   36.791819][ T3925] name failslab, interval 1, probability 0, space 0, times 0
[   36.806394][ T3925] CPU: 0 UID: 0 PID: 3925 Comm: syz.2.91 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   36.806419][ T3925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   36.806430][ T3925] Call Trace:
[   36.806436][ T3925]  <TASK>
[   36.806441][ T3925]  __dump_stack+0x1d/0x30
[   36.806511][ T3925]  dump_stack_lvl+0xe8/0x140
[   36.806570][ T3925]  dump_stack+0x15/0x1b
[   36.806584][ T3925]  should_fail_ex+0x265/0x280
[   36.806615][ T3925]  ? __se_sys_memfd_create+0x1cc/0x590
[   36.806646][ T3925]  should_failslab+0x8c/0xb0
[   36.806700][ T3925]  __kmalloc_cache_noprof+0x4c/0x320
[   36.806727][ T3925]  __se_sys_memfd_create+0x1cc/0x590
[   36.806759][ T3925]  __x64_sys_memfd_create+0x31/0x40
[   36.806799][ T3925]  x64_sys_call+0x122f/0x2fb0
[   36.806885][ T3925]  do_syscall_64+0xd2/0x200
[   36.806900][ T3925]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   36.806930][ T3925]  ? clear_bhb_loop+0x40/0x90
[   36.806953][ T3925]  ? clear_bhb_loop+0x40/0x90
[   36.807044][ T3925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   36.807066][ T3925] RIP: 0033:0x7f1df9f3e929
[   36.807083][ T3925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   36.807101][ T3925] RSP: 002b:00007f1df85a6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   36.807121][ T3925] RAX: ffffffffffffffda RBX: 0000000000000436 RCX: 00007f1df9f3e929
[   36.807142][ T3925] RDX: 00007f1df85a6ef0 RSI: 0000000000000000 RDI: 00007f1df9fc14cc
[   36.807152][ T3925] RBP: 0000200000001100 R08: 00007f1df85a6bb7 R09: 00007f1df85a6e40
[   36.807164][ T3925] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[   36.807174][ T3925] R13: 00007f1df85a6ef0 R14: 00007f1df85a6eb0 R15: 0000200000000300
[   36.807190][ T3925]  </TASK>
[   37.037037][ T3928] netlink: 332 bytes leftover after parsing attributes in process `syz.2.92'.
[   37.178812][ T3945] loop4: detected capacity change from 0 to 1024
[   37.209039][ T3954] loop5: detected capacity change from 0 to 1024
[   37.222916][ T3954] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.40: Failed to acquire dquot type 0
[   37.254827][ T3954] EXT4-fs (loop5): 1 truncate cleaned up
[   37.280588][ T3954] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.294460][ T3948] random: crng reseeded on system resumption
[   37.339972][ T3968] IPv6: Can't replace route, no match found
[   37.465124][ T3629] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.514168][ T3978] netlink: 16 bytes leftover after parsing attributes in process `syz.4.101'.
[   37.526764][ T3978] bridge0: entered promiscuous mode
[   37.544782][ T3978] bridge0: port 3(macvlan2) entered blocking state
[   37.551410][ T3978] bridge0: port 3(macvlan2) entered disabled state
[   37.558851][ T3978] macvlan2: entered allmulticast mode
[   37.564575][ T3978] bridge0: entered allmulticast mode
[   37.592355][ T3978] macvlan2: left allmulticast mode
[   37.597527][ T3978] bridge0: left allmulticast mode
[   37.622881][ T3978] bridge0: left promiscuous mode
[   37.635399][ T3993] netlink: 14 bytes leftover after parsing attributes in process `syz.3.104'.
[   37.677639][ T3993] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   37.696095][ T3993] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   37.715445][ T3993] bond0 (unregistering): Released all slaves
[   37.779500][ T4000] openvswitch: netlink: Message has 6 unknown bytes.
[   37.937869][ T4008] loop3: detected capacity change from 0 to 8192
[   37.988777][ T4010] netlink: 332 bytes leftover after parsing attributes in process `syz.2.110'.
[   38.237428][ T4022] loop2: detected capacity change from 0 to 8192
[   38.451616][ T4035] IPv6: Can't replace route, no match found
[   38.489189][ T4037] Cannot find del_set index 0 as target
[   38.500864][ T4037] 9pnet_fd: Insufficient options for proto=fd
[   38.527048][ T4041] syz.5.121 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   38.563113][ T4047] loop2: detected capacity change from 0 to 512
[   38.574332][ T4047] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   38.587495][ T4047] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   38.614225][ T4047] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   38.634268][ T4052] netlink: 'syz.4.126': attribute type 3 has an invalid length.
[   38.660023][ T4052] netlink: 'syz.4.126': attribute type 3 has an invalid length.
[   38.673642][ T4047] EXT4-fs (loop2): 1 truncate cleaned up
[   38.679831][ T4047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.716582][ T4061] IPv6: Can't replace route, no match found
[   38.737501][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.758409][ T4066] loop2: detected capacity change from 0 to 128
[   38.767742][ T4066] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   38.789541][ T4066] ext4 filesystem being mounted at /32/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   38.844504][ T3304] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   38.880866][ T4076] rdma_rxe: rxe_newlink: failed to add lo
[   38.919549][ T4080] loop2: detected capacity change from 0 to 1024
[   38.942094][ T4084] netlink: 332 bytes leftover after parsing attributes in process `syz.4.139'.
[   38.971261][ T4086] netlink: 332 bytes leftover after parsing attributes in process `syz.2.140'.
[   39.007183][ T4091] program syz.4.143 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   39.017106][ T4091] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[   39.028980][ T4091] loop4: detected capacity change from 0 to 512
[   39.048412][ T4091] EXT4-fs: Ignoring removed mblk_io_submit option
[   39.060363][ T4091] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   39.072115][ T4091] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   39.080941][ T4091] EXT4-fs (loop4): orphan cleanup on readonly fs
[   39.088774][ T4091] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.143: Invalid block bitmap block 0 in block_group 0
[   39.103538][ T4091] EXT4-fs (loop4): Remounting filesystem read-only
[   39.110202][ T4091] EXT4-fs (loop4): 1 orphan inode deleted
[   39.117582][ T4091] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.140531][ T4097] netlink: 'syz.3.144': attribute type 10 has an invalid length.
[   39.148787][ T4097] netlink: 40 bytes leftover after parsing attributes in process `syz.3.144'.
[   39.161032][ T4091] netlink: 4 bytes leftover after parsing attributes in process `syz.4.143'.
[   39.203464][ T4101] loop3: detected capacity change from 0 to 512
[   39.210128][ T4101] EXT4-fs: Ignoring removed bh option
[   39.220058][ T4102] EXT4-fs (loop4): shut down requested (1)
[   39.236647][ T4097] team0: Port device geneve1 added
[   39.246100][ T4101] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   39.255429][ T4101] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[   39.269726][ T4105] binfmt_misc: register: failed to install interpreter file ./file2
[   39.279009][ T4101] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[   39.288571][ T4101] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   39.311413][ T4101] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.371242][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.396197][ T4113] FAULT_INJECTION: forcing a failure.
