last executing test programs:

45.207446589s ago: executing program 0 (id=9):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x10008, 0x1, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)={0x30, r4, 0x1, 0x0, 0xfffffffc, {0x7}, [@L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x6}]}, 0x30}}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000040)={'team0\x00', <r7=>0x0})
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r10}, 0x10)
r11 = socket$netlink(0x10, 0x3, 0x0)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f0000000880)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r12}, 0x18)
r13 = syz_io_uring_setup(0x207, &(0x7f0000000340)={0x0, 0x8e00, 0x10100, 0x0, 0xffffffff}, &(0x7f0000000300), &(0x7f0000000100)=<r14=>0x0)
syz_io_uring_setup(0x6f7c, &(0x7f00000008c0), &(0x7f0000000040)=<r15=>0x0, &(0x7f00000002c0))
syz_io_uring_submit(r15, r14, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000047c0)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
io_uring_enter(r13, 0x1849, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f00000007c0)={0x0, 0xfffffffffffffe9f, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r7, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c}}]}, 0x8c}}, 0x20008090)

44.956903291s ago: executing program 0 (id=10):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}, 0x1, 0x7000000}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

44.920966771s ago: executing program 0 (id=12):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r1, &(0x7f00000000c0)=ANY=[], 0x67)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

44.794953992s ago: executing program 0 (id=17):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f00000006c0)={0x1, &(0x7f00000000c0)=[{0x40, 0xfe, 0x0, 0xce33}]})

44.703281302s ago: executing program 0 (id=20):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = syz_open_dev$vcsu(0x0, 0x2, 0x8040)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000080)='async\x00', 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000300)=0xe)
ioctl$TIOCSLCKTRMIOS(r1, 0x5457, 0x0)
epoll_pwait2(0xffffffffffffffff, &(0x7f0000000140)=[{}], 0x1, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000012c0)={0x8, 0x5bb0, 0x0, 'queue1\x00', 0x6})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000380))
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
read$char_usb(r0, &(0x7f0000002380)=""/4097, 0x1001)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3, 0x0, 0x80000000}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00')
r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$binfmt_script(r6, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

44.536343773s ago: executing program 0 (id=25):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r1, 0x0, 0x2}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYBLOB="03000000c31006002000128008000100736974001400028008000300ac14141006000e0040"], 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040)

29.504474423s ago: executing program 32 (id=25):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='kfree\x00', r1, 0x0, 0x2}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYBLOB="03000000c31006002000128008000100736974001400028008000300ac14141006000e0040"], 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040)

10.516387722s ago: executing program 3 (id=628):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) (async)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r2 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xdd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x7, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000400000000000000a000004000000bb7f19fed600feff097a000a9500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x93, &(0x7f0000000100)=""/147, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x7, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000400000000000000a000004000000bb7f19fed600feff097a000a9500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x93, &(0x7f0000000100)=""/147, 0x0, 0x30, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x118}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000280)='B\x1f\xce\v\xd6\x1f\xcd\xd3\xa6V\x1b\x16\xc0O?\x8d\xb5\x88(\xea(q1\xdco\xdeJy\x8d$\xba83\x7f\xf7UJl=x\x889\xf0d\xad\xa9\x06|\x16&\xcfaCI\xc6\x0fZ.n\xba\x85\vzd\xf2\x92\xec\x84B\x8d\xb0A\x8f\x7f;\xab\a\xb5\xa9&|\x1b\x80\xb0\x0e\x98Z\xb3\xc8+,4\x84 \xac\x96\xec{\x05\xee\xec\xca\xe0\xd2\xb9^\xb0)\xde\xe3\x86\x93h\x1e\"\xe8J\xbel(\x85s\xe9k\xbb*\x1d +\xc9%T\x8c/(\xcd(d~\xd7\x8d\x98F)\xfej\xac\x93`u\xd6\x14\xa6\xf2S\xac\xf6\nM\a\xbc\"\x8f\xaf/F\xfc\xf5\xfb\xde\x7f\xd5\xeb\x92\xdb\x8d\x0f\xbd3\x93g|j\x9f\xa8L\xaf\xfc\xa4\x92\xaf\xc4B\xd3m\xd4\xd6!QAx\xdcG\xf4\x1dn^>i\x8cz_\xc9./\x85\x91\xd8\xd9\x01\xb9\a\xb3;\x82\xc6k\xf4\xcf\xe9\x8b2') (async)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000280)='B\x1f\xce\v\xd6\x1f\xcd\xd3\xa6V\x1b\x16\xc0O?\x8d\xb5\x88(\xea(q1\xdco\xdeJy\x8d$\xba83\x7f\xf7UJl=x\x889\xf0d\xad\xa9\x06|\x16&\xcfaCI\xc6\x0fZ.n\xba\x85\vzd\xf2\x92\xec\x84B\x8d\xb0A\x8f\x7f;\xab\a\xb5\xa9&|\x1b\x80\xb0\x0e\x98Z\xb3\xc8+,4\x84 \xac\x96\xec{\x05\xee\xec\xca\xe0\xd2\xb9^\xb0)\xde\xe3\x86\x93h\x1e\"\xe8J\xbel(\x85s\xe9k\xbb*\x1d +\xc9%T\x8c/(\xcd(d~\xd7\x8d\x98F)\xfej\xac\x93`u\xd6\x14\xa6\xf2S\xac\xf6\nM\a\xbc\"\x8f\xaf/F\xfc\xf5\xfb\xde\x7f\xd5\xeb\x92\xdb\x8d\x0f\xbd3\x93g|j\x9f\xa8L\xaf\xfc\xa4\x92\xaf\xc4B\xd3m\xd4\xd6!QAx\xdcG\xf4\x1dn^>i\x8cz_\xc9./\x85\x91\xd8\xd9\x01\xb9\a\xb3;\x82\xc6k\xf4\xcf\xe9\x8b2')
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wg2\x00', <r4=>0x0})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup(r5) (async)
r6 = dup(r5)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x4, 0x0, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="06000f00000000004000000000000080", @ANYRES32, @ANYBLOB="c00a00"/20, @ANYRES32=r4, @ANYRES32=r3, @ANYBLOB="00000000020000000400"/20, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r7}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r8}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1, 0x184) (async)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1, 0x184)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r9, 0x89f2, &(0x7f0000000400)={'sit0\x00', &(0x7f00000005c0)={'gretap0\x00', 0x0, 0x1, 0x1, 0x92a7, 0xf, {{0x9, 0x4, 0x3, 0x7, 0x24, 0x65, 0x0, 0x7c, 0x29, 0x0, @multicast2, @multicast1, {[@timestamp={0x44, 0x10, 0xad, 0x0, 0xb, [0x7f, 0xc4ea, 0x0]}]}}}}}) (async)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r9, 0x89f2, &(0x7f0000000400)={'sit0\x00', &(0x7f00000005c0)={'gretap0\x00', <r10=>0x0, 0x1, 0x1, 0x92a7, 0xf, {{0x9, 0x4, 0x3, 0x7, 0x24, 0x65, 0x0, 0x7c, 0x29, 0x0, @multicast2, @multicast1, {[@timestamp={0x44, 0x10, 0xad, 0x0, 0xb, [0x7f, 0xc4ea, 0x0]}]}}}}})
setsockopt$inet6_mreq(r9, 0x29, 0x14, &(0x7f0000000640)={@local, r10}, 0x14)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x20}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getpid() (async)
r11 = getpid()
sched_getattr(r11, &(0x7f0000000140)={0x38}, 0x38, 0x0)
mq_timedreceive(r9, &(0x7f00000004c0)=""/216, 0xd8, 0xffffffff, &(0x7f00000003c0)={0x0, 0x989680})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r12, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast}) (async)
ioctl$SIOCSIFHWADDR(r12, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

10.386824012s ago: executing program 3 (id=629):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./file0\x00', 0xc80, &(0x7f0000000180)=ANY=[@ANYBLOB="00631dda01aef2456795dd9b26209f1c0f624854ea3dd5a00bd6df44035f5c3ae796fec6d633a0ffad0569794acfef7da01767fd4175f2cd82df769aa2ee7bfe3640554507d2e660c9f9e222a72e1e3e71145c480657d2864e5e276f028d64701ae31cde0ceaf408fdb05c0f4142da00e900000100000149e6d308cbe315789f4baffe39bbced9b1d421d2e290e9fc563b62225f002ee310e1fa7321000000000000d6231001a4b2d467825f3abb0c167e129cf1fa0e7854103f4bf2d3a0194983bc86cbd3d75ccef3c8ac4516dac102"], 0x1, 0x266, &(0x7f0000000340)="$eJzs281OE1EYxvGHDwVBmCqKgjG+0Y1uJlCvoCGQGJtokBo/EpNBptp0aEmnwdQYYefW6yAu3ZkYb4CNV+DCHRuXLIxjmKnQlhrDQiba/29zXnJ4mnP6njZn0dl58Ha1XAzdoldXf59pUNrUrpRRvwaU6GuO/XF9Uq02dWMi/+XyvYePbufy+flFs4Xc0s2smY1f+fji1burn+qj99+PfxjSdubJzrfs1+3J7amdH0vPS6GVQqtU6+bZcrVa95YD31ZKYdk1uxv4XuhbqRL6tbb5YlBdW2uYV1kZG1mr+WFoXqVhZb9h9arVaw3znnmlirmua2Mjwp8UthYXvVzaq8DfVavlvDlJ04dmClupLAgAAKSK+38v4/7fC/bu/4+bn9923P8BAAAAAAAAAAAAAAAAAAAAAPgX7EaRE0WR82s8IcVP+ETNv09JGpE0Kum0pDFJ45IcSRlJZySdlTQh6Zyk85ImJV2QdFHSVMtrpb1XHEb/exv97230v7e1PLg7LK2+WS+sF5Ixmc8VVVIgXzNy9D3uZVNSL9zKz89YLKNLqxvN/MZ6YaA9Pytn78B0y88meWvPD8Xnbj+flbN3wLrls13zw7p+rSXvytHnp6oq0Ep8Jg/yr2fN5u7kO/LT8f/971zb17V/rvu7+SR/hPPR8f4Oanow3b1DChsvy14Q+DUKCgqK/SLtbyYch4Omp70SAAAAAAAAAAAAAAAAAMBRHMfPCdPeIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnX4GAAD//5KSYE0=") (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.swap.current\x00', 0x275a, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000076000000ffffffff95"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r1}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xd3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e6026, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}, 0x0, 0x1000, 0x0, 0x0, 0x7, 0x400000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000080)='cpu\t&0|\t\t\xb65\t\x00\x00\x7f\xff\xff\xff\x9f\x14\xd3\x8bl\x92:\xf2\xff\x1c\x1d\xa8\xc5Qa\xd0\xf6\x14\x98\x04\xaa\f\xf9\xeapI\x15\xf2L\x93\t\x86\xe8\xd8\x04\x14\xd8L\xaa\xcfM\x9e\xc8\b\xbd\x9d\x99\xc9\x02P\x99Ow\xdb0\xa1utw\xae\x99\x1e\x91\xd7\x83\x18\xa6\xbfp\xe5\x9f\xc9\xe4[{\xff\x90\xde\x1c\t\xbc[\x89\x16\xa5\x12\x14\xce\xaf!\x06\x13\'\x9a\x1eH\xfc\x93\xde\x83\xfb\xc9\xf5x\xefc\xf0\x87E\xca\xa6BRi\xb0U\xc1&W(N\xe06rT\xe0\xe2\xe9\xb9\xaf@\x11-c(2a\xb7B9B\x1f\x12\xf9,/\x8f\x92\x00\x11}\xbc:D\xdb\x92\x80=mel\xea\xdd\xa0\xe9d\t\xa6\x19\x84.hWe\x9at\xbc\xc3\xceA\xb4\xca8\xed\xb9^e\xf2`\xa4\xf7E\xc9\x01\xf7\x00\xf3\xadnn\x9b\x17\x98\xe4Q\x17<\x92\xb2\xa9%\xe7\x83\xf7\xef\xc9\f8R\xa0\x00C\xa0x\x91~XAs*{\xda\xb0BC\xad\xf6\xca\xe72\xb32h\xe1\xb0\xf3-\xd0W\x04\xf6\xfe\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\bq\a\x00\x00\x00h\x1dMD\x99#\xe2\x98{\xeb\x88\r`t<LM\xf8\x89\xe7\xf3T#%H\x9e\xd7\n?\xaf\x99j\x03A/\xb6S\xf1\xa3YR\xbf\x9f\\\n\x8a\x1ds\xb6g\x90\xf2\xb9\xcdl\xb8\xccv^6\x80\x16D\xbc\n`\xa1z^\xe0\"s\xd3\xb8\x1d\x16\xd9\xf5r\x8b\xaf\xae-\xbe>6\xdd\xc1\xa1\xf7\xaa\xe7\xf2\t\x13~\xf28\xd2\x0ey\xa4\xd9\x1ds\xa6\xaa\xfa\xd1T\xf3\xda\x85\x18n?\xb1\xf21G\x12\x17\xe6\xa9\x8f\x16\x7f\x00\x00\x00\x04&]K\xef@n_\xb5@\x94\x90\x84\xdf\x97d`9\xe3[\x97\xcd\xcbQ8\xbd|v\x8c') (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15) (async)
write$cgroup_int(r0, &(0x7f0000000040)=0x3ff, 0x12) (async)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4000003, 0x13, r0, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r3, 0x0, 0xf}, 0x18) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r4) (async)
fchdir(0xffffffffffffffff) (async)
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) (async)
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x68, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000340)='kfree\x00', r5}, 0x10) (async)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8943, &(0x7f0000001980)={'macvtap0\x00', 0x0}) (async)
ioctl(r0, 0x1, &(0x7f0000000080))
renameat2(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, 0x0, 0x0)

10.383616852s ago: executing program 3 (id=630):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x0, 0x0, 0x8, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x14)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a00000002000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000638f3c7eb362c93d647e051d9cc2bd96a9c2bd59b0497409f70b350337d9e4803c7e36f292a6c1ab705493940f0cb5dce4f23bb309666df17800bb41b2f44837650a8ff5a7400987c35a4ca40d7ceb0483"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000010, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x121c00, 0x0)
ioctl$KDSIGACCEPT(r3, 0x4b4e, 0x4)
socket$kcm(0x10, 0x2, 0x4)
r4 = socket$kcm(0x10, 0x2, 0x4)
close(r4)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0x3, &(0x7f00000011c0)=[{&(0x7f0000000140)="5c00000013006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514000cc00800190007000200060018c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="1800000000000000100100000a00"], 0x10b8}, 0xff00)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001640)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="120000000700000008000000008000000000"], 0x50)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040))
r8 = socket(0x1d, 0x2, 0x6)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x4e20, 0x10000, @mcast1, 0x1}, 0x1c)
getsockopt$nfc_llcp(r8, 0x6a, 0x0, 0x0, 0x20000071)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
rename(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='./file0\x00')

10.308430892s ago: executing program 3 (id=632):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b00)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x6c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x30, 0x11, 0x0, 0x1, @target={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x5, 0x3, "c4"}, @NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0xa, 0x1, 'AUDIT\x00'}]}}}]}], {0x14, 0x10}}, 0xb4}}, 0x0)
r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
write$binfmt_script(r3, &(0x7f00000003c0)={'#! ', './file0/bus', [{0x20, ':[\''}], 0xa, "5a0c971afc126dd0a3f097f470fbabce44714e04722bed24ce4f6b0933fbbde1547f577959b307008947877e94dc6edf2821a2f761d2a0dea4aa0162841b3f2728e775b2924a246e726c155be13483a19fa345e6d0ec4977aea6cb37072e8cf33a5b962635116c409492995d832a547b3f4c33fd90180e22e2ef837bec516b74a27012e622b1605f16aa629d3417ed8a189bd9c1d04bcc2e25832bb45a19536a5b3f65becffa6732117d8d0d45e3ee0aee081313d836c78c87"}, 0xcc)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$eJzs3T1oLFUYBuB3Zne95t5FrtoI4g+IiAbCtRNsYqMQkBBEBBUiIjZKIsQEu8TKxkJrlVQ2QeyMlpIm2CiCVdQUsRE0WBgstFiZnURisuLPxh1xngdmZ2b3nPnOMPOe3WbYAK11Nclskk6S6SS9JMXpBnfWy9Xj3c2p3cVkMHjsh2LYrt6vnfS7kmQjyQNJdsoiL3STte2nDn7ae+Se11d7d7+7/eTURE/y2OHB/qNH78y/9sHc/WufffHdfJHZ9H93XhevGPFet0hu+jeK/UcU3aZHwF+x8Mr7X1a5vznJXcP891KmvnhvrFy308t9b/9R3ze///zWSY4VuHiDQa/6DtwYAK1TJumnKGeS1NtlOTNT/4b/qnO5fHF55eXp55dXl55reqYCLko/2X/4o0sfXjmT/287df6B/68q/48vbH1dbR91mh4NMBG31asq/9PPrN8b+YfWkX9oL/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aK/T+QcA2mVwqeknkIGmND3/AAAAAAAAAAAAAAAAAAAA521O7S6eLJOq+clbyeFDSbqj6neG/0ecXD98vfxjUTX7TVF3G8vTd4x5gDG91/DT1zd802z9T29vtv76UrLxapJr3e75+684vv/+uRv/5PPes2MW+JuKM/sPPjHZ+mf9stVs/bm95ONq/rk2av4pc8twPXr+6VfXb8z6L/085gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYmF8DAAD//xFQbUc=")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x2904c, 0x5, 0x10003, '\x00', [{}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xb}], ['\x00', '\x00', '\x00', '\x00', '\x00']})
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)

10.199286893s ago: executing program 3 (id=635):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r0 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4800000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0040040000c10000280012800900010076657468000000", @ANYBLOB], 0x48}, 0x1, 0x0, 0x0, 0x84}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000009196bd"], 0x14}}, 0x0) (fail_nth: 6)

9.514772726s ago: executing program 3 (id=649):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r1=>0x0})
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40103d0b, &(0x7f0000000340)={0x6e5, 0x2})
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xc, 0xfffffffffffff800}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
tkill(r3, 0x35)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
set_mempolicy_home_node(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, 0x0, 0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r6, 0x40309439, &(0x7f0000000040)={0x3, 0x1, 0x8})
r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r7, 0x4c80, 0xb)
r8 = socket$nl_route(0x10, 0x3, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x1000, @none, 0x7fff}, 0xe)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=@newtfilter={0x58, 0x11, 0xd27, 0x0, 0x25dfdbff, {0x0, 0x0, 0x74, r1, {0xfff2, 0xe}, {0x0, 0xc}}, [@TCA_RATE={0x6, 0x5, {0xf6, 0x40}}, @TCA_RATE={0x6, 0x5, {0x4, 0x5}}, @TCA_RATE={0x6, 0x5, {0x8, 0x2}}, @filter_kind_options=@f_bpf={{0x8}, {0x14, 0x2, [@TCA_BPF_FD={0x8, 0x6, r2}, @TCA_BPF_FLAGS={0x8}]}}]}, 0x58}, 0x1, 0xf0ffffffffffff}, 0x0)