[   39.396197][ T4113] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   39.409568][ T4113] CPU: 1 UID: 0 PID: 4113 Comm: syz.3.149 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   39.409593][ T4113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   39.409606][ T4113] Call Trace:
[   39.409613][ T4113]  <TASK>
[   39.409627][ T4113]  __dump_stack+0x1d/0x30
[   39.409645][ T4113]  dump_stack_lvl+0xe8/0x140
[   39.409661][ T4113]  dump_stack+0x15/0x1b
[   39.409675][ T4113]  should_fail_ex+0x265/0x280
[   39.409781][ T4113]  should_fail_alloc_page+0xf2/0x100
[   39.409801][ T4113]  __alloc_frozen_pages_noprof+0xff/0x360
[   39.409862][ T4113]  alloc_pages_mpol+0xb3/0x250
[   39.409890][ T4113]  vma_alloc_folio_noprof+0x1aa/0x300
[   39.410007][ T4113]  handle_mm_fault+0xec2/0x2be0
[   39.410036][ T4113]  ? __rcu_read_unlock+0x4f/0x70
[   39.410063][ T4113]  do_user_addr_fault+0x3fe/0x1090
[   39.410090][ T4113]  ? update_curr+0x16e/0x320
[   39.410114][ T4113]  exc_page_fault+0x62/0xa0
[   39.410149][ T4113]  asm_exc_page_fault+0x26/0x30
[   39.410171][ T4113] RIP: 0010:rep_movs_alternative+0x33/0x90
[   39.410199][ T4113] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 3d f1 01 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[   39.410213][ T4113] RSP: 0018:ffffc900018dfc70 EFLAGS: 00050212
[   39.410226][ T4113] RAX: 0000000200000001 RBX: 0000000000000010 RCX: 0000000000000010
[   39.410238][ T4113] RDX: 0000000000000000 RSI: ffffc900018dfd10 RDI: 0000200000001640
[   39.410270][ T4113] RBP: 0000000000000001 R08: 0000000000000298 R09: 0000000000000000
[   39.410282][ T4113] R10: 0001c900018dfd10 R11: 0001c900018dfd1f R12: 0000200000001650
[   39.410294][ T4113] R13: 00007ffffffff000 R14: 0000200000001640 R15: ffffc900018dfd10
[   39.410313][ T4113]  _copy_to_user+0x7c/0xa0
[   39.410334][ T4113]  inotify_read+0x1d9/0x600
[   39.410364][ T4113]  ? __pfx_woken_wake_function+0x10/0x10
[   39.410399][ T4113]  ? __pfx_inotify_read+0x10/0x10
[   39.410431][ T4113]  vfs_readv+0x3fb/0x690
[   39.410517][ T4113]  do_readv+0xe7/0x210
[   39.410579][ T4113]  __x64_sys_readv+0x45/0x50
[   39.410594][ T4113]  x64_sys_call+0x29af/0x2fb0
[   39.410613][ T4113]  do_syscall_64+0xd2/0x200
[   39.410632][ T4113]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   39.410724][ T4113]  ? clear_bhb_loop+0x40/0x90
[   39.410741][ T4113]  ? clear_bhb_loop+0x40/0x90
[   39.410759][ T4113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.410779][ T4113] RIP: 0033:0x7f081c89e929
[   39.410794][ T4113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.410848][ T4113] RSP: 002b:00007f081af07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[   39.410863][ T4113] RAX: ffffffffffffffda RBX: 00007f081cac5fa0 RCX: 00007f081c89e929
[   39.410873][ T4113] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: 0000000000000005
[   39.410884][ T4113] RBP: 00007f081af07090 R08: 0000000000000000 R09: 0000000000000000
[   39.410897][ T4113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   39.410909][ T4113] R13: 0000000000000000 R14: 00007f081cac5fa0 R15: 00007ffd0c5957d8
[   39.410925][ T4113]  </TASK>
[   39.815642][ T4122] syzkaller1: entered promiscuous mode
[   39.821282][ T4122] syzkaller1: entered allmulticast mode
[   39.873577][ T4124] loop2: detected capacity change from 0 to 8192
[   40.047893][ T4091] syz.4.143 (4091) used greatest stack depth: 9608 bytes left
[   40.147677][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.239233][ T4133] loop4: detected capacity change from 0 to 2048
[   40.315065][ T4136] loop0: detected capacity change from 0 to 512
[   40.321923][ T4136] EXT4-fs: Ignoring removed mblk_io_submit option
[   40.328440][ T4136] EXT4-fs: Ignoring removed bh option
[   40.338874][ T4136] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   40.461527][ T4136] EXT4-fs (loop0): 1 truncate cleaned up
[   40.468222][ T4136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.516417][ T4133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.549271][   T29] kauditd_printk_skb: 472 callbacks suppressed
[   40.549285][   T29] audit: type=1400 audit(1752606143.636:926): avc:  denied  { read } for  pid=4132 comm="syz.4.156" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   40.554905][ T4144] loop2: detected capacity change from 0 to 512
[   40.555510][   T29] audit: type=1400 audit(1752606143.636:927): avc:  denied  { open } for  pid=4132 comm="syz.4.156" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   40.580402][ T4144] EXT4-fs: Ignoring removed bh option
[   40.614320][ T4144] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   40.618757][   T29] audit: type=1400 audit(1752606143.686:928): avc:  denied  { ioctl } for  pid=4132 comm="syz.4.156" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   40.623399][ T4144] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[   40.660560][ T4144] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[   40.673285][ T4144] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[   40.684560][ T4144] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.780779][   T29] audit: type=1326 audit(1752606143.876:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   40.804177][   T29] audit: type=1326 audit(1752606143.876:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   40.827506][   T29] audit: type=1326 audit(1752606143.876:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   40.850807][   T29] audit: type=1326 audit(1752606143.876:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   40.874099][   T29] audit: type=1326 audit(1752606143.876:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   40.897674][   T29] audit: type=1326 audit(1752606143.876:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   40.977712][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.995168][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.000925][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.052949][   T29] audit: type=1326 audit(1752606144.056:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4143 comm="syz.2.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1df9f3e929 code=0x7ffc0000
[   41.093657][ T4165] wireguard0: entered promiscuous mode
[   41.099170][ T4165] wireguard0: entered allmulticast mode
[   41.154324][ T4172] loop2: detected capacity change from 0 to 1024
[   41.174801][ T4172] EXT4-fs: Ignoring removed orlov option
[   41.323680][ T4172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.347493][ T4183] rdma_rxe: rxe_newlink: failed to add lo
[   41.380333][ T4180] loop0: detected capacity change from 0 to 2048
[   41.384754][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.398720][ T4180] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.405228][ T4180] EXT4-fs: Ignoring removed i_version option
[   41.443520][ T4189] loop2: detected capacity change from 0 to 512
[   41.465320][ T4180] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.481253][ T4189] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.560808][ T4189] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.575038][ T4189] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.607973][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.647163][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.719788][ T4209] IPv6: NLM_F_CREATE should be specified when creating new route
[   41.734108][ T4210] loop4: detected capacity change from 0 to 512
[   41.740893][ T4210] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.747330][ T4210] EXT4-fs: Ignoring removed bh option
[   41.753303][ T4210] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   41.778132][ T4209] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   41.787991][ T4209] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   41.819420][ T4211] No such timeout policy "syz1"
[   41.892461][ T4210] EXT4-fs (loop4): 1 truncate cleaned up
[   41.899084][ T4210] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.996941][ T4205] loop3: detected capacity change from 0 to 8192
[   42.034770][ T4215] __nla_validate_parse: 8 callbacks suppressed
[   42.034784][ T4215] netlink: 320 bytes leftover after parsing attributes in process `syz.2.178'.
[   42.273666][ T4222] loop3: detected capacity change from 0 to 8192
[   42.393217][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.419474][ T4230] loop3: detected capacity change from 0 to 1024
[   42.467272][ T4230] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.186: Failed to acquire dquot type 0
[   42.493803][ T4230] EXT4-fs (loop3): 1 truncate cleaned up
[   42.502051][ T4230] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.532175][ T4243] pimreg: entered allmulticast mode
[   42.541008][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.597070][ T4249] loop3: detected capacity change from 0 to 2048
[   42.604204][ T4249] EXT4-fs: Ignoring removed mblk_io_submit option
[   42.610802][ T4249] EXT4-fs: Ignoring removed i_version option
[   42.625010][ T4252] rdma_rxe: rxe_newlink: failed to add lo
[   42.635824][ T4249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.661299][ T4258] loop0: detected capacity change from 0 to 1024
[   42.673950][ T4258] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.700225][ T4258] netlink: 8 bytes leftover after parsing attributes in process `syz.0.193'.
[   42.710477][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.727603][ T4258] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.193: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[   42.759859][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.775660][ T4262] loop3: detected capacity change from 0 to 1024
[   42.793201][ T4262] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.824280][ T4269] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.839319][ T4262] usb usb8: usbfs: process 4262 (syz.3.194) did not claim interface 0 before use
[   42.856948][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.868578][ T4269] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.933641][ T4269] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   42.951672][ T4275] netlink: 332 bytes leftover after parsing attributes in process `syz.2.198'.
[   42.984253][ T4269] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.028517][ T4277] SELinux: ebitmap: truncated map
[   43.034252][ T4277] SELinux: failed to load policy
[   43.050450][ T4269] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   43.067067][ T4269] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   43.082471][ T4269] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   43.102321][ T4283] FAULT_INJECTION: forcing a failure.