9.514451186s ago: executing program 33 (id=649):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth1_to_hsr\x00', <r1=>0x0})
ioctl$PTP_EXTTS_REQUEST2(0xffffffffffffffff, 0x40103d0b, &(0x7f0000000340)={0x6e5, 0x2})
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xc, 0xfffffffffffff800}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
tkill(r3, 0x35)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
set_mempolicy_home_node(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, 0x0, 0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r6, 0x40309439, &(0x7f0000000040)={0x3, 0x1, 0x8})
r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r7, 0x4c80, 0xb)
r8 = socket$nl_route(0x10, 0x3, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x1000, @none, 0x7fff}, 0xe)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)=@newtfilter={0x58, 0x11, 0xd27, 0x0, 0x25dfdbff, {0x0, 0x0, 0x74, r1, {0xfff2, 0xe}, {0x0, 0xc}}, [@TCA_RATE={0x6, 0x5, {0xf6, 0x40}}, @TCA_RATE={0x6, 0x5, {0x4, 0x5}}, @TCA_RATE={0x6, 0x5, {0x8, 0x2}}, @filter_kind_options=@f_bpf={{0x8}, {0x14, 0x2, [@TCA_BPF_FD={0x8, 0x6, r2}, @TCA_BPF_FLAGS={0x8}]}}]}, 0x58}, 0x1, 0xf0ffffffffffff}, 0x0)

3.456251244s ago: executing program 4 (id=785):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x7, 0x8000, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000020d0039000000000000b4a518110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r4}, 0x10)
socketpair(0xa, 0x1, 0x0, &(0x7f0000000000))
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f0000000200)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r8}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="a00000001900010000000000000000001c140000fe000001000000"], 0xa0}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r6, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r7], 0x3c}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r10}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r12 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
ioctl$BLKTRACESETUP(r12, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x2, 0x80400, 0x2004, 0x800})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x2c, 0x10, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x74, r6, {0xffe0}, {}, {0xa, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x39, 0x1}}]}, 0x2c}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0)

3.390843075s ago: executing program 4 (id=786):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000080), &(0x7f00000000c0), 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000a20c002e40c921e063f776000000000000000000000000000000bee0729e46791dcc2ac4ceb49fc1e902593bcbe0db4cb4c321086c731ee598a11d406c2e915dcdd0c76e5c"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x6, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000b00)=ANY=[@ANYBLOB="7c000080", @ANYRES16=0x0, @ANYBLOB="010028bd7000f9dbdf253b0000000c0099000001000057000000040087001000cd00090005000600050080000300480033002020070008021100000008021100000150505050505001ff100009000802110000010020eaa39a2498f9fc82421a618c03ca4f6408e01c66a7270df37785f6adc8d35676"], 0x7c}, 0x1, 0x0, 0x0, 0x4840}, 0x40010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f0000000080), &(0x7f0000000180)=r5}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000000dc0)={0x60c, "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"})
write$UHID_CREATE2(r6, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a00000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x1, 0x7}, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$hidraw(0x0, 0x0, 0x14a042)
close_range(r2, 0xffffffffffffffff, 0x0)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000100), &(0x7f0000000140), 0x0)
r7 = openat$binfmt(0xffffffffffffff9c, r0, 0x2, 0x0)
close(r7)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f00000001c0), &(0x7f0000000200), 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
close(r8)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000280), &(0x7f00000002c0), 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000700)={[&(0x7f0000000380)='\\,@{}$^-\xd7\'\xc4.!&\\\x00', &(0x7f0000000480)='-(+^(.\x00', &(0x7f00000004c0)='))\'}@{\x00', &(0x7f0000000900)='\x00\xcb\x00\x00\xdd\x94\xacp\xd7\xb2\x119\x18Sq\xf2?F\x99\xdf\x01\x9e\xd5\xd6\xae\x12./\xe3\xd3\xe5?\xadB\xfb\x8f\xe5]\xd1}Jh\xdc\xac\xe9\x8a\x94\xba\xb4\xa0\x8e\xa2\xb6\xd2\xa2\r\x90\xdcx\xa1\x80\xf9\xba\xd3\xb3\x15\xbe\x1a`\v\xed\xaeK?\x10\xae\x11i\xde\x93\xa8?\xe1\xbbyj\r\xaa\xdeql\xfe\fs\x8f\xe8\xa4J\xe0\xec]\x94<M\x97\xa14\x00', &(0x7f0000000540)='\'&/\'&+%-])\x00', &(0x7f0000000a40)='u&]\xa1\xc7\xbc\x83o\x8dH\x9a\xf5:4\xe7f\xc7yd4\xd3\xb8o\xce+\xaa\xfd\x8e\x19\xa1\xbb\x91\x14\xf6\xd9UD3\xfc\xbd\xbc\xd5\xff5,{\x16S\xe1\x8a\xc4\x91\xbb\xcdp\xe1\xce[9\xe1\xf9\x1e\xcc\x1f<\x1f\x7fX\xd4\x96\x02\xcf\tR\x0e\xa5\xe3)g\xc9~\xc3Z\xd3kLl\x86B\xae\xe5\x10Gg\x88O2\xd1@Rs\x97M\x81M\xd8\x9a\x10]A=+\x9dB?:\xd8\xbe\x87\x02\xf7$\x85DK\xbd\xc3V\xa4\xdf[\xff\xe0\xe4\xbe\x15\x99\xc4\x98\xc0\x8c\\;\xfb\x9f\x92\xb8\xa3\xd3/j', &(0x7f0000000640)='\x00', &(0x7f0000000680)='GPL\x00', &(0x7f0000000500)='\x04\x01\x00t\x17\xbe]9\xb4w\x9fA_\xf2\x10\x14\x12\xa8\x00/\x88hid\x00']}, &(0x7f0000000440)={[&(0x7f0000000000)='GPL\x00']}, 0x0)

2.578359439s ago: executing program 4 (id=803):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f00000006c0)={0x0, 0x0})

2.28906933s ago: executing program 4 (id=805):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="170000000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000a1f8de5a2a396d101bfe899200000000000000000000000000000000000000000000001f00"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="05000000070000000700000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = memfd_create(&(0x7f0000000280)='%\x00', 0x4)
mmap(&(0x7f00007fd000/0x1000)=nil, 0x1000, 0x300000b, 0x21010, r5, 0x0)
io_uring_setup(0x3eae, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0xd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000), 0x0}, 0x50)
syz_io_uring_setup(0x2c10, &(0x7f0000000400)={0x0, 0x0, 0x4002}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='bdi_dirty_ratelimit\x00'}, 0x10)
gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
r7 = socket(0x200000100000011, 0x3, 0x0)
r8 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r9=>0x0})
bind$packet(r7, &(0x7f0000000040)={0x11, 0x0, r9, 0x1, 0x0, 0x6, @multicast}, 0x14)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848140000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
mkdir(&(0x7f0000000440)='./control\x00', 0x0)

2.28227127s ago: executing program 6 (id=807):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b\x00\x00\x00'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000004800)=@newtaction={0x894, 0x30, 0x12f, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff]}, @TCA_POLICE_AVRATE={0x8}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x40000001, 0x0, 0x8, 0x8, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0xfffffffd, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa369, 0x0, 0x8, 0x0, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd8, 0x0, 0x0, 0x0, 0x0, 0x6, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe5f5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x7e2, 0x0, 0x0, 0xd5, 0x7, 0x96e4, 0x0, 0x0, 0xa, 0x0, 0x3, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x2, 0x9, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb5f, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x80, 0x0, 0x0, 0x800, 0xfffff0e7, 0xfffffffd, 0xfff, 0x0, 0x0, 0x0, 0x1ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x3, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x1ff}, {0xd, 0x0, 0x0, 0x80, 0x0, 0x20002}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x890)

2.24016126s ago: executing program 6 (id=809):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}, 0x1, 0x7000000}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r2, 0x0, 0x0)

1.977262261s ago: executing program 6 (id=811):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000005000000030000000000001103000000000000000000000000000004000000000000000001000084000000000000000001000000000000000000002e"], 0x0, 0x51, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x99, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000006900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x13f}}, 0x45)
r4 = fcntl$dupfd(r1, 0x0, r2)
write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f0000000080)={0x14, 0x88, 0xfa00, {r3, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x500, 0x40420f00}}}, 0x90)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000140)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4ea4, 0x6b3a, @mcast1, 0xf1b7}, r3}}, 0x30)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000040), 0x161a00, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000056a56e250000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000001080)='sys_enter\x00', r5}, 0x18)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r9=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r8, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0xffffffff}, {0xa, 0x0, 0x0, @mcast2={0xff, 0x5}}, r9}}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000c80)={'lo\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x20, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000010000000000000000000000691205000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.947486552s ago: executing program 4 (id=814):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r2, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x99, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200, 0x6}, 0x2630, 0x4, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r7, r6, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r7}, &(0x7f0000000000), &(0x7f0000000080)=r3}, 0x20)
recvmsg(r4, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000001c40)=""/4096, 0x8ec0}], 0x1}, 0x2)
sendmsg$inet(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$sock(r2, &(0x7f00000034c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf000000}, 0x0)

1.878942592s ago: executing program 6 (id=815):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r2, 0x40107447, &(0x7f00000006c0)={0x0, 0x0})

1.380553994s ago: executing program 6 (id=819):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, 0x1, 0x0, 0x3, 0x400, 0x0, 0x66, r1}) (async)
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$sndseq(r3, &(0x7f0000000200)=[{0xd0, 0x0, 0x0, 0x0, @tick=0x30, {0x2}, {0x0, 0xf}, @raw32={[0x8]}}, {0x0, 0x2, 0x4, 0x0, @time={0x0, 0x2}, {}, {}, @ext={0x0, 0x0}}], 0x38)

1.222766525s ago: executing program 1 (id=822):
syz_open_dev$sg(&(0x7f0000000080), 0x40000000010000, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000015000000000000000030000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r4, 0x0, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='mm_page_alloc\x00', r6}, 0x10)
timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3MtrXFUYAPDv3jyaNrGTiqgtggGpFcVp2hSFrlrXooIuuuyYTErI9GEmggldpHWvLkRcFKR/guDeunAluKgLrX9BEYsU3bQuInce6dBkktjO9PTx+8GZe86c6XzfN5fOPQfmJoAn1kTxkEfsjYiTWUSp9XweEcON3kjESvN1t2+eny5aFqur7/+VRRYRt26en26/V9Y6jrYGIxFx9a0snv50fdz60vJ8pVarLrTGBxdPnztYX1p+fe505VT1VPXMkak3j0y9MTXVw1qvn/vw6xd+eefli5c/m3z3q90/ZXEsxlpznXX0ykRMrH0mnQYjotLrYIkMtOrprDMbTJgQAACbyjvWcM9GKQbizuKtFD/+mjQ5AAAAoCdWByJWAQAAgMdcZv8PAAAAj7n27wBu3Tw/3W5pf5HwYN04HhHjzfrb9zc3ZwZjpXEciaGI2PV3Fp23tWbNf3bfJopI3/1cLVr06T7kzaxciIjnNzr/WaP+8cZd3OvrzyNisgfxJ+4aP0r1H+tB/NT1A/BkunK8eSFbf/3L19Y/scH1b3CDa9e9SH39a6//bq9b/92pf6DL+u+9bcbY9++rV7vNda7/Tnz++0wRvzjeV1H/w40LEfsGN6o/W6s/61L/yW3GGJ2+fqnbXFF/UW+7Pej6Vy9H7I+N62/LNvv7RAdn52rVyeZjlxj7fzhxoFv8zvNftCJ+ey/wIBTnf1eX+rc6/+e2GWP8uT/3dpvbuv78j+Hsg0ZvuPXMJ5XFxYVDEcPZ2+ufP7x5Lu3XtN+jqP+Vlzb//79R/cV3wkrrcyj2Ahdax2J88a6Yo/sPf3vv9fdXUf/MPZ7/L7YZ45vvL33UbS51/QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8GvKIGIssL6/187xcjhiNiGdiV147W198bfbsx2dmirmI8RjKZ+dq1cmIKDXHWTE+1OjfGR++azwVEXsi4svSzsa4PH22NpO6eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaMRsRYZHk5IvKI+KeU5+Vy6qwAAACAnhtPnQAAAADQd/b/AAAA8Piz/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDP9rx45VoWEStHdzZaYbg1N5Q0M6Df8tQJAMkMpE4ASGYwdQJAMvb4QLbF/EjXmR09zwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh9eBvVeuZRGxcnRnoxWGW3NDSTMD+i1PnQCQzEDqBIBkBlMnACRjjw9kW8yPdJ3Z0fNcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHh4jTValpcjIm/087xcjngqIsZjKJudq1UnI2J3RPxWGtpRjA+lThoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICeqy8tz1dqteqCjo6Ozlon9TcTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp1JeW5yu1WnWhnjoTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAILX60vJ8pVarLvSxk7pGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADS+S8AAP//szUGGQ==")
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xffffffff]}, 0x0, 0x8)
r8 = gettid()
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0xa, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x10)
tkill(r8, 0x11)
rt_sigaction(0x11, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r11, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x10)
ioctl$KDSKBENT(r7, 0x4b47, &(0x7f0000000000)={0x5, 0xb7, 0xa})
sendfile(r12, r12, 0x0, 0x80000000)
ioctl$GIO_SCRNMAP(r7, 0x5608, 0x0)

1.074814985s ago: executing program 6 (id=825):
select(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x2})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000004cc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)="a1", 0x1}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000002300)={0x7, {"a2e3ad214fc752f91b4809094bf70e0dd038e7ff7fc6e5539b326d078b089b3b083872090890e0878f0e1ac6e7049b3d68959b4c9a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b08320d075d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f0000000c558cdc0a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000e0a37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7076600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed050000000000000046684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5399e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df2928924486cfff799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d3a6df40babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e74322f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f39a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60559516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df11fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fffffff7f00000000758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000000400), 0x10)
splice(r1, 0x0, r4, 0x0, 0x400000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="18000007c1cca3080000000000010100009500000000000f0018000000ffffff7f00000000d5000000181100d59f055b05952a3611f30087f2f0c9092f84678c01f296d31310efa47ef4accc188ea7fa9bb406eee998278e94b604e94990f20155ba3c5d7269bcafbf1f2519472a29119a77e8dd050950aab5562efa4b7a6204027f2c67d55254a601d4f988f0e7e365a46db2227562a980d65efc97dd5fafe58a3f09bc6bcd0facd4c92431ad8f0e364b1b068a3462", @ANYRES32=0x1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000184b00000200000000000000000000009500000000000000852000000500000018230000", @ANYRES32=0x1, @ANYBLOB="00000000020400009500000000000000"], &(0x7f0000000100)='GPL\x00', 0xfc70, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000000240)={0x1, 0x6, 0x4, 0x7}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000280)=[{0x5, 0x1, 0x8, 0xc}, {0x0, 0x4, 0x7, 0x1}, {0x2, 0x4, 0xa, 0x8}, {0x3, 0x4, 0x10, 0x9}, {0x7ff, 0x2, 0x7, 0xd}], 0x10, 0x6, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000008018", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r6}, 0x10)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003"], 0x4b0}, 0x1, 0x0, 0x0, 0x44}, 0x0)
sendmsg$kcm(r7, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90124fc600c05000f90c60100053582c137153e370a48018004f01700d1bd", 0x33fe0}], 0x1, 0x0, 0x0, 0x5}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000c00), 0x5, r8}, 0x38)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r9, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000008c0)={0x14, r10, 0x309}, 0x14}}, 0x0)

1.047971385s ago: executing program 4 (id=826):
r0 = socket$pppoe(0x18, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x22000406, &(0x7f0000000780)={[{@dioread_lock}, {@noblock_validity}, {@stripe={'stripe', 0x3d, 0x9}}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4c2, &(0x7f0000000980)="$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")
syz_usb_connect(0x0, 0x36, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000f94f51404919a5853aa301020301090224000100000000"], 0x0)
connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x2, @dev, 'veth1_to_batadv\x00'}}, 0x1e)
socket$pppoe(0x18, 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r6, &(0x7f00000009c0)={&(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000280)="823be7271019b3fe048765ad73", 0xd}], 0x1, &(0x7f0000000940)=ANY=[@ANYBLOB="3c000000000000000000000007000000441454010000000000000000ac1414bb00000000004414000100000000000000000000000000000000000000000000001c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac14142700"], 0x60}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r7, &(0x7f0000000200)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, 'veth1_to_batadv\x00'}}, 0x1e)

541.489518ms ago: executing program 2 (id=833):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs(0x0, 0x0)
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0xeb0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002600)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff87, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)

541.069878ms ago: executing program 5 (id=834):
r0 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ipvlan0\x00'})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000080)=ANY=[@ANYRESOCT=r0, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_emit_ethernet(0x56, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60922ff500202100fe800000000000000000000000000015fe8000000000000000000000000000aa00000000640000000c00031039002000000000000401907800114f84007200"], 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000100), 0xffffffffffffffff)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000180)=0x4)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x44, r1, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x3}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @loopback}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}, @FOU_ATTR_IFINDEX={0x8, 0xb, r2}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0xc040)
r3 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r4}, 0x18)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) (fail_nth: 9)
r6 = socket(0x28, 0x5, 0x0)
r7 = socket(0x28, 0x5, 0x0)
listen(r7, 0x0)
connect$vsock_stream(r6, &(0x7f0000000440), 0x10)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r9}, 0x10)
sendmsg$nl_route(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x0)

508.620928ms ago: executing program 2 (id=835):
r0 = semget$private(0x0, 0x1, 0x0)
semtimedop(r0, &(0x7f0000000040)=[{0x0, 0x1}, {}], 0x2, 0x0)
semtimedop(r0, &(0x7f0000000080)=[{0x0, 0x7f}], 0x1, 0x0)
semtimedop(r0, &(0x7f0000000040)=[{}], 0x1, 0x0)
semctl$IPC_RMID(r0, 0x0, 0x0)
r1 = socket$inet6_dccp(0xa, 0x6, 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r2, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r3, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x10d, 0xd1, &(0x7f0000000080)=0xa, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0x9, @loopback, 0x20}, 0x1c)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)

221.876929ms ago: executing program 1 (id=836):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
prctl$PR_SET_NAME(0xf, 0x0)
r0 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x238, 0x238, 0x238, 0x98, 0x98, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, '\x00', 0x18}, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

221.555419ms ago: executing program 5 (id=837):
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x87)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3f14db126c935954a335f6469a793"], 0x138)
write$UHID_DESTROY(r4, &(0x7f0000000340), 0x4)

180.92433ms ago: executing program 1 (id=838):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_io_uring_setup(0x70e4, &(0x7f0000000080)={0x0, 0x0, 0x10410}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='*'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer)
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

180.56045ms ago: executing program 2 (id=839):
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x87)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000073790101000000000000000000000000000af7f4f0c55de8ca0000000000000000000000000000000000000000f3c800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ff00000000000000000000000000000020000000000000030000000000000000000000004119202532aeecfcdbb73887feb3f14db126c935954a335f6469a793"], 0x138)
write$UHID_DESTROY(r5, &(0x7f0000000340), 0x4)

172.71597ms ago: executing program 5 (id=840):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
syz_emit_ethernet(0x59, &(0x7f0000000400)={@multicast, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "001200", 0x23, 0x0, 0x0, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {[@routing={0x0, 0x2, 0x0, 0x0, 0x0, [@mcast1]}, @srh], "be6726"}}}}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@deltaction={0x34, 0x18, 0x1, 0xfffffffd, 0x0, {0xa}, [@TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}]}]}, 0x34}}, 0x0)

152.01012ms ago: executing program 2 (id=841):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000181100", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r1 = syz_io_uring_setup(0x70e4, &(0x7f0000000080)={0x0, 0x0, 0x10410}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB='*'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer)
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

143.07154ms ago: executing program 1 (id=842):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0xacd, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
write$cgroup_type(r1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c00000010001ffe00989837a182138b00268f1c", @ANYBLOB="ff7f000000000000140012800a00010076786c616e0000000400028008000a00"], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)

110.36922ms ago: executing program 5 (id=843):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
pipe(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x22042, 0x0)
splice(r1, 0x0, r3, 0x0, 0xbfcd, 0x0)
write$UHID_CREATE(r2, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz1\x00', 'syz1\x00', &(0x7f0000000080)=""/218, 0xda, 0x54e9, 0x7, 0x0, 0x843, 0x2}}, 0x120)

108.94685ms ago: executing program 2 (id=844):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5f, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$can_j1939(0x1d, 0x2, 0x7)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = socket(0x2b, 0x1, 0x0)
r3 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r9=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100fe020000000000002000000008000300", @ANYRES32=r9, @ANYBLOB="1c000500040000000000080002000142516b"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
io_uring_enter(r3, 0xdb4, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r3, 0x18, &(0x7f0000000000)={0x0, r2, 0x23, {0x4, 0x6d4}, 0xf0}, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)=@ipv6_newaddrlabel={0x68, 0x48, 0x300, 0x70bd2b, 0x25dfdbff, {0xa, 0x0, 0x80, 0x0, 0x0, 0x3}, [@IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @loopback}}, @IFAL_ADDRESS={0x14, 0x1, @private1}, @IFAL_LABEL={0x8, 0x2, 0xc}, @IFAL_LABEL={0x8, 0x2, 0xb}, @IFAL_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
r10 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r10, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

94.69271ms ago: executing program 1 (id=845):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs(0x0, 0x0)
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0xeb0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002600)=@newlink={0x34, 0x10, 0x0, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
recvmmsg(r1, &(0x7f0000001140), 0x700, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff87, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)

44.227481ms ago: executing program 2 (id=846):
r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000080), &(0x7f00000000c0), 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000a20c002e40c921e063f776000000000000000000000000000000bee0729e46791dcc2ac4ceb49fc1e902593bcbe0db4cb4c321086c731ee598a11d406c2e915dcdd0c76e5c"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x6, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000b00)=ANY=[@ANYBLOB="7c000080", @ANYRES16=0x0, @ANYBLOB="010028bd7000f9dbdf253b0000000c0099000001000057000000040087001000cd00090005000600050080000300480033002020070008021100000008021100000150505050505001ff100009000802110000010020eaa39a2498f9fc82421a618c03ca4f6408e01c66a7270df37785f6adc8d35676"], 0x7c}, 0x1, 0x0, 0x0, 0x4840}, 0x40010)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r4}, &(0x7f0000000080), &(0x7f0000000180)=r5}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, &(0x7f0000000dc0)={0x60c, "531e78d3a57b4464760057f1ac196a08f5958503dfb730373e2167131734dfea7eb80acfc3a5d1e461cdd4cc80df75c8ffcaf4c5b28db7e6dadbc034e37386f0a7b4be90ac7e937a6cac72875768bf61cbf337fcb888adff2b8415d43073c8faeefc0b1843f95852c8a3770a71cf3b4f79f0adae0e364011c1143b3cec6a46112204932061751e6bb6623bf1cfad379bef3b95a0ccff8914e75dd44915e545e427cd380b569c65a2726d7bcb8f00f76ce1dddb5f22f347469158684ab4d6aadf1eaf40e273c3f7d30bf83c17d3d9a4e4fae5ec0b6721351c9bcbdb0ffe586a63d4f9326907f94762e47c2102d04f5d0c93224b0f0f6fa8115926334ef1448eaebcb2413f591a0413c5fccefa3cecbc492003f7ba9742473c445f72aa741adcc59474f5b44c23f9c34f570c2dc10dee445396190220497609e1989e4de93b9b707606817f6b5196e2f21ae0e301fe472d22fdc9324d82d498c66f782527384f60246395d30b1e3201881873b4d11c13a1332d680bc9ddcb29a952c6a320a2cf06d9e6e44416b51c4fe16b88f7e4d43a793928b95f132bb5555c8ecfd4dd553075e0a543a0c8e5fda5da31a52a266d8fad2d01de5d0eac48ab9de79371bcbb26161596a3c65c106e8076b82b49bea70e6fbd208243dc1e2d4f96857d7c8aed526185b87b984feb8aaefe0f4402f266b904ddb6c4c661b66338923088ce1f8af38bbcb11e12f6bcaafb916cb5206c340e62a2165ff03c7567b80d0227f2b1ef4ac2d9c1522a7ded0defdb10c565545724da1d90bdd491ab0a93437385d74af4560387e2538b7499212416a20fd7d5295228dbcc2b5e55ad3d31ee834dce0a54529b4b9bd16fad92e74a981e60243f914145f6aa66748a3c557123f02c8ae9b106915a3efc2cb19ac22df77d1e4782956acfd1ceab97d2cd9bf72aa1a06c6b6ac4e12ef8b865dea6a62101ce15263c9cb6fb6918a1fc2975e52929f006d69dee677ea93919215666ff114e15f10541f80ba006c245b1fc9c213095b1f417b304b930745040e4b9fb8ae3b1d2774c29c289429c1a594797d9ff720bd3595ae8384be1d115c21b62c658d5a60dfc18cf17f7d469971041053d023b53fab66af616132d12e3f9d3b3334872b14a1afacc55d345a7c6ccba4cb30aa9bbb620c4bdbebaf8d34ffac4cdd80eee1065755527a701e926d2f263fa1daa7a4b4af1001c64d80fda1c0c847859c0022dbc7d89bbc79d739e435568b1f5cf2caa0bc8d43e1c56d6b9eb5eb3988400a5c8301eee98d7f5592773401d7527a3a4c596cb07821e06e1d5524d16e869b08d110a85a16bb297e7dff72a05e8b23e6c9079f43d5f8bfddb5efeebad1b5b776e429ca5d8f2b1909bab1244e2ff228fa96315b811a710fee586eb065c6618eb039b1da9d8ebed7ef2582db0530f6e50e67280a654a259386ae7e0bb222c957edaa3b1fd7fc778e578e2b072d0c8ab72f6bc3a7fb8d3f52d0c6b0c5e6c5174be79f37f4375110486d04d9427d6f1e083dff82fc6a4e81fb659fe225e1ca5d66108b800b9132b77c397af98165c7a3011a01f983494e01a33be9a44e5e81fa5183ce7006a5d342bc67b25390c48fadf12cd0455af2e7905897735f16ed356bfe4aa3d70701d2c62f6746776bff05ea21744184d0869e2eedb7c3c7afeb5b7964bba46d46da131d546e1ae00b0a2c4259a9e105fd98ff5bd4de382b167d797d0fdd78bf09d34cea1d0f386c57376ea71cc9a5e6e278e89f942eadaa83ef57dc24f8726815d3ba712dfcfb33182d82a020f15a53c8a1443b0cfacea10928efab59052b587a7e2f05955a18389dde49812bfa7caaa879b6d2ff68fb2fcd2c936c7bcc10cae3fc0b0df9634ceb1bd5a0873a4542be897f67acb35fa218d79e0d17bc435b16f7bef67726152745769f6f5a5486ddb115ba24b765995ad71b37923d306b7ae1cb003abd7ef9c56ab85ea2622e06c369d6b60744858d95e1f0cbf7b4351c4181f4f7c844c4b303d01abba866068a0615d342edce65bc9c4613b8dc86c9127a98ea32f11e4d7024f2edef9d36211960437d58a0509e420fdba8529fc8527c75a8ee994579330ec26d81a18cd67fca8e254c5dc5025788adee5780cfbea1695cb7c5cbf667e536a5e1bc6b31d2166151df289df59adf3b52200486a41da9021202addf5"})
write$UHID_CREATE2(r6, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a00000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x1, 0x7}, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$hidraw(0x0, 0x0, 0x14a042)
close_range(r2, 0xffffffffffffffff, 0x0)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000100), &(0x7f0000000140), 0x0)
write(0xffffffffffffffff, &(0x7f0000000180)="01010101", 0x4)
close(0xffffffffffffffff)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f00000001c0), &(0x7f0000000200), 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
close(r7)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000280), &(0x7f00000002c0), 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x1ff)
execveat$binfmt(0xffffffffffffff9c, r0, &(0x7f0000000700)={[&(0x7f0000000380)='\\,@{}$^-\xd7\'\xc4.!&\\\x00', &(0x7f0000000480)='-(+^(.\x00', &(0x7f00000004c0)='))\'}@{\x00', &(0x7f0000000900)='\x00\xcb\x00\x00\xdd\x94\xacp\xd7\xb2\x119\x18Sq\xf2?F\x99\xdf\x01\x9e\xd5\xd6\xae\x12./\xe3\xd3\xe5?\xadB\xfb\x8f\xe5]\xd1}Jh\xdc\xac\xe9\x8a\x94\xba\xb4\xa0\x8e\xa2\xb6\xd2\xa2\r\x90\xdcx\xa1\x80\xf9\xba\xd3\xb3\x15\xbe\x1a`\v\xed\xaeK?\x10\xae\x11i\xde\x93\xa8?\xe1\xbbyj\r\xaa\xdeql\xfe\fs\x8f\xe8\xa4J\xe0\xec]\x94<M\x97\xa14\x00', &(0x7f0000000540)='\'&/\'&+%-])\x00', &(0x7f0000000a40)='u&]\xa1\xc7\xbc\x83o\x8dH\x9a\xf5:4\xe7f\xc7yd4\xd3\xb8o\xce+\xaa\xfd\x8e\x19\xa1\xbb\x91\x14\xf6\xd9UD3\xfc\xbd\xbc\xd5\xff5,{\x16S\xe1\x8a\xc4\x91\xbb\xcdp\xe1\xce[9\xe1\xf9\x1e\xcc\x1f<\x1f\x7fX\xd4\x96\x02\xcf\tR\x0e\xa5\xe3)g\xc9~\xc3Z\xd3kLl\x86B\xae\xe5\x10Gg\x88O2\xd1@Rs\x97M\x81M\xd8\x9a\x10]A=+\x9dB?:\xd8\xbe\x87\x02\xf7$\x85DK\xbd\xc3V\xa4\xdf[\xff\xe0\xe4\xbe\x15\x99\xc4\x98\xc0\x8c\\;\xfb\x9f\x92\xb8\xa3\xd3/j', &(0x7f0000000640)='\x00', &(0x7f0000000680)='GPL\x00', &(0x7f0000000500)='\x04\x01\x00t\x17\xbe]9\xb4w\x9fA_\xf2\x10\x14\x12\xa8\x00/\x88hid\x00']}, &(0x7f0000000440)={[&(0x7f0000000000)='GPL\x00']}, 0x0)

43.92518ms ago: executing program 5 (id=847):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=', @ANYBLOB='y'])

36.44272ms ago: executing program 1 (id=848):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x10008, 0x1, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)={0x30, r4, 0x1, 0x0, 0xfffffffc, {0x7}, [@L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x6}]}, 0x30}}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = syz_io_uring_setup(0x207, &(0x7f0000000340)={0x0, 0x8e00, 0x10100, 0x0, 0xffffffff}, &(0x7f0000000300), &(0x7f0000000100)=<r10=>0x0)
syz_io_uring_setup(0x6f7c, &(0x7f00000008c0), &(0x7f0000000040)=<r11=>0x0, &(0x7f00000002c0))
syz_io_uring_submit(r11, r10, &(0x7f00000001c0)=@IORING_OP_SYMLINKAT={0x26, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000047c0)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00'})
io_uring_enter(r9, 0x1849, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0xfffffffffffffe9f, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x8c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c}}]}, 0x8c}}, 0x20008090)

0s ago: executing program 5 (id=849):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xe}, 0x18)
r2 = socket$kcm(0x29, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r4, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000040)={r4, r3})
sendmsg$kcm(r2, &(0x7f0000002080)={0x0, 0x1100, &(0x7f0000002000)=[{&(0x7f0000000880)="1a", 0x100000}], 0x1}, 0x0)

kernel console output (not intermixed with test programs):

e MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.064870][ T4282] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.079971][ T4192] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.086328][ T4290] loop1: detected capacity change from 0 to 1024
[   45.091520][ T4192] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.114174][ T4192] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.123633][ T4290] EXT4-fs: Ignoring removed orlov option
[   45.140141][ T4192] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   45.145894][ T4290] EXT4-fs: Ignoring removed nomblk_io_submit option
[   45.189630][ T4290] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.206885][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.235537][ T4192] hsr_slave_0: entered promiscuous mode
[   45.247912][ T4192] hsr_slave_1: entered promiscuous mode
[   45.298331][ T4306] loop4: detected capacity change from 0 to 512
[   45.298792][ T4304] 9pnet: p9_errstr2errno: server reported unknown error ťč˝FcÇgĺKIeÎ˙B$·*Ů
[   45.318616][ T4306] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   45.375064][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.421204][ T4316] netlink: 4 bytes leftover after parsing attributes in process `syz.3.296'.
[   45.454118][ T4192] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   45.464327][ T4192] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   45.483856][ T4192] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   45.501628][ T4192] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   45.518438][ T4327] loop1: detected capacity change from 0 to 512
[   45.552364][ T4329] loop3: detected capacity change from 0 to 512
[   45.561468][ T4327] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[   45.574649][ T4327] System zones: 0-2, 18-18, 34-34
[   45.584195][ T4329] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   45.595936][ T4329] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[   45.596435][ T4192] 8021q: adding VLAN 0 to HW filter on device bond0
[   45.606059][ T4329] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.298: Corrupt directory, running e2fsck is recommended
[   45.617320][ T4192] 8021q: adding VLAN 0 to HW filter on device team0
[   45.633437][ T4327] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.297: bg 0: block 248: padding at end of block bitmap is not set
[   45.650925][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.658015][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.663384][ T4327] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.297: Failed to acquire dquot type 1
[   45.680825][ T4329] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[   45.689585][ T4329] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.298: corrupted in-inode xattr: invalid ea_ino
[   45.693483][ T4327] EXT4-fs (loop1): 1 truncate cleaned up
[   45.704148][ T4329] EXT4-fs (loop3): Remounting filesystem read-only
[   45.716139][ T4329] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.728669][ T4329] SELinux: (dev loop3, type ext4) getxattr errno 5
[   45.729834][ T1292] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.735841][ T4329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.742278][ T1292] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.768334][ T4327] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.778742][ T4192] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   45.804842][ T4327] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   45.864676][ T4329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   45.865793][ T4192] 8021q: adding VLAN 0 to HW filter on device batadv0
[   45.873554][ T4329] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   45.895944][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.940361][ T3397] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   45.948476][ T3397] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   46.047785][ T4192] veth0_vlan: entered promiscuous mode
[   46.057249][ T4192] veth1_vlan: entered promiscuous mode
[   46.071700][ T4192] veth0_macvtap: entered promiscuous mode
[   46.082027][ T4192] veth1_macvtap: entered promiscuous mode
[   46.094212][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.104778][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.114598][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.125087][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.134972][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.145423][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.155300][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   46.165795][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.177030][ T4192] batman_adv: batadv0: Interface activated: batadv_slave_0
[   46.185451][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.196019][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.205890][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.216341][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.226192][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.236774][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.246877][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   46.257367][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   46.275872][ T4369] netlink: 28 bytes leftover after parsing attributes in process `syz.2.304'.
[   46.289407][ T4371] loop4: detected capacity change from 0 to 512
[   46.290359][ T4192] batman_adv: batadv0: Interface activated: batadv_slave_1
[   46.300435][ T4371] EXT4-fs: Ignoring removed nobh option
[   46.308483][ T4371] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.316656][ T4371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.334912][ T4192] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.343730][ T4192] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.352576][ T4192] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.361516][ T4192] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.371229][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.430625][ T4382] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   46.540150][ T4396] netlink: 133492 bytes leftover after parsing attributes in process `syz.2.308'.
[   46.591238][ T4401] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   46.622635][ T4403] loop4: detected capacity change from 0 to 512
[   46.651543][ T4407] loop3: detected capacity change from 0 to 512
[   46.659694][ T4403] EXT4-fs: Ignoring removed oldalloc option
[   46.736673][ T4403] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   46.757668][ T4408] netlink: 56 bytes leftover after parsing attributes in process `syz.5.310'.
[   46.814844][ T4403] EXT4-fs (loop4): 1 truncate cleaned up
[   46.824493][ T4408] hsr_slave_1 (unregistering): left promiscuous mode
[   46.838243][ T4407] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[   46.853095][ T4403] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.872050][ T4407] System zones: 0-2, 18-18, 34-34
[   46.918743][ T4407] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.318: bg 0: block 248: padding at end of block bitmap is not set
[   46.999211][ T4407] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.318: Failed to acquire dquot type 1
[   47.011238][ T4407] EXT4-fs (loop3): 1 truncate cleaned up
[   47.018238][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.026787][ T4407] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.040130][ T4407] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.098719][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.332193][ T4452] 9pnet: p9_errstr2errno: server reported unknown error ťč˝FcÇgĺKIeÎ˙B$·*Ů
[   47.351484][ T4455] loop3: detected capacity change from 0 to 512
[   47.360433][ T4455] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.387640][ T4455] tipc: Started in network mode
[   47.392636][ T4455] tipc: Node identity 92dafd517389, cluster identity 4711
[   47.399861][ T4455] tipc: Enabled bearer <eth:syzkaller0>, priority 7
[   47.407680][ T4455] ŞŞŞŞŞŞ: renamed from syzkaller0
[   47.414027][ T4455] tipc: Disabling bearer <eth:syzkaller0>
[   47.486566][ T3327] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[   47.516002][ T4469] pimreg: entered allmulticast mode
[   47.522124][ T4469] pimreg: left allmulticast mode
[   47.530404][ T4471] loop4: detected capacity change from 0 to 512
[   47.549546][ T4471] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   47.561240][ T4471] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[   47.571387][ T4471] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.344: Corrupt directory, running e2fsck is recommended
[   47.586273][ T4471] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   47.594525][ T4471] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.344: corrupted in-inode xattr: invalid ea_ino
[   47.609162][ T4471] EXT4-fs (loop4): Remounting filesystem read-only
[   47.617031][ T4471] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.630238][ T4471] SELinux: (dev loop4, type ext4) getxattr errno 5
[   47.639732][ T4471] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.652918][ T4471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.663827][ T4471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.672806][   T29] kauditd_printk_skb: 546 callbacks suppressed
[   47.672841][   T29] audit: type=1326 audit(1732777836.971:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.703416][   T29] audit: type=1326 audit(1732777836.981:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.726912][   T29] audit: type=1326 audit(1732777836.981:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.750661][   T29] audit: type=1326 audit(1732777836.981:1592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.773999][   T29] audit: type=1326 audit(1732777836.981:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.797505][   T29] audit: type=1326 audit(1732777836.981:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.820952][   T29] audit: type=1326 audit(1732777836.981:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.844251][   T29] audit: type=1326 audit(1732777836.981:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.867510][   T29] audit: type=1326 audit(1732777836.981:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   47.890818][   T29] audit: type=1326 audit(1732777836.981:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4470 comm="syz.4.344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4835492727 code=0x7ffc0000
[   48.014764][ T4485] loop3: detected capacity change from 0 to 4096
[   48.023744][ T4485] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.167455][ T4490] netlink: 4 bytes leftover after parsing attributes in process `syz.1.352'.
[   48.221580][ T4494] FAULT_INJECTION: forcing a failure.
[   48.221580][ T4494] name failslab, interval 1, probability 0, space 0, times 0
[   48.234298][ T4494] CPU: 1 UID: 0 PID: 4494 Comm: syz.4.354 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   48.244555][ T4494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   48.254700][ T4494] Call Trace:
[   48.257979][ T4494]  <TASK>
[   48.260906][ T4494]  dump_stack_lvl+0xf2/0x150
[   48.265566][ T4494]  dump_stack+0x15/0x20
[   48.269803][ T4494]  should_fail_ex+0x223/0x230
[   48.274496][ T4494]  should_failslab+0x8f/0xb0
[   48.279202][ T4494]  __kmalloc_node_noprof+0xad/0x410
[   48.284496][ T4494]  ? __kvmalloc_node_noprof+0x72/0x170
[   48.290047][ T4494]  __kvmalloc_node_noprof+0x72/0x170
[   48.295335][ T4494]  rhashtable_init_noprof+0x312/0x450
[   48.300721][ T4494]  nf_flow_table_init+0xe2/0x1d0
[   48.305704][ T4494]  nf_tables_newflowtable+0xa4c/0x10d0
[   48.311239][ T4494]  nfnetlink_rcv+0xb3e/0x15d0
[   48.315916][ T4494]  ? kmem_cache_free+0xdc/0x2d0
[   48.320778][ T4494]  netlink_unicast+0x599/0x670
[   48.325623][ T4494]  netlink_sendmsg+0x5cc/0x6e0
[   48.330391][ T4494]  ? __pfx_netlink_sendmsg+0x10/0x10
[   48.335749][ T4494]  __sock_sendmsg+0x140/0x180
[   48.340428][ T4494]  ____sys_sendmsg+0x312/0x410
[   48.345321][ T4494]  __sys_sendmsg+0x19d/0x230
[   48.349941][ T4494]  __x64_sys_sendmsg+0x46/0x50
[   48.354699][ T4494]  x64_sys_call+0x2734/0x2dc0
[   48.359410][ T4494]  do_syscall_64+0xc9/0x1c0
[   48.363905][ T4494]  ? clear_bhb_loop+0x55/0xb0
[   48.368575][ T4494]  ? clear_bhb_loop+0x55/0xb0
[   48.373302][ T4494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.379272][ T4494] RIP: 0033:0x7f4835490809
[   48.383725][ T4494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   48.403478][ T4494] RSP: 002b:00007f4833b07058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   48.411957][ T4494] RAX: ffffffffffffffda RBX: 00007f4835655fa0 RCX: 00007f4835490809
[   48.419921][ T4494] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004
[   48.427997][ T4494] RBP: 00007f4833b070a0 R08: 0000000000000000 R09: 0000000000000000
[   48.435971][ T4494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   48.443934][ T4494] R13: 0000000000000000 R14: 00007f4835655fa0 R15: 00007ffeeb89d848
[   48.451901][ T4494]  </TASK>
[   48.467692][ T4496] netlink: 'syz.1.355': attribute type 10 has an invalid length.
[   48.626173][ T4509] loop1: detected capacity change from 0 to 4096
[   48.831619][ T4513] netlink: 56 bytes leftover after parsing attributes in process `syz.4.358'.
[   48.965863][ T4515] netlink: 40 bytes leftover after parsing attributes in process `syz.5.361'.
[   49.073530][ T4522] loop5: detected capacity change from 0 to 512
[   49.082844][ T4522] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   49.094491][ T4522] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it
[   49.104644][ T4522] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.364: Corrupt directory, running e2fsck is recommended
[   49.118318][ T4522] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[   49.127776][ T4522] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.364: corrupted in-inode xattr: invalid ea_ino
[   49.142085][ T4522] EXT4-fs (loop5): Remounting filesystem read-only
[   49.150310][ T4522] SELinux: (dev loop5, type ext4) getxattr errno 5
[   49.165712][ T4522] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.175940][ T4522] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.328831][   T35] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4
[   49.336620][   T35] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2
[   49.344412][   T35] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x3
[   49.352796][   T35] hid-generic 0000:3000000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   49.450189][ T4540] loop2: detected capacity change from 0 to 512
[   49.470220][ T4540] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.372: casefold flag without casefold feature
[   49.483245][ T4540] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.372: couldn't read orphan inode 15 (err -117)
[   49.527375][ T4554] loop1: detected capacity change from 0 to 128
[   49.564922][ T4554] syz.1.377: attempt to access beyond end of device
[   49.564922][ T4554] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128
[   49.583205][ T4554] syz.1.377: attempt to access beyond end of device
[   49.583205][ T4554] loop1: rw=0, sector=177, nr_sectors = 1 limit=128
[   49.599032][ T4553] syz.1.377: attempt to access beyond end of device
[   49.599032][ T4553] loop1: rw=524288, sector=145, nr_sectors = 32 limit=128
[   49.613149][ T4553] syz.1.377: attempt to access beyond end of device
[   49.613149][ T4553] loop1: rw=524288, sector=185, nr_sectors = 184 limit=128
[   49.633559][ T4553] syz.1.377: attempt to access beyond end of device
[   49.633559][ T4553] loop1: rw=0, sector=177, nr_sectors = 1 limit=128
[   49.646672][ T4553] Buffer I/O error on dev loop1, logical block 177, async page read
[   49.654832][ T4553] syz.1.377: attempt to access beyond end of device
[   49.654832][ T4553] loop1: rw=0, sector=178, nr_sectors = 1 limit=128
[   49.667879][ T4553] Buffer I/O error on dev loop1, logical block 178, async page read
[   49.676124][ T4553] syz.1.377: attempt to access beyond end of device
[   49.676124][ T4553] loop1: rw=0, sector=179, nr_sectors = 1 limit=128
[   49.689357][ T4553] Buffer I/O error on dev loop1, logical block 179, async page read
[   49.697510][ T4553] syz.1.377: attempt to access beyond end of device
[   49.697510][ T4553] loop1: rw=0, sector=180, nr_sectors = 1 limit=128
[   49.700003][ T4564] loop3: detected capacity change from 0 to 512
[   49.710654][ T4553] Buffer I/O error on dev loop1, logical block 180, async page read
[   49.813509][ T4564] EXT4-fs (loop3): VFS: Can't find ext4 filesystem
[   49.822445][ T4553] syz.1.377: attempt to access beyond end of device
[   49.822445][ T4553] loop1: rw=0, sector=181, nr_sectors = 1 limit=128
[   49.835724][ T4553] Buffer I/O error on dev loop1, logical block 181, async page read
[   49.849593][ T4568] FAULT_INJECTION: forcing a failure.
[   49.849593][ T4568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.862680][ T4568] CPU: 1 UID: 0 PID: 4568 Comm: syz.5.382 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   49.872976][ T4568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   49.883120][ T4568] Call Trace:
[   49.886412][ T4568]  <TASK>
[   49.889334][ T4568]  dump_stack_lvl+0xf2/0x150
[   49.893939][ T4568]  dump_stack+0x15/0x20
[   49.898132][ T4568]  should_fail_ex+0x223/0x230
[   49.902850][ T4568]  should_fail+0xb/0x10
[   49.907072][ T4568]  should_fail_usercopy+0x1a/0x20
[   49.912178][ T4568]  _copy_from_iter+0xd5/0xd00
[   49.916904][ T4568]  ? kmalloc_reserve+0x16e/0x190
[   49.921909][ T4568]  ? __build_skb_around+0x196/0x1f0
[   49.927189][ T4568]  ? __alloc_skb+0x21f/0x310
[   49.931847][ T4568]  ? __virt_addr_valid+0x1ed/0x250
[   49.937101][ T4568]  ? __check_object_size+0x364/0x520
[   49.942545][ T4568]  netlink_sendmsg+0x460/0x6e0
[   49.947435][ T4568]  ? __pfx_netlink_sendmsg+0x10/0x10
[   49.952761][ T4568]  __sock_sendmsg+0x140/0x180
[   49.957514][ T4568]  ____sys_sendmsg+0x312/0x410
[   49.962286][ T4568]  __sys_sendmsg+0x19d/0x230
[   49.966885][ T4568]  __x64_sys_sendmsg+0x46/0x50
[   49.971657][ T4568]  x64_sys_call+0x2734/0x2dc0
[   49.976365][ T4568]  do_syscall_64+0xc9/0x1c0
[   49.980859][ T4568]  ? clear_bhb_loop+0x55/0xb0
[   49.985573][ T4568]  ? clear_bhb_loop+0x55/0xb0
[   49.990245][ T4568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.996146][ T4568] RIP: 0033:0x7f1ac1330809
[   50.000555][ T4568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.018506][ T4553] syz.1.377: attempt to access beyond end of device
[   50.018506][ T4553] loop1: rw=0, sector=182, nr_sectors = 1 limit=128
[   50.020143][ T4568] RSP: 002b:00007f1abf9a7058 EFLAGS: 00000246
[   50.033146][ T4553] Buffer I/O error on dev loop1, logical block 182, async page read
[   50.033150][ T4568]  ORIG_RAX: 000000000000002e
[   50.033170][ T4553] Buffer I/O error on dev loop1, logical block 183, async page read
[   50.039246][ T4568] RAX: ffffffffffffffda RBX: 00007f1ac14f5fa0 RCX: 00007f1ac1330809
[   50.039260][ T4568] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000003
[   50.047229][ T4553] Buffer I/O error on dev loop1, logical block 184, async page read
[   50.051857][ T4568] RBP: 00007f1abf9a70a0 R08: 0000000000000000 R09: 0000000000000000
[   50.059837][ T4553] Buffer I/O error on dev loop1, logical block 177, async page read
[   50.067742][ T4568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.067756][ T4568] R13: 0000000000000000 R14: 00007f1ac14f5fa0 R15: 00007ffc9fa9df48
[   50.067774][ T4568]  </TASK>
[   50.075056][ T4564] loop3: detected capacity change from 0 to 1024
[   50.084767][ T4553] Buffer I/O error on dev loop1, logical block 178, async page read
[   50.196537][    T9] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4
[   50.204230][    T9] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2
[   50.217456][ T4576] __nla_validate_parse: 5 callbacks suppressed
[   50.217470][ T4576] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.383'.
[   50.233130][    T9] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x3
[   50.241259][    T9] hid-generic 0000:3000000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   50.271582][ T4578] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   50.327894][ T4564] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   50.343591][ T4564] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   50.355911][ T4564] EXT4-fs (loop3): This should not happen!! Data will be lost
[   50.355911][ T4564] 
[   50.365702][ T4564] EXT4-fs (loop3): Total free blocks count 0
[   50.371814][ T4564] EXT4-fs (loop3): Free/Dirty block details
[   50.377846][ T4564] EXT4-fs (loop3): free_blocks=68451041280
[   50.383654][ T4564] EXT4-fs (loop3): dirty_blocks=16
[   50.388783][ T4564] EXT4-fs (loop3): Block reservation details
[   50.394800][ T4564] EXT4-fs (loop3): i_reserved_data_blocks=1
[   50.436162][ T4588] netlink: 4 bytes leftover after parsing attributes in process `syz.1.390'.
[   50.458632][ T4585] netlink: 40 bytes leftover after parsing attributes in process `syz.4.389'.
[   50.552659][ T4599] loop3: detected capacity change from 0 to 2048
[   50.554464][ T4605] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   50.562297][ T4603] netlink: 4 bytes leftover after parsing attributes in process `syz.1.397'.
[   50.566980][ T4599] EXT4-fs: Ignoring removed bh option
[   50.687522][ T4608] netlink: 4 bytes leftover after parsing attributes in process `syz.1.399'.
[   50.700537][ T4606] loop4: detected capacity change from 0 to 4096
[   50.717854][ T4605] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=274 sclass=netlink_route_socket pid=4605 comm=syz.2.398
[   50.758867][    T8] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   50.767729][    T8] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   50.869197][ T4621] netlink: 40 bytes leftover after parsing attributes in process `syz.3.403'.
[   50.907043][ T4632] 9pnet: Could not find request transport: fd0x0000000000000005