[   43.102321][ T4283] name failslab, interval 1, probability 0, space 0, times 0
[   43.112275][ T4269] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   43.115039][ T4283] CPU: 1 UID: 0 PID: 4283 Comm: syz.3.202 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   43.115068][ T4283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   43.115138][ T4283] Call Trace:
[   43.115145][ T4283]  <TASK>
[   43.115152][ T4283]  __dump_stack+0x1d/0x30
[   43.115173][ T4283]  dump_stack_lvl+0xe8/0x140
[   43.115192][ T4283]  dump_stack+0x15/0x1b
[   43.115208][ T4283]  should_fail_ex+0x265/0x280
[   43.115292][ T4283]  should_failslab+0x8c/0xb0
[   43.115313][ T4283]  kmem_cache_alloc_node_noprof+0x57/0x320
[   43.115355][ T4283]  ? __alloc_skb+0x101/0x320
[   43.115410][ T4283]  __alloc_skb+0x101/0x320
[   43.115437][ T4283]  netlink_alloc_large_skb+0xba/0xf0
[   43.115466][ T4283]  netlink_sendmsg+0x3cf/0x6b0
[   43.115500][ T4283]  ? __pfx_netlink_sendmsg+0x10/0x10
[   43.115558][ T4283]  __sock_sendmsg+0x145/0x180
[   43.115626][ T4283]  ____sys_sendmsg+0x31e/0x4e0
[   43.115659][ T4283]  ___sys_sendmsg+0x17b/0x1d0
[   43.115705][ T4283]  __x64_sys_sendmsg+0xd4/0x160
[   43.115860][ T4283]  x64_sys_call+0x2999/0x2fb0
[   43.115880][ T4283]  do_syscall_64+0xd2/0x200
[   43.115898][ T4283]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   43.115976][ T4283]  ? clear_bhb_loop+0x40/0x90
[   43.116007][ T4283]  ? clear_bhb_loop+0x40/0x90
[   43.116029][ T4283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   43.116050][ T4283] RIP: 0033:0x7f081c89e929
[   43.116130][ T4283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   43.116147][ T4283] RSP: 002b:00007f081af07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   43.116204][ T4283] RAX: ffffffffffffffda RBX: 00007f081cac5fa0 RCX: 00007f081c89e929
[   43.116217][ T4283] RDX: 0000000000008840 RSI: 0000200000000240 RDI: 0000000000000006
[   43.116289][ T4283] RBP: 00007f081af07090 R08: 0000000000000000 R09: 0000000000000000
[   43.116301][ T4283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   43.116313][ T4283] R13: 0000000000000000 R14: 00007f081cac5fa0 R15: 00007ffd0c5957d8
[   43.116330][ T4283]  </TASK>
[   43.354633][ T4243] pimreg: left allmulticast mode
[   43.401082][ T4289] loop2: detected capacity change from 0 to 8192
[   43.474601][ T4303] loop5: detected capacity change from 0 to 512
[   43.522469][ T4303] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -13
[   43.522921][ T4309] netlink: 332 bytes leftover after parsing attributes in process `syz.3.213'.
[   43.539832][ T4303] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #13: comm syz.5.210: iget: bad i_size value: 12154757448730
[   43.539845][ T4289] tipc: Enabling of bearer <udp:£> rejected, already enabled
[   43.561578][ T4303] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.210: couldn't read orphan inode 13 (err -117)
[   43.580886][ T4300] loop4: detected capacity change from 0 to 8192
[   43.633165][ T4303] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.664963][ T4314] loop2: detected capacity change from 0 to 1024
[   43.696487][ T4303] EXT4-fs warning (device loop5): ext4_lookup:1799: Inconsistent encryption contexts: 2/12
[   43.722065][ T4317] dvmrp5: entered allmulticast mode
[   43.760906][ T4317] pimreg: entered allmulticast mode
[   43.792457][ T4314] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.832762][ T4310] netlink: 'syz.0.212': attribute type 3 has an invalid length.
[   43.913440][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.940595][ T3629] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.966966][ T4325] loop4: detected capacity change from 0 to 164
[   44.001443][ T4325] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   44.001567][ T4330] loop2: detected capacity change from 0 to 512
[   44.035630][ T4325] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   44.061615][ T4325] Symlink component flag not implemented
[   44.067301][ T4325] Symlink component flag not implemented
[   44.073695][ T4325] Symlink component flag not implemented (7)
[   44.079689][ T4325] Symlink component flag not implemented (116)
[   44.104067][ T4330] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   44.163989][ T4330] EXT4-fs (loop2): mount failed
[   44.633498][ T4352] lo speed is unknown, defaulting to 1000
[   44.696025][ T4352] loop3: detected capacity change from 0 to 512
[   44.702689][ T4352] EXT4-fs: Ignoring removed mblk_io_submit option
[   44.709276][ T4352] EXT4-fs: Ignoring removed bh option
[   44.717146][ T4352] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   44.728512][ T4352] EXT4-fs (loop3): 1 truncate cleaned up
[   44.734578][ T4352] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.052708][ T4358] IPv6: Can't replace route, no match found
[   45.081563][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.116496][ T4355] loop4: detected capacity change from 0 to 8192
[   45.159727][ T4363] netlink: 4 bytes leftover after parsing attributes in process `syz.2.233'.
[   45.178930][ T4367] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   45.185498][ T4367] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   45.193105][ T4367] vhci_hcd vhci_hcd.0: Device attached
[   45.214655][ T4365] loop0: detected capacity change from 0 to 512
[   45.239444][ T4365] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.314318][ T4375] loop3: detected capacity change from 0 to 128
[   45.320933][ T4365] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   45.328833][ T4365] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[   45.357446][ T4375] /dev/loop3: Can't open blockdev
[   45.369322][ T4365] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[   45.378880][ T4365] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[   45.397111][ T4367] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(8)
[   45.397458][ T4365] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   45.403656][ T4367] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   45.403731][ T4367] vhci_hcd vhci_hcd.0: Device attached
[   45.440420][ T3420] usb 7-1: new low-speed USB device number 2 using vhci_hcd
[   45.473091][ T4375] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(6)
[   45.479708][ T4375] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   45.487352][ T4375] vhci_hcd vhci_hcd.0: Device attached
[   45.500189][ T4381] loop5: detected capacity change from 0 to 164
[   45.508391][ T4365] netlink: 132 bytes leftover after parsing attributes in process `syz.0.232'.
[   45.538802][ T4367] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   45.547849][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.566283][   T29] kauditd_printk_skb: 331 callbacks suppressed
[   45.566296][   T29] audit: type=1400 audit(1752606148.656:1264): avc:  denied  { write } for  pid=4385 comm="syz.2.236" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[   45.593229][ T4367] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(12)
[   45.599846][ T4367] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   45.607409][ T4367] vhci_hcd vhci_hcd.0: Device attached
[   45.612295][ T4381] ISOFS: unable to read i-node block
[   45.618247][ T4381] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   45.646284][ T4375] vhci_hcd vhci_hcd.0: pdev(3) rhport(5) sockfd(8)
[   45.652829][ T4375] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   45.660549][ T4375] vhci_hcd vhci_hcd.0: Device attached
[   45.689709][ T4367] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   45.728753][ T4367] vhci_hcd vhci_hcd.0: pdev(3) rhport(7) sockfd(16)
[   45.735388][ T4367] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   45.743111][ T4367] vhci_hcd vhci_hcd.0: Device attached
[   45.800052][ T4404] netlink: 8 bytes leftover after parsing attributes in process `syz.2.240'.
[   45.827727][ T4395] vhci_hcd: connection closed
[   45.827884][   T58] vhci_hcd: stop threads
[   45.832918][ T4382] vhci_hcd: connection closed
[   45.836923][   T58] vhci_hcd: release socket
[   45.836951][   T58] vhci_hcd: disconnect device
[   45.900698][   T12] vhci_hcd: stop threads
[   45.905026][   T12] vhci_hcd: release socket
[   45.909446][   T12] vhci_hcd: disconnect device
[   45.959541][ T4409] loop0: detected capacity change from 0 to 2048
[   45.977943][ T4409] EXT4-fs: Ignoring removed mblk_io_submit option
[   45.984510][ T4409] EXT4-fs: Ignoring removed i_version option
[   46.036544][   T29] audit: type=1400 audit(1752606149.106:1265): avc:  denied  { ioctl } for  pid=4410 comm="syz.2.243" path="socket:[7379]" dev="sockfs" ino=7379 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   46.103735][ T4409] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.109924][   T29] audit: type=1400 audit(1752606149.156:1266): avc:  denied  { read append } for  pid=4415 comm="syz.2.244" name="event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   46.139490][   T29] audit: type=1400 audit(1752606149.156:1267): avc:  denied  { open } for  pid=4415 comm="syz.2.244" path="/dev/input/event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   46.163634][   T29] audit: type=1400 audit(1752606149.156:1268): avc:  denied  { ioctl } for  pid=4415 comm="syz.2.244" path="/dev/input/event0" dev="devtmpfs" ino=242 ioctlcmd=0x4508 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   46.195630][ T4421] loop2: detected capacity change from 0 to 1024
[   46.221566][ T4421] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.259144][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.273429][ T4421] usb usb8: usbfs: process 4421 (syz.2.245) did not claim interface 0 before use
[   46.293644][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.327635][ T4426] loop2: detected capacity change from 0 to 512
[   46.346895][ T4429] loop0: detected capacity change from 0 to 128
[   46.349931][   T29] audit: type=1400 audit(1752606149.436:1269): avc:  denied  { create } for  pid=4428 comm="syz.0.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.372463][ T4378] vhci_hcd: connection closed
[   46.372551][   T29] audit: type=1400 audit(1752606149.436:1270): avc:  denied  { ioctl } for  pid=4428 comm="syz.0.246" path="socket:[8333]" dev="sockfs" ino=8333 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.372947][ T4368] vhci_hcd: connection reset by peer
[   46.377273][   T29] audit: type=1400 audit(1752606149.436:1271): avc:  denied  { connect } for  pid=4428 comm="syz.0.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.426741][   T29] audit: type=1400 audit(1752606149.436:1272): avc:  denied  { write } for  pid=4428 comm="syz.0.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   46.430319][ T4399] vhci_hcd: connection closed
[   46.446022][   T29] audit: type=1400 audit(1752606149.436:1273): avc:  denied  { ioctl } for  pid=4428 comm="syz.0.246" path="socket:[8334]" dev="sockfs" ino=8334 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   46.479292][ T4387] vhci_hcd: connection closed
[   46.485138][   T58] vhci_hcd: stop threads
[   46.494179][   T58] vhci_hcd: release socket
[   46.498644][   T58] vhci_hcd: disconnect device
[   46.509542][ T4429] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[   46.552522][ T4429] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[   46.582038][   T58] vhci_hcd: stop threads
[   46.586308][   T58] vhci_hcd: release socket
[   46.590835][   T58] vhci_hcd: disconnect device
[   46.610951][ T4435] mmap: syz.2.249 (4435) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   46.615765][ T4438] netlink: 'syz.3.250': attribute type 13 has an invalid length.
[   46.625195][   T58] vhci_hcd: stop threads
[   46.631645][ T4429] EXT4-fs error (device loop0): __ext4_find_entry:1626: inode #2: comm syz.0.246: checksumming directory block 0
[   46.635041][   T58] vhci_hcd: release socket
[   46.635054][   T58] vhci_hcd: disconnect device
[   46.690399][   T58] vhci_hcd: stop threads
[   46.694732][   T58] vhci_hcd: release socket
[   46.699181][   T58] vhci_hcd: disconnect device
[   46.707882][ T4438] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   46.723635][   T10] lo speed is unknown, defaulting to 1000
[   46.742733][ T3307] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   46.792602][ T4445] IPv6: Can't replace route, no match found
[   46.967500][ T4461] loop0: detected capacity change from 0 to 512
[   46.981147][ T4461] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   47.183545][ T4469] usb usb8: usbfs: process 4469 (syz.5.257) did not claim interface 0 before use
[   47.337543][ T4461] EXT4-fs (loop0): 1 truncate cleaned up
[   47.343847][ T4461] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.369478][ T4461] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.388571][ T4473] IPv6: Can't replace route, no match found
[   47.476699][ T4479] IPv6: Can't replace route, no match found
[   47.544420][ T4484] loop0: detected capacity change from 0 to 128
[   47.589459][ T4486] rdma_rxe: rxe_newlink: failed to add lo
[   47.634987][    T9] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   47.649210][    T9] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   47.676666][ T4494] loop4: detected capacity change from 0 to 1024
[   47.772613][ T4500] loop0: detected capacity change from 0 to 1024
[   47.790374][ T4494] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.807148][ T4500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.825274][ T4498] loop2: detected capacity change from 0 to 8192
[   47.848871][ T4494] usb usb8: usbfs: process 4494 (syz.4.268) did not claim interface 0 before use
[   47.859537][ T4508] loop3: detected capacity change from 0 to 128
[   47.867541][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.919718][ T4513] siw: device registration error -23
[   47.933292][ T4500] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[   47.953083][ T4508] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   48.020463][ T4508] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.059018][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.090854][ T4508] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   48.109653][ T4533] netlink: 12 bytes leftover after parsing attributes in process `,&#^%'.
[   48.111615][ T4535] netlink: 12 bytes leftover after parsing attributes in process `syz.0.275'.
[   48.112666][ T4508] netlink: 8 bytes leftover after parsing attributes in process `syz.3.272'.
[   48.139122][ T4535] netlink: 12 bytes leftover after parsing attributes in process `syz.0.275'.
[   48.161039][ T4531] netlink: 12 bytes leftover after parsing attributes in process `,&#^%'.
[   48.223451][ T4545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.276'.
[   48.280119][ T4545] IPVS: Error joining to the multicast group
[   48.287198][ T4554] netlink: 4 bytes leftover after parsing attributes in process `syz.0.278'.
[   48.398870][ T4564] netlink: 'syz.4.274': attribute type 10 has an invalid length.
[   48.406756][ T4564] netlink: 40 bytes leftover after parsing attributes in process `syz.4.274'.
[   48.420431][ T4564] team0: Port device geneve1 added
[   48.440796][ T4565] IPv6: Can't replace route, no match found
[   48.493980][ T4547] team0 (unregistering): Port device team_slave_0 removed
[   48.523067][ T4568] rdma_rxe: rxe_newlink: failed to add lo
[   48.560866][ T4547] team0 (unregistering): Port device team_slave_1 removed
[   48.604801][ T4547] team0 (unregistering): Port device geneve1 removed
[   48.731872][ T4597] FAULT_INJECTION: forcing a failure.
[   48.731872][ T4597] name failslab, interval 1, probability 0, space 0, times 0
[   48.744668][ T4597] CPU: 1 UID: 0 PID: 4597 Comm: syz.2.286 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   48.744694][ T4597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   48.744706][ T4597] Call Trace:
[   48.744713][ T4597]  <TASK>
[   48.744720][ T4597]  __dump_stack+0x1d/0x30
[   48.744798][ T4597]  dump_stack_lvl+0xe8/0x140
[   48.744814][ T4597]  dump_stack+0x15/0x1b
[   48.744828][ T4597]  should_fail_ex+0x265/0x280
[   48.744857][ T4597]  ? bpf_uprobe_multi_link_attach+0x318/0x8f0
[   48.744923][ T4597]  should_failslab+0x8c/0xb0
[   48.744945][ T4597]  __kmalloc_cache_noprof+0x4c/0x320
[   48.744974][ T4597]  bpf_uprobe_multi_link_attach+0x318/0x8f0
[   48.745003][ T4597]  ? kstrtouint+0x76/0xc0
[   48.745077][ T4597]  ? __rcu_read_unlock+0x4f/0x70
[   48.745096][ T4597]  ? __fget_files+0x184/0x1c0
[   48.745113][ T4597]  link_create+0x666/0x6c0
[   48.745129][ T4597]  __sys_bpf+0x4c7/0x790
[   48.745231][ T4597]  __x64_sys_bpf+0x41/0x50
[   48.745258][ T4597]  x64_sys_call+0x2478/0x2fb0
[   48.745276][ T4597]  do_syscall_64+0xd2/0x200
[   48.745291][ T4597]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   48.745386][ T4597]  ? clear_bhb_loop+0x40/0x90
[   48.745451][ T4597]  ? clear_bhb_loop+0x40/0x90
[   48.745470][ T4597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.745493][ T4597] RIP: 0033:0x7f1df9f3e929
[   48.745521][ T4597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.745539][ T4597] RSP: 002b:00007f1df85a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   48.745600][ T4597] RAX: ffffffffffffffda RBX: 00007f1dfa165fa0 RCX: 00007f1df9f3e929
[   48.745611][ T4597] RDX: 0000000000000040 RSI: 00002000000005c0 RDI: 000000000000001c
[   48.745622][ T4597] RBP: 00007f1df85a7090 R08: 0000000000000000 R09: 0000000000000000
[   48.745632][ T4597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   48.745643][ T4597] R13: 0000000000000000 R14: 00007f1dfa165fa0 R15: 00007fff4271d348
[   48.745716][ T4597]  </TASK>
[   48.807241][ T4610] lo speed is unknown, defaulting to 1000
[   49.148556][ T4630] veth0_vlan: entered allmulticast mode
[   49.241822][ T4635] program syz.2.292 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   49.259837][ T4635] netlink: 8 bytes leftover after parsing attributes in process `syz.2.292'.
[   49.259910][ T4626] siw: device registration error -23
[   49.278537][ T4635] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4635 comm=syz.2.292
[   49.298684][ T4635] netlink: 28 bytes leftover after parsing attributes in process `syz.2.292'.
[   49.506662][ T4634] lo speed is unknown, defaulting to 1000
[   49.587330][ T4643] FAULT_INJECTION: forcing a failure.