[   50.959847][ T4641] netlink: 24 bytes leftover after parsing attributes in process `syz.3.410'.
[   50.975557][ T4641] veth3: entered promiscuous mode
[   50.980618][ T4641] veth3: entered allmulticast mode
[   51.020430][   T35] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x4
[   51.028200][   T35] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x2
[   51.036170][   T35] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x3
[   51.044860][   T35] hid-generic 0000:3000000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   51.200785][ T4659] loop2: detected capacity change from 0 to 512
[   51.212116][ T4659] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   51.227212][ T4659] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.368136][ T4666] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   51.561244][ T4683] FAULT_INJECTION: forcing a failure.
[   51.561244][ T4683] name failslab, interval 1, probability 0, space 0, times 0
[   51.561267][ T4683] CPU: 0 UID: 0 PID: 4683 Comm: syz.4.428 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   51.561355][ T4683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   51.561368][ T4683] Call Trace:
[   51.561375][ T4683]  <TASK>
[   51.561382][ T4683]  dump_stack_lvl+0xf2/0x150
[   51.561407][ T4683]  dump_stack+0x15/0x20
[   51.561487][ T4683]  should_fail_ex+0x223/0x230
[   51.613862][ T4683]  should_failslab+0x8f/0xb0
[   51.613887][ T4683]  kmem_cache_alloc_node_noprof+0x59/0x320
[   51.624270][ T4683]  ? __alloc_skb+0x10b/0x310
[   51.628938][ T4683]  __alloc_skb+0x10b/0x310
[   51.628957][ T4683]  ? audit_log_start+0x34c/0x6b0
[   51.628988][ T4683]  audit_log_start+0x368/0x6b0
[   51.629020][ T4683]  audit_seccomp+0x4b/0x130
[   51.629075][ T4683]  __seccomp_filter+0x6fa/0x1180
[   51.629179][ T4683]  __secure_computing+0x9f/0x1c0
[   51.629202][ T4683]  syscall_trace_enter+0xd1/0x1f0
[   51.629226][ T4683]  do_syscall_64+0xaa/0x1c0
[   51.629305][ T4683]  ? clear_bhb_loop+0x55/0xb0
[   51.629320][ T4683]  ? clear_bhb_loop+0x55/0xb0
[   51.629335][ T4683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.629509][ T4683] RIP: 0033:0x7f483548f21c
[   51.629526][ T4683] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   51.629545][ T4683] RSP: 002b:00007f4833b07050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   51.629566][ T4683] RAX: ffffffffffffffda RBX: 00007f4835655fa0 RCX: 00007f483548f21c
[   51.629586][ T4683] RDX: 000000000000000f RSI: 00007f4833b070b0 RDI: 0000000000000004
[   51.629600][ T4683] RBP: 00007f4833b070a0 R08: 0000000000000000 R09: 0000000000000000
[   51.629614][ T4683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   51.629711][ T4683] R13: 0000000000000000 R14: 00007f4835655fa0 R15: 00007ffeeb89d848
[   51.629730][ T4683]  </TASK>
[   51.861515][ T4685] netlink: 44 bytes leftover after parsing attributes in process `syz.1.429'.
[   51.918442][ T4690] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   51.950768][ T4688] loop4: detected capacity change from 0 to 4096
[   51.957214][ T4695] loop1: detected capacity change from 0 to 128
[   51.957425][ T4695] EXT4-fs: Ignoring removed nobh option
[   51.980227][ T4695] ext4 filesystem being mounted at /98/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   52.118731][ T3397] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x4
[   52.126603][ T3397] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x2
[   52.134645][ T3397] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x3
[   52.147428][ T3397] hid-generic 0000:3000000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   52.177202][ T4720] netlink: 24 bytes leftover after parsing attributes in process `syz.2.444'.
[   52.208801][ T4723] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.258852][ T4723] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.409985][ T4723] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.476803][ T4723] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.535636][ T4723] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   52.548488][ T4723] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   52.560087][ T4723] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   52.572332][ T4723] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   52.695254][   T29] kauditd_printk_skb: 520 callbacks suppressed
[   52.695269][   T29] audit: type=1400 audit(1732777841.981:2117): avc:  denied  { unmount } for  pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   52.722746][   T29] audit: type=1400 audit(1732777842.011:2118): avc:  denied  { read } for  pid=3002 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   52.744780][   T29] audit: type=1400 audit(1732777842.011:2119): avc:  denied  { search } for  pid=3002 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   52.766517][   T29] audit: type=1400 audit(1732777842.011:2120): avc:  denied  { open } for  pid=3002 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   52.789214][   T29] audit: type=1400 audit(1732777842.011:2121): avc:  denied  { getattr } for  pid=3002 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   52.877632][ T4748] loop2: detected capacity change from 0 to 4096
[   53.032762][ T4767] loop1: detected capacity change from 0 to 1024
[   53.034921][ T4767] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   53.036781][ T4767] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   53.036929][ T4767] EXT4-fs (loop1): orphan cleanup on readonly fs
[   53.037070][ T4767] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #3: comm syz.1.461: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 2(4), depth 0(0)
[   53.047063][ T4767] EXT4-fs (loop1): Remounting filesystem read-only
[   53.047090][ T4767] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   53.047117][ T4767] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   53.047470][ T4767] SELinux: (dev loop1, type ext4) getxattr errno 5
[   53.063941][   T29] audit: type=1400 audit(1732777842.361:2122): avc:  denied  { create } for  pid=4766 comm="syz.1.461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   53.066976][   T29] audit: type=1400 audit(1732777842.361:2123): avc:  denied  { create } for  pid=4766 comm="syz.1.461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   53.067540][   T29] audit: type=1400 audit(1732777842.361:2124): avc:  denied  { ioctl } for  pid=4766 comm="syz.1.461" path="socket:[9073]" dev="sockfs" ino=9073 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   53.198095][   T29] audit: type=1326 audit(1732777842.411:2125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4771 comm="syz.4.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   53.221583][   T29] audit: type=1326 audit(1732777842.411:2126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4771 comm="syz.4.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   53.289440][ T4775] loop4: detected capacity change from 0 to 4096
[   53.669281][ T4812] FAULT_INJECTION: forcing a failure.
[   53.669281][ T4812] name failslab, interval 1, probability 0, space 0, times 0
[   53.682048][ T4812] CPU: 1 UID: 0 PID: 4812 Comm: syz.3.479 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   53.692315][ T4812] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   53.702367][ T4812] Call Trace:
[   53.705647][ T4812]  <TASK>
[   53.708571][ T4812]  dump_stack_lvl+0xf2/0x150
[   53.713164][ T4812]  dump_stack+0x15/0x20
[   53.717362][ T4812]  should_fail_ex+0x223/0x230
[   53.722047][ T4812]  should_failslab+0x8f/0xb0
[   53.726634][ T4812]  kmem_cache_alloc_noprof+0x52/0x320
[   53.732101][ T4812]  ? prepare_creds+0x37/0x480
[   53.736799][ T4812]  prepare_creds+0x37/0x480
[   53.741304][ T4812]  copy_creds+0x90/0x3f0
[   53.745628][ T4812]  copy_process+0x64b/0x1f90
[   53.750289][ T4812]  kernel_clone+0x167/0x5e0
[   53.754855][ T4812]  __x64_sys_clone+0xe8/0x120
[   53.759605][ T4812]  x64_sys_call+0x2d7e/0x2dc0
[   53.764399][ T4812]  do_syscall_64+0xc9/0x1c0
[   53.768906][ T4812]  ? clear_bhb_loop+0x55/0xb0
[   53.773579][ T4812]  ? clear_bhb_loop+0x55/0xb0
[   53.778253][ T4812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.784202][ T4812] RIP: 0033:0x7fc835460809
[   53.788745][ T4812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.808353][ T4812] RSP: 002b:00007fc833ad7008 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   53.816762][ T4812] RAX: ffffffffffffffda RBX: 00007fc835625fa0 RCX: 00007fc835460809
[   53.824774][ T4812] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000240c7000
[   53.832735][ T4812] RBP: 00007fc833ad70a0 R08: 0000000000000000 R09: 0000000000000000
[   53.840729][ T4812] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[   53.848701][ T4812] R13: 0000000000000000 R14: 00007fc835625fa0 R15: 00007ffd2f529b88
[   53.856769][ T4812]  </TASK>
[   53.896553][ T4817] loop2: detected capacity change from 0 to 128
[   53.920826][ T4816] qrtr: Invalid version 0
[   54.049797][ T4837] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   54.060366][ T4837] FAULT_INJECTION: forcing a failure.
[   54.060366][ T4837] name failslab, interval 1, probability 0, space 0, times 0
[   54.073112][ T4837] CPU: 0 UID: 0 PID: 4837 Comm: syz.4.489 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   54.083352][ T4837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   54.093398][ T4837] Call Trace:
[   54.096678][ T4837]  <TASK>
[   54.099627][ T4837]  dump_stack_lvl+0xf2/0x150
[   54.104222][ T4837]  dump_stack+0x15/0x20
[   54.108376][ T4837]  should_fail_ex+0x223/0x230
[   54.113130][ T4837]  should_failslab+0x8f/0xb0
[   54.117715][ T4837]  __kmalloc_node_noprof+0xad/0x410
[   54.123064][ T4837]  ? __kvmalloc_node_noprof+0x72/0x170
[   54.128530][ T4837]  __kvmalloc_node_noprof+0x72/0x170
[   54.133954][ T4837]  __nf_hook_entries_try_shrink+0x23a/0x440
[   54.139881][ T4837]  __nf_unregister_net_hook+0x31e/0x3f0
[   54.145522][ T4837]  nf_unregister_net_hooks+0xb0/0xe0
[   54.150808][ T4837]  ? __pfx_tproxy_tg4_destroy+0x10/0x10
[   54.156394][ T4837]  nf_defrag_ipv4_disable+0x80/0xa0
[   54.161608][ T4837]  tproxy_tg4_destroy+0x1d/0x30
[   54.166541][ T4837]  cleanup_entry+0x15a/0x1b0
[   54.171157][ T4837]  translate_table+0xf07/0xf70
[   54.175921][ T4837]  do_ipt_set_ctl+0x7bd/0x8b0
[   54.180596][ T4837]  ? tcp_release_cb+0xfe/0x380
[   54.185407][ T4837]  nf_setsockopt+0x195/0x1b0
[   54.190042][ T4837]  ip_setsockopt+0xea/0x100
[   54.194553][ T4837]  ipv6_setsockopt+0xef/0x130
[   54.199235][ T4837]  tcp_setsockopt+0x93/0xb0
[   54.203747][ T4837]  sock_common_setsockopt+0x64/0x80
[   54.208978][ T4837]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   54.214870][ T4837]  __sys_setsockopt+0x187/0x200
[   54.219714][ T4837]  __x64_sys_setsockopt+0x66/0x80
[   54.224729][ T4837]  x64_sys_call+0x282e/0x2dc0
[   54.229405][ T4837]  do_syscall_64+0xc9/0x1c0
[   54.233900][ T4837]  ? clear_bhb_loop+0x55/0xb0
[   54.238647][ T4837]  ? clear_bhb_loop+0x55/0xb0
[   54.243395][ T4837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.249287][ T4837] RIP: 0033:0x7f4835490809
[   54.253692][ T4837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.273293][ T4837] RSP: 002b:00007f4833b07058 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   54.281815][ T4837] RAX: ffffffffffffffda RBX: 00007f4835655fa0 RCX: 00007f4835490809
[   54.289773][ T4837] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000005
[   54.297736][ T4837] RBP: 00007f4833b070a0 R08: 0000000000000470 R09: 0000000000000000
[   54.305696][ T4837] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000002
[   54.313656][ T4837] R13: 0000000000000000 R14: 00007f4835655fa0 R15: 00007ffeeb89d848
[   54.321687][ T4837]  </TASK>
[   54.378286][ T4838] loop3: detected capacity change from 0 to 4096
[   54.425495][ T4843] loop4: detected capacity change from 0 to 1024
[   54.432269][ T4843] EXT4-fs: Ignoring removed bh option
[   54.440697][ T4843] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   54.474620][ T4843] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   54.483341][ T4843] EXT4-fs (loop4): orphan cleanup on readonly fs
[   54.486237][ T4843] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5837: Corrupt filesystem
[   54.486514][ T4843] EXT4-fs (loop4): Remounting filesystem read-only
[   54.486612][ T4843] EXT4-fs (loop4): 1 orphan inode deleted
[   54.487363][ T4843] SELinux: (dev loop4, type ext4) getxattr errno 5
[   54.744830][ T4869] loop4: detected capacity change from 0 to 4096
[   55.100013][ T4891] loop3: detected capacity change from 0 to 128
[   55.106724][ T4891] EXT4-fs: Ignoring removed nobh option
[   55.114228][ T4891] ext4 filesystem being mounted at /152/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   55.457989][ T4897] __nla_validate_parse: 7 callbacks suppressed
[   55.458000][ T4897] netlink: 40 bytes leftover after parsing attributes in process `syz.5.509'.
[   55.491755][ T4900] loop5: detected capacity change from 0 to 1024
[   55.498592][ T4900] EXT4-fs: Ignoring removed nomblk_io_submit option
[   55.506117][ T4900] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   55.536696][ T4900] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   55.600070][ T4907] 9pnet_fd: Insufficient options for proto=fd
[   55.608162][ T4905] loop4: detected capacity change from 0 to 4096
[   55.623834][ T4910] FAULT_INJECTION: forcing a failure.
[   55.623834][ T4910] name failslab, interval 1, probability 0, space 0, times 0
[   55.636539][ T4910] CPU: 1 UID: 0 PID: 4910 Comm: syz.5.513 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   55.646797][ T4910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   55.656860][ T4910] Call Trace:
[   55.660138][ T4910]  <TASK>
[   55.663057][ T4910]  dump_stack_lvl+0xf2/0x150
[   55.667640][ T4910]  dump_stack+0x15/0x20
[   55.671846][ T4910]  should_fail_ex+0x223/0x230
[   55.676522][ T4910]  should_failslab+0x8f/0xb0
[   55.681176][ T4910]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   55.687504][ T4910]  ? sidtab_sid2str_get+0xb8/0x140
[   55.692665][ T4910]  kmemdup_noprof+0x2a/0x60
[   55.697161][ T4910]  sidtab_sid2str_get+0xb8/0x140
[   55.702152][ T4910]  security_sid_to_context_core+0x1eb/0x2f0
[   55.708091][ T4910]  security_sid_to_context+0x27/0x30
[   55.713497][ T4910]  selinux_lsmprop_to_secctx+0x2c/0x40
[   55.718953][ T4910]  security_lsmprop_to_secctx+0x4a/0x90
[   55.724494][ T4910]  audit_log_task_context+0x93/0x1c0
[   55.729824][ T4910]  audit_log_task+0xf9/0x1c0
[   55.734409][ T4910]  audit_seccomp+0x68/0x130
[   55.738974][ T4910]  __seccomp_filter+0x6fa/0x1180
[   55.743918][ T4910]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   55.749584][ T4910]  ? vfs_write+0x596/0x920
[   55.754011][ T4910]  ? __schedule+0x6fa/0x930
[   55.758595][ T4910]  __secure_computing+0x9f/0x1c0
[   55.763532][ T4910]  syscall_trace_enter+0xd1/0x1f0
[   55.768570][ T4910]  do_syscall_64+0xaa/0x1c0
[   55.773088][ T4910]  ? clear_bhb_loop+0x55/0xb0
[   55.777821][ T4910]  ? clear_bhb_loop+0x55/0xb0
[   55.782549][ T4910]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.788455][ T4910] RIP: 0033:0x7f1ac1330809
[   55.792952][ T4910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.812584][ T4910] RSP: 002b:00007f1abf9a7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000103
[   55.820988][ T4910] RAX: ffffffffffffffda RBX: 00007f1ac14f5fa0 RCX: 00007f1ac1330809
[   55.828950][ T4910] RDX: 0000000000001000 RSI: 0000000000000000 RDI: ffffffffffffff9c
[   55.836955][ T4910] RBP: 00007f1abf9a70a0 R08: 0000000000000000 R09: 0000000000000000
[   55.844928][ T4910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   55.852895][ T4910] R13: 0000000000000000 R14: 00007f1ac14f5fa0 R15: 00007ffc9fa9df48
[   55.860887][ T4910]  </TASK>
[   56.035370][ T4933] 9pnet_fd: Insufficient options for proto=fd
[   56.056909][ T4927] netlink: 40 bytes leftover after parsing attributes in process `syz.2.520'.
[   56.089549][ T4938] loop5: detected capacity change from 0 to 4096
[   56.124438][ T4942] FAULT_INJECTION: forcing a failure.
[   56.124438][ T4942] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.137547][ T4942] CPU: 1 UID: 0 PID: 4942 Comm: syz.3.526 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   56.147883][ T4942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   56.157985][ T4942] Call Trace:
[   56.161256][ T4942]  <TASK>
[   56.164191][ T4942]  dump_stack_lvl+0xf2/0x150
[   56.168801][ T4942]  dump_stack+0x15/0x20
[   56.172949][ T4942]  should_fail_ex+0x223/0x230
[   56.177764][ T4942]  should_fail+0xb/0x10
[   56.181917][ T4942]  should_fail_usercopy+0x1a/0x20
[   56.186932][ T4942]  _copy_from_user+0x1e/0xb0
[   56.191603][ T4942]  __io_register_rsrc_update+0x27a/0xa30
[   56.197224][ T4942]  io_register_rsrc_update+0x108/0x120
[   56.202701][ T4942]  __se_sys_io_uring_register+0x75f/0x22e0
[   56.208533][ T4942]  ? get_pid_task+0x8e/0xc0
[   56.213039][ T4942]  ? proc_fail_nth_write+0x12a/0x150
[   56.218344][ T4942]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   56.223995][ T4942]  ? vfs_write+0x596/0x920
[   56.228426][ T4942]  ? __fget_files+0x17c/0x1c0
[   56.233113][ T4942]  ? fput+0x1c4/0x200
[   56.237087][ T4942]  ? ksys_write+0x176/0x1b0
[   56.241579][ T4942]  __x64_sys_io_uring_register+0x55/0x70
[   56.247252][ T4942]  x64_sys_call+0x2c52/0x2dc0
[   56.252052][ T4942]  do_syscall_64+0xc9/0x1c0
[   56.256551][ T4942]  ? clear_bhb_loop+0x55/0xb0
[   56.261239][ T4942]  ? clear_bhb_loop+0x55/0xb0
[   56.265905][ T4942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.271795][ T4942] RIP: 0033:0x7fc835460809
[   56.276197][ T4942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.295792][ T4942] RSP: 002b:00007fc833ad7058 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   56.304191][ T4942] RAX: ffffffffffffffda RBX: 00007fc835625fa0 RCX: 00007fc835460809
[   56.312171][ T4942] RDX: 0000000020000600 RSI: 0000000000000010 RDI: 0000000000000003
[   56.320125][ T4942] RBP: 00007fc833ad70a0 R08: 0000000000000000 R09: 0000000000000000
[   56.328171][ T4942] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   56.336125][ T4942] R13: 0000000000000000 R14: 00007fc835625fa0 R15: 00007ffd2f529b88
[   56.344151][ T4942]  </TASK>
[   56.406178][ T4949] loop4: detected capacity change from 0 to 128
[   56.413757][ T4949] EXT4-fs: Ignoring removed nobh option
[   56.424225][ T4949] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   56.515702][ T4958] loop1: detected capacity change from 0 to 128
[   56.556551][ T4964] 9pnet_fd: Insufficient options for proto=fd
[   56.621352][ T4969] loop1: detected capacity change from 0 to 512
[   56.636337][ T4969] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.648686][ T4969] netlink: 104 bytes leftover after parsing attributes in process `syz.1.537'.
[   56.686207][ T4973] loop1: detected capacity change from 0 to 2048
[   56.699016][ T4973] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   56.711482][ T4973] bridge0: entered promiscuous mode
[   56.718249][ T4973] bridge0: port 3(macvlan2) entered blocking state
[   56.724906][ T4973] bridge0: port 3(macvlan2) entered disabled state
[   56.731604][ T4973] macvlan2: entered allmulticast mode
[   56.736995][ T4973] bridge0: entered allmulticast mode
[   56.742735][ T4973] macvlan2: left allmulticast mode
[   56.747871][ T4973] bridge0: left allmulticast mode
[   56.753327][ T4973] bridge0: left promiscuous mode
[   56.760607][ T4976] syz.1.538 uses obsolete (PF_INET,SOCK_PACKET)
[   56.767277][ T4976] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.538: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   56.784513][ T4976] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.538: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   56.905459][ T4982] loop1: detected capacity change from 0 to 4096
[   56.993971][ T4992] netlink: 133492 bytes leftover after parsing attributes in process `syz.5.541'.
[   57.083828][ T5000] loop2: detected capacity change from 0 to 512
[   57.097008][ T5000] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   57.143048][   T35] IPVS: starting estimator thread 0...
[   57.214928][ T5007] netlink: 40 bytes leftover after parsing attributes in process `syz.2.550'.
[   57.236191][ T5005] IPVS: using max 5328 ests per chain, 266400 per kthread
[   57.399089][ T3383] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   57.408165][ T3383] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   57.485883][ T5029] loop3: detected capacity change from 0 to 2048
[   57.508323][ T5029] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   57.520069][ T5029] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.559: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   57.538044][ T5029] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.559: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   57.576850][ T5033] loop3: detected capacity change from 0 to 512
[   57.584645][ T5033] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279945729 > max in inode 13
[   57.595203][ T5033] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279945730 > max in inode 13
[   57.605731][ T5033] EXT4-fs (loop3): 1 truncate cleaned up
[   57.612307][ T5033] EXT4-fs warning (device loop3): ext4_lookup:1825: Inconsistent encryption contexts: 2/12
[   57.623993][ T5033] EXT4-fs warning (device loop3): ext4_lookup:1825: Inconsistent encryption contexts: 2/12
[   57.653356][ T5036] loop3: detected capacity change from 0 to 128
[   57.660173][ T5036] EXT4-fs: Ignoring removed nobh option
[   57.662074][ T5036] ext4 filesystem being mounted at /169/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   57.701921][ T5039] loop1: detected capacity change from 0 to 1024
[   57.708784][ T5039] EXT4-fs: Ignoring removed orlov option
[   57.714454][ T5039] EXT4-fs: Ignoring removed nomblk_io_submit option
[   57.728011][   T29] kauditd_printk_skb: 269 callbacks suppressed