[   49.587330][ T4643] name failslab, interval 1, probability 0, space 0, times 0
[   49.600090][ T4643] CPU: 0 UID: 0 PID: 4643 Comm: syz.2.294 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   49.600200][ T4643] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.600211][ T4643] Call Trace:
[   49.600217][ T4643]  <TASK>
[   49.600224][ T4643]  __dump_stack+0x1d/0x30
[   49.600246][ T4643]  dump_stack_lvl+0xe8/0x140
[   49.600323][ T4643]  dump_stack+0x15/0x1b
[   49.600339][ T4643]  should_fail_ex+0x265/0x280
[   49.600367][ T4643]  should_failslab+0x8c/0xb0
[   49.600388][ T4643]  __kvmalloc_node_noprof+0x123/0x4e0
[   49.600415][ T4643]  ? seq_read_iter+0x13e/0x940
[   49.600505][ T4643]  seq_read_iter+0x13e/0x940
[   49.600525][ T4643]  ? kstrtouint_from_user+0x9f/0xf0
[   49.600558][ T4643]  ? 0xffffffff81000000
[   49.600574][ T4643]  kernfs_fop_read_iter+0xc4/0x300
[   49.600598][ T4643]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[   49.600647][ T4643]  vfs_read+0x5ca/0x6f0
[   49.600677][ T4643]  ? __pfx_kernfs_fop_read_iter+0x10/0x10
[   49.600703][ T4643]  ksys_read+0xda/0x1a0
[   49.600735][ T4643]  __x64_sys_read+0x40/0x50
[   49.600798][ T4643]  x64_sys_call+0x2d77/0x2fb0
[   49.600820][ T4643]  do_syscall_64+0xd2/0x200
[   49.600839][ T4643]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.600876][ T4643]  ? clear_bhb_loop+0x40/0x90
[   49.600896][ T4643]  ? clear_bhb_loop+0x40/0x90
[   49.600982][ T4643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.601003][ T4643] RIP: 0033:0x7f1df9f3e929
[   49.601019][ T4643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.601034][ T4643] RSP: 002b:00007f1df85a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   49.601053][ T4643] RAX: ffffffffffffffda RBX: 00007f1dfa165fa0 RCX: 00007f1df9f3e929
[   49.601070][ T4643] RDX: 00000000000000b3 RSI: 0000200000001980 RDI: 0000000000000005
[   49.601125][ T4643] RBP: 00007f1df85a7090 R08: 0000000000000000 R09: 0000000000000000
[   49.601137][ T4643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.601149][ T4643] R13: 0000000000000000 R14: 00007f1dfa165fa0 R15: 00007fff4271d348
[   49.601167][ T4643]  </TASK>
[   49.948046][ T4648] FAULT_INJECTION: forcing a failure.
[   49.948046][ T4648] name failslab, interval 1, probability 0, space 0, times 0
[   49.960780][ T4648] CPU: 0 UID: 0 PID: 4648 Comm: syz.2.297 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   49.960868][ T4648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.960880][ T4648] Call Trace:
[   49.960886][ T4648]  <TASK>
[   49.960894][ T4648]  __dump_stack+0x1d/0x30
[   49.960916][ T4648]  dump_stack_lvl+0xe8/0x140
[   49.960935][ T4648]  dump_stack+0x15/0x1b
[   49.960954][ T4648]  should_fail_ex+0x265/0x280
[   49.960985][ T4648]  should_failslab+0x8c/0xb0
[   49.961007][ T4648]  kmem_cache_alloc_noprof+0x50/0x310
[   49.961032][ T4648]  ? skb_clone+0x151/0x1f0
[   49.961099][ T4648]  skb_clone+0x151/0x1f0
[   49.961117][ T4648]  __netlink_deliver_tap+0x2c9/0x500
[   49.961212][ T4648]  netlink_unicast+0x653/0x680
[   49.961301][ T4648]  netlink_sendmsg+0x58b/0x6b0
[   49.961321][ T4648]  ? __pfx_netlink_sendmsg+0x10/0x10
[   49.961387][ T4648]  __sock_sendmsg+0x145/0x180
[   49.961410][ T4648]  ____sys_sendmsg+0x31e/0x4e0
[   49.961443][ T4648]  ___sys_sendmsg+0x17b/0x1d0
[   49.961503][ T4648]  __x64_sys_sendmsg+0xd4/0x160
[   49.961541][ T4648]  x64_sys_call+0x2999/0x2fb0
[   49.961563][ T4648]  do_syscall_64+0xd2/0x200
[   49.961582][ T4648]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.961609][ T4648]  ? clear_bhb_loop+0x40/0x90
[   49.961680][ T4648]  ? clear_bhb_loop+0x40/0x90
[   49.961709][ T4648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.961808][ T4648] RIP: 0033:0x7f1df9f3e929
[   49.961824][ T4648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.961842][ T4648] RSP: 002b:00007f1df85a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   49.961862][ T4648] RAX: ffffffffffffffda RBX: 00007f1dfa165fa0 RCX: 00007f1df9f3e929
[   49.961875][ T4648] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[   49.961900][ T4648] RBP: 00007f1df85a7090 R08: 0000000000000000 R09: 0000000000000000
[   49.961913][ T4648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.961925][ T4648] R13: 0000000000000000 R14: 00007f1dfa165fa0 R15: 00007fff4271d348
[   49.961952][ T4648]  </TASK>
[   50.312634][ T4662] netlink: 'syz.2.304': attribute type 6 has an invalid length.
[   50.345346][ T4662] FAULT_INJECTION: forcing a failure.
[   50.345346][ T4662] name failslab, interval 1, probability 0, space 0, times 0
[   50.358088][ T4662] CPU: 0 UID: 0 PID: 4662 Comm: syz.2.304 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   50.358108][ T4662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.358116][ T4662] Call Trace:
[   50.358120][ T4662]  <TASK>
[   50.358125][ T4662]  __dump_stack+0x1d/0x30
[   50.358215][ T4662]  dump_stack_lvl+0xe8/0x140
[   50.358236][ T4662]  dump_stack+0x15/0x1b
[   50.358253][ T4662]  should_fail_ex+0x265/0x280
[   50.358277][ T4662]  should_failslab+0x8c/0xb0
[   50.358290][ T4662]  kmem_cache_alloc_noprof+0x50/0x310
[   50.358370][ T4662]  ? fib_table_insert+0x1ab/0xeb0
[   50.358384][ T4662]  fib_table_insert+0x1ab/0xeb0
[   50.358398][ T4662]  ? fib_trie_table+0xd0/0xf0
[   50.358410][ T4662]  ? fib_new_table+0x1ac/0x1c0
[   50.358480][ T4662]  inet_rtm_newroute+0xab/0x140
[   50.358577][ T4662]  ? __pfx_inet_rtm_newroute+0x10/0x10
[   50.358597][ T4662]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   50.358614][ T4662]  netlink_rcv_skb+0x120/0x220
[   50.358630][ T4662]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   50.358645][ T4662]  rtnetlink_rcv+0x1c/0x30
[   50.358681][ T4662]  netlink_unicast+0x5a5/0x680
[   50.358698][ T4662]  netlink_sendmsg+0x58b/0x6b0
[   50.358709][ T4662]  ? __pfx_netlink_sendmsg+0x10/0x10
[   50.358719][ T4662]  __sock_sendmsg+0x145/0x180
[   50.358796][ T4662]  ____sys_sendmsg+0x31e/0x4e0
[   50.358884][ T4662]  ___sys_sendmsg+0x17b/0x1d0
[   50.358908][ T4662]  __x64_sys_sendmsg+0xd4/0x160
[   50.358927][ T4662]  x64_sys_call+0x2999/0x2fb0
[   50.358950][ T4662]  do_syscall_64+0xd2/0x200
[   50.358960][ T4662]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.359008][ T4662]  ? clear_bhb_loop+0x40/0x90
[   50.359026][ T4662]  ? clear_bhb_loop+0x40/0x90
[   50.359101][ T4662]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.359159][ T4662] RIP: 0033:0x7f1df9f3e929
[   50.359169][ T4662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.359179][ T4662] RSP: 002b:00007f1df85a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   50.359190][ T4662] RAX: ffffffffffffffda RBX: 00007f1dfa165fa0 RCX: 00007f1df9f3e929
[   50.359197][ T4662] RDX: 0000000000000894 RSI: 0000200000000000 RDI: 0000000000000006
[   50.359204][ T4662] RBP: 00007f1df85a7090 R08: 0000000000000000 R09: 0000000000000000
[   50.359210][ T4662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.359217][ T4662] R13: 0000000000000000 R14: 00007f1dfa165fa0 R15: 00007fff4271d348
[   50.359294][ T4662]  </TASK>
[   50.620140][ T3420] usb 7-1: enqueue for inactive port 0
[   50.630331][ T3420] usb 7-1: enqueue for inactive port 0
[   50.645936][ T4667] loop2: detected capacity change from 0 to 1024
[   50.656033][ T4667] __quota_error: 3342 callbacks suppressed
[   50.656049][ T4667] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[   50.671093][ T4667] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[   50.680497][ T4667] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.306: Failed to acquire dquot type 0
[   50.692983][   T29] audit: type=1400 audit(1752606153.786:4604): avc:  denied  { connect } for  pid=4664 comm="syz.0.305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   50.705136][ T4667] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   50.727303][ T3420] vhci_hcd: vhci_device speed not set
[   50.774945][ T4667] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.306: corrupted inode contents