[   57.728065][   T29] audit: type=1400 audit(1732777847.021:2391): avc:  denied  { create } for  pid=5038 comm="syz.1.562" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.729411][ T5039] support for cryptoloop has been removed.  Use dm-crypt instead.
[   57.764250][   T29] audit: type=1400 audit(1732777847.061:2392): avc:  denied  { ioctl } for  pid=5038 comm="syz.1.562" path="socket:[9857]" dev="sockfs" ino=9857 ioctlcmd=0x48d2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.789322][   T29] audit: type=1400 audit(1732777847.061:2393): avc:  denied  { setopt } for  pid=5038 comm="syz.1.562" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   57.809219][   T29] audit: type=1400 audit(1732777847.061:2394): avc:  denied  { bind } for  pid=5038 comm="syz.1.562" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   58.019025][   T29] audit: type=1400 audit(1732777847.311:2395): avc:  denied  { read } for  pid=5044 comm="syz.2.563" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   58.019706][ T5045] Invalid ELF header magic: != ELF
[   58.042157][   T29] audit: type=1400 audit(1732777847.311:2396): avc:  denied  { open } for  pid=5044 comm="syz.2.563" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   58.071134][   T29] audit: type=1400 audit(1732777847.311:2397): avc:  denied  { ioctl } for  pid=5044 comm="syz.2.563" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   58.100383][   T29] audit: type=1400 audit(1732777847.311:2398): avc:  denied  { sys_module } for  pid=5044 comm="syz.2.563" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   58.121376][   T29] audit: type=1400 audit(1732777847.311:2399): avc:  denied  { module_load } for  pid=5044 comm="syz.2.563" path="/sys/kernel/notes" dev="sysfs" ino=189 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[   58.190658][ T5051] FAULT_INJECTION: forcing a failure.
[   58.190658][ T5051] name failslab, interval 1, probability 0, space 0, times 0
[   58.193777][   T29] audit: type=1400 audit(1732777847.481:2400): avc:  denied  { connect } for  pid=5050 comm="syz.2.567" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   58.203320][ T5051] CPU: 1 UID: 0 PID: 5051 Comm: syz.2.567 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   58.233053][ T5051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.243116][ T5051] Call Trace:
[   58.246472][ T5051]  <TASK>
[   58.249565][ T5051]  dump_stack_lvl+0xf2/0x150
[   58.254210][ T5051]  dump_stack+0x15/0x20
[   58.258374][ T5051]  should_fail_ex+0x223/0x230
[   58.263177][ T5051]  should_failslab+0x8f/0xb0
[   58.267775][ T5051]  kmem_cache_alloc_node_noprof+0x59/0x320
[   58.273601][ T5051]  ? __alloc_skb+0x10b/0x310
[   58.278197][ T5051]  __alloc_skb+0x10b/0x310
[   58.282617][ T5051]  sock_wmalloc+0x7b/0xc0
[   58.286958][ T5051]  pppol2tp_sendmsg+0xff/0x440
[   58.291726][ T5051]  ? __pfx_pppol2tp_sendmsg+0x10/0x10
[   58.297193][ T5051]  __sock_sendmsg+0x140/0x180
[   58.301892][ T5051]  ____sys_sendmsg+0x312/0x410
[   58.306703][ T5051]  __sys_sendmmsg+0x227/0x4b0
[   58.311402][ T5051]  __x64_sys_sendmmsg+0x57/0x70
[   58.316256][ T5051]  x64_sys_call+0x29aa/0x2dc0
[   58.320951][ T5051]  do_syscall_64+0xc9/0x1c0
[   58.322869][ T5062] loop4: detected capacity change from 0 to 2048
[   58.325454][ T5051]  ? clear_bhb_loop+0x55/0xb0
[   58.325475][ T5051]  ? clear_bhb_loop+0x55/0xb0
[   58.341111][ T5051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.347008][ T5051] RIP: 0033:0x7fc6cb420809
[   58.351413][ T5051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.371034][ T5051] RSP: 002b:00007fc6c9a97058 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   58.379494][ T5051] RAX: ffffffffffffffda RBX: 00007fc6cb5e5fa0 RCX: 00007fc6cb420809
[   58.387459][ T5051] RDX: 04000000000001ce RSI: 0000000020005f80 RDI: 0000000000000007
[   58.395420][ T5051] RBP: 00007fc6c9a970a0 R08: 0000000000000000 R09: 0000000000000000
[   58.403443][ T5051] R10: 0000000000008040 R11: 0000000000000246 R12: 0000000000000002
[   58.411426][ T5051] R13: 0000000000000000 R14: 00007fc6cb5e5fa0 R15: 00007ffdc1f65f28
[   58.419405][ T5051]  </TASK>
[   58.446881][ T5062] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[   58.456401][ T5062] FAULT_INJECTION: forcing a failure.
[   58.456401][ T5062] name failslab, interval 1, probability 0, space 0, times 0
[   58.469078][ T5062] CPU: 1 UID: 0 PID: 5062 Comm: syz.4.571 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   58.479404][ T5062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   58.489446][ T5062] Call Trace:
[   58.492740][ T5062]  <TASK>
[   58.495662][ T5062]  dump_stack_lvl+0xf2/0x150
[   58.500253][ T5062]  dump_stack+0x15/0x20
[   58.504397][ T5062]  should_fail_ex+0x223/0x230
[   58.509164][ T5062]  should_failslab+0x8f/0xb0
[   58.513743][ T5062]  __kmalloc_node_track_caller_noprof+0xa8/0x410
[   58.520071][ T5062]  ? resume_store+0xf1/0x3a0
[   58.524740][ T5062]  ? __pfx_resume_store+0x10/0x10
[   58.529765][ T5062]  kstrndup+0x3f/0x90
[   58.533744][ T5062]  resume_store+0xf1/0x3a0
[   58.538178][ T5062]  ? _copy_from_iter+0x169/0xd00
[   58.543126][ T5062]  ? kstrtouint+0x77/0xc0
[   58.547448][ T5062]  ? should_fail_ex+0xd7/0x230
[   58.552256][ T5062]  kobj_attr_store+0x47/0x70
[   58.556842][ T5062]  ? __pfx_kobj_attr_store+0x10/0x10
[   58.562126][ T5062]  sysfs_kf_write+0xae/0xd0
[   58.566729][ T5062]  ? __pfx_sysfs_kf_write+0x10/0x10
[   58.572021][ T5062]  kernfs_fop_write_iter+0x1c8/0x2c0
[   58.577320][ T5062]  vfs_write+0x77f/0x920
[   58.581631][ T5062]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   58.587434][ T5062]  ksys_write+0xe8/0x1b0
[   58.591675][ T5062]  __x64_sys_write+0x42/0x50
[   58.596266][ T5062]  x64_sys_call+0x287e/0x2dc0
[   58.600939][ T5062]  do_syscall_64+0xc9/0x1c0
[   58.605497][ T5062]  ? clear_bhb_loop+0x55/0xb0
[   58.610175][ T5062]  ? clear_bhb_loop+0x55/0xb0
[   58.614905][ T5062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.620811][ T5062] RIP: 0033:0x7f4835490809
[   58.625286][ T5062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.644893][ T5062] RSP: 002b:00007f4833b07058 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   58.653353][ T5062] RAX: ffffffffffffffda RBX: 00007f4835655fa0 RCX: 00007f4835490809
[   58.661377][ T5062] RDX: 0000000000000012 RSI: 00000000200001c0 RDI: 0000000000000005
[   58.669438][ T5062] RBP: 00007f4833b070a0 R08: 0000000000000000 R09: 0000000000000000
[   58.677551][ T5062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.685575][ T5062] R13: 0000000000000000 R14: 00007f4835655fa0 R15: 00007ffeeb89d848
[   58.693547][ T5062]  </TASK>
[   58.701673][ T5051] loop2: detected capacity change from 0 to 512
[   58.714140][ T5062] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.571: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[   58.721887][ T5051] EXT4-fs (loop2): corrupt root inode, run e2fsck
[   58.737170][ T5051] EXT4-fs (loop2): mount failed
[   58.787592][ T5072] loop1: detected capacity change from 0 to 4096
[   58.810962][ T5071] netlink: 40 bytes leftover after parsing attributes in process `syz.3.573'.
[   58.867047][ T3397] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   58.874955][ T3397] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   58.896624][ T5088] IPv6: NLM_F_CREATE should be specified when creating new route
[   58.909850][ T5088] loop3: detected capacity change from 0 to 1024
[   58.917472][ T5088] EXT4-fs: dax option not supported
[   59.101194][ T5102] loop3: detected capacity change from 0 to 128
[   59.107935][ T5102] EXT4-fs: Ignoring removed nobh option
[   59.115735][ T5102] ext4 filesystem being mounted at /175/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   59.659874][ T5107] loop1: detected capacity change from 0 to 512
[   59.677466][ T5107] netlink: 8 bytes leftover after parsing attributes in process `syz.1.585'.
[   59.999767][ T5131] loop2: detected capacity change from 0 to 512
[   60.020245][ T5131] netlink: 8 bytes leftover after parsing attributes in process `syz.2.593'.
[   60.041138][ T3394] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   60.050762][ T3394] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   60.093731][ T5136] loop5: detected capacity change from 0 to 4096
[   60.119824][ T5142] FAULT_INJECTION: forcing a failure.
[   60.119824][ T5142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.132991][ T5142] CPU: 1 UID: 0 PID: 5142 Comm: syz.4.599 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   60.143255][ T5142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.153496][ T5142] Call Trace:
[   60.156774][ T5142]  <TASK>
[   60.159703][ T5142]  dump_stack_lvl+0xf2/0x150
[   60.164345][ T5142]  dump_stack+0x15/0x20
[   60.168709][ T5142]  should_fail_ex+0x223/0x230
[   60.173456][ T5142]  should_fail+0xb/0x10
[   60.177628][ T5142]  should_fail_usercopy+0x1a/0x20
[   60.182666][ T5142]  _copy_from_user+0x1e/0xb0
[   60.187357][ T5142]  __io_register_rsrc_update+0x27a/0xa30
[   60.193015][ T5142]  io_register_rsrc_update+0x108/0x120
[   60.198563][ T5142]  __se_sys_io_uring_register+0x75f/0x22e0
[   60.204390][ T5142]  ? get_pid_task+0x8e/0xc0
[   60.209015][ T5142]  ? proc_fail_nth_write+0x12a/0x150
[   60.214344][ T5142]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   60.219987][ T5142]  ? vfs_write+0x596/0x920
[   60.224488][ T5142]  ? __fget_files+0x17c/0x1c0
[   60.229293][ T5142]  ? fput+0x1c4/0x200
[   60.233349][ T5142]  ? ksys_write+0x176/0x1b0
[   60.237963][ T5142]  __x64_sys_io_uring_register+0x55/0x70
[   60.243605][ T5142]  x64_sys_call+0x2c52/0x2dc0
[   60.248370][ T5142]  do_syscall_64+0xc9/0x1c0
[   60.252904][ T5142]  ? clear_bhb_loop+0x55/0xb0
[   60.257573][ T5142]  ? clear_bhb_loop+0x55/0xb0
[   60.262258][ T5142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.268170][ T5142] RIP: 0033:0x7f4835490809
[   60.272606][ T5142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   60.292223][ T5142] RSP: 002b:00007f4833b07058 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   60.300752][ T5142] RAX: ffffffffffffffda RBX: 00007f4835655fa0 RCX: 00007f4835490809
[   60.308761][ T5142] RDX: 0000000020000600 RSI: 0000000000000010 RDI: 0000000000000005
[   60.316736][ T5142] RBP: 00007f4833b070a0 R08: 0000000000000000 R09: 0000000000000000
[   60.324740][ T5142] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   60.332716][ T5142] R13: 0000000000000000 R14: 00007f4835655fa0 R15: 00007ffeeb89d848
[   60.340697][ T5142]  </TASK>
[   60.497514][ T5156] netlink: 4 bytes leftover after parsing attributes in process `syz.3.604'.
[   60.527676][ T5156] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   60.535117][ T5156] batman_adv: batadv0: Removing interface: batadv_slave_0
[   60.560218][ T5156] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   60.567745][ T5156] batman_adv: batadv0: Removing interface: batadv_slave_1
[   60.584321][ T5156] bond0: (slave batadv0): Releasing backup interface
[   60.625587][ T5165] loop4: detected capacity change from 0 to 128
[   60.638702][ T5165] EXT4-fs: Ignoring removed nobh option
[   60.669727][ T5165] ext4 filesystem being mounted at /148/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   60.690099][ T5167] netlink: 133492 bytes leftover after parsing attributes in process `syz.1.606'.
[   60.825628][   T35] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   60.836105][   T35] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   60.941491][ T5184] netlink: 3 bytes leftover after parsing attributes in process `syz.3.613'.
[   60.959842][ T5184] 0ŞXą¦Ŕ: renamed from caif0
[   60.972926][ T5184] 0ŞXą¦Ŕ: entered allmulticast mode
[   60.978286][ T5184] A link change request failed with some changes committed already. Interface 
60ŞXą¦Ŕ may have been left with an inconsistent configuration, please check.
[   61.113013][ T5191] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.120273][ T5191] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.133901][ T5191] netlink: 24 bytes leftover after parsing attributes in process `syz.5.616'.
[   61.161971][ T5191] loop5: detected capacity change from 0 to 512
[   61.180952][ T5191] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[   61.202608][ T5191] EXT4-fs (loop5): 1 truncate cleaned up
[   61.340534][ T5200] loop3: detected capacity change from 0 to 4096
[   61.390326][ T5207] FAULT_INJECTION: forcing a failure.
[   61.390326][ T5207] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.403494][ T5207] CPU: 1 UID: 0 PID: 5207 Comm: syz.5.621 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   61.413801][ T5207] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   61.424064][ T5207] Call Trace:
[   61.427332][ T5207]  <TASK>
[   61.430249][ T5207]  dump_stack_lvl+0xf2/0x150
[   61.434951][ T5207]  dump_stack+0x15/0x20
[   61.439093][ T5207]  should_fail_ex+0x223/0x230
[   61.443871][ T5207]  should_fail+0xb/0x10
[   61.448159][ T5207]  should_fail_usercopy+0x1a/0x20
[   61.453253][ T5207]  _copy_from_user+0x1e/0xb0
[   61.457838][ T5207]  kstrtouint_from_user+0x76/0xe0
[   61.462858][ T5207]  ? 0xffffffff81000000
[   61.466997][ T5207]  ? selinux_file_permission+0x22a/0x360
[   61.472633][ T5207]  proc_fail_nth_write+0x4f/0x150
[   61.477649][ T5207]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   61.483281][ T5207]  vfs_write+0x281/0x920
[   61.487522][ T5207]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   61.493091][ T5207]  ? __fget_files+0x17c/0x1c0
[   61.497776][ T5207]  ksys_write+0xe8/0x1b0
[   61.502018][ T5207]  __x64_sys_write+0x42/0x50
[   61.506646][ T5207]  x64_sys_call+0x287e/0x2dc0
[   61.511370][ T5207]  do_syscall_64+0xc9/0x1c0
[   61.515863][ T5207]  ? clear_bhb_loop+0x55/0xb0
[   61.520540][ T5207]  ? clear_bhb_loop+0x55/0xb0
[   61.525208][ T5207]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.531103][ T5207] RIP: 0033:0x7f1ac132f2bf
[   61.535508][ T5207] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 8e 02 00 48
[   61.555122][ T5207] RSP: 002b:00007f1abf9a7050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   61.563529][ T5207] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1ac132f2bf
[   61.571543][ T5207] RDX: 0000000000000001 RSI: 00007f1abf9a70b0 RDI: 0000000000000004
[   61.579548][ T5207] RBP: 00007f1abf9a70a0 R08: 0000000000000000 R09: 0000000000000000
[   61.587546][ T5207] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   61.595505][ T5207] R13: 0000000000000000 R14: 00007f1ac14f5fa0 R15: 00007ffc9fa9df48
[   61.603470][ T5207]  </TASK>
[   61.847053][ T5222] loop4: detected capacity change from 0 to 4096
[   61.971602][ T5228] netlink: 56 bytes leftover after parsing attributes in process `syz.2.624'.
[   62.032139][ T5228] hsr_slave_1 (unregistering): left promiscuous mode
[   62.360558][ T5233] pim6reg1: entered promiscuous mode
[   62.365914][ T5233] pim6reg1: entered allmulticast mode
[   62.439779][ T5237] loop3: detected capacity change from 0 to 128
[   62.491884][ T5242] netlink: 'syz.3.630': attribute type 25 has an invalid length.
[   62.569390][ T5247] loop3: detected capacity change from 0 to 128
[   62.583502][ T5247] EXT4-fs: Ignoring removed nobh option
[   62.606998][ T5247] ext4 filesystem being mounted at /193/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   62.616927][   T35] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   62.633397][   T35] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   62.644470][ T3327] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /193/mnt/lost+found: directory fails checksum at offset 1024
[   62.661959][ T3327] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   62.677540][ T3327] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /193/mnt/lost+found: directory fails checksum at offset 1024
[   62.693009][ T3327] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   62.707290][ T3327] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /193/mnt/lost+found: directory fails checksum at offset 1024
[   62.722497][ T3327] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   62.735682][ T3327] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /193/mnt/lost+found: directory fails checksum at offset 1024
[   62.750779][ T3327] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   62.764091][ T3327] EXT4-fs error (device loop3): ext4_readdir:221: inode #11: comm syz-executor: path /193/mnt/lost+found: directory fails checksum at offset 1024
[   62.779699][ T3327] EXT4-fs error (device loop3): ext4_empty_dir:3124: inode #11: block 1: comm syz-executor: Directory block failed checksum
[   62.870180][ T5268] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   62.900599][ T5270] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   62.974160][   T29] kauditd_printk_skb: 128 callbacks suppressed
[   62.974175][   T29] audit: type=1326 audit(1732777852.261:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   62.976608][ T5279] netlink: 8 bytes leftover after parsing attributes in process `syz.5.645'.
[   62.980892][   T29] audit: type=1326 audit(1732777852.261:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.003688][ T5279] netlink: 4 bytes leftover after parsing attributes in process `syz.5.645'.
[   63.044666][   T29] audit: type=1326 audit(1732777852.261:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.068672][   T29] audit: type=1326 audit(1732777852.261:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.092231][   T29] audit: type=1326 audit(1732777852.261:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.115606][   T29] audit: type=1326 audit(1732777852.261:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.138941][   T29] audit: type=1326 audit(1732777852.261:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.162407][   T29] audit: type=1326 audit(1732777852.261:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.185813][   T29] audit: type=1326 audit(1732777852.261:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.209406][   T29] audit: type=1326 audit(1732777852.261:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5278 comm="syz.5.645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ac1330809 code=0x7ffc0000
[   63.348628][ T5286] netlink: 40 bytes leftover after parsing attributes in process `syz.5.648'.
[   63.379149][ T5296] loop5: detected capacity change from 0 to 128
[   63.387818][ T5296] EXT4-fs: Ignoring removed nobh option
[   63.396186][ T5296] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   63.451710][ T5302] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   63.526854][ T5288] chnl_net:caif_netlink_parms(): no params data found
[   63.565827][ T5288] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.572921][ T5288] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.580264][ T5288] bridge_slave_0: entered allmulticast mode
[   63.586752][ T5288] bridge_slave_0: entered promiscuous mode
[   63.593388][ T5288] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.600540][ T5288] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.607793][ T5288] bridge_slave_1: entered allmulticast mode
[   63.614588][ T5288] bridge_slave_1: entered promiscuous mode
[   63.636025][ T5288] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.647771][ T5288] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.663528][ T5322] loop4: detected capacity change from 0 to 512
[   63.670563][ T5322] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   63.694243][ T5288] team0: Port device team_slave_0 added
[   63.694962][   T35] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x4
[   63.707907][   T35] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x2
[   63.711652][ T5288] team0: Port device team_slave_1 added
[   63.717494][   T35] hid-generic 0000:3000000:0000.000F: unknown main item tag 0x3
[   63.726056][ T5322] loop4: detected capacity change from 0 to 1024
[   63.729836][   T35] hid-generic 0000:3000000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   63.759244][ T5288] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.766243][ T5288] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.776490][   T35] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[   63.792351][ T5288] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.800629][   T35] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   63.821756][ T5288] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.828839][ T5288] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.854934][ T5288] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.903740][ T5288] hsr_slave_0: entered promiscuous mode
[   63.915761][ T5288] hsr_slave_1: entered promiscuous mode
[   63.927056][ T5288] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   63.937296][ T5288] Cannot create hsr debugfs directory
[   64.011083][ T5343] mmap: syz.1.665 (5343) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   64.026943][ T5322] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   64.045042][ T5288] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   64.045383][ T5322] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   64.064566][ T5322] EXT4-fs (loop4): This should not happen!! Data will be lost
[   64.064566][ T5322] 
[   64.074276][ T5322] EXT4-fs (loop4): Total free blocks count 0
[   64.080284][ T5322] EXT4-fs (loop4): Free/Dirty block details
[   64.086193][ T5322] EXT4-fs (loop4): free_blocks=68451041280
[   64.092057][ T5322] EXT4-fs (loop4): dirty_blocks=16
[   64.097253][ T5322] EXT4-fs (loop4): Block reservation details
[   64.103243][ T5322] EXT4-fs (loop4): i_reserved_data_blocks=1
[   64.111764][ T5288] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   64.120976][ T5288] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   64.130036][ T5288] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   64.189332][ T5288] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.209595][ T5288] 8021q: adding VLAN 0 to HW filter on device team0
[   64.224457][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.231643][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.245600][ T4372] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.252745][ T4372] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.305953][ T5358] netlink: 'syz.4.671': attribute type 10 has an invalid length.