[   50.798541][ T4667] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #13: comm syz.2.306: mark_inode_dirty error
[   50.814403][ T4667] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.306: corrupted inode contents
[   50.826987][ T4667] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.306: mark_inode_dirty error
[   50.851096][ T4673] loop5: detected capacity change from 0 to 2048
[   50.857836][ T4673] EXT4-fs: Ignoring removed mblk_io_submit option
[   50.864303][ T4673] EXT4-fs: Ignoring removed i_version option
[   50.871361][ T4667] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.306: corrupted inode contents
[   50.884211][ T4667] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   50.899301][ T4673] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.915874][ T4667] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #13: comm syz.2.306: corrupted inode contents
[   50.929180][ T4667] EXT4-fs error (device loop2): ext4_truncate:4597: inode #13: comm syz.2.306: mark_inode_dirty error
[   50.940588][ T4667] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   50.951839][ T4667] EXT4-fs (loop2): 1 truncate cleaned up
[   50.957899][ T4667] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   50.985498][ T3629] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.005027][ T4667] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[   51.014154][ T4667] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[   51.023730][ T4667] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.306: Failed to acquire dquot type 0
[   51.027997][ T4680] loop5: detected capacity change from 0 to 1024
[   51.044608][   T29] audit: type=1400 audit(1752606154.136:4605): avc:  denied  { append } for  pid=4666 comm="syz.2.306" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   51.095973][ T4685] loop5: detected capacity change from 0 to 512
[   51.096064][   T29] audit: type=1400 audit(1752606154.186:4606): avc:  denied  { bind } for  pid=4666 comm="syz.2.306" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   51.123459][   T29] audit: type=1400 audit(1752606154.216:4607): avc:  denied  { remount } for  pid=4666 comm="syz.2.306" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   51.159374][ T4685] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.311: bg 0: block 248: padding at end of block bitmap is not set
[   51.179159][ T4685] Quota error (device loop5): write_blk: dquota write failed
[   51.186613][ T4685] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[   51.196731][ T4685] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.311: Failed to acquire dquot type 1
[   51.209794][ T4685] EXT4-fs (loop5): 1 truncate cleaned up
[   51.216273][ T4685] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.229067][ T4685] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.264877][ T4696] netlink: 'syz.4.315': attribute type 6 has an invalid length.
[   51.268385][ T4685] syz.5.311 (4685) used greatest stack depth: 9096 bytes left
[   51.299082][ T4702] rdma_op ffff8881046cf180 conn xmit_rdma 0000000000000000
[   51.310129][ T4702] netlink: 'syz.3.318': attribute type 10 has an invalid length.
[   51.319497][ T4702] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.320724][ T4700] loop5: detected capacity change from 0 to 1024
[   51.326698][ T4702] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.346123][ T4700] EXT4-fs: Ignoring removed orlov option
[   51.352050][ T4700] EXT4-fs: Ignoring removed nomblk_io_submit option
[   51.359660][ T4702] FAULT_INJECTION: forcing a failure.
[   51.359660][ T4702] name failslab, interval 1, probability 0, space 0, times 0
[   51.372547][ T4702] CPU: 0 UID: 0 PID: 4702 Comm: syz.3.318 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   51.372576][ T4702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   51.372586][ T4702] Call Trace:
[   51.372592][ T4702]  <TASK>
[   51.372598][ T4702]  __dump_stack+0x1d/0x30
[   51.372616][ T4702]  dump_stack_lvl+0xe8/0x140
[   51.372635][ T4702]  dump_stack+0x15/0x1b
[   51.372684][ T4702]  should_fail_ex+0x265/0x280
[   51.372762][ T4702]  should_failslab+0x8c/0xb0
[   51.372892][ T4702]  kmem_cache_alloc_noprof+0x50/0x310
[   51.372987][ T4702]  ? skb_clone+0x151/0x1f0
[   51.373003][ T4702]  skb_clone+0x151/0x1f0
[   51.373019][ T4702]  __netlink_deliver_tap+0x2c9/0x500
[   51.373062][ T4702]  netlink_unicast+0x653/0x680
[   51.373153][ T4702]  netlink_sendmsg+0x58b/0x6b0
[   51.373173][ T4702]  ? __pfx_netlink_sendmsg+0x10/0x10
[   51.373193][ T4702]  __sock_sendmsg+0x145/0x180
[   51.373218][ T4702]  sock_write_iter+0x165/0x1b0
[   51.373243][ T4702]  ? __pfx_sock_write_iter+0x10/0x10
[   51.373300][ T4702]  vfs_write+0x49d/0x8e0
[   51.373335][ T4702]  ksys_write+0xda/0x1a0
[   51.373365][ T4702]  __x64_sys_write+0x40/0x50
[   51.373449][ T4702]  x64_sys_call+0x2cdd/0x2fb0
[   51.373548][ T4702]  do_syscall_64+0xd2/0x200
[   51.373564][ T4702]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   51.373591][ T4702]  ? clear_bhb_loop+0x40/0x90
[   51.373667][ T4702]  ? clear_bhb_loop+0x40/0x90
[   51.373690][ T4702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.373772][ T4702] RIP: 0033:0x7f081c89e929
[   51.373786][ T4702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.373874][ T4702] RSP: 002b:00007f081af07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   51.373942][ T4702] RAX: ffffffffffffffda RBX: 00007f081cac5fa0 RCX: 00007f081c89e929
[   51.373955][ T4702] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000009
[   51.374009][ T4702] RBP: 00007f081af07090 R08: 0000000000000000 R09: 0000000000000000
[   51.374020][ T4702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.374032][ T4702] R13: 0000000000000000 R14: 00007f081cac5fa0 R15: 00007ffd0c5957d8
[   51.374051][ T4702]  </TASK>
[   51.376603][ T4702] bridge_slave_1: left allmulticast mode
[   51.601819][ T4702] bridge_slave_1: left promiscuous mode
[   51.607598][ T4702] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.641212][ T4702] bridge_slave_0: left allmulticast mode
[   51.646942][ T4702] bridge_slave_0: left promiscuous mode
[   51.652643][ T4702] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.820423][ T4715] futex_wake_op: syz.5.321 tries to shift op by -1; fix this program
[   52.204001][ T4719] netlink: 'syz.4.323': attribute type 13 has an invalid length.
[   52.247428][ T4719] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   52.423899][ T4727] lo speed is unknown, defaulting to 1000
[   52.427882][    C1] vcan0: j1939_tp_rxtimer: 0xffff888104725600: rx timeout, send abort
[   52.809709][ T4730] loop0: detected capacity change from 0 to 512
[   52.816923][ T4730] EXT4-fs: Ignoring removed mblk_io_submit option
[   52.823448][ T4730] EXT4-fs: Ignoring removed bh option
[   52.937866][    C1] vcan0: j1939_tp_rxtimer: 0xffff888104725600: abort rx timeout. Force session deactivation
[   53.002245][ T4731] lo speed is unknown, defaulting to 1000
[   53.204035][ T4730] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   53.217817][ T4738] __nla_validate_parse: 9 callbacks suppressed
[   53.217832][ T4738] netlink: 8 bytes leftover after parsing attributes in process `syz.4.329'.
[   53.245982][ T4730] EXT4-fs (loop0): 1 truncate cleaned up
[   53.251877][ T4728] loop3: detected capacity change from 0 to 512
[   53.258519][ T4728] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.265058][ T4728] EXT4-fs: Ignoring removed bh option
[   53.271320][ T4728] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   53.290878][ T4728] EXT4-fs (loop3): 1 truncate cleaned up
[   53.327600][ T4742] bond1: entered promiscuous mode
[   53.332750][ T4742] bond1: entered allmulticast mode
[   53.339293][ T4742] 8021q: adding VLAN 0 to HW filter on device bond1
[   53.345866][ T4747] netlink: 4 bytes leftover after parsing attributes in process `syz.4.332'.
[   53.357680][ T4742] bond1 (unregistering): Released all slaves
[   53.428471][ T4752] netlink: 332 bytes leftover after parsing attributes in process `syz.5.334'.
[   53.527023][ T4760] loop3: detected capacity change from 0 to 2048
[   53.533996][ T4760] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.540583][ T4760] EXT4-fs: Ignoring removed i_version option
[   53.707705][ T4768] IPv6: Can't replace route, no match found
[   53.787194][ T4774] loop2: detected capacity change from 0 to 256
[   53.808995][ T4774] FAT-fs (loop2): Directory bread(block 64) failed
[   53.815912][ T4774] FAT-fs (loop2): Directory bread(block 65) failed
[   53.823533][ T4774] FAT-fs (loop2): Directory bread(block 66) failed
[   53.830719][ T4774] FAT-fs (loop2): Directory bread(block 67) failed
[   53.837281][ T4774] FAT-fs (loop2): Directory bread(block 68) failed
[   53.844674][ T4774] FAT-fs (loop2): Directory bread(block 69) failed
[   53.851244][ T4774] FAT-fs (loop2): Directory bread(block 70) failed
[   53.857828][ T4774] FAT-fs (loop2): Directory bread(block 71) failed
[   53.866350][ T4774] FAT-fs (loop2): Directory bread(block 72) failed
[   53.875272][ T4774] FAT-fs (loop2): Directory bread(block 73) failed
[   53.934986][ T4756] Set syz1 is full, maxelem 65536 reached
[   53.946725][ T4774] syz.2.341: attempt to access beyond end of device
[   53.946725][ T4774] loop2: rw=2051, sector=1224, nr_sectors = 608 limit=256
[   53.978480][ T4774] syz.2.341: attempt to access beyond end of device
[   53.978480][ T4774] loop2: rw=2051, sector=1864, nr_sectors = 31936 limit=256
[   53.993201][ T4781] loop3: detected capacity change from 0 to 2048
[   54.007942][ T4781] EXT4-fs: Ignoring removed mblk_io_submit option
[   54.014481][ T4781] EXT4-fs: Ignoring removed i_version option
[   54.174670][ T4792] netlink: 332 bytes leftover after parsing attributes in process `syz.3.347'.
[   54.222611][ T4795] netlink: 'syz.4.348': attribute type 1 has an invalid length.
[   54.223826][ T4800] IPv6: Can't replace route, no match found
[   54.230399][ T4795] netlink: 224 bytes leftover after parsing attributes in process `syz.4.348'.
[   54.328098][ T4806] lo speed is unknown, defaulting to 1000
[   54.456049][ T4806] loop5: detected capacity change from 0 to 512
[   54.462955][ T4806] EXT4-fs: Ignoring removed mblk_io_submit option
[   54.469386][ T4806] EXT4-fs: Ignoring removed bh option
[   54.477937][ T4806] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   54.490213][ T4806] EXT4-fs (loop5): 1 truncate cleaned up
[   54.668174][ T4815] lo speed is unknown, defaulting to 1000
[   54.704714][ T4819] loop4: detected capacity change from 0 to 512
[   54.720876][ T4819] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   54.732518][ T4819] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=800ec018, mo2=0082]
[   54.741996][ T4819] EXT4-fs (loop4): 1 truncate cleaned up
[   54.746598][ T4823] netlink: 'syz.2.356': attribute type 4 has an invalid length.
[   54.752126][ T4820] netlink: 87 bytes leftover after parsing attributes in process `syz.3.354'.
[   54.755464][ T4823] netlink: 17 bytes leftover after parsing attributes in process `syz.2.356'.
[   54.790939][ T4823] netlink: 256 bytes leftover after parsing attributes in process `syz.2.356'.
[   54.800067][ T4819] EXT4-fs (loop4): changing journal_checksum during remount not supported; ignoring
[   54.818814][ T4826] FAULT_INJECTION: forcing a failure.
[   54.818814][ T4826] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   54.820780][ T4819] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[   54.831981][ T4826] CPU: 0 UID: 0 PID: 4826 Comm: syz.0.357 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   54.832017][ T4826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.832030][ T4826] Call Trace:
[   54.832036][ T4826]  <TASK>
[   54.832044][ T4826]  __dump_stack+0x1d/0x30
[   54.832064][ T4826]  dump_stack_lvl+0xe8/0x140
[   54.832143][ T4826]  dump_stack+0x15/0x1b
[   54.832160][ T4826]  should_fail_ex+0x265/0x280
[   54.832189][ T4826]  should_fail+0xb/0x20
[   54.832214][ T4826]  should_fail_usercopy+0x1a/0x20
[   54.832243][ T4826]  _copy_from_iter+0xcf/0xe40
[   54.832303][ T4826]  ? __build_skb_around+0x1a0/0x200
[   54.832332][ T4826]  ? __alloc_skb+0x223/0x320
[   54.832382][ T4826]  netlink_sendmsg+0x471/0x6b0
[   54.832403][ T4826]  ? __pfx_netlink_sendmsg+0x10/0x10
[   54.832422][ T4826]  __sock_sendmsg+0x145/0x180
[   54.832506][ T4826]  ____sys_sendmsg+0x31e/0x4e0
[   54.832539][ T4826]  ___sys_sendmsg+0x17b/0x1d0
[   54.832582][ T4826]  __x64_sys_sendmsg+0xd4/0x160
[   54.832701][ T4826]  x64_sys_call+0x2999/0x2fb0
[   54.832788][ T4826]  do_syscall_64+0xd2/0x200
[   54.832806][ T4826]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.832832][ T4826]  ? clear_bhb_loop+0x40/0x90
[   54.832852][ T4826]  ? clear_bhb_loop+0x40/0x90
[   54.832882][ T4826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.832902][ T4826] RIP: 0033:0x7fbd0f1ee929
[   54.832917][ T4826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.832933][ T4826] RSP: 002b:00007fbd0d857038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   54.832966][ T4826] RAX: ffffffffffffffda RBX: 00007fbd0f415fa0 RCX: 00007fbd0f1ee929
[   54.832978][ T4826] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000005
[   54.832990][ T4826] RBP: 00007fbd0d857090 R08: 0000000000000000 R09: 0000000000000000
[   54.833007][ T4826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   54.833056][ T4826] R13: 0000000000000000 R14: 00007fbd0f415fa0 R15: 00007fff2ce72ff8
[   54.833074][ T4826]  </TASK>
[   54.910950][ T4830] netlink: 4 bytes leftover after parsing attributes in process `syz.0.358'.
[   55.092305][ T4842] IPv6: Can't replace route, no match found
[   55.106717][ T4843] loop3: detected capacity change from 0 to 2048
[   55.113624][ T4843] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.120070][ T4843] EXT4-fs: Ignoring removed i_version option
[   55.150820][ T4849] netlink: 332 bytes leftover after parsing attributes in process `syz.5.362'.
[   55.197878][ T4854] netlink: 'syz.5.365': attribute type 10 has an invalid length.
[   55.240190][ T4854] geneve1: entered promiscuous mode
[   55.261969][ T4854] bond0: (slave geneve1): Enslaving as an active interface with an up link
[   55.297369][ T4860] loop3: detected capacity change from 0 to 1024
[   55.312619][ T4862] loop4: detected capacity change from 0 to 512
[   55.320495][ T4862] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   55.349346][ T4862] EXT4-fs (loop4): 1 truncate cleaned up
[   55.375123][ T4868] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[   55.415431][ T3420] kernel write not supported for file /225/attr/exec (pid: 3420 comm: kworker/0:4)
[   55.578207][ T4879] loop5: detected capacity change from 0 to 8192
[   55.738840][ T4882] lo speed is unknown, defaulting to 1000
[   55.831747][ T4882] loop4: detected capacity change from 0 to 512
[   55.838377][ T4882] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.845103][ T4882] EXT4-fs: Ignoring removed bh option
[   55.856350][   T29] kauditd_printk_skb: 126 callbacks suppressed
[   55.856365][   T29] audit: type=1326 audit(1752606158.946:4734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   55.951367][ T4879] tipc: Started in network mode
[   55.956275][ T4879] tipc: Node identity ac14140f, cluster identity 4711
[   55.963383][   T29] audit: type=1326 audit(1752606158.986:4735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   55.986803][   T29] audit: type=1326 audit(1752606158.986:4736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.010108][   T29] audit: type=1326 audit(1752606158.986:4737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.033518][   T29] audit: type=1326 audit(1752606158.986:4738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.056916][   T29] audit: type=1326 audit(1752606158.986:4739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.080251][   T29] audit: type=1326 audit(1752606158.986:4740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.102810][ T4879] tipc: New replicast peer: 255.255.255.83
[   56.103574][   T29] audit: type=1326 audit(1752606158.986:4741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.109367][ T4879] tipc: Enabled bearer <udp:£>, priority 10
[   56.132623][   T29] audit: type=1326 audit(1752606158.986:4742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.132651][   T29] audit: type=1326 audit(1752606158.986:4743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4878 comm="syz.5.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f993204e929 code=0x7ffc0000
[   56.185250][ T4882] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   56.188911][ T4884] loop3: detected capacity change from 0 to 256
[   56.210163][ T4882] EXT4-fs (loop4): 1 truncate cleaned up
[   56.218657][ T4884] FAT-fs (loop3): Directory bread(block 64) failed
[   56.225500][ T4884] FAT-fs (loop3): Directory bread(block 65) failed
[   56.259004][ T4884] FAT-fs (loop3): Directory bread(block 66) failed
[   56.266897][ T4891] IPv6: Can't replace route, no match found
[   56.270843][ T4884] FAT-fs (loop3): Directory bread(block 67) failed
[   56.284509][ T4893] rdma_rxe: rxe_newlink: failed to add lo
[   56.284973][ T4884] FAT-fs (loop3): Directory bread(block 68) failed
[   56.297130][ T4884] FAT-fs (loop3): Directory bread(block 69) failed
[   56.297191][ T4895] loop5: detected capacity change from 0 to 1024
[   56.303748][ T4884] FAT-fs (loop3): Directory bread(block 70) failed
[   56.318390][ T4884] FAT-fs (loop3): Directory bread(block 71) failed
[   56.325113][ T4884] FAT-fs (loop3): Directory bread(block 72) failed
[   56.334522][ T4884] FAT-fs (loop3): Directory bread(block 73) failed
[   56.343522][ T4897] loop0: detected capacity change from 0 to 512
[   56.400004][ T4897] EXT4-fs: Ignoring removed orlov option
[   56.418457][ T4897] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   56.453062][ T4884] syz.3.376: attempt to access beyond end of device
[   56.453062][ T4884] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[   56.474408][ T4884] syz.3.376: attempt to access beyond end of device
[   56.474408][ T4884] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[   56.498190][ T4897] EXT4-fs (loop0): 1 orphan inode deleted
[   56.504072][ T4897] EXT4-fs (loop0): 1 truncate cleaned up
[   56.516038][ T4897] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   56.526292][ T4897] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   56.542619][ T4897] EXT4-fs (loop0): Remounting filesystem read-only
[   56.549169][ T4897] EXT4-fs warning (device loop0): ext4_xattr_inode_lookup_create:1597: inode #17: comm syz.0.381: cleanup dec ref error -28
[   56.584808][ T4914] loop4: detected capacity change from 0 to 1024
[   56.597911][ T4914] EXT4-fs: Ignoring removed oldalloc option
[   56.605430][ T4914] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   56.639130][ T4932] IPv6: Can't replace route, no match found
[   56.649830][ T4930] loop0: detected capacity change from 0 to 8192
[   56.690112][ T3311] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /73/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.721998][ T3311] EXT4-fs error (device loop4): ext4_empty_dir:3084: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.744426][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   56.756186][ T3311] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /73/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.778083][ T4930] tipc: Started in network mode
[   56.778813][ T3311] EXT4-fs error (device loop4): ext4_empty_dir:3084: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.783087][ T4930] tipc: Node identity ac14140f, cluster identity 4711
[   56.805470][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   56.809085][ T4930] tipc: New replicast peer: 255.255.255.83
[   56.821678][ T3311] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /73/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.826233][ T4930] tipc: Enabled bearer <udp:£>, priority 10
[   56.858752][ T3311] EXT4-fs error (device loop4): ext4_empty_dir:3084: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.879390][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   56.900432][ T3311] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /73/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.923319][ T3311] EXT4-fs error (device loop4): ext4_empty_dir:3084: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.942796][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   56.954566][ T3311] EXT4-fs error (device loop4): ext4_readdir:264: inode #11: block 32: comm syz-executor: path /73/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.979073][ T4943] loop3: detected capacity change from 0 to 1024
[   56.986231][ T3311] EXT4-fs error (device loop4): ext4_empty_dir:3084: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[   56.989431][ T4945] loop0: detected capacity change from 0 to 256
[   57.006552][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   57.021320][ T4943] openvswitch: netlink: Message has 6 unknown bytes.
[   57.030184][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   57.046010][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   57.058690][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   57.075283][ T4945] netlink: 'syz.0.397': attribute type 13 has an invalid length.
[   57.084209][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   57.097828][ T3311] EXT4-fs warning (device loop4): ext4_empty_dir:3086: inode #11: comm syz-executor: directory missing '.'
[   57.120400][ T3420] tipc: Node number set to 2886997007
[   57.269180][ T3307] FAT-fs (loop0): error, corrupted directory (invalid entries)
[   57.278192][ T3307] FAT-fs (loop0): error, corrupted directory (invalid entries)
[   57.315301][ T4962] ==================================================================
[   57.323422][ T4962] BUG: KCSAN: data-race in getrusage / vms_clear_ptes
[   57.330212][ T4962] 
[   57.332530][ T4962] write to 0xffff88811a82a200 of 8 bytes by task 4960 on cpu 1:
[   57.340277][ T4962]  vms_clear_ptes+0x18f/0x2d0
[   57.344960][ T4962]  vms_complete_munmap_vmas+0x159/0x440
[   57.350507][ T4962]  do_vmi_align_munmap+0x383/0x3d0
[   57.355612][ T4962]  do_vmi_munmap+0x1db/0x220
[   57.360202][ T4962]  __vm_munmap+0x1a1/0x280
[   57.364624][ T4962]  __x64_sys_munmap+0x36/0x50
[   57.369289][ T4962]  x64_sys_call+0xa65/0x2fb0
[   57.373879][ T4962]  do_syscall_64+0xd2/0x200
[   57.378374][ T4962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.384271][ T4962] 
[   57.386585][ T4962] read to 0xffff88811a82a200 of 8 bytes by task 4962 on cpu 0:
[   57.394125][ T4962]  getrusage+0xa52/0xbb0
[   57.398365][ T4962]  io_sq_thread+0x5dd/0x1180
[   57.402946][ T4962]  ret_from_fork+0xda/0x150
[   57.407440][ T4962]  ret_from_fork_asm+0x1a/0x30
[   57.412198][ T4962] 
[   57.414511][ T4962] value changed: 0x0000000000001692 -> 0x00000000000021d2
[   57.421612][ T4962] 
[   57.423931][ T4962] Reported by Kernel Concurrency Sanitizer on:
[   57.430072][ T4962] CPU: 0 UID: 0 PID: 4962 Comm: iou-sqp-4960 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(voluntary) 
[   57.442654][ T4962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.452704][ T4962] ==================================================================
[   57.461026][ T4960] loop3: detected capacity change from 0 to 2048
[   57.653014][   T58] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.705271][   T58] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.793522][   T58] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.843176][   T58] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.880421][ T3420] tipc: Node number set to 2886997007
[   57.914059][   T58] bridge_slave_1: left allmulticast mode
[   57.919769][   T58] bridge_slave_1: left promiscuous mode
[   57.925540][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.936826][   T58] bridge_slave_0: left allmulticast mode
[   57.942534][   T58] bridge_slave_0: left promiscuous mode
[   57.948151][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.013702][   T58] team0: Port device geneve1 removed
[   58.142172][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   58.154279][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   58.163735][   T58] bond0 (unregistering): Released all slaves
[   58.238990][   T58] hsr_slave_0: left promiscuous mode
[   58.244725][   T58] hsr_slave_1: left promiscuous mode
[   58.250306][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.257698][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.268129][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.275740][   T58] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.287413][   T58] veth1_macvtap: left promiscuous mode
[   58.293774][   T58] veth0_macvtap: left promiscuous mode
[   58.341766][   T58] team0 (unregistering): Port device team_slave_1 removed
[   58.353260][   T58] team0 (unregistering): Port device team_slave_0 removed
[   58.663423][   T58] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.741814][   T58] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.802302][   T58] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.872126][   T58] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.944823][   T58] bridge_slave_1: left allmulticast mode
[   58.950531][   T58] bridge_slave_1: left promiscuous mode
[   58.956260][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.964841][   T58] bridge_slave_0: left allmulticast mode
[   58.970552][   T58] bridge_slave_0: left promiscuous mode
[   58.976229][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.063394][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   59.073846][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   59.083395][   T58] bond0 (unregistering): Released all slaves
[   59.131307][   T58] tipc: Disabling bearer <udp:£>
[   59.136360][   T58] tipc: Left network mode
[   59.160237][   T58] hsr_slave_0: left promiscuous mode
[   59.166571][   T58] hsr_slave_1: left promiscuous mode
[   59.172431][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   59.179820][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[   59.188259][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.195822][   T58] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.207999][   T58] veth1_macvtap: left promiscuous mode
[   59.214353][   T58] veth0_macvtap: left promiscuous mode
[   59.219924][   T58] veth1_vlan: left promiscuous mode
[   59.225994][   T58] veth0_vlan: left promiscuous mode
[   59.294094][   T58] team0 (unregistering): Port device team_slave_1 removed
[   59.304358][   T58] team0 (unregistering): Port device team_slave_0 removed