[   64.348628][ T5288] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.388915][ T5365] loop5: detected capacity change from 0 to 4096
[   64.459395][ T5378] loop4: detected capacity change from 0 to 512
[   64.470754][ T5378] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   64.489194][ T5378] loop4: detected capacity change from 0 to 1024
[   64.546794][ T5288] veth0_vlan: entered promiscuous mode
[   64.555801][ T5288] veth1_vlan: entered promiscuous mode
[   64.577942][ T5288] veth0_macvtap: entered promiscuous mode
[   64.585288][ T5288] veth1_macvtap: entered promiscuous mode
[   64.597432][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.607918][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.617841][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.628413][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.638647][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.649396][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.659348][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.669971][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.681428][ T5288] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.689839][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.700482][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.710477][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.721122][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.731080][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.741605][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.751436][ T5288] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.761907][ T5288] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.773105][ T5288] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.784154][ T5288] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.793209][ T5288] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.802116][ T5288] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.810839][ T5288] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.814101][ T5378] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   64.847402][ T5378] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   64.859730][ T5378] EXT4-fs (loop4): This should not happen!! Data will be lost
[   64.859730][ T5378] 
[   64.869502][ T5378] EXT4-fs (loop4): Total free blocks count 0
[   64.875501][ T5378] EXT4-fs (loop4): Free/Dirty block details
[   64.881386][ T5378] EXT4-fs (loop4): free_blocks=68451041280
[   64.887224][ T5378] EXT4-fs (loop4): dirty_blocks=16
[   64.892324][ T5378] EXT4-fs (loop4): Block reservation details
[   64.898389][ T5378] EXT4-fs (loop4): i_reserved_data_blocks=1
[   64.943531][ T5399] loop6: detected capacity change from 0 to 512
[   64.943652][ T5396] loop2: detected capacity change from 0 to 4096
[   64.961551][ T5399] EXT4-fs (loop6): VFS: Can't find ext4 filesystem
[   65.006962][ T5399] loop6: detected capacity change from 0 to 1024
[   65.076787][ T5409] loop4: detected capacity change from 0 to 128
[   65.083365][ T5409] EXT4-fs: Ignoring removed nobh option
[   65.101777][ T5409] ext4 filesystem being mounted at /168/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   65.237862][ T5399] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   65.253417][ T5399] EXT4-fs (loop6): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   65.265931][ T5399] EXT4-fs (loop6): This should not happen!! Data will be lost
[   65.265931][ T5399] 
[   65.275634][ T5399] EXT4-fs (loop6): Total free blocks count 0
[   65.281602][ T5399] EXT4-fs (loop6): Free/Dirty block details
[   65.287607][ T5399] EXT4-fs (loop6): free_blocks=68451041280
[   65.293428][ T5399] EXT4-fs (loop6): dirty_blocks=16
[   65.298570][ T5399] EXT4-fs (loop6): Block reservation details
[   65.304543][ T5399] EXT4-fs (loop6): i_reserved_data_blocks=1
[   65.349860][ T5288] EXT4-fs unmount: 86 callbacks suppressed
[   65.349871][ T5288] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.522010][ T5427] FAULT_INJECTION: forcing a failure.
[   65.522010][ T5427] name failslab, interval 1, probability 0, space 0, times 0
[   65.534942][ T5427] CPU: 0 UID: 0 PID: 5427 Comm: syz.6.688 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   65.545192][ T5427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   65.555274][ T5427] Call Trace:
[   65.558551][ T5427]  <TASK>
[   65.561540][ T5427]  dump_stack_lvl+0xf2/0x150
[   65.566124][ T5427]  dump_stack+0x15/0x20
[   65.570375][ T5427]  should_fail_ex+0x223/0x230
[   65.575177][ T5427]  should_failslab+0x8f/0xb0
[   65.579787][ T5427]  kmem_cache_alloc_node_noprof+0x59/0x320
[   65.585667][ T5427]  ? __alloc_skb+0x10b/0x310
[   65.590255][ T5427]  __alloc_skb+0x10b/0x310
[   65.594661][ T5427]  ? audit_log_start+0x34c/0x6b0
[   65.599656][ T5427]  audit_log_start+0x368/0x6b0
[   65.604491][ T5427]  ? kmem_cache_free+0xdc/0x2d0
[   65.609335][ T5427]  audit_seccomp+0x4b/0x130
[   65.613831][ T5427]  __seccomp_filter+0x6fa/0x1180
[   65.618760][ T5427]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   65.624383][ T5427]  ? vfs_write+0x596/0x920
[   65.628816][ T5427]  ? read_tsc+0x9/0x20
[   65.632867][ T5427]  ? ktime_get_with_offset+0x203/0x230
[   65.638407][ T5427]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[   65.644200][ T5427]  __secure_computing+0x9f/0x1c0
[   65.649125][ T5427]  syscall_trace_enter+0xd1/0x1f0
[   65.654134][ T5427]  ? fpregs_assert_state_consistent+0x83/0xa0
[   65.660195][ T5427]  do_syscall_64+0xaa/0x1c0
[   65.664685][ T5427]  ? clear_bhb_loop+0x55/0xb0
[   65.669384][ T5427]  ? clear_bhb_loop+0x55/0xb0
[   65.674064][ T5427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.680023][ T5427] RIP: 0033:0x7f2b5ec5f21c
[   65.684468][ T5427] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   65.704075][ T5427] RSP: 002b:00007f2b5d2d7050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   65.712491][ T5427] RAX: ffffffffffffffda RBX: 00007f2b5ee25fa0 RCX: 00007f2b5ec5f21c
[   65.720462][ T5427] RDX: 000000000000000f RSI: 00007f2b5d2d70b0 RDI: 0000000000000004
[   65.728437][ T5427] RBP: 00007f2b5d2d70a0 R08: 0000000000000000 R09: 0000000000000000
[   65.736406][ T5427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.744370][ T5427] R13: 0000000000000000 R14: 00007f2b5ee25fa0 R15: 00007ffd22421578
[   65.752342][ T5427]  </TASK>
[   65.769459][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.814088][ T5431] loop2: detected capacity change from 0 to 1024
[   65.819117][ T5435] __nla_validate_parse: 4 callbacks suppressed
[   65.819174][ T5435] netlink: 8 bytes leftover after parsing attributes in process `syz.6.692'.
[   65.836693][ T5431] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.838320][ T5435] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   65.857554][ T5435] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   65.866332][ T5435] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   65.875104][ T5435] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   65.884719][ T5435] vxlan0: entered promiscuous mode
[   65.889868][ T5435] vxlan0: entered allmulticast mode
[   65.898234][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.948384][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   66.110991][ T5462] tipc: Failed to remove unknown binding: 66,1,1/0:3468495004/3468495006
[   66.123070][ T5464] netlink: 8 bytes leftover after parsing attributes in process `syz.4.705'.
[   66.133363][ T5466] loop2: detected capacity change from 0 to 128
[   66.134675][ T5464] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   66.148580][ T5464] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   66.151642][ T5466] EXT4-fs: Ignoring removed nobh option
[   66.157309][ T5464] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   66.171739][ T5464] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   66.182194][ T5466] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   66.182379][ T5466] ext4 filesystem being mounted at /139/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   66.182666][ T5464] vxlan0: entered promiscuous mode
[   66.182678][ T5464] vxlan0: entered allmulticast mode
[   66.256448][ T5479] loop4: detected capacity change from 0 to 512
[   66.263363][ T5479] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
[   66.271971][ T5474] loop6: detected capacity change from 0 to 4096
[   66.281526][ T5479] loop4: detected capacity change from 0 to 1024
[   66.302957][ T5479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   66.316320][ T5474] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   66.524207][ T5479] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   66.539226][ T5479] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   66.551581][ T5479] EXT4-fs (loop4): This should not happen!! Data will be lost
[   66.551581][ T5479] 
[   66.561232][ T5479] EXT4-fs (loop4): Total free blocks count 0
[   66.567278][ T5479] EXT4-fs (loop4): Free/Dirty block details
[   66.573176][ T5479] EXT4-fs (loop4): free_blocks=68451041280
[   66.579017][ T5479] EXT4-fs (loop4): dirty_blocks=16
[   66.584139][ T5479] EXT4-fs (loop4): Block reservation details
[   66.590169][ T5479] EXT4-fs (loop4): i_reserved_data_blocks=1
[   66.609574][ T3317] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.653259][ T5496] netlink: 'syz.4.716': attribute type 10 has an invalid length.
[   66.709987][ T5498] loop4: detected capacity change from 0 to 128
[   66.728437][ T5498] devtmpfs: Unknown parameter 'posixacl'
[   66.919275][ T5288] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.950965][ T5504] netlink: 4 bytes leftover after parsing attributes in process `syz.6.718'.
[   66.982767][ T5506] netlink: 8 bytes leftover after parsing attributes in process `syz.6.719'.
[   67.024142][ T3321] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   67.217544][ T3383] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x4
[   67.225287][ T3383] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x2
[   67.225600][ T5522] netlink: 'syz.1.727': attribute type 10 has an invalid length.
[   67.247195][ T5526] netlink: 4 bytes leftover after parsing attributes in process `syz.2.729'.
[   67.251436][ T3383] hid-generic 0000:3000000:0000.0011: unknown main item tag 0x3
[   67.274904][ T3383] hid-generic 0000:3000000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   67.331118][ T5532] FAULT_INJECTION: forcing a failure.
[   67.331118][ T5532] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.344269][ T5532] CPU: 0 UID: 0 PID: 5532 Comm: syz.6.732 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   67.354510][ T5532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   67.364659][ T5532] Call Trace:
[   67.367939][ T5532]  <TASK>
[   67.370885][ T5532]  dump_stack_lvl+0xf2/0x150
[   67.375496][ T5532]  dump_stack+0x15/0x20
[   67.379660][ T5532]  should_fail_ex+0x223/0x230
[   67.384522][ T5532]  should_fail+0xb/0x10
[   67.388773][ T5532]  should_fail_usercopy+0x1a/0x20
[   67.393825][ T5532]  _copy_from_user+0x1e/0xb0
[   67.398497][ T5532]  dev_ethtool+0x53/0x14c0
[   67.403085][ T5532]  ? strcmp+0x21/0x50
[   67.406491][ T5530] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   67.407131][ T5532]  ? __rcu_read_unlock+0x4e/0x70
[   67.415309][ T5530] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   67.420177][ T5532]  dev_ioctl+0x854/0xab0
[   67.428355][ T5530] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   67.432524][ T5532]  sock_do_ioctl+0x11c/0x260
[   67.432553][ T5532]  sock_ioctl+0x46a/0x640
[   67.440809][ T5530] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   67.445398][ T5532]  ? __pfx_sock_ioctl+0x10/0x10
[   67.445427][ T5532]  __se_sys_ioctl+0xc9/0x140
[   67.454329][ T5529] loop5: detected capacity change from 0 to 128
[   67.457868][ T5532]  __x64_sys_ioctl+0x43/0x50
[   67.457901][ T5532]  x64_sys_call+0x1690/0x2dc0
[   67.467895][ T5529] EXT4-fs: Ignoring removed nobh option
[   67.473529][ T5532]  do_syscall_64+0xc9/0x1c0
[   67.492936][ T5532]  ? clear_bhb_loop+0x55/0xb0
[   67.497620][ T5532]  ? clear_bhb_loop+0x55/0xb0
[   67.502306][ T5532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.508306][ T5532] RIP: 0033:0x7f2b5ec60809
[   67.511133][ T5530] vxlan0: entered promiscuous mode
[   67.512712][ T5532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.517849][ T5530] vxlan0: entered allmulticast mode
[   67.537404][ T5532] RSP: 002b:00007f2b5d2d7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   67.537426][ T5532] RAX: ffffffffffffffda RBX: 00007f2b5ee25fa0 RCX: 00007f2b5ec60809
[   67.559044][ T5532] RDX: 0000000020000900 RSI: 0000000000008946 RDI: 0000000000000004
[   67.567372][ T5532] RBP: 00007f2b5d2d70a0 R08: 0000000000000000 R09: 0000000000000000
[   67.575356][ T5532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.583337][ T5532] R13: 0000000000000000 R14: 00007f2b5ee25fa0 R15: 00007ffd22421578
[   67.591413][ T5532]  </TASK>
[   67.604544][ T5529] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   67.662144][ T5529] ext4 filesystem being mounted at /53/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   67.709343][ T5550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.741'.
[   67.725272][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x4
[   67.733054][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x2
[   67.741172][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.748913][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.756696][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.764608][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.772369][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.780145][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.787847][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.795665][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.803367][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.811055][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.818934][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.826643][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.834333][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.842179][ T3397] hid-generic 0000:3000000:0000.0012: unknown main item tag 0x0
[   67.850683][ T3397] hid-generic 0000:3000000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   67.895262][ T5564] FAULT_INJECTION: forcing a failure.
[   67.895262][ T5564] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.908452][ T5564] CPU: 1 UID: 0 PID: 5564 Comm: syz.2.746 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   67.918779][ T5564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   67.928876][ T5564] Call Trace:
[   67.932216][ T5564]  <TASK>
[   67.935201][ T5564]  dump_stack_lvl+0xf2/0x150
[   67.939879][ T5564]  dump_stack+0x15/0x20
[   67.944024][ T5564]  should_fail_ex+0x223/0x230
[   67.948699][ T5564]  should_fail+0xb/0x10
[   67.952852][ T5564]  should_fail_usercopy+0x1a/0x20
[   67.957947][ T5564]  _copy_to_user+0x20/0xa0
[   67.962360][ T5564]  simple_read_from_buffer+0xa0/0x110
[   67.967859][ T5564]  proc_fail_nth_read+0xf9/0x140
[   67.972801][ T5564]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   67.978409][ T5564]  vfs_read+0x1a2/0x700
[   67.982586][ T5564]  ? __rcu_read_unlock+0x4e/0x70
[   67.987600][ T5564]  ? __fget_files+0x17c/0x1c0
[   67.992302][ T5564]  ksys_read+0xe8/0x1b0
[   67.996477][ T5564]  __x64_sys_read+0x42/0x50
[   68.000977][ T5564]  x64_sys_call+0x2874/0x2dc0
[   68.005648][ T5564]  do_syscall_64+0xc9/0x1c0
[   68.010141][ T5564]  ? clear_bhb_loop+0x55/0xb0
[   68.014869][ T5564]  ? clear_bhb_loop+0x55/0xb0
[   68.019538][ T5564]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.025509][ T5564] RIP: 0033:0x7fc6cb41f21c
[   68.029914][ T5564] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   68.049558][ T5564] RSP: 002b:00007fc6c9a97050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   68.057963][ T5564] RAX: ffffffffffffffda RBX: 00007fc6cb5e5fa0 RCX: 00007fc6cb41f21c
[   68.065972][ T5564] RDX: 000000000000000f RSI: 00007fc6c9a970b0 RDI: 0000000000000003
[   68.073980][ T5564] RBP: 00007fc6c9a970a0 R08: 0000000000000000 R09: 0000000000000000
[   68.081943][ T5564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.089906][ T5564] R13: 0000000000000000 R14: 00007fc6cb5e5fa0 R15: 00007ffdc1f65f28
[   68.097875][ T5564]  </TASK>
[   68.125786][   T29] kauditd_printk_skb: 276 callbacks suppressed
[   68.125801][   T29] audit: type=1326 audit(1732777857.401:2811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.155428][   T29] audit: type=1326 audit(1732777857.401:2812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.184817][   T29] audit: type=1326 audit(1732777857.421:2813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5563 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc6cb41f2bf code=0x7ffc0000
[   68.208029][   T29] audit: type=1326 audit(1732777857.421:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5563 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc6cb41f2bf code=0x7ffc0000
[   68.231222][   T29] audit: type=1326 audit(1732777857.421:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5563 comm="syz.2.746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc6cb420809 code=0x7ffc0000
[   68.254740][   T29] audit: type=1326 audit(1732777857.451:2816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.278106][   T29] audit: type=1326 audit(1732777857.451:2817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.301582][   T29] audit: type=1326 audit(1732777857.451:2818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.324984][   T29] audit: type=1326 audit(1732777857.451:2819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.348494][   T29] audit: type=1326 audit(1732777857.451:2820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5565 comm="syz.4.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4835490809 code=0x7ffc0000
[   68.420930][ T5571] bond0: (slave batadv0): Releasing backup interface
[   68.439959][ T4192] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   68.445254][ T5586] loop6: detected capacity change from 0 to 1024
[   68.464602][ T5571] bridge_slave_0: left allmulticast mode
[   68.470328][ T5571] bridge_slave_0: left promiscuous mode
[   68.476094][ T5571] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.501201][ T5571] bridge_slave_1: left allmulticast mode
[   68.506992][ T5571] bridge_slave_1: left promiscuous mode
[   68.512633][ T5571] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.526013][ T5571] bond0: (slave bond_slave_0): Releasing backup interface
[   68.533978][ T5586] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   68.548406][ T5571] bond0: (slave bond_slave_1): Releasing backup interface
[   68.561380][ T5586] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   68.573286][ T5586] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.756: bg 0: block 393: padding at end of block bitmap is not set
[   68.575669][ T5571] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   68.595184][ T5571] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.604276][ T5586] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 117
[   68.605740][ T5571] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.617126][ T5586] EXT4-fs (loop6): This should not happen!! Data will be lost
[   68.617126][ T5586] 
[   68.624358][ T5571] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.626545][ T5597] netlink: 'syz.1.759': attribute type 10 has an invalid length.
[   68.656308][ T5288] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   68.721127][ T5610] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   68.721796][ T5605] loop4: detected capacity change from 0 to 128
[   68.777919][ T5605] EXT4-fs: Ignoring removed nobh option
[   68.794092][ T5611] netlink: 'syz.6.760': attribute type 10 has an invalid length.
[   68.806329][ T5617] loop5: detected capacity change from 0 to 128
[   68.806918][ T5611] 8021q: adding VLAN 0 to HW filter on device batadv0
[   68.812967][ T5617] EXT4-fs: Ignoring removed nobh option
[   68.822340][ T5611] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   68.834396][ T5605] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   68.848592][ T5605] ext4 filesystem being mounted at /180/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   68.854575][ T5617] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   68.871494][ T5617] ext4 filesystem being mounted at /56/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   68.914151][ T5620] loop1: detected capacity change from 0 to 4096
[   68.936172][ T3317] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   68.947850][ T5620] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.004620][ T4192] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.083194][ T5645] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   69.095765][ T5642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   69.105239][ T5642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   69.148101][ T5651] netlink: 8 bytes leftover after parsing attributes in process `syz.5.777'.
[   69.157499][ T5636] netlink: 40 bytes leftover after parsing attributes in process `syz.2.773'.
[   69.170225][ T5653] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5653 comm=syz.4.778
[   69.205639][ T5653] netlink: 'syz.4.778': attribute type 1 has an invalid length.
[   69.218915][ T5653] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.263915][ T5663] loop2: detected capacity change from 0 to 512
[   69.282572][ T5663] EXT4-fs (loop2): corrupt root inode, run e2fsck
[   69.289242][ T5663] EXT4-fs (loop2): mount failed
[   69.325744][ T5665] loop5: detected capacity change from 0 to 4096
[   69.346523][ T5665] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.432871][   T35] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[   69.440803][   T35] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   69.601469][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.639335][ T5682] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   69.676511][ T5687] loop6: detected capacity change from 0 to 1024
[   69.683542][ T5687] EXT4-fs: Ignoring removed nomblk_io_submit option
[   69.694453][ T5687] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   69.726271][ T5687] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.740609][ T5687] ext4: Unknown parameter '˙˙˙˙˙˙˙˙˙0xffffffffffffffff˙˙˙˙˙˙˙˙'
[   69.757070][ T5288] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.781839][ T5699] netlink: 'syz.1.793': attribute type 10 has an invalid length.
[   69.869137][ T5712] loop6: detected capacity change from 0 to 512
[   69.876198][ T5712] EXT4-fs (loop6): VFS: Can't find ext4 filesystem
[   69.889751][ T5712] loop6: detected capacity change from 0 to 1024
[   69.907073][ T5712] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.916760][ T5713] loop1: detected capacity change from 0 to 4096
[   69.927747][ T5713] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.093557][ T4192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.094174][ T5712] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   70.117914][ T5712] EXT4-fs (loop6): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28
[   70.130286][ T5712] EXT4-fs (loop6): This should not happen!! Data will be lost
[   70.130286][ T5712] 
[   70.139964][ T5712] EXT4-fs (loop6): Total free blocks count 0
[   70.146032][ T5712] EXT4-fs (loop6): Free/Dirty block details
[   70.152148][ T5712] EXT4-fs (loop6): free_blocks=68451041280
[   70.158033][ T5712] EXT4-fs (loop6): dirty_blocks=16
[   70.163234][ T5712] EXT4-fs (loop6): Block reservation details
[   70.169304][ T5712] EXT4-fs (loop6): i_reserved_data_blocks=1
[   70.229046][ T5288] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.301184][ T5727] FAULT_INJECTION: forcing a failure.
[   70.301184][ T5727] name failslab, interval 1, probability 0, space 0, times 0
[   70.313933][ T5727] CPU: 1 UID: 0 PID: 5727 Comm: syz.6.802 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   70.324246][ T5727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.334330][ T5727] Call Trace:
[   70.337604][ T5727]  <TASK>
[   70.340574][ T5727]  dump_stack_lvl+0xf2/0x150
[   70.345166][ T5727]  dump_stack+0x15/0x20
[   70.349322][ T5727]  should_fail_ex+0x223/0x230
[   70.354012][ T5727]  should_failslab+0x8f/0xb0
[   70.358608][ T5727]  kmem_cache_alloc_noprof+0x52/0x320
[   70.364038][ T5727]  ? ep_insert+0x137/0xcd0
[   70.368464][ T5727]  ep_insert+0x137/0xcd0
[   70.372711][ T5727]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   70.378433][ T5727]  ? __rcu_read_unlock+0x4e/0x70
[   70.383377][ T5727]  do_epoll_ctl+0x604/0x930
[   70.387931][ T5727]  __x64_sys_epoll_ctl+0xc6/0xf0
[   70.392880][ T5727]  x64_sys_call+0x1361/0x2dc0
[   70.397633][ T5727]  do_syscall_64+0xc9/0x1c0
[   70.402136][ T5727]  ? clear_bhb_loop+0x55/0xb0
[   70.406879][ T5727]  ? clear_bhb_loop+0x55/0xb0
[   70.411562][ T5727]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.417525][ T5727] RIP: 0033:0x7f2b5ec60809
[   70.421633][ T5730] loop5: detected capacity change from 0 to 512
[   70.421951][ T5727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.433069][ T5730] EXT4-fs: Ignoring removed mblk_io_submit option
[   70.447754][ T5727] RSP: 002b:00007f2b5d2d7058 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[   70.447776][ T5727] RAX: ffffffffffffffda RBX: 00007f2b5ee25fa0 RCX: 00007f2b5ec60809
[   70.447799][ T5727] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000006
[   70.447812][ T5727] RBP: 00007f2b5d2d70a0 R08: 0000000000000000 R09: 0000000000000000
[   70.458123][ T5730] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[   70.462579][ T5727] R10: 0000000020002c80 R11: 0000000000000246 R12: 0000000000000001
[   70.502800][ T5727] R13: 0000000000000000 R14: 00007f2b5ee25fa0 R15: 00007ffd22421578
[   70.510857][ T5727]  </TASK>
[   70.520281][ T5730] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[   70.528356][ T5730] System zones: 1-12
[   70.533109][ T5730] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.804: corrupted in-inode xattr: e_value size too large
[   70.548898][ T5730] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.804: couldn't read orphan inode 15 (err -117)
[   70.581708][ T5730] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.643432][ T5733] netlink: 'syz.4.805': attribute type 10 has an invalid length.
[   70.653754][ T5733] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.661297][ T5740] FAULT_INJECTION: forcing a failure.
[   70.661297][ T5740] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.661963][ T5733] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   70.674412][ T5740] CPU: 1 UID: 0 PID: 5740 Comm: syz.2.808 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   70.693311][ T5740] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   70.703443][ T5740] Call Trace:
[   70.706787][ T5740]  <TASK>
[   70.709720][ T5740]  dump_stack_lvl+0xf2/0x150
[   70.714418][ T5740]  dump_stack+0x15/0x20
[   70.718637][ T5740]  should_fail_ex+0x223/0x230
[   70.723330][ T5740]  should_fail+0xb/0x10
[   70.728074][ T5740]  should_fail_usercopy+0x1a/0x20
[   70.733109][ T5740]  _copy_to_user+0x20/0xa0
[   70.737517][ T5740]  simple_read_from_buffer+0xa0/0x110
[   70.742910][ T5740]  proc_fail_nth_read+0xf9/0x140
[   70.747878][ T5740]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   70.753490][ T5740]  vfs_read+0x1a2/0x700
[   70.757684][ T5740]  ? __cond_resched+0x28/0x50
[   70.762396][ T5740]  ksys_read+0xe8/0x1b0
[   70.766640][ T5740]  __x64_sys_read+0x42/0x50
[   70.771142][ T5740]  x64_sys_call+0x2874/0x2dc0
[   70.775818][ T5740]  do_syscall_64+0xc9/0x1c0
[   70.780330][ T5740]  ? clear_bhb_loop+0x55/0xb0
[   70.785030][ T5740]  ? clear_bhb_loop+0x55/0xb0
[   70.789707][ T5740]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.795662][ T5740] RIP: 0033:0x7fc6cb41f21c
[   70.800093][ T5740] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   70.819764][ T5740] RSP: 002b:00007fc6c9a97050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   70.828281][ T5740] RAX: ffffffffffffffda RBX: 00007fc6cb5e5fa0 RCX: 00007fc6cb41f21c
[   70.836248][ T5740] RDX: 000000000000000f RSI: 00007fc6c9a970b0 RDI: 0000000000000004
[   70.844231][ T5740] RBP: 00007fc6c9a970a0 R08: 0000000000000000 R09: 0000000000000000
[   70.852197][ T5740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   70.860192][ T5740] R13: 0000000000000000 R14: 00007fc6cb5e5fa0 R15: 00007ffdc1f65f28
[   70.868230][ T5740]  </TASK>
[   70.895695][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.928999][ T4192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.020097][ T5756] dccp_invalid_packet: P.Data Offset(100) too large
[   71.046576][ T5759] FAULT_INJECTION: forcing a failure.
[   71.046576][ T5759] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   71.048990][ T5754] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   71.059939][ T5759] CPU: 0 UID: 0 PID: 5759 Comm: syz.5.817 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   71.068795][ T5754] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   71.078778][ T5759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.078794][ T5759] Call Trace:
[   71.078800][ T5759]  <TASK>
[   71.078807][ T5759]  dump_stack_lvl+0xf2/0x150
[   71.078829][ T5759]  dump_stack+0x15/0x20
[   71.078844][ T5759]  should_fail_ex+0x223/0x230
[   71.078904][ T5759]  should_fail_alloc_page+0xfd/0x110
[   71.087626][ T5754] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   71.097586][ T5759]  __alloc_pages_noprof+0x109/0x340
[   71.097618][ T5759]  alloc_pages_mpol_noprof+0xb1/0x1e0
[   71.100947][ T5754] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   71.102549][ T5756] hub 9-0:1.0: USB hub found
[   71.103914][ T5759]  vma_alloc_folio_noprof+0x1a0/0x2f0
[   71.111784][ T5756] hub 9-0:1.0: 8 ports detected
[   71.112608][ T5759]  handle_mm_fault+0xdd7/0x2ac0
[   71.122441][ T5754] vxlan0: entered promiscuous mode
[   71.122526][ T5759]  exc_page_fault+0x296/0x650
[   71.131208][ T5754] vxlan0: entered allmulticast mode
[   71.185301][ T5759]  asm_exc_page_fault+0x26/0x30
[   71.190173][ T5759] RIP: 0010:rep_movs_alternative+0x33/0x70
[   71.195967][ T5759] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[   71.215572][ T5759] RSP: 0018:ffffc9000151bda8 EFLAGS: 00050202
[   71.221638][ T5759] RAX: 000004003d090000 RBX: 0000000020002968 RCX: 0000000000000028
[   71.229593][ T5759] RDX: 0000000000000000 RSI: ffffc9000151bde0 RDI: 0000000020002940
[   71.237594][ T5759] RBP: ffff888117268288 R08: 0000000080000000 R09: 0000000000000000
[   71.245626][ T5759] R10: 0001c9000151bde0 R11: 0001c9000151be07 R12: 0000000000000028
[   71.253644][ T5759] R13: 00007ffffffff000 R14: 0000000020002940 R15: ffffc9000151bde0
[   71.261634][ T5759]  _copy_to_user+0x7c/0xa0
[   71.266173][ T5759]  semctl_info+0x19d/0x200
[   71.270575][ T5759]  __se_sys_semctl+0x200/0x2b0
[   71.275338][ T5759]  __x64_sys_semctl+0x55/0x70
[   71.280061][ T5759]  x64_sys_call+0x2a36/0x2dc0
[   71.284846][ T5759]  do_syscall_64+0xc9/0x1c0
[   71.289450][ T5759]  ? clear_bhb_loop+0x55/0xb0
[   71.294130][ T5759]  ? clear_bhb_loop+0x55/0xb0
[   71.298810][ T5759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.304718][ T5759] RIP: 0033:0x7f1ac1330809
[   71.309134][ T5759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.328764][ T5759] RSP: 002b:00007f1abf9a7058 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[   71.337183][ T5759] RAX: ffffffffffffffda RBX: 00007f1ac14f5fa0 RCX: 00007f1ac1330809
[   71.345148][ T5759] RDX: 0000000000000013 RSI: 0000000000000003 RDI: 0000000000000000
[   71.353113][ T5759] RBP: 00007f1abf9a70a0 R08: 0000000000000000 R09: 0000000000000000
[   71.361071][ T5759] R10: 0000000020002940 R11: 0000000000000246 R12: 0000000000000001
[   71.369152][ T5759] R13: 0000000000000000 R14: 00007f1ac14f5fa0 R15: 00007ffc9fa9df48
[   71.377122][ T5759]  </TASK>
[   71.386833][ T5754] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   71.395799][ T5754] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   71.404785][ T5754] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   71.413667][ T5754] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   71.460717][ T5768] sg_write: data in/out 12/14 bytes for SCSI command 0x2-- guessing data in;
[   71.460717][ T5768]    program syz.6.819 not setting count and/or reply_len properly
[   71.490054][ T5756] infiniband syz0: set active
[   71.499080][ T5756] bond0: (slave batadv0): Releasing backup interface
[   71.511663][ T5756] bridge_slave_0: left allmulticast mode
[   71.517379][ T5756] bridge_slave_0: left promiscuous mode
[   71.523125][ T5756] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.533988][ T5756] bridge_slave_1: left allmulticast mode
[   71.539832][ T5756] bridge_slave_1: left promiscuous mode
[   71.545695][ T5756] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.561318][ T5756] bond0: (slave bond_slave_0): Releasing backup interface
[   71.573079][ T5756] bond0: (slave bond_slave_1): Releasing backup interface
[   71.587744][ T5756] team0: Port device team_slave_0 removed
[   71.609438][ T5756] team0: Port device team_slave_1 removed
[   71.616446][ T5756] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   71.623901][ T5756] batman_adv: batadv0: Removing interface: batadv_slave_0
[   71.632798][ T5756] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   71.640342][ T5756] batman_adv: batadv0: Removing interface: batadv_slave_1
[   71.658832][ T5762] geneve2: entered promiscuous mode
[   71.664093][ T5762] geneve2: entered allmulticast mode
[   71.677357][ T1292] infiniband syz0: set down
[   71.713356][ T5776] loop1: detected capacity change from 0 to 4096
[   71.715429][ T5778] bridge_slave_0: left allmulticast mode
[   71.720033][ T3394] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   71.725382][ T5778] bridge_slave_0: left promiscuous mode
[   71.741569][ T5778] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.751102][ T5778] bridge_slave_1: left allmulticast mode
[   71.756880][ T5778] bridge_slave_1: left promiscuous mode
[   71.762599][ T5778] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.764439][ T5788] FAULT_INJECTION: forcing a failure.
[   71.764439][ T5788] name failslab, interval 1, probability 0, space 0, times 0
[   71.764463][ T5788] CPU: 1 UID: 0 PID: 5788 Comm: syz.5.823 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   71.764516][ T5788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   71.764526][ T5788] Call Trace:
[   71.764532][ T5788]  <TASK>
[   71.764540][ T5788]  dump_stack_lvl+0xf2/0x150
[   71.764563][ T5788]  dump_stack+0x15/0x20
[   71.764600][ T5788]  should_fail_ex+0x223/0x230
[   71.764625][ T5788]  ? audit_log_d_path+0x96/0x250
[   71.764649][ T5788]  should_failslab+0x8f/0xb0
[   71.764694][ T5788]  __kmalloc_cache_noprof+0x4e/0x320
[   71.764719][ T5788]  audit_log_d_path+0x96/0x250
[   71.764776][ T5788]  ? __rcu_read_unlock+0x4e/0x70
[   71.764793][ T5788]  audit_log_d_path_exe+0x42/0x70
[   71.764916][ T5788]  audit_log_task+0x192/0x1c0
[   71.764940][ T5788]  audit_seccomp+0x68/0x130
[   71.764964][ T5788]  __seccomp_filter+0x6fa/0x1180
[   71.764990][ T5788]  __secure_computing+0x9f/0x1c0
[   71.765012][ T5788]  syscall_trace_enter+0xd1/0x1f0
[   71.765092][ T5788]  do_syscall_64+0xaa/0x1c0
[   71.765110][ T5788]  ? clear_bhb_loop+0x55/0xb0
[   71.765128][ T5788]  ? clear_bhb_loop+0x55/0xb0
[   71.765147][ T5788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.765204][ T5788] RIP: 0033:0x7f1ac132f21c
[   71.765219][ T5788] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 8e 02 00 48
[   71.765243][ T5788] RSP: 002b:00007f1abf986050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   71.765283][ T5788] RAX: ffffffffffffffda RBX: 00007f1ac14f6080 RCX: 00007f1ac132f21c
[   71.765296][ T5788] RDX: 000000000000000f RSI: 00007f1abf9860b0 RDI: 0000000000000008
[   71.765382][ T5788] RBP: 00007f1abf9860a0 R08: 0000000000000000 R09: 0000000000000000
[   71.765393][ T5788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   71.765404][ T5788] R13: 0000000000000000 R14: 00007f1ac14f6080 R15: 00007ffc9fa9df48
[   71.765422][ T5788]  </TASK>
[   71.768603][ T5778] bond0: (slave bond_slave_0): Releasing backup interface
[   71.771775][ T5778] bond0: (slave bond_slave_1): Releasing backup interface
[   71.772677][ T5776] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.814364][ T5778] team0: Port device team_slave_0 removed
[   71.833886][ T5778] team0: Port device team_slave_1 removed
[   71.835149][ T5778] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   71.835175][ T5778] batman_adv: batadv0: Removing interface: batadv_slave_0
[   71.836467][ T5778] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   71.836488][ T5778] batman_adv: batadv0: Removing interface: batadv_slave_1
[   71.842342][ T5793] loop4: detected capacity change from 0 to 512
[   71.858511][ T5793] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   71.858590][ T5793] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[   71.858607][ T5793] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.826: Corrupt directory, running e2fsck is recommended
[   71.863262][ T5793] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   71.863301][ T5793] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.826: corrupted in-inode xattr: invalid ea_ino
[   71.864333][ T5793] EXT4-fs (loop4): Remounting filesystem read-only
[   71.923044][ T5799] __nla_validate_parse: 4 callbacks suppressed
[   71.923059][ T5799] netlink: 4 bytes leftover after parsing attributes in process `syz.2.828'.
[   71.927448][ T5793] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.036744][ T5802] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   72.054979][ T5793] SELinux: (dev loop4, type ext4) getxattr errno 5
[   72.055362][ T5793] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.067978][ T5800] netlink: 133492 bytes leftover after parsing attributes in process `syz.6.825'.
[   72.074463][ T3383] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   72.133500][ T5793] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.145481][   T28] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   72.158603][ T5793] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.201680][ T5808] netlink: 4 bytes leftover after parsing attributes in process `syz.5.831'.
[   72.326903][ T5814] dccp_invalid_packet: P.Data Offset(100) too large
[   72.339863][ T5814] hub 9-0:1.0: USB hub found
[   72.344611][ T5814] hub 9-0:1.0: 8 ports detected
[   72.355724][ T5814] FAULT_INJECTION: forcing a failure.
[   72.355724][ T5814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.368894][ T5814] CPU: 1 UID: 0 PID: 5814 Comm: syz.5.834 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   72.379152][ T5814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   72.389246][ T5814] Call Trace:
[   72.392514][ T5814]  <TASK>
[   72.395488][ T5814]  dump_stack_lvl+0xf2/0x150
[   72.400067][ T5814]  dump_stack+0x15/0x20
[   72.404239][ T5814]  should_fail_ex+0x223/0x230
[   72.408946][ T5814]  should_fail+0xb/0x10
[   72.413248][ T5814]  should_fail_usercopy+0x1a/0x20
[   72.418297][ T5814]  _copy_from_iter+0xd5/0xd00
[   72.423026][ T5814]  ? kmalloc_reserve+0x16e/0x190
[   72.427952][ T5814]  ? __build_skb_around+0x196/0x1f0
[   72.433395][ T5814]  ? __alloc_skb+0x21f/0x310
[   72.438001][ T5814]  ? __virt_addr_valid+0x1ed/0x250
[   72.443176][ T5814]  ? __check_object_size+0x364/0x520
[   72.448499][ T5814]  netlink_sendmsg+0x460/0x6e0
[   72.453271][ T5814]  ? __pfx_netlink_sendmsg+0x10/0x10
[   72.458571][ T5814]  __sock_sendmsg+0x140/0x180
[   72.463248][ T5814]  ____sys_sendmsg+0x312/0x410
[   72.468072][ T5814]  __sys_sendmsg+0x19d/0x230
[   72.472775][ T5814]  __x64_sys_sendmsg+0x46/0x50
[   72.477532][ T5814]  x64_sys_call+0x2734/0x2dc0
[   72.482207][ T5814]  do_syscall_64+0xc9/0x1c0
[   72.486707][ T5814]  ? clear_bhb_loop+0x55/0xb0
[   72.491389][ T5814]  ? clear_bhb_loop+0x55/0xb0
[   72.496056][ T5814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.501996][ T5814] RIP: 0033:0x7f1ac1330809
[   72.506402][ T5814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.526074][ T5814] RSP: 002b:00007f1abf9a7058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   72.534477][ T5814] RAX: ffffffffffffffda RBX: 00007f1ac14f5fa0 RCX: 00007f1ac1330809
[   72.542544][ T5814] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000006
[   72.550548][ T5814] RBP: 00007f1abf9a70a0 R08: 0000000000000000 R09: 0000000000000000
[   72.558508][ T5814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.566511][ T5814] R13: 0000000000000000 R14: 00007f1ac14f5fa0 R15: 00007ffc9fa9df48
[   72.574546][ T5814]  </TASK>
[   72.586197][ T5814] geneve2: entered promiscuous mode
[   72.591423][ T5814] geneve2: entered allmulticast mode
[   72.597653][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.620695][ T3397] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x4
[   72.628521][ T3397] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x2
[   72.636552][ T5821] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   72.637327][ T3397] hid-generic 0000:3000000:0000.0014: unknown main item tag 0x3
[   72.655547][ T3397] hid-generic 0000:3000000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   72.733352][ T5832] netlink: 4 bytes leftover after parsing attributes in process `syz.1.842'.
[   72.756702][ T5836] netlink: 'syz.2.844': attribute type 5 has an invalid length.
[   72.785496][    T8] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[   72.793375][    T8] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   72.832147][ T5843] 9pnet: Could not find request transport: fd0xffffffffffffffff
[   72.859860][   T50] ==================================================================
[   72.867985][   T50] BUG: KCSAN: data-race in l2tp_tunnel_del_work / sk_common_release
[   72.875985][   T50] 
[   72.878303][   T50] write to 0xffff888117c53a20 of 8 bytes by task 5845 on cpu 0:
[   72.885925][   T50]  sk_common_release+0xa6/0x220
[   72.890793][   T50]  udp_lib_close+0x15/0x20
[   72.895206][   T50]  inet_release+0xce/0xf0
[   72.899531][   T50]  sock_close+0x68/0x150
[   72.903784][   T50]  __fput+0x17a/0x6d0
[   72.907761][   T50]  ____fput+0x1c/0x30
[   72.911737][   T50]  task_work_run+0x13a/0x1a0
[   72.916323][   T50]  syscall_exit_to_user_mode+0xa8/0x120
[   72.921869][   T50]  do_syscall_64+0xd6/0x1c0
[   72.926367][   T50]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.932259][   T50] 
[   72.934570][   T50] read to 0xffff888117c53a20 of 8 bytes by task 50 on cpu 1:
[   72.942015][   T50]  l2tp_tunnel_del_work+0x30/0x1a0
[   72.947123][   T50]  process_scheduled_works+0x483/0x9a0
[   72.952575][   T50]  worker_thread+0x51d/0x6f0
[   72.957152][   T50]  kthread+0x1d1/0x210
[   72.961213][   T50]  ret_from_fork+0x4b/0x60
[   72.965618][   T50]  ret_from_fork_asm+0x1a/0x30
[   72.970375][   T50] 
[   72.972771][   T50] value changed: 0xffff8881069aa080 -> 0x0000000000000000
[   72.979859][   T50] 
[   72.982172][   T50] Reported by Kernel Concurrency Sanitizer on:
[   72.988306][   T50] CPU: 1 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted 6.12.0-syzkaller-10313-g7d4050728c83 #0
[   72.998619][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   73.008662][   T50] Workqueue: l2tp l2tp_tunnel_del_work
[   73.014120][   T50] ==================================================================
[   73.154948][   T28] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   73.165813][   T28] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   73.954871][    T8] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[   77.474821][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration