last executing test programs:

2.717736257s ago: executing program 4 (id=271):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
accept4$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000200)=0x1c, 0x80000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r1}, &(0x7f0000000540), &(0x7f0000000380)='%pS    \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18)
r6 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x8844)
ioctl$sock_SIOCGIFCONF(r6, 0x8912, &(0x7f0000000080)=@buf={0x3d, &(0x7f0000000040)="02768c0dbe6136fcdcfd97057fe067c73470bbd02775e75a4b9cbc25a7ed5ed05cb86e11e8bbd2525200c32c942798511fec3bfe02361166bf4edf69ef"})
openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x84200, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x9, 0x0, 0x80000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x8124, 0xc8, 0xffffffff, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x2)
close(r8)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x9)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033200fe08000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x87}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)

2.373063093s ago: executing program 4 (id=278):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="18020000a8ffffff000100000300000085000000750000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000003e00), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r1, &(0x7f0000003f00)={0x0, 0x0, &(0x7f0000003ec0)={&(0x7f0000000280)={0x1c, r2, 0x401, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x20040050)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r2, 0x10, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20008801}, 0x20040051)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r3}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="2400000076001f03000000000000000008000000ffffffff0c000d80080003"], 0x24}], 0x1}, 0x0)
chroot(0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2010008, &(0x7f0000000080)={[{@abort}]}, 0xff, 0x53b, &(0x7f0000000b80)="$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")

2.159360826s ago: executing program 4 (id=284):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0xff9d, &(0x7f0000000300)='trans=rdma,')

2.088153107s ago: executing program 4 (id=285):
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xc66, 0x2, &(0x7f0000006680))
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0xd, 0x800000000004, @tid=r0}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, 0x0, 0x0, 0xfffffffc)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000200)='./bus\x00', 0x1000000, &(0x7f00000005c0)=ANY=[], 0x1, 0x126f, &(0x7f0000001600)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
ftruncate(r1, 0x81ff)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x10000}, 0x28)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioprio_set$uid(0x3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r2 = memfd_create(0x0, 0x0)
execveat(r2, 0x0, 0x0, 0x0, 0x1000)
set_robust_list(0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = open(0x0, 0x20042, 0x45)
r4 = open(&(0x7f0000000200)='./bus\x00', 0x2101, 0x123)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)=ANY=[])
copy_file_range(r4, 0x0, r3, 0x0, 0x3df1, 0x0)
write$UHID_INPUT(r3, 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x84, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e22, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}, 0x2}}, 0x6, 0xfffe}, 0x90)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040))

1.571266955s ago: executing program 1 (id=291):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], 0x0, 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
pipe2(&(0x7f0000001cc0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80000)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r4, 0xc0505350, &(0x7f0000000380)={{0xff}, {0x9, 0x9}, 0x5, 0x3, 0x9})
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000340), r6)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB])
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_WOWLAN(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x1c, r7, 0x301, 0x0, 0x25dfdbfe, {{0x5}, {@void, @val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4004015}, 0x20000000)
unshare(0x2040400)
r8 = syz_open_dev$evdev(&(0x7f0000002240), 0x2bc, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b00"/14], 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000040)={0x3}, 0x8)
r9 = creat(&(0x7f0000000100)='./file0\x00', 0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_tid_address(0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r9)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r8, 0x8933, &(0x7f00000002c0))

1.514895596s ago: executing program 0 (id=294):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$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")

1.469205277s ago: executing program 0 (id=296):
r0 = socket$tipc(0x1e, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000001080)={0xa, 0x4e20, 0x0, @empty, 0x1}, 0x1c)
setsockopt$inet6_int(r1, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f00000000c0)=0x7, 0x4)
recvmmsg(r1, &(0x7f0000003700)=[{{0x0, 0x0, 0x0}, 0xd}], 0x1, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000080)=ANY=[@ANYRESDEC=r0, @ANYRES8=r0], 0x8)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f0000000280)=0x4)
sendmsg$nl_route(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000380), r2)
setsockopt$inet6_int(r1, 0x29, 0x4, &(0x7f0000000000)=0x7f, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendmsg$tipc(r0, &(0x7f0000002300)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x1, {{0x0, 0x200000}, 0x4}}, 0x10, 0x0}, 0x0)

1.468071387s ago: executing program 1 (id=297):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000040)=""/8, 0x8}], 0x1}, 0xffffffff}], 0x1, 0x12001, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x50, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x8, 0xffffa888}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x7}, @IFLA_BR_GROUP_ADDR={0xa, 0x14, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}}]}}}]}, 0x50}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.360408569s ago: executing program 1 (id=299):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRESDEC=0x0, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES8, @ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0xfffffffc, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4000000", @ANYRES32, @ANYBLOB="0000000004000000b705000008000000850000006a000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r1, 0x0, 0x4ab}, 0x18)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
acct(0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x84, 0x1e, &(0x7f0000000000), 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1f, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x8a07, &(0x7f0000000480)={[{@bh}, {@grpquota}, {@nouid32}, {@nodelalloc}, {@abort}, {@noblock_validity}, {@barrier}, {@noquota}]}, 0x1, 0x643, &(0x7f0000000b40)="$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")
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000008000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000e9ff0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b70300002bb91a008500000008000000bc0900000000000045080100002000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000bf2700000000000007080000fffdffffbfa400000000000007040000f0ffffffc40200000800000018220000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7050000080000004608efff76000000bf9800000000000056090000000000008500000000a00000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, 0x0, 0x0)
mmap(&(0x7f0000bc6000/0x1000)=nil, 0x1000, 0x4, 0x11, 0xffffffffffffffff, 0x9a7fe000)
io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f0000000480)=[@ioring_restriction_sqe_op={0x1, 0x1c}], 0x1)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

1.320397459s ago: executing program 2 (id=300):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

1.26644101s ago: executing program 0 (id=301):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xb}]})
ioctl$TIOCMIWAIT(0xffffffffffffffff, 0x545c, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)

1.26583099s ago: executing program 2 (id=302):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
accept4$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000200)=0x1c, 0x80000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r1}, &(0x7f0000000540), &(0x7f0000000380)='%pS    \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18)
r6 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000400)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x8844)
ioctl$sock_SIOCGIFCONF(r6, 0x8912, &(0x7f0000000080)=@buf={0x3d, &(0x7f0000000040)="02768c0dbe6136fcdcfd97057fe067c73470bbd02775e75a4b9cbc25a7ed5ed05cb86e11e8bbd2525200c32c942798511fec3bfe02361166bf4edf69ef"})
openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x84200, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x9, 0x0, 0x80000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x8124, 0xc8, 0xffffffff, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x2)
close(r8)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x9)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033200fe08000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x87}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)

1.26544161s ago: executing program 3 (id=303):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x109}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r1}, 0x18)
lsetxattr$security_capability(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000240), &(0x7f0000000300)=@v3={0x3000000, [{0x8, 0xff}, {0x1, 0x400}]}, 0x18, 0x0) (fail_nth: 2)

1.219430661s ago: executing program 4 (id=304):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffc}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x94)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@empty, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010102}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

913.510016ms ago: executing program 2 (id=305):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000c00)={[], [{@smackfsroot={'smackfsroot', 0x3d, ')'}}, {@uid_lt}, {@audit}, {@context={'context', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, 'GPL\x00'}}]}, 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

671.19505ms ago: executing program 3 (id=306):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
syz_open_dev$sg(0x0, 0x0, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
setns(r3, 0x40000000)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x1a, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x2, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0xffffffd}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)

655.38054ms ago: executing program 3 (id=307):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[@ANYBLOB="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"], 0x0, 0x33, 0x0, 0x8, 0xfffffffd}, 0x28)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYRES32=0x0], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000500)='scsi_dispatch_cmd_error\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x5c, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
setresuid(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getitimer(0x1, &(0x7f00000001c0))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
listen(r3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r5=>0x0})
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x22d9, 0x0, r4, 0x200, '\x00', r5, r0, 0x1, 0x4, 0x4}, 0x50)
r6 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r6, 0x1, 0x21, &(0x7f00000000c0)=0x4, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x44000, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000280))
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

646.64025ms ago: executing program 2 (id=308):
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="24460000030000773f00000000980000000000000000000000003559a57cfff1570200000000000000d810947f420e109f18fe48c8cc78b72287f3b98c31a778a5705339bc7cef6e0f7a9b5a0e6f22da5ecf90229bdeffae5999d2bc853240f23a6cdf386645328d9db1c32d03af87c00a6642f99adb156b5a431f150810ecba58c224ccb8d11e7add20bc9b55adfde194f64c98a269d10d0085d4aad68b"], 0x24}, 0x1, 0x0, 0x0, 0x24000800}, 0x0) (async)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
readv(r2, &(0x7f0000001180)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f00000000c0)=0x32) (async)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000001600)={&(0x7f00000003c0)={0x24, r3, 0x1, 0x4000, 0x0, {}, [@ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x3}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5, 0xb, 0x1}]}, 0x24}}, 0x0)

555.563501ms ago: executing program 3 (id=309):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
r4 = perf_event_open(&(0x7f00000000c0)={0x6, 0x80, 0x3, 0xff, 0x5e, 0x8, 0x0, 0x3, 0x8b008, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x1, @perf_bp={0x0, 0x8}, 0x400, 0x81, 0xffffffff, 0x6, 0x8, 0x204002, 0x0, 0x0, 0x0, 0x0, 0x400000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r5, &(0x7f0000000780)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x800}}, 0x120)
write$UHID_DESTROY(r5, &(0x7f0000000080), 0x4)
getsockname$packet(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0xfcfa, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x0, 0x2d, 0x200, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0x4}}}, 0x24}}, 0x50)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r6, 0x6, 0x24, &(0x7f0000000180)=0x8, 0x4)
r7 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r8=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140))
r11 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000340)=ANY=[@ANYRES32=r12, @ANYRES32=r11, @ANYBLOB='&\x00'/12, @ANYRES32, @ANYBLOB="85c1b762d5b722f57dce94654ef2eb0df1a52d63f87dff037ba9f897bb929c78f7434ceacecf6ba4a5a678104fcdedb1ad5711b8bf31567f74ddf855e3bcebe2ec4f5881aa095d2b3b47ab1bae75a84ac1edbf6adfc0bb3cfd94235a33acd317b9e396f223b4266f4a4d42", @ANYRES64=0x0], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r12}, &(0x7f0000000000), &(0x7f0000000080)=r10}, 0x20)

550.543131ms ago: executing program 4 (id=310):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x3514}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f00000010c0), 0x0, 0x12001, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newlink={0x50, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x8, 0xffffa888}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x7}, @IFLA_BR_GROUP_ADDR={0xa, 0x14, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xd}}]}}}]}, 0x50}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

483.146753ms ago: executing program 2 (id=311):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') (fail_nth: 10)

449.898433ms ago: executing program 0 (id=312):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

446.780633ms ago: executing program 1 (id=313):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) (async)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000098230000", @ANYRES64=r1, @ANYBLOB="0000000004000000b705000008000000850000006a000000"], &(0x7f0000000000)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
r3 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000680), 0x80c02, 0x0)
write$cgroup_int(r3, 0x0, 0x2) (async)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) (async)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4) (async)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x304}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', "000100"}, 0x28) (async)
r4 = socket$netlink(0x10, 0x3, 0x0)
syz_mount_image$iso9660(&(0x7f0000002900), &(0x7f0000000000)='./file0\x00', 0x2, &(0x7f00000002c0)=ANY=[], 0x1, 0x5b1, &(0x7f0000001000)="$eJzs3MFv29YZAPDHxK4NBwsGFGvSNEDZtIfsEFeSFwdGBywaTdtsJVEg5cI5DcXiZMHsblg2YMmly6VDgQ077bz1utOO+6d62T/ggRLlybIzuWkbZcDvB8TvUfzI9z2C4QcRIgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEKJks9FoRqGT9Xb34udLNou8e7y0EKbXj/f3rxPNCYsTf0MUQlT9C8vL4eroo6uv/zf2B9WfG+HKaOlKWK6a5fD00hvf/+D1hQvVhotRdCqLl+3xk6e//OTgYP83X2Obo6Ojz6rZfIdpvTTbaS8r86zb3k7jrMzjjfX1xvs7W2W8lXXS8l45SLtxUqTtQV7EN5O7IYSNtThdvZfv9rY32500vpn8MG5ubNy51Wo01uMPV/tpuyjz3vsfrpbJTtbpZL3tYUy1+lbr7XCnOhE/ygbxIG134/jBo4P9tVlJVkHN8wS1ZgW1Gq1Ws9lqNddvb9y+02gs12fr8QcLjSlhepOF+Z+0vHSv1SfKcGF8jXvtW7uIwws6Sv4y7xQAAACA71g0vMceDe/LXx32trJO2jgRcxTNLT0AAADgWzD8an+lvgEQwtUQnf7+DwAAAPx/+/u4c+YzdiGKQtlfisaPqvT33osO21WvfXhx9NHF6T0Otq5Fl+udDJv1hXopSa9Hb46C3hxHf1U3D57/rN8/Q5VHVBSL0bNvlkD4U7g2irl2f9TeH68ZzXZlK+ukq0ne+aAZ2u3LFwbp3uB3nz76fQhFcXTxi173chQePDrYX/35rw7uD3N5Vu3l2WH9C4lTP5Q4mctSmMjlt8fPPdYzvnvyyC8Ob8RUs/6i110ZjduYnP+F0eYXvsb8Pw9vjWLeWhm1Kyfnv1yN2Vw9Y/aTWTT7e+8t1YOdc+ZTWVwfxVy/OTyx3r1Zr1mcyKI1K4vW5PF/oWNxnMW7J7KYPBZrs7JY+4ZZAMzLg+kqdKr+n6q7L3CV+x/VvRqlKuEzq/svZo7yeXhnFPPOtYW6Il0MYeqK3ph1RW+cs66HcHYW/wg3/vbXEHbDjXHw82psNe6fT1TV6PDLaoMvT4/7h1FT/vvhzqWqs3T46/DG4ydPbz06/OTh/sP9T1uttfXGjxqN262wOJxG3ag9AJwhLb6KVgZ/jIoi6/+subHRbA920rjIk4/iItvcTuOsN0iLZKfd207jfpEP8iTvVJ2Ps820jMvdfj+vKklexP28zPaGb36J61e/lGm33RtkSdnvpO0yjZO8N2gng3gzK5O4v/vTTlbupEW8lRdx2U+TbCtL2oMs78Vlvlsk6Wocl2k6EZhtpkefhZBV3V7cL7Juu7gXf5x3drtpvJlW1bI/yKNQ7XA8VtbbyovucLer8z7YAPCKeBzqN9gdv8ru8U/Gq56cWnVmJyzPiJnzFAGAKdNVemneCQEAAAAAAAAAAAAAAKdMPq734/qVPud77O+V7dy9dNaqt+ef2GQnhLDwCqShc87O8quRxmL93/ZF9xOFEGYHf6+KmedVCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADO9p8AAAD//0n5kWY=") (async)
r5 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r5, 0x0, 0x0)
sendmsg$netlink(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r6, 0x0, 0xc8, &(0x7f0000003d40), 0x4) (async)
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) (async)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r7}, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8f7ffffb702000008000000b703000000000000a5000000eeffffff95"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
keyctl$search(0xa, 0x0, &(0x7f00000002c0)='.request_key_auth\x00', 0x0, 0xfffffffffffffffb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r8}, 0x10)
stat(0x0, 0x0) (async)
r9 = socket$igmp(0x2, 0x3, 0x2) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB], 0xfdef)
setsockopt$MRT_FLUSH(r9, 0x0, 0xd4, &(0x7f0000000280)=0x4, 0x4) (async)
socket$netlink(0x10, 0x3, 0x0)

323.743085ms ago: executing program 2 (id=314):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet(0xa, 0x1, 0x87)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0x4}, 0x18)
r4 = socket(0x11, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6}, 0x14)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="02017d29012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x0)
r7 = semget$private(0x0, 0x4000000009, 0x0)
semop(r7, &(0x7f0000000240)=[{0x2, 0x7fff, 0x1000}], 0x1)
semop(r7, &(0x7f0000000100)=[{0x2, 0xd5db}], 0x1)
semtimedop(r7, &(0x7f0000000000)=[{0x2, 0x9, 0x1000}], 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7fffffffffffffff}, 0x18)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x0)
r8 = socket$kcm(0x10, 0x2, 0x0)
r9 = syz_io_uring_setup(0x23a, &(0x7f0000000400)={0x0, 0x80d7, 0x10, 0x5, 0x2cd}, &(0x7f0000000380), &(0x7f00000002c0))
io_uring_register$IORING_REGISTER_NAPI(r9, 0x1b, &(0x7f00000001c0)={0x3dfa, 0x5}, 0x1)
socket$tipc(0x1e, 0x2, 0x0)
dup(r3)
recvmsg(r8, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000000)=ANY=[@ANYBLOB="36400000260091"], 0xfe33)

315.073415ms ago: executing program 0 (id=315):
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
accept4$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000200)=0x1c, 0x80000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r1}, &(0x7f0000000540), &(0x7f0000000380)='%pS    \x00'}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r2}, 0x18)
r6 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000400)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x8844)
ioctl$sock_SIOCGIFCONF(r6, 0x8912, &(0x7f0000000080)=@buf={0x3d, &(0x7f0000000040)="02768c0dbe6136fcdcfd97057fe067c73470bbd02775e75a4b9cbc25a7ed5ed05cb86e11e8bbd2525200c32c942798511fec3bfe02361166bf4edf69ef"})
openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x84200, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x9, 0x0, 0x80000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x8124, 0xc8, 0xffffffff, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x2)
close(r8)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x9)
recvmsg$unix(r7, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r10=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb7910009875f37538e486dd6317ce8102033200fe08000e40000200875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x87}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)

275.945496ms ago: executing program 1 (id=316):
r0 = getpid()
r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r1, 0x0)

37.884909ms ago: executing program 3 (id=317):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x280c085, &(0x7f0000000d00)=ANY=[@ANYRES8=0x0, @ANYBLOB="c0da5b74006e9c47add458a1bd748b7ffa5628dc52f84873cbe6a43cfd29e4198255a0610d383b0e46b2b6457282a9f3caef22979e54c145e6a0ce2850a890af7c4e1fa3628453c70aae32270b0042f1532cf08030eccdca96e2c97aae42cf5d9ec5f0afa4fcc53c8f9289677038d09ae2b1bd2271e0a76e6324df3a2b01a9ed0277d7e8d6f7d463ae62692faa55bdb43dc2bea18eea4a635951fd0a220a835fa24d0700c8f8c245d1d7638b2cae5ed3bec0d2f0415ddff7884bb34ab0cb1598e9c7b92a29005e4090ede480b3412f5c33da5e7c8672bda19fd3d989f8336d69d9e70de142973e7e1f53987b2d"], 0x10, 0x7f4, &(0x7f0000000e40)="$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")

37.24294ms ago: executing program 1 (id=318):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000c00)={[], [{@smackfsroot={'smackfsroot', 0x3d, ')'}}, {@uid_lt}, {@audit}, {@context={'context', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, 'GPL\x00'}}]}, 0x2, 0x5ad, &(0x7f0000000180)="$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")
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000"], 0x3c}}, 0x0)
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00<r\xe9\x9cD\x90\xce\xe1\xc5\x85=\\!\xbbQ\xde\xc3\xe3\x7f\xcf\x1f\x17G\xa6\x13\xae\x92 \x1c\xbf\xfa\xe8e\x8cD\"\xa3w')

33.34507ms ago: executing program 0 (id=319):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
setns(r3, 0x40000000)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x1a, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x2, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0xffffffd}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)

0s ago: executing program 3 (id=320):
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0xc14002, &(0x7f0000000300)=ANY=[], 0x0, 0x729, &(0x7f0000001340)="$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") (async)
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0xc14002, &(0x7f0000000300)=ANY=[], 0x0, 0x729, &(0x7f0000001340)="$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")
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x31005, 0x0) (async)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x31005, 0x0)
getpid()
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x2205080, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400e, &(0x7f0000000300), 0x1, 0x440, &(0x7f0000000cc0)="$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") (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400e, &(0x7f0000000300), 0x1, 0x440, &(0x7f0000000cc0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="1800001801007020e39d3345b69200052020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b7030000008900003c850000007200000095"], &(0x7f0000000200)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="1800001801007020e39d3345b69200052020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b7030000008900003c850000007200000095"], &(0x7f0000000200)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0) (async)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
fstat(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x1000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
stat(&(0x7f0000002cc0)='./file1\x00', &(0x7f0000002d00)) (async)
stat(&(0x7f0000002cc0)='./file1\x00', &(0x7f0000002d00))

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.175' (ED25519) to the list of known hosts.
[   29.882961][   T29] audit: type=1400 audit(1752331550.797:62): avc:  denied  { mounton } for  pid=3296 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   29.883806][ T3296] cgroup: Unknown subsys name 'net'
[   29.905667][   T29] audit: type=1400 audit(1752331550.797:63): avc:  denied  { mount } for  pid=3296 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   29.933042][   T29] audit: type=1400 audit(1752331550.827:64): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   30.068812][ T3296] cgroup: Unknown subsys name 'cpuset'
[   30.074836][ T3296] cgroup: Unknown subsys name 'rlimit'
[   30.183718][   T29] audit: type=1400 audit(1752331551.097:65): avc:  denied  { setattr } for  pid=3296 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   30.208437][   T29] audit: type=1400 audit(1752331551.097:66): avc:  denied  { create } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   30.229079][   T29] audit: type=1400 audit(1752331551.097:67): avc:  denied  { write } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   30.232340][ T3298] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   30.249422][   T29] audit: type=1400 audit(1752331551.097:68): avc:  denied  { read } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   30.274381][ T3296] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   30.278191][   T29] audit: type=1400 audit(1752331551.107:69): avc:  denied  { mounton } for  pid=3296 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   30.311792][   T29] audit: type=1400 audit(1752331551.107:70): avc:  denied  { mount } for  pid=3296 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   30.335179][   T29] audit: type=1400 audit(1752331551.177:71): avc:  denied  { relabelto } for  pid=3298 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   32.220936][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   32.251099][ T3305] chnl_net:caif_netlink_parms(): no params data found
[   32.265747][ T3313] chnl_net:caif_netlink_parms(): no params data found
[   32.282966][ T3309] chnl_net:caif_netlink_parms(): no params data found
[   32.338777][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.345894][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.353215][ T3306] bridge_slave_0: entered allmulticast mode
[   32.359683][ T3306] bridge_slave_0: entered promiscuous mode
[   32.374670][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.381769][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.389027][ T3306] bridge_slave_1: entered allmulticast mode
[   32.395275][ T3306] bridge_slave_1: entered promiscuous mode
[   32.446818][ T3309] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.453936][ T3309] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.461336][ T3309] bridge_slave_0: entered allmulticast mode
[   32.467712][ T3309] bridge_slave_0: entered promiscuous mode
[   32.474206][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.481264][ T3305] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.488576][ T3305] bridge_slave_0: entered allmulticast mode
[   32.494983][ T3305] bridge_slave_0: entered promiscuous mode
[   32.501411][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.508610][ T3305] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.515723][ T3305] bridge_slave_1: entered allmulticast mode
[   32.522126][ T3305] bridge_slave_1: entered promiscuous mode
[   32.528328][ T3313] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.535372][ T3313] bridge0: port 1(bridge_slave_0) entered disabled state
[   32.542550][ T3313] bridge_slave_0: entered allmulticast mode
[   32.548833][ T3313] bridge_slave_0: entered promiscuous mode
[   32.555903][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   32.568986][ T3309] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.576029][ T3309] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.583805][ T3309] bridge_slave_1: entered allmulticast mode
[   32.590101][ T3309] bridge_slave_1: entered promiscuous mode
[   32.600909][ T3313] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.607957][ T3313] bridge0: port 2(bridge_slave_1) entered disabled state
[   32.615136][ T3313] bridge_slave_1: entered allmulticast mode
[   32.621693][ T3313] bridge_slave_1: entered promiscuous mode
[   32.628875][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   32.667802][ T3309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   32.678053][ T3305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   32.687737][ T3306] team0: Port device team_slave_0 added
[   32.701390][ T3313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   32.711206][ T3309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   32.721198][ T3305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   32.735152][ T3306] team0: Port device team_slave_1 added
[   32.740883][ T3319] chnl_net:caif_netlink_parms(): no params data found
[   32.750500][ T3313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   32.773943][ T3305] team0: Port device team_slave_0 added
[   32.791732][ T3309] team0: Port device team_slave_0 added
[   32.804210][ T3305] team0: Port device team_slave_1 added
[   32.816972][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   32.824004][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   32.849983][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   32.861292][ T3309] team0: Port device team_slave_1 added
[   32.867488][ T3313] team0: Port device team_slave_0 added
[   32.882794][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   32.889800][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   32.915811][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   32.931948][ T3313] team0: Port device team_slave_1 added
[   32.954848][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_0
[   32.961883][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   32.987849][ T3309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   32.998900][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.005899][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.031803][ T3305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   33.050032][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.056980][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.082970][ T3309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.094032][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.100995][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.127037][ T3305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.141681][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.148647][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.174622][ T3313] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   33.201489][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.208457][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.234499][ T3313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.259341][ T3319] bridge0: port 1(bridge_slave_0) entered blocking state
[   33.266408][ T3319] bridge0: port 1(bridge_slave_0) entered disabled state
[   33.274082][ T3319] bridge_slave_0: entered allmulticast mode
[   33.280515][ T3319] bridge_slave_0: entered promiscuous mode
[   33.294885][ T3306] hsr_slave_0: entered promiscuous mode
[   33.301057][ T3306] hsr_slave_1: entered promiscuous mode
[   33.313274][ T3309] hsr_slave_0: entered promiscuous mode
[   33.319351][ T3309] hsr_slave_1: entered promiscuous mode
[   33.325145][ T3309] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   33.333060][ T3309] Cannot create hsr debugfs directory
[   33.343791][ T3319] bridge0: port 2(bridge_slave_1) entered blocking state
[   33.350849][ T3319] bridge0: port 2(bridge_slave_1) entered disabled state
[   33.358063][ T3319] bridge_slave_1: entered allmulticast mode
[   33.365740][ T3319] bridge_slave_1: entered promiscuous mode
[   33.382811][ T3313] hsr_slave_0: entered promiscuous mode
[   33.388744][ T3313] hsr_slave_1: entered promiscuous mode
[   33.394617][ T3313] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   33.402349][ T3313] Cannot create hsr debugfs directory
[   33.437271][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   33.448448][ T3305] hsr_slave_0: entered promiscuous mode
[   33.454427][ T3305] hsr_slave_1: entered promiscuous mode
[   33.460429][ T3305] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   33.467968][ T3305] Cannot create hsr debugfs directory
[   33.490697][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   33.547098][ T3319] team0: Port device team_slave_0 added
[   33.565856][ T3319] team0: Port device team_slave_1 added
[   33.601502][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_0
[   33.608480][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.634512][ T3319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   33.661855][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_1
[   33.668843][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   33.695011][ T3319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   33.743460][ T3313] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   33.754166][ T3313] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   33.764537][ T3319] hsr_slave_0: entered promiscuous mode
[   33.770563][ T3319] hsr_slave_1: entered promiscuous mode
[   33.776414][ T3319] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   33.784081][ T3319] Cannot create hsr debugfs directory
[   33.795130][ T3313] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   33.806582][ T3313] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   33.847008][ T3305] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   33.871203][ T3305] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   33.887226][ T3309] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   33.895839][ T3305] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   33.906431][ T3305] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   33.917584][ T3309] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   33.938892][ T3309] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   33.949276][ T3306] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   33.965748][ T3319] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   33.974238][ T3309] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   33.990624][ T3306] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   33.999932][ T3319] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   34.019439][ T3306] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   34.028672][ T3306] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   34.038953][ T3319] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   34.066531][ T3305] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.073784][ T3319] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   34.106301][ T3305] 8021q: adding VLAN 0 to HW filter on device team0
[   34.123137][ T2030] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.130282][ T2030] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.148293][ T2030] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.155368][ T2030] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.173389][ T3309] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.188139][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.212254][ T3309] 8021q: adding VLAN 0 to HW filter on device team0
[   34.226939][ T3313] 8021q: adding VLAN 0 to HW filter on device team0
[   34.238131][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.245260][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.255088][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.262134][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.281586][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.288749][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.299289][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.306318][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.325007][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.346699][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.363109][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   34.376068][ T3309] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   34.400843][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.407954][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.419904][ T3319] 8021q: adding VLAN 0 to HW filter on device team0
[   34.435218][ T3305] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.450636][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.457691][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.466315][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.473382][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.491743][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.498945][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.542420][ T3309] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.556534][ T3306] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   34.584996][ T3313] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.661045][ T3319] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.697060][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.735034][ T3305] veth0_vlan: entered promiscuous mode
[   34.743743][ T3313] veth0_vlan: entered promiscuous mode
[   34.751035][ T3309] veth0_vlan: entered promiscuous mode
[   34.768953][ T3313] veth1_vlan: entered promiscuous mode
[   34.786716][ T3309] veth1_vlan: entered promiscuous mode
[   34.795698][ T3305] veth1_vlan: entered promiscuous mode
[   34.821296][ T3313] veth0_macvtap: entered promiscuous mode
[   34.829354][ T3309] veth0_macvtap: entered promiscuous mode
[   34.839177][ T3313] veth1_macvtap: entered promiscuous mode
[   34.855770][ T3305] veth0_macvtap: entered promiscuous mode
[   34.863418][ T3309] veth1_macvtap: entered promiscuous mode
[   34.871668][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_0
[   34.885248][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_0
[   34.893561][ T3305] veth1_macvtap: entered promiscuous mode
[   34.903196][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.913101][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.922133][ T3313] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.930892][ T3313] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.939681][ T3313] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.948476][ T3313] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   34.965768][ T3309] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.974508][ T3309] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.983219][ T3309] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.991974][ T3309] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.006958][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.019290][ T3319] veth0_vlan: entered promiscuous mode
[   35.030883][ T3306] veth0_vlan: entered promiscuous mode
[   35.037250][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.049496][ T3305] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.058234][ T3305] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.066987][ T3305] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.075808][ T3305] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.090809][ T3319] veth1_vlan: entered promiscuous mode
[   35.104527][ T3306] veth1_vlan: entered promiscuous mode
[   35.121646][   T29] kauditd_printk_skb: 9 callbacks suppressed
[   35.121658][   T29] audit: type=1400 audit(1752331556.037:81): avc:  denied  { mounton } for  pid=3309 comm="syz-executor" path="/root/syzkaller.NEZ6Ml/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   35.152248][   T29] audit: type=1400 audit(1752331556.037:82): avc:  denied  { mount } for  pid=3309 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   35.174319][   T29] audit: type=1400 audit(1752331556.037:83): avc:  denied  { mounton } for  pid=3309 comm="syz-executor" path="/root/syzkaller.NEZ6Ml/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   35.199543][   T29] audit: type=1400 audit(1752331556.037:84): avc:  denied  { mount } for  pid=3309 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   35.221357][   T29] audit: type=1400 audit(1752331556.037:85): avc:  denied  { mounton } for  pid=3309 comm="syz-executor" path="/root/syzkaller.NEZ6Ml/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   35.247892][   T29] audit: type=1400 audit(1752331556.037:86): avc:  denied  { mounton } for  pid=3309 comm="syz-executor" path="/root/syzkaller.NEZ6Ml/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4035 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   35.275355][   T29] audit: type=1400 audit(1752331556.037:87): avc:  denied  { unmount } for  pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   35.296039][   T29] audit: type=1400 audit(1752331556.067:88): avc:  denied  { mounton } for  pid=3309 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   35.318799][   T29] audit: type=1400 audit(1752331556.067:89): avc:  denied  { mount } for  pid=3309 comm="syz-executor" name="/" dev="gadgetfs" ino=4039 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   35.342821][ T3309] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   35.373057][ T3319] veth0_macvtap: entered promiscuous mode
[   35.394323][ T3319] veth1_macvtap: entered promiscuous mode
[   35.400131][   T29] audit: type=1400 audit(1752331556.307:90): avc:  denied  { read write } for  pid=3309 comm="syz-executor" name="loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   35.446695][ T3306] veth0_macvtap: entered promiscuous mode
[   35.454532][ T3306] veth1_macvtap: entered promiscuous mode
[   35.501162][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.508596][ T3479] loop1: detected capacity change from 0 to 512
[   35.516902][ T3479] EXT4-fs: Ignoring removed mblk_io_submit option
[   35.520274][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_0
[   35.533242][ T3479] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   35.539394][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.546326][ T3479] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   35.566476][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   35.592069][ T3479] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   35.606528][ T3306] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.615402][ T3306] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.624270][ T3306] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.632982][ T3306] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.648096][ T3479] EXT4-fs (loop1): 1 truncate cleaned up
[   35.653924][ T3482] loop2: detected capacity change from 0 to 512
[   35.655518][ T3479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.662174][ T3482] EXT4-fs: Ignoring removed mblk_io_submit option
[   35.680040][ T3482] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   35.692513][ T3319] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   35.692575][ T3482] EXT4-fs (loop2): 1 truncate cleaned up
[   35.701267][ T3319] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   35.701298][ T3319] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   35.701341][ T3319] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   35.733816][ T3482] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.772827][ T3482] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3'.
[   35.782795][ T3479] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'.
[   35.801912][ T3482] bridge_slave_1: left allmulticast mode
[   35.807626][ T3482] bridge_slave_1: left promiscuous mode
[   35.813389][ T3482] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.825822][ T3482] bridge_slave_0: left allmulticast mode
[   35.831590][ T3482] bridge_slave_0: left promiscuous mode
[   35.837274][ T3482] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.900694][ T3479] bridge_slave_1: left allmulticast mode
[   35.906373][ T3479] bridge_slave_1: left promiscuous mode
[   35.912079][ T3479] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.922707][ T3479] bridge_slave_0: left allmulticast mode
[   35.928413][ T3479] bridge_slave_0: left promiscuous mode
[   35.934144][ T3479] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.172427][ T3502] netlink: 68 bytes leftover after parsing attributes in process `syz.3.8'.
[   36.298580][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.605516][ T3519] loop4: detected capacity change from 0 to 1024
[   36.617029][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.718719][ T3519] EXT4-fs: inline encryption not supported
[   36.737859][ T3519] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   36.826780][ T3519] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   36.934732][ T3508] Set syz1 is full, maxelem 65536 reached
[   37.042540][ T3508] syz.2.11 (3508) used greatest stack depth: 10800 bytes left
[   37.111938][ T3514] Set syz1 is full, maxelem 65536 reached
[   37.268980][ T3549] Zero length message leads to an empty skb
[   37.326864][ T3554] loop3: detected capacity change from 0 to 512
[   37.337166][ T3554] EXT4-fs: Ignoring removed mblk_io_submit option
[   37.349813][ T3554] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   37.390979][ T3554] EXT4-fs (loop3): 1 truncate cleaned up
[   37.397429][ T3554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.419694][ T3547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.25'.
[   37.430803][ T3551] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27'.
[   37.458962][ T3547] bridge_slave_1: left allmulticast mode
[   37.464669][ T3547] bridge_slave_1: left promiscuous mode
[   37.470316][ T3557] loop1: detected capacity change from 0 to 512
[   37.470403][ T3547] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.480309][ T3557] EXT4-fs: Ignoring removed mblk_io_submit option
[   37.490702][ T3547] bridge_slave_0: left allmulticast mode
[   37.496396][ T3547] bridge_slave_0: left promiscuous mode
[   37.496867][ T3557] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   37.502139][ T3547] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.518119][ T3557] EXT4-fs (loop1): 1 truncate cleaned up
[   37.538843][ T3557] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.582757][ T3557] netlink: 4 bytes leftover after parsing attributes in process `syz.1.29'.
[   37.630193][ T3551] bridge_slave_1: left allmulticast mode
[   37.635875][ T3551] bridge_slave_1: left promiscuous mode
[   37.641642][ T3551] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.649338][ T3551] bridge_slave_0: left allmulticast mode
[   37.655027][ T3551] bridge_slave_0: left promiscuous mode
[   37.660806][ T3551] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.862918][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.180924][ T3571] netlink: 68 bytes leftover after parsing attributes in process `syz.1.33'.
[   38.255569][ T3575] loop1: detected capacity change from 0 to 512
[   38.262413][ T3575] EXT4-fs: Ignoring removed mblk_io_submit option
[   38.270509][ T3575] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   38.290362][ T3575] EXT4-fs (loop1): 1 truncate cleaned up
[   38.296476][ T3575] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.319237][ T3575] netlink: 4 bytes leftover after parsing attributes in process `syz.1.35'.
[   38.361477][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.391187][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.453320][ T3586] FAULT_INJECTION: forcing a failure.
[   38.453320][ T3586] name failslab, interval 1, probability 0, space 0, times 1
[   38.466053][ T3586] CPU: 0 UID: 0 PID: 3586 Comm: syz.2.40 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   38.466081][ T3586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   38.466097][ T3586] Call Trace:
[   38.466103][ T3586]  <TASK>
[   38.466109][ T3586]  __dump_stack+0x1d/0x30
[   38.466189][ T3586]  dump_stack_lvl+0xe8/0x140
[   38.466207][ T3586]  dump_stack+0x15/0x1b
[   38.466221][ T3586]  should_fail_ex+0x265/0x280
[   38.466246][ T3586]  should_failslab+0x8c/0xb0
[   38.466279][ T3586]  __kvmalloc_node_noprof+0x123/0x4e0
[   38.466306][ T3586]  ? alloc_netdev_mqs+0xa1/0xab0
[   38.466343][ T3586]  ? vsnprintf+0x829/0x890
[   38.466357][ T3586]  alloc_netdev_mqs+0xa1/0xab0
[   38.466443][ T3586]  ? __pfx_veth_setup+0x10/0x10
[   38.466455][ T3586]  rtnl_create_link+0x239/0x710
[   38.466472][ T3586]  rtnl_newlink_create+0x14c/0x620
[   38.466522][ T3586]  ? security_capable+0x83/0x90
[   38.466537][ T3586]  ? netlink_ns_capable+0x86/0xa0
[   38.466652][ T3586]  rtnl_newlink+0xf29/0x12d0
[   38.466675][ T3586]  ? __pfx_rtnl_newlink+0x10/0x10
[   38.466687][ T3586]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   38.466700][ T3586]  netlink_rcv_skb+0x120/0x220
[   38.466790][ T3586]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   38.466805][ T3586]  rtnetlink_rcv+0x1c/0x30
[   38.466889][ T3586]  netlink_unicast+0x5a5/0x680
[   38.466905][ T3586]  netlink_sendmsg+0x58b/0x6b0
[   38.466916][ T3586]  ? __pfx_netlink_sendmsg+0x10/0x10
[   38.466927][ T3586]  __sock_sendmsg+0x145/0x180
[   38.467013][ T3586]  ____sys_sendmsg+0x31e/0x4e0
[   38.467053][ T3586]  ___sys_sendmsg+0x17b/0x1d0
[   38.467113][ T3586]  __x64_sys_sendmsg+0xd4/0x160
[   38.467132][ T3586]  x64_sys_call+0x2999/0x2fb0
[   38.467143][ T3586]  do_syscall_64+0xd2/0x200
[   38.467155][ T3586]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   38.467169][ T3586]  ? clear_bhb_loop+0x40/0x90
[   38.467182][ T3586]  ? clear_bhb_loop+0x40/0x90
[   38.467243][ T3586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.467254][ T3586] RIP: 0033:0x7fb3ac19e929
[   38.467267][ T3586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.467277][ T3586] RSP: 002b:00007fb3aa807038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   38.467290][ T3586] RAX: ffffffffffffffda RBX: 00007fb3ac3c5fa0 RCX: 00007fb3ac19e929
[   38.467360][ T3586] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000007
[   38.467371][ T3586] RBP: 00007fb3aa807090 R08: 0000000000000000 R09: 0000000000000000
[   38.467382][ T3586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.467393][ T3586] R13: 0000000000000000 R14: 00007fb3ac3c5fa0 R15: 00007ffeb5db1bb8
[   38.467411][ T3586]  </TASK>
[   38.737583][ T3586] syz.2.40 (3586) used greatest stack depth: 10648 bytes left
[   38.750988][ T3588] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   38.765551][ T3588] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   38.783564][ T3592] FAULT_INJECTION: forcing a failure.
[   38.783564][ T3592] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   38.796700][ T3592] CPU: 0 UID: 0 PID: 3592 Comm: syz.2.42 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   38.796779][ T3592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   38.796786][ T3592] Call Trace:
[   38.796790][ T3592]  <TASK>
[   38.796795][ T3592]  __dump_stack+0x1d/0x30
[   38.796808][ T3592]  dump_stack_lvl+0xe8/0x140
[   38.796819][ T3592]  dump_stack+0x15/0x1b
[   38.796855][ T3592]  should_fail_ex+0x265/0x280
[   38.796946][ T3592]  should_fail+0xb/0x20
[   38.796960][ T3592]  should_fail_usercopy+0x1a/0x20
[   38.797050][ T3592]  _copy_from_iter+0xcf/0xe40
[   38.797067][ T3592]  ? __build_skb_around+0x1a0/0x200
[   38.797084][ T3592]  ? __alloc_skb+0x223/0x320
[   38.797100][ T3592]  netlink_sendmsg+0x471/0x6b0
[   38.797174][ T3592]  ? __pfx_netlink_sendmsg+0x10/0x10
[   38.797244][ T3592]  __sock_sendmsg+0x145/0x180
[   38.797268][ T3592]  ____sys_sendmsg+0x31e/0x4e0
[   38.797286][ T3592]  ___sys_sendmsg+0x17b/0x1d0
[   38.797310][ T3592]  __x64_sys_sendmsg+0xd4/0x160
[   38.797370][ T3592]  x64_sys_call+0x2999/0x2fb0
[   38.797382][ T3592]  do_syscall_64+0xd2/0x200
[   38.797445][ T3592]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   38.797459][ T3592]  ? clear_bhb_loop+0x40/0x90
[   38.797479][ T3592]  ? clear_bhb_loop+0x40/0x90
[   38.797554][ T3592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.797566][ T3592] RIP: 0033:0x7fb3ac19e929
[   38.797576][ T3592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.797586][ T3592] RSP: 002b:00007fb3aa807038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   38.797597][ T3592] RAX: ffffffffffffffda RBX: 00007fb3ac3c5fa0 RCX: 00007fb3ac19e929
[   38.797603][ T3592] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000017
[   38.797667][ T3592] RBP: 00007fb3aa807090 R08: 0000000000000000 R09: 0000000000000000
[   38.797673][ T3592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.797679][ T3592] R13: 0000000000000000 R14: 00007fb3ac3c5fa0 R15: 00007ffeb5db1bb8
[   38.797690][ T3592]  </TASK>
[   39.031968][ T3599] netlink: 'syz.2.44': attribute type 3 has an invalid length.
[   39.039669][ T3599] netlink: 'syz.2.44': attribute type 4 has an invalid length.
[   39.047197][ T3599] netlink: 9067 bytes leftover after parsing attributes in process `syz.2.44'.
[   39.102011][ T3603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.47'.
[   39.631454][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.050076][ T3627] FAULT_INJECTION: forcing a failure.
[   40.050076][ T3627] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   40.063314][ T3627] CPU: 1 UID: 0 PID: 3627 Comm: syz.1.55 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   40.063338][ T3627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   40.063348][ T3627] Call Trace:
[   40.063354][ T3627]  <TASK>
[   40.063360][ T3627]  __dump_stack+0x1d/0x30
[   40.063377][ T3627]  dump_stack_lvl+0xe8/0x140
[   40.063437][ T3627]  dump_stack+0x15/0x1b
[   40.063450][ T3627]  should_fail_ex+0x265/0x280
[   40.063533][ T3627]  should_fail+0xb/0x20
[   40.063554][ T3627]  should_fail_usercopy+0x1a/0x20
[   40.063579][ T3627]  _copy_to_user+0x20/0xa0
[   40.063668][ T3627]  copy_siginfo_to_user+0x22/0xb0
[   40.063760][ T3627]  x64_setup_rt_frame+0x2b5/0x580
[   40.063779][ T3627]  arch_do_signal_or_restart+0x27c/0x480
[   40.063798][ T3627]  exit_to_user_mode_loop+0x7a/0x100
[   40.063819][ T3627]  do_syscall_64+0x1d6/0x200
[   40.063833][ T3627]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   40.063921][ T3627]  ? clear_bhb_loop+0x40/0x90
[   40.063939][ T3627]  ? clear_bhb_loop+0x40/0x90
[   40.063962][ T3627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.064012][ T3627] RIP: 0033:0x7f276f3fe927
[   40.064025][ T3627] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[   40.064039][ T3627] RSP: 002b:00007f276da67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   40.064055][ T3627] RAX: 0000000000000010 RBX: 00007f276f625fa0 RCX: 00007f276f3fe929
[   40.064128][ T3627] RDX: 0000200000000400 RSI: 00000000c0502100 RDI: 0000000000000006
[   40.064137][ T3627] RBP: 00007f276da67090 R08: 0000000000000000 R09: 0000000000000000
[   40.064147][ T3627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.064157][ T3627] R13: 0000000000000000 R14: 00007f276f625fa0 R15: 00007fffab6669a8
[   40.064173][ T3627]  </TASK>
[   40.069772][ T3633] loop4: detected capacity change from 0 to 1024
[   40.195824][    C1] hrtimer: interrupt took 38111 ns
[   40.266798][ T3633] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   40.316276][ T3639] pim6reg1: entered promiscuous mode
[   40.321677][ T3639] pim6reg1: entered allmulticast mode
[   40.327225][   T29] kauditd_printk_skb: 294 callbacks suppressed
[   40.327236][   T29] audit: type=1400 audit(1752331561.237:385): avc:  denied  { ioctl } for  pid=3634 comm="syz.2.59" path="socket:[4392]" dev="sockfs" ino=4392 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   40.392942][ T3639] infiniband syz!: set active
[   40.397672][ T3639] infiniband syz!: added team_slave_0
[   40.434583][   T29] audit: type=1400 audit(1752331561.247:386): avc:  denied  { create } for  pid=3638 comm="syz.4.60" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   40.454663][   T29] audit: type=1400 audit(1752331561.247:387): avc:  denied  { write } for  pid=3638 comm="syz.4.60" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   40.474553][   T29] audit: type=1400 audit(1752331561.317:388): avc:  denied  { ioctl } for  pid=3638 comm="syz.4.60" path="socket:[4406]" dev="sockfs" ino=4406 ioctlcmd=0x8912 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[   40.499669][   T29] audit: type=1400 audit(1752331561.327:389): avc:  denied  { read } for  pid=3641 comm="syz.1.61" dev="nsfs" ino=4026532395 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   40.520922][   T29] audit: type=1400 audit(1752331561.327:390): avc:  denied  { open } for  pid=3641 comm="syz.1.61" path="net:[4026532395]" dev="nsfs" ino=4026532395 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   40.530576][ T3639] RDS/IB: syz!: added
[   40.550871][ T3639] smc: adding ib device syz! with port count 1
[   40.559756][ T3639] smc:    ib device syz! port 1 has pnetid 
[   40.603529][   T29] audit: type=1326 audit(1752331561.367:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3641 comm="syz.1.61" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f276f3fe929 code=0x7ffc0000
[   40.626923][   T29] audit: type=1326 audit(1752331561.367:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3641 comm="syz.1.61" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f276f3fe929 code=0x7ffc0000
[   40.650930][   T29] audit: type=1326 audit(1752331561.367:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3641 comm="syz.1.61" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f276f3fe929 code=0x7ffc0000
[   40.674282][   T29] audit: type=1326 audit(1752331561.367:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3641 comm="syz.1.61" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f276f4007bc code=0x7ffc0000
[   40.736349][ T3661] loop2: detected capacity change from 0 to 764
[   40.759423][ T3656] loop3: detected capacity change from 0 to 1024
[   40.789008][ T3639] syz.4.60 (3639) used greatest stack depth: 10616 bytes left
[   40.804656][ T3656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.022168][ T3679] loop2: detected capacity change from 0 to 512
[   41.042688][ T3679] EXT4-fs: Ignoring removed mblk_io_submit option
[   41.051773][ T3679] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   41.063313][ T3679] EXT4-fs (loop2): 1 truncate cleaned up
[   41.069461][ T3679] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.089829][ T3679] __nla_validate_parse: 2 callbacks suppressed
[   41.089845][ T3679] netlink: 4 bytes leftover after parsing attributes in process `syz.2.72'.
[   41.145432][ T3692] netlink: 56 bytes leftover after parsing attributes in process `syz.0.78'.
[   41.163075][ T3692] netlink: 96 bytes leftover after parsing attributes in process `syz.0.78'.
[   41.182646][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.234106][ T3698] loop4: detected capacity change from 0 to 128
[   41.247925][ T3701] pim6reg1: entered promiscuous mode
[   41.253360][ T3701] pim6reg1: entered allmulticast mode
[   41.299020][ T3705] syz.4.81: attempt to access beyond end of device
[   41.299020][ T3705] loop4: rw=2049, sector=153, nr_sectors = 8 limit=128
[   41.312594][ T3705] syz.4.81: attempt to access beyond end of device
[   41.312594][ T3705] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128
[   41.326099][ T3705] syz.4.81: attempt to access beyond end of device
[   41.326099][ T3705] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128
[   41.339619][ T3705] syz.4.81: attempt to access beyond end of device
[   41.339619][ T3705] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128
[   41.353914][ T3705] syz.4.81: attempt to access beyond end of device
[   41.353914][ T3705] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128
[   41.380438][ T3705] syz.4.81: attempt to access beyond end of device
[   41.380438][ T3705] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128
[   41.394133][ T3705] syz.4.81: attempt to access beyond end of device
[   41.394133][ T3705] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128
[   41.408172][ T3705] syz.4.81: attempt to access beyond end of device
[   41.408172][ T3705] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128
[   41.421917][ T3705] syz.4.81: attempt to access beyond end of device
[   41.421917][ T3705] loop4: rw=2049, sector=281, nr_sectors = 8 limit=128
[   41.444518][ T3705] syz.4.81: attempt to access beyond end of device
[   41.444518][ T3705] loop4: rw=2049, sector=297, nr_sectors = 8 limit=128
[   41.470903][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.602483][ T3721] FAULT_INJECTION: forcing a failure.
[   41.602483][ T3721] name failslab, interval 1, probability 0, space 0, times 0
[   41.615152][ T3721] CPU: 0 UID: 0 PID: 3721 Comm: syz.4.89 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   41.615172][ T3721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.615237][ T3721] Call Trace:
[   41.615241][ T3721]  <TASK>
[   41.615245][ T3721]  __dump_stack+0x1d/0x30
[   41.615258][ T3721]  dump_stack_lvl+0xe8/0x140
[   41.615269][ T3721]  dump_stack+0x15/0x1b
[   41.615334][ T3721]  should_fail_ex+0x265/0x280
[   41.615351][ T3721]  should_failslab+0x8c/0xb0
[   41.615364][ T3721]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   41.615380][ T3721]  ? sidtab_sid2str_get+0xa0/0x130
[   41.615446][ T3721]  ? skb_put+0xa9/0xf0
[   41.615462][ T3721]  kmemdup_noprof+0x2b/0x70
[   41.615474][ T3721]  sidtab_sid2str_get+0xa0/0x130
[   41.615554][ T3721]  security_sid_to_context_core+0x1eb/0x2e0
[   41.615567][ T3721]  security_sid_to_context+0x27/0x40
[   41.615613][ T3721]  avc_audit_post_callback+0x9d/0x520
[   41.615627][ T3721]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   41.615690][ T3721]  common_lsm_audit+0x1b8/0x230
[   41.615700][ T3721]  ? __pfx_avc_audit_post_callback+0x10/0x10
[   41.615793][ T3721]  slow_avc_audit+0x104/0x140
[   41.615808][ T3721]  avc_has_perm+0x128/0x150
[   41.615882][ T3721]  selinux_socket_sendmsg+0x175/0x1b0
[   41.615900][ T3721]  security_socket_sendmsg+0x48/0x80
[   41.615935][ T3721]  __sock_sendmsg+0x30/0x180
[   41.615948][ T3721]  ____sys_sendmsg+0x31e/0x4e0
[   41.616004][ T3721]  ___sys_sendmsg+0x17b/0x1d0
[   41.616046][ T3721]  __x64_sys_sendmsg+0xd4/0x160
[   41.616064][ T3721]  x64_sys_call+0x2999/0x2fb0
[   41.616076][ T3721]  do_syscall_64+0xd2/0x200
[   41.616136][ T3721]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.616261][ T3721]  ? clear_bhb_loop+0x40/0x90
[   41.616273][ T3721]  ? clear_bhb_loop+0x40/0x90
[   41.616284][ T3721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.616308][ T3721] RIP: 0033:0x7f2eb30ae929
[   41.616317][ T3721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.616369][ T3721] RSP: 002b:00007f2eb1717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.616380][ T3721] RAX: ffffffffffffffda RBX: 00007f2eb32d5fa0 RCX: 00007f2eb30ae929
[   41.616387][ T3721] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   41.616450][ T3721] RBP: 00007f2eb1717090 R08: 0000000000000000 R09: 0000000000000000
[   41.616456][ T3721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.616463][ T3721] R13: 0000000000000000 R14: 00007f2eb32d5fa0 R15: 00007ffeca4f7e48
[   41.616472][ T3721]  </TASK>
[   41.908168][ T3731] xt_hashlimit: size too large, truncated to 1048576
[   41.922388][ T3725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.91'.
[   41.967229][ T3735] FAULT_INJECTION: forcing a failure.
[   41.967229][ T3735] name failslab, interval 1, probability 0, space 0, times 0
[   41.979935][ T3735] CPU: 1 UID: 0 PID: 3735 Comm: syz.1.93 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   41.979959][ T3735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   41.979971][ T3735] Call Trace:
[   41.979977][ T3735]  <TASK>
[   41.979985][ T3735]  __dump_stack+0x1d/0x30
[   41.980006][ T3735]  dump_stack_lvl+0xe8/0x140
[   41.980044][ T3735]  dump_stack+0x15/0x1b
[   41.980061][ T3735]  should_fail_ex+0x265/0x280
[   41.980095][ T3735]  should_failslab+0x8c/0xb0
[   41.980114][ T3735]  __kvmalloc_node_noprof+0x123/0x4e0
[   41.980139][ T3735]  ? alloc_netdev_mqs+0xa1/0xab0
[   41.980202][ T3735]  ? vsnprintf+0x829/0x890
[   41.980264][ T3735]  alloc_netdev_mqs+0xa1/0xab0
[   41.980289][ T3735]  ? __pfx_ip6erspan_tap_setup+0x10/0x10
[   41.980313][ T3735]  rtnl_create_link+0x239/0x710
[   41.980433][ T3735]  rtnl_newlink_create+0x14c/0x620
[   41.980480][ T3735]  ? __list_del_entry_valid_or_report+0x65/0x130
[   41.980518][ T3735]  rtnl_newlink+0xf29/0x12d0
[   41.980542][ T3735]  ? perf_swevent_event+0x1e8/0x450
[   41.980562][ T3735]  ? __memcg_slab_free_hook+0x135/0x230
[   41.980666][ T3735]  ? __kfree_skb+0x109/0x150
[   41.980696][ T3735]  ? __rcu_read_unlock+0x4f/0x70
[   41.980719][ T3735]  ? avc_has_perm_noaudit+0x1b1/0x200
[   41.980807][ T3735]  ? selinux_capable+0x1f9/0x270
[   41.980873][ T3735]  ? security_capable+0x83/0x90
[   41.980953][ T3735]  ? ns_capable+0x7d/0xb0
[   41.981004][ T3735]  ? __pfx_rtnl_newlink+0x10/0x10
[   41.981024][ T3735]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   41.981050][ T3735]  netlink_rcv_skb+0x120/0x220
[   41.981116][ T3735]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   41.981142][ T3735]  rtnetlink_rcv+0x1c/0x30
[   41.981160][ T3735]  netlink_unicast+0x5a5/0x680
[   41.981250][ T3735]  netlink_sendmsg+0x58b/0x6b0
[   41.981266][ T3735]  ? __pfx_netlink_sendmsg+0x10/0x10
[   41.981282][ T3735]  __sock_sendmsg+0x145/0x180
[   41.981303][ T3735]  ____sys_sendmsg+0x31e/0x4e0
[   41.981387][ T3735]  ___sys_sendmsg+0x17b/0x1d0
[   41.981424][ T3735]  __x64_sys_sendmsg+0xd4/0x160
[   41.981462][ T3735]  x64_sys_call+0x2999/0x2fb0
[   41.981506][ T3735]  do_syscall_64+0xd2/0x200
[   41.981524][ T3735]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   41.981546][ T3735]  ? clear_bhb_loop+0x40/0x90
[   41.981564][ T3735]  ? clear_bhb_loop+0x40/0x90
[   41.981584][ T3735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.981684][ T3735] RIP: 0033:0x7f276f3fe929
[   41.981753][ T3735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.981776][ T3735] RSP: 002b:00007f276da67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.981794][ T3735] RAX: ffffffffffffffda RBX: 00007f276f625fa0 RCX: 00007f276f3fe929
[   41.981805][ T3735] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000004
[   41.981892][ T3735] RBP: 00007f276da67090 R08: 0000000000000000 R09: 0000000000000000
[   41.981910][ T3735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.981923][ T3735] R13: 0000000000000000 R14: 00007f276f625fa0 R15: 00007fffab6669a8
[   41.981939][ T3735]  </TASK>
[   42.286391][ T3737] smc: net device bond0 applied user defined pnetid SYZ2
[   42.346752][ T3742] netlink: 68 bytes leftover after parsing attributes in process `syz.0.95'.
[   42.409388][ T3746] netlink: 8 bytes leftover after parsing attributes in process `syz.1.98'.
[   42.424547][ T3751] ip6tnl0: entered promiscuous mode
[   42.437357][ T3750] ip6tnl0: left promiscuous mode
[   42.442268][ T3752] loop3: detected capacity change from 0 to 2048
[   42.457630][ T3754] FAULT_INJECTION: forcing a failure.
[   42.457630][ T3754] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   42.470810][ T3754] CPU: 0 UID: 0 PID: 3754 Comm: syz.0.102 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   42.470835][ T3754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   42.470899][ T3754] Call Trace:
[   42.470905][ T3754]  <TASK>
[   42.470913][ T3754]  __dump_stack+0x1d/0x30
[   42.470931][ T3754]  dump_stack_lvl+0xe8/0x140
[   42.471030][ T3754]  dump_stack+0x15/0x1b
[   42.471047][ T3754]  should_fail_ex+0x265/0x280
[   42.471135][ T3754]  should_fail+0xb/0x20
[   42.471202][ T3754]  should_fail_usercopy+0x1a/0x20
[   42.471233][ T3754]  _copy_from_user+0x1c/0xb0
[   42.471253][ T3754]  packet_setsockopt+0x76e/0xfd0
[   42.471319][ T3754]  ? __pfx_packet_setsockopt+0x10/0x10
[   42.471338][ T3754]  __sys_setsockopt+0x184/0x200
[   42.471423][ T3754]  __x64_sys_setsockopt+0x64/0x80
[   42.471457][ T3754]  x64_sys_call+0x2bd5/0x2fb0
[   42.471515][ T3754]  do_syscall_64+0xd2/0x200
[   42.471530][ T3754]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   42.471553][ T3754]  ? clear_bhb_loop+0x40/0x90
[   42.471571][ T3754]  ? clear_bhb_loop+0x40/0x90
[   42.471641][ T3754]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   42.471662][ T3754] RIP: 0033:0x7f992fb7e929
[   42.471677][ T3754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   42.471693][ T3754] RSP: 002b:00007f992e1e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   42.471779][ T3754] RAX: ffffffffffffffda RBX: 00007f992fda5fa0 RCX: 00007f992fb7e929
[   42.471855][ T3754] RDX: 0000000000000001 RSI: 0000000000000107 RDI: 0000000000000003
[   42.471868][ T3754] RBP: 00007f992e1e7090 R08: 0000000000000010 R09: 0000000000000000
[   42.471878][ T3754] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[   42.471889][ T3754] R13: 0000000000000000 R14: 00007f992fda5fa0 R15: 00007ffc4f8ee388
[   42.471920][ T3754]  </TASK>
[   42.670047][ T3752] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.682199][ T3761] loop1: detected capacity change from 0 to 1024
[   42.717445][ T3761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.735546][ T3765] tipc: Started in network mode
[   42.740552][ T3765] tipc: Node identity 8, cluster identity 5
[   42.746594][ T3765] tipc: Node number set to 8
[   42.807174][ T3752] syz.3.101 (3752) used greatest stack depth: 10456 bytes left
[   42.828523][ T3768] netlink: 4 bytes leftover after parsing attributes in process `syz.0.106'.
[   42.868680][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.913724][ T3776] wireguard0: entered promiscuous mode
[   42.919304][ T3776] wireguard0: entered allmulticast mode
[   42.927715][ T3783] loop3: detected capacity change from 0 to 1024
[   42.942245][ T3782] netlink: 68 bytes leftover after parsing attributes in process `syz.0.113'.
[   42.949903][ T3783] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   42.972366][ T3785] loop2: detected capacity change from 0 to 512
[   42.998877][ T3785] =======================================================
[   42.998877][ T3785] WARNING: The mand mount option has been deprecated and
[   42.998877][ T3785]          and is ignored by this kernel. Remove the mand
[   42.998877][ T3785]          option from the mount to silence this warning.
[   42.998877][ T3785] =======================================================
[   43.040411][ T3785] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.067196][ T3785] ext4 filesystem being mounted at /28/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   43.092705][ T3799] tipc: Started in network mode
[   43.097596][ T3799] tipc: Node identity 8, cluster identity 5
[   43.103641][ T3799] tipc: Node number set to 8
[   43.113271][ T3785] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.114: corrupted inode contents
[   43.129531][ T3785] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.114: mark_inode_dirty error
[   43.141675][ T3785] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.114: corrupted inode contents
[   43.156382][ T3785] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.114: corrupted inode contents
[   43.169674][ T3785] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.114: mark_inode_dirty error
[   43.181619][ T3785] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.114: corrupted inode contents
[   43.195905][ T3785] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.114: mark_inode_dirty error
[   43.207458][ T3785] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.114: corrupted inode contents
[   43.239141][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.258881][ T3785] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.114: mark_inode_dirty error
[   43.310463][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.377738][ T3808] loop1: detected capacity change from 0 to 1024
[   43.389755][ T3808] EXT4-fs: inline encryption not supported
[   43.396089][ T3808] EXT4-fs: Ignoring removed bh option
[   43.419453][ T3808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.433288][ T3804] loop4: detected capacity change from 0 to 1024
[   43.440306][ T3804] EXT4-fs: Ignoring removed bh option
[   43.456884][ T3804] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   43.468000][ T3804] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   43.479117][ T3804] EXT4-fs (loop4): orphan cleanup on readonly fs
[   43.485557][ T3804] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #3: comm syz.4.120: iget: bad i_size value: 1407392063428608
[   43.499357][ T3804] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.120: Bad quota inode: 3, type: 0
[   43.510310][ T3804] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   43.524959][ T3804] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   43.531983][ T3804] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   43.582862][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.610322][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.656978][ T3822] loop1: detected capacity change from 0 to 512
[   43.663894][ T3822] EXT4-fs: Ignoring removed mblk_io_submit option
[   43.676098][ T3822] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   43.701806][ T3822] EXT4-fs (loop1): 1 truncate cleaned up
[   43.707902][ T3822] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.728030][ T3822] netlink: 4 bytes leftover after parsing attributes in process `syz.1.125'.
[   43.803187][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.887179][ T3828] xt_SECMARK: invalid mode: 2
[   44.134111][ T3836] FAULT_INJECTION: forcing a failure.
[   44.134111][ T3836] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   44.147293][ T3836] CPU: 0 UID: 0 PID: 3836 Comm: syz.3.129 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   44.147388][ T3836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   44.147396][ T3836] Call Trace:
[   44.147400][ T3836]  <TASK>
[   44.147405][ T3836]  __dump_stack+0x1d/0x30
[   44.147418][ T3836]  dump_stack_lvl+0xe8/0x140
[   44.147428][ T3836]  dump_stack+0x15/0x1b
[   44.147437][ T3836]  should_fail_ex+0x265/0x280
[   44.147523][ T3836]  should_fail+0xb/0x20
[   44.147537][ T3836]  should_fail_usercopy+0x1a/0x20
[   44.147598][ T3836]  _copy_to_user+0x20/0xa0
[   44.147608][ T3836]  bpf_test_finish+0x106/0x500
[   44.147628][ T3836]  bpf_prog_test_run_xdp+0x578/0x910
[   44.147705][ T3836]  ? trace_reschedule_exit+0xd/0xc0
[   44.147723][ T3836]  ? __rcu_read_unlock+0x4f/0x70
[   44.147792][ T3836]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   44.147809][ T3836]  bpf_prog_test_run+0x22a/0x390
[   44.147872][ T3836]  __sys_bpf+0x3dc/0x790
[   44.147891][ T3836]  __x64_sys_bpf+0x41/0x50
[   44.147941][ T3836]  x64_sys_call+0x2478/0x2fb0
[   44.147978][ T3836]  do_syscall_64+0xd2/0x200
[   44.148068][ T3836]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   44.148136][ T3836]  ? clear_bhb_loop+0x40/0x90
[   44.148147][ T3836]  ? clear_bhb_loop+0x40/0x90
[   44.148159][ T3836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.148198][ T3836] RIP: 0033:0x7fb3d6ffe929
[   44.148209][ T3836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.148219][ T3836] RSP: 002b:00007fb3d5667038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   44.148283][ T3836] RAX: ffffffffffffffda RBX: 00007fb3d7225fa0 RCX: 00007fb3d6ffe929
[   44.148295][ T3836] RDX: 0000000000000022 RSI: 0000200000001bc0 RDI: 000000000000000a
[   44.148307][ T3836] RBP: 00007fb3d5667090 R08: 0000000000000000 R09: 0000000000000000
[   44.148318][ T3836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.148325][ T3836] R13: 0000000000000000 R14: 00007fb3d7225fa0 R15: 00007fff23fea8a8
[   44.148335][ T3836]  </TASK>
[   44.390063][ T3838] tipc: Started in network mode
[   44.394983][ T3838] tipc: Node identity 8, cluster identity 5
[   44.401070][ T3838] tipc: Node number set to 8
[   44.465436][ T3851] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   44.516564][ T3853] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   44.530301][ T3855] netlink: 'syz.3.138': attribute type 1 has an invalid length.
[   44.538107][ T3855] netlink: 224 bytes leftover after parsing attributes in process `syz.3.138'.
[   44.617019][ T3862] loop2: detected capacity change from 0 to 512
[   44.627072][ T3862] EXT4-fs: Ignoring removed mblk_io_submit option
[   44.634899][ T3862] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   44.693542][ T3862] EXT4-fs (loop2): 1 truncate cleaned up
[   44.699923][ T3862] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.783656][ T3876] ref_ctr increment failed for inode: 0x88 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff8881043a0b00
[   44.802500][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.819158][ T3875] uprobe: syz.3.144:3875 failed to unregister, leaking uprobe
[   44.936558][ T3889] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   44.952685][ T3893] tmpfs: Bad value for 'mpol'
[   44.985350][ T3899] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.072444][ T3899] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.151670][ T3899] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   45.973782][ T3899] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   46.030731][   T29] kauditd_printk_skb: 522 callbacks suppressed
[   46.030746][   T29] audit: type=1326 audit(1752331566.947:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.060263][   T29] audit: type=1326 audit(1752331566.947:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.083485][   T29] audit: type=1326 audit(1752331566.947:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.120566][ T3899] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   46.129814][ T3917] loop1: detected capacity change from 0 to 512
[   46.138683][ T3917] EXT4-fs: Ignoring removed mblk_io_submit option
[   46.158505][ T3899] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   46.168767][ T3917] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   46.209981][ T3899] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   46.212455][ T3917] EXT4-fs (loop1): 1 truncate cleaned up
[   46.226415][   T29] audit: type=1326 audit(1752331567.017:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.236928][ T3899] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   46.249739][   T29] audit: type=1326 audit(1752331567.017:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.281083][   T29] audit: type=1326 audit(1752331567.017:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.289988][ T3917] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.304303][   T29] audit: type=1326 audit(1752331567.057:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.339932][   T29] audit: type=1326 audit(1752331567.057:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.363611][   T29] audit: type=1326 audit(1752331567.057:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.386890][   T29] audit: type=1326 audit(1752331567.057:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3908 comm="syz.0.157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x7ffc0000
[   46.387025][ T3920] loop3: detected capacity change from 0 to 1024
[   46.438722][ T3920] EXT4-fs: Ignoring removed bh option
[   46.446350][ T3917] __nla_validate_parse: 3 callbacks suppressed
[   46.446362][ T3917] netlink: 4 bytes leftover after parsing attributes in process `syz.1.158'.
[   46.449147][ T3920] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   46.502472][ T3920] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   46.512320][ T3920] EXT4-fs (loop3): orphan cleanup on readonly fs
[   46.519107][ T3920] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #3: comm syz.3.159: iget: bad i_size value: 1407392063428608
[   46.534442][ T3920] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.159: Bad quota inode: 3, type: 0
[   46.545601][ T3920] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   46.560382][ T3920] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   46.568026][ T3920] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.625273][ T3941] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   46.635217][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.724549][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.781194][ T3949] netlink: 8 bytes leftover after parsing attributes in process `syz.3.168'.
[   46.854087][ T3952] loop3: detected capacity change from 0 to 1024
[   46.869298][ T3952] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.594590][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.663216][ T3974] loop2: detected capacity change from 0 to 8192
[   47.757379][ T3981] netlink: 4 bytes leftover after parsing attributes in process `syz.3.177'.
[   48.067457][ T3985] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[   48.076126][ T3985] FAT-fs (loop2): Filesystem has been set read-only
[   48.082844][ T3985] FAT-fs (loop2): error, corrupted directory (invalid entries)
[   48.350307][ T4008] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   48.549188][ T4016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.187'.
[   48.564924][ T4018] netlink: 68 bytes leftover after parsing attributes in process `syz.1.189'.
[   48.630915][ T4020] loop1: detected capacity change from 0 to 1024
[   48.640662][ T4020] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   48.654203][ T4021] loop2: detected capacity change from 0 to 1024
[   48.689670][ T4021] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.778195][ T4027] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   48.856741][ T4014] Set syz1 is full, maxelem 65536 reached
[   48.899469][ T4033] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   48.965817][ T4038] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   48.990332][ T4033] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.005708][ T4040] loop1: detected capacity change from 0 to 1024
[   49.014343][ T4040] EXT4-fs: Ignoring removed nobh option
[   49.019998][ T4040] EXT4-fs: inline encryption not supported
[   49.048875][ T4040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.061784][ T4029] loop3: detected capacity change from 0 to 1024
[   49.065008][ T4040] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.197: Allocating blocks 385-513 which overlap fs metadata
[   49.082320][ T4029] EXT4-fs: Ignoring removed bh option
[   49.089907][ T4029] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   49.102285][ T4029] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   49.110817][ T4029] EXT4-fs (loop3): orphan cleanup on readonly fs
[   49.113244][ T4040] EXT4-fs (loop1): pa ffff888106a64000: logic 16, phys. 129, len 24
[   49.117258][ T4029] EXT4-fs error (device loop3): ext4_quota_enable:7124: inode #3: comm syz.3.193: iget: bad i_size value: 1407392063428608
[   49.125178][ T4040] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[   49.158587][ T4029] EXT4-fs error (device loop3): ext4_quota_enable:7127: comm syz.3.193: Bad quota inode: 3, type: 0
[   49.168729][ T4040] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[   49.181549][ T4040] EXT4-fs (loop1): This should not happen!! Data will be lost
[   49.181549][ T4040] 
[   49.191259][ T4040] EXT4-fs (loop1): Total free blocks count 0
[   49.197275][ T4040] EXT4-fs (loop1): Free/Dirty block details
[   49.197737][ T4029] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   49.203238][ T4040] EXT4-fs (loop1): free_blocks=128
[   49.203256][ T4040] EXT4-fs (loop1): dirty_blocks=0
[   49.203267][ T4040] EXT4-fs (loop1): Block reservation details
[   49.203279][ T4040] EXT4-fs (loop1): i_reserved_data_blocks=0
[   49.217943][ T4029] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   49.247731][ T4033] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.258877][ T4029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.267356][ T4040] syz.1.197 (4040) used greatest stack depth: 9576 bytes left
[   49.312879][ T4050] FAULT_INJECTION: forcing a failure.
[   49.312879][ T4050] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   49.326070][ T4050] CPU: 0 UID: 0 PID: 4050 Comm: syz.1.199 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   49.326098][ T4050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   49.326109][ T4050] Call Trace:
[   49.326115][ T4050]  <TASK>
[   49.326122][ T4050]  __dump_stack+0x1d/0x30
[   49.326145][ T4050]  dump_stack_lvl+0xe8/0x140
[   49.326198][ T4050]  dump_stack+0x15/0x1b
[   49.326213][ T4050]  should_fail_ex+0x265/0x280
[   49.326254][ T4050]  should_fail+0xb/0x20
[   49.326278][ T4050]  should_fail_usercopy+0x1a/0x20
[   49.326310][ T4050]  _copy_from_user+0x1c/0xb0
[   49.326375][ T4050]  ___sys_sendmsg+0xc1/0x1d0
[   49.326423][ T4050]  __x64_sys_sendmsg+0xd4/0x160
[   49.326456][ T4050]  x64_sys_call+0x2999/0x2fb0
[   49.326475][ T4050]  do_syscall_64+0xd2/0x200
[   49.326568][ T4050]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   49.326596][ T4050]  ? clear_bhb_loop+0x40/0x90
[   49.326618][ T4050]  ? clear_bhb_loop+0x40/0x90
[   49.326638][ T4050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.326656][ T4050] RIP: 0033:0x7f276f3fe929
[   49.326726][ T4050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.326741][ T4050] RSP: 002b:00007f276da67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   49.326757][ T4050] RAX: ffffffffffffffda RBX: 00007f276f625fa0 RCX: 00007f276f3fe929
[   49.326771][ T4050] RDX: 0000000020000880 RSI: 00002000000001c0 RDI: 0000000000000007
[   49.326784][ T4050] RBP: 00007f276da67090 R08: 0000000000000000 R09: 0000000000000000
[   49.326797][ T4050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   49.326810][ T4050] R13: 0000000000000000 R14: 00007f276f625fa0 R15: 00007fffab6669a8
[   49.326829][ T4050]  </TASK>
[   49.327576][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.513590][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.525467][ T4033] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   49.559410][ T4052] loop3: detected capacity change from 0 to 512
[   49.597398][ T4052] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.613296][ T4052] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   49.626723][ T4052] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.201: corrupted inode contents
[   49.640282][ T4052] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.201: mark_inode_dirty error
[   49.670834][ T4052] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.201: corrupted inode contents
[   49.685428][ T4052] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.201: corrupted inode contents
[   49.698649][ T4052] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.201: mark_inode_dirty error
[   49.716120][ T4052] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.201: corrupted inode contents
[   49.731543][ T4052] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.201: mark_inode_dirty error
[   49.749787][ T4052] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.201: corrupted inode contents
[   49.762731][ T4052] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.201: mark_inode_dirty error
[   49.969913][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.444757][ T4070] Set syz1 is full, maxelem 65536 reached
[   50.536823][ T4088] loop2: detected capacity change from 0 to 128
[   50.555010][ T4090] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   50.582235][ T4094] FAULT_INJECTION: forcing a failure.
[   50.582235][ T4094] name failslab, interval 1, probability 0, space 0, times 0
[   50.594917][ T4094] CPU: 1 UID: 0 PID: 4094 Comm: syz.1.214 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   50.594942][ T4094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   50.594953][ T4094] Call Trace:
[   50.594959][ T4094]  <TASK>
[   50.595011][ T4094]  __dump_stack+0x1d/0x30
[   50.595032][ T4094]  dump_stack_lvl+0xe8/0x140
[   50.595123][ T4094]  dump_stack+0x15/0x1b
[   50.595141][ T4094]  should_fail_ex+0x265/0x280
[   50.595218][ T4094]  should_failslab+0x8c/0xb0
[   50.595291][ T4094]  kmem_cache_alloc_noprof+0x50/0x310
[   50.595357][ T4094]  ? security_inode_alloc+0x37/0x100
[   50.595388][ T4094]  security_inode_alloc+0x37/0x100
[   50.595446][ T4094]  inode_init_always_gfp+0x4b7/0x500
[   50.595481][ T4094]  ? __pfx_pidfs_alloc_inode+0x10/0x10
[   50.595507][ T4094]  alloc_inode+0x58/0x170
[   50.595574][ T4094]  path_from_stashed+0x119/0x4f0
[   50.595604][ T4094]  pidfs_alloc_file+0xa2/0x200
[   50.595629][ T4094]  pidfd_prepare+0xc9/0x130
[   50.595651][ T4094]  __se_sys_pidfd_open+0x133/0x280
[   50.595674][ T4094]  __x64_sys_pidfd_open+0x31/0x40
[   50.595723][ T4094]  x64_sys_call+0x2a5f/0x2fb0
[   50.595741][ T4094]  do_syscall_64+0xd2/0x200
[   50.595756][ T4094]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   50.595832][ T4094]  ? clear_bhb_loop+0x40/0x90
[   50.595934][ T4094]  ? clear_bhb_loop+0x40/0x90
[   50.595956][ T4094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.595974][ T4094] RIP: 0033:0x7f276f3fe929
[   50.595990][ T4094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.596009][ T4094] RSP: 002b:00007f276da67028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b2
[   50.596028][ T4094] RAX: ffffffffffffffda RBX: 00007f276f625fa0 RCX: 00007f276f3fe929
[   50.596097][ T4094] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000074
[   50.596110][ T4094] RBP: 00007f276da67090 R08: 0000000000000000 R09: 0000000000000000
[   50.596123][ T4094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.596134][ T4094] R13: 0000000000000000 R14: 00007f276f625fa0 R15: 00007fffab6669a8
[   50.596150][ T4094]  </TASK>
[   50.658794][ T4088] bond1: entered promiscuous mode
[   50.726276][ T4091] netlink: 'syz.0.211': attribute type 4 has an invalid length.
[   50.727002][ T4088] bond1: entered allmulticast mode
[   50.727455][ T4088] 8021q: adding VLAN 0 to HW filter on device bond1
[   50.732931][ T4091] netlink: 17 bytes leftover after parsing attributes in process `syz.0.211'.
[   50.848164][ T4088] bond1 (unregistering): Released all slaves
[   50.858808][ T4098] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   50.866335][ T4098] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[   50.919394][ T4104] loop2: detected capacity change from 0 to 512
[   50.926491][ T4104] ext4: Unknown parameter 'subj_user'
[   50.932598][ T4102] netlink: 8 bytes leftover after parsing attributes in process `syz.0.216'.
[   50.946505][ T4104] ALSA: seq fatal error: cannot create timer (-19)
[   50.954247][ T4098] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.215'.
[   50.964247][ T4104] netlink: 28 bytes leftover after parsing attributes in process `syz.2.217'.
[   51.007211][ T4100] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.215'.
[   51.020355][ T4107] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   51.040580][   T29] kauditd_printk_skb: 322 callbacks suppressed
[   51.040595][   T29] audit: type=1326 audit(1752331571.957:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f276f3f58e7 code=0x7ffc0000
[   51.070009][   T29] audit: type=1326 audit(1752331571.957:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f276f39ab19 code=0x7ffc0000
[   51.093456][   T29] audit: type=1326 audit(1752331571.957:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f276f3fe929 code=0x7ffc0000
[   51.094710][ T4111] loop3: detected capacity change from 0 to 128
[   51.123301][   T29] audit: type=1326 audit(1752331572.027:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f276f3f58e7 code=0x7ffc0000
[   51.123342][   T29] audit: type=1326 audit(1752331572.027:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f276f39ab19 code=0x7ffc0000
[   51.123363][   T29] audit: type=1326 audit(1752331572.027:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f276f3fe929 code=0x7ffc0000
[   51.123384][   T29] audit: type=1326 audit(1752331572.027:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f276f3f58e7 code=0x7ffc0000
[   51.216533][   T29] audit: type=1326 audit(1752331572.027:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f276f39ab19 code=0x7ffc0000
[   51.239879][   T29] audit: type=1326 audit(1752331572.027:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f276f3fe929 code=0x7ffc0000
[   51.270726][   T29] audit: type=1326 audit(1752331572.167:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4097 comm="syz.1.215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f276f3f58e7 code=0x7ffc0000
[   51.578714][ T4129] __nla_validate_parse: 1 callbacks suppressed
[   51.578728][ T4129] netlink: 4 bytes leftover after parsing attributes in process `syz.3.226'.
[   51.904611][ T4136] loop1: detected capacity change from 0 to 1024
[   51.924967][ T4136] EXT4-fs: Ignoring removed bh option
[   51.944210][ T4136] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   51.957317][ T4157] pim6reg: entered allmulticast mode
[   51.982648][ T4157] netlink: 'wÞ£ÿ': attribute type 4 has an invalid length.
[   51.992906][ T4136] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   52.002057][ T4136] EXT4-fs (loop1): orphan cleanup on readonly fs
[   52.008885][ T4136] EXT4-fs error (device loop1): ext4_quota_enable:7124: inode #3: comm syz.1.228: iget: bad i_size value: 1407392063428608
[   52.022849][ T4136] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.228: Bad quota inode: 3, type: 0
[   52.033821][ T4136] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   52.048507][ T4136] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   52.056421][ T4136] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   52.128126][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.162023][ T4163] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   52.286849][ T4171] loop2: detected capacity change from 0 to 512
[   52.294780][ T4171] ext4: Bad value for 'min_batch_time'
[   52.306179][ T4171] netlink: 'syz.2.236': attribute type 4 has an invalid length.
[   52.436966][ T4183] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[   52.443522][ T4183] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   52.451154][ T4183] vhci_hcd vhci_hcd.0: Device attached
[   52.463632][ T4182] loop2: detected capacity change from 0 to 8192
[   52.464058][ T4184] vhci_hcd: connection closed
[   52.471338][  T313] vhci_hcd: stop threads
[   52.480370][  T313] vhci_hcd: release socket
[   52.484835][  T313] vhci_hcd: disconnect device
[   52.603417][ T4187] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 0)
[   52.611878][ T4187] FAT-fs (loop2): Filesystem has been set read-only
[   52.618568][ T4187] FAT-fs (loop2): error, corrupted directory (invalid entries)
[   52.861041][ T4195] pim6reg1: entered promiscuous mode
[   52.866455][ T4195] pim6reg1: entered allmulticast mode
[   53.020071][ T4204] FAULT_INJECTION: forcing a failure.
[   53.020071][ T4204] name failslab, interval 1, probability 0, space 0, times 0
[   53.032808][ T4204] CPU: 1 UID: 0 PID: 4204 Comm: syz.0.249 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   53.032835][ T4204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   53.032845][ T4204] Call Trace:
[   53.032852][ T4204]  <TASK>
[   53.032858][ T4204]  __dump_stack+0x1d/0x30
[   53.032879][ T4204]  dump_stack_lvl+0xe8/0x140
[   53.032928][ T4204]  dump_stack+0x15/0x1b
[   53.032946][ T4204]  should_fail_ex+0x265/0x280
[   53.032981][ T4204]  should_failslab+0x8c/0xb0
[   53.033004][ T4204]  kmem_cache_alloc_noprof+0x50/0x310
[   53.033026][ T4204]  ? sk_prot_alloc+0x3f/0x190
[   53.033054][ T4204]  sk_prot_alloc+0x3f/0x190
[   53.033109][ T4204]  sk_alloc+0x34/0x360
[   53.033144][ T4204]  unix_create1+0xa5/0x430
[   53.033165][ T4204]  ? inode_init_always_gfp+0x4cd/0x500
[   53.033196][ T4204]  unix_create+0xff/0x130
[   53.033224][ T4204]  __sock_create+0x2ec/0x5b0
[   53.033246][ T4204]  __sys_socketpair+0x170/0x430
[   53.033267][ T4204]  ? do_user_addr_fault+0xbb8/0x1090
[   53.033372][ T4204]  __x64_sys_socketpair+0x52/0x60
[   53.033461][ T4204]  x64_sys_call+0x23f2/0x2fb0
[   53.033478][ T4204]  do_syscall_64+0xd2/0x200
[   53.033492][ T4204]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.033619][ T4204]  ? clear_bhb_loop+0x40/0x90
[   53.033637][ T4204]  ? clear_bhb_loop+0x40/0x90
[   53.033676][ T4204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.033736][ T4204] RIP: 0033:0x7f992fb8087a
[   53.033749][ T4204] Code: 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 35 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.033763][ T4204] RSP: 002b:00007f992e1e6f78 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[   53.033844][ T4204] RAX: ffffffffffffffda RBX: 00007f992fda5f00 RCX: 00007f992fb8087a
[   53.033854][ T4204] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001
[   53.033864][ T4204] RBP: 00007f992e1e7090 R08: 0000000000000000 R09: 0000000000000000
[   53.033873][ T4204] R10: 00007f992e1e6f98 R11: 0000000000000246 R12: 0000000000000003
[   53.033883][ T4204] R13: 0000000000000000 R14: 00007f992fda5fa0 R15: 00007ffc4f8ee388
[   53.033898][ T4204]  </TASK>
[   53.375616][ T4221] loop2: detected capacity change from 0 to 512
[   53.398688][ T4221] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.406199][ T4221] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   53.427528][ T4227] loop1: detected capacity change from 0 to 512
[   53.434163][ T4227] EXT4-fs: Ignoring removed mblk_io_submit option
[   53.441228][ T4227] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   53.459137][ T4221] EXT4-fs (loop2): 1 truncate cleaned up
[   53.464889][ T4227] EXT4-fs (loop1): 1 truncate cleaned up
[   53.470930][ T4227] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.483903][ T4221] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.507154][ T4224] netlink: 4 bytes leftover after parsing attributes in process `syz.1.255'.
[   53.525349][ T4221] netlink: 4 bytes leftover after parsing attributes in process `syz.2.254'.
[   53.539945][ T4231] loop4: detected capacity change from 0 to 512
[   53.555659][ T4231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.569347][ T4231] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.592049][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.605646][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.651671][ T4235] pim6reg1: entered promiscuous mode
[   53.657052][ T4235] pim6reg1: entered allmulticast mode
[   53.691276][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.700457][ T4239] loop2: detected capacity change from 0 to 512
[   53.707071][ T4239] EXT4-fs: Ignoring removed nomblk_io_submit option
[   53.716952][ T4239] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   53.724962][ T4239] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[   53.736261][ T4239] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[   53.745816][ T4239] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[   53.756067][ T4239] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   53.768978][ T4239] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.259: dx entry: limit 65535 != root limit 120
[   53.781101][ T4239] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.259: Corrupt directory, running e2fsck is recommended
[   53.794167][ T4239] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 3: comm syz.2.259: path /54/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[   53.827627][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.898345][ T4244] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   53.926212][ T4253] loop3: detected capacity change from 0 to 512
[   53.953001][ T4257] FAULT_INJECTION: forcing a failure.
[   53.953001][ T4257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   53.966220][ T4257] CPU: 0 UID: 0 PID: 4257 Comm: syz.0.266 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   53.966247][ T4257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   53.966258][ T4257] Call Trace:
[   53.966264][ T4257]  <TASK>
[   53.966271][ T4257]  __dump_stack+0x1d/0x30
[   53.966305][ T4257]  dump_stack_lvl+0xe8/0x140
[   53.966325][ T4257]  dump_stack+0x15/0x1b
[   53.966343][ T4257]  should_fail_ex+0x265/0x280
[   53.966370][ T4257]  should_fail+0xb/0x20
[   53.966417][ T4257]  should_fail_usercopy+0x1a/0x20
[   53.966449][ T4257]  _copy_to_user+0x20/0xa0
[   53.966465][ T4257]  rng_dev_read+0x3ef/0x740
[   53.966539][ T4257]  ? __pfx_rng_dev_read+0x10/0x10
[   53.966570][ T4257]  vfs_readv+0x3fb/0x690
[   53.966665][ T4257]  __x64_sys_preadv+0xfd/0x1c0
[   53.966681][ T4257]  x64_sys_call+0x1503/0x2fb0
[   53.966703][ T4257]  do_syscall_64+0xd2/0x200
[   53.966721][ T4257]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   53.966747][ T4257]  ? clear_bhb_loop+0x40/0x90
[   53.966806][ T4257]  ? clear_bhb_loop+0x40/0x90
[   53.966873][ T4257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.966892][ T4257] RIP: 0033:0x7f992fb7e929
[   53.966907][ T4257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.966922][ T4257] RSP: 002b:00007f992e1e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[   53.966942][ T4257] RAX: ffffffffffffffda RBX: 00007f992fda5fa0 RCX: 00007f992fb7e929
[   53.967010][ T4257] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[   53.967023][ T4257] RBP: 00007f992e1e7090 R08: 0000000000000000 R09: 0000000000000000
[   53.967036][ T4257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   53.967048][ T4257] R13: 0000000000000000 R14: 00007f992fda5fa0 R15: 00007ffc4f8ee388
[   53.967067][ T4257]  </TASK>
[   54.168974][ T4253] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   54.191408][ T4260] loop2: detected capacity change from 0 to 8192
[   54.202383][ T4265] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   54.209060][ T4265] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   54.216720][ T4265] vhci_hcd vhci_hcd.0: Device attached
[   54.223835][ T4266] vhci_hcd: connection closed
[   54.224183][ T4253] EXT4-fs (loop3): orphan cleanup on readonly fs
[   54.224292][   T41] vhci_hcd: stop threads
[   54.239417][ T4253] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   54.239573][   T41] vhci_hcd: release socket
[   54.239580][   T41] vhci_hcd: disconnect device
[   54.270044][ T4253] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   54.297376][ T4253] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.265: bg 0: block 40: padding at end of block bitmap is not set
[   54.338729][ T4253] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[   54.358445][ T4253] EXT4-fs (loop3): 1 truncate cleaned up
[   54.408641][ T4253] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.429222][ T4269] FAT-fs (loop2): error, corrupted directory (invalid entries)
[   54.436833][ T4269] FAT-fs (loop2): Filesystem has been set read-only
[   54.457831][ T4260] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 2075)
[   54.473096][ T4245] loop4: detected capacity change from 0 to 1024
[   54.481007][ T4260] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 2075)
[   54.490168][ T4245] EXT4-fs: Ignoring removed bh option
[   54.491578][ T4268] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 2075)
[   54.505086][ T4245] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   54.518630][ T4245] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   54.529611][ T4245] EXT4-fs (loop4): orphan cleanup on readonly fs
[   54.529861][ T4278] netlink: 4 bytes leftover after parsing attributes in process `syz.0.269'.
[   54.538371][ T4245] EXT4-fs error (device loop4): ext4_quota_enable:7124: inode #3: comm syz.4.260: iget: bad i_size value: 1407392063428608
[   54.560261][ T4245] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.260: Bad quota inode: 3, type: 0
[   54.571439][ T4245] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   54.586082][ T4245] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   54.593260][ T4245] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.651437][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.660766][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.690661][ T4281] pim6reg1: entered promiscuous mode
[   54.696011][ T4281] pim6reg1: entered allmulticast mode
[   54.710561][ T4284] FAULT_INJECTION: forcing a failure.
[   54.710561][ T4284] name failslab, interval 1, probability 0, space 0, times 0
[   54.723239][ T4284] CPU: 0 UID: 0 PID: 4284 Comm: syz.0.272 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   54.723265][ T4284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.723278][ T4284] Call Trace:
[   54.723284][ T4284]  <TASK>
[   54.723292][ T4284]  __dump_stack+0x1d/0x30
[   54.723312][ T4284]  dump_stack_lvl+0xe8/0x140
[   54.723402][ T4284]  dump_stack+0x15/0x1b
[   54.723419][ T4284]  should_fail_ex+0x265/0x280
[   54.723449][ T4284]  should_failslab+0x8c/0xb0
[   54.723468][ T4284]  kmem_cache_alloc_node_noprof+0x57/0x320
[   54.723531][ T4284]  ? __alloc_skb+0x101/0x320
[   54.723556][ T4284]  __alloc_skb+0x101/0x320
[   54.723578][ T4284]  ? audit_log_start+0x365/0x6c0
[   54.723606][ T4284]  audit_log_start+0x380/0x6c0
[   54.723711][ T4284]  audit_seccomp+0x48/0x100
[   54.723871][ T4284]  ? __seccomp_filter+0x68c/0x10d0
[   54.723894][ T4284]  __seccomp_filter+0x69d/0x10d0
[   54.723922][ T4284]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   54.723951][ T4284]  ? vfs_write+0x75e/0x8e0
[   54.724077][ T4284]  __secure_computing+0x82/0x150
[   54.724141][ T4284]  syscall_trace_enter+0xcf/0x1e0
[   54.724163][ T4284]  do_syscall_64+0xac/0x200
[   54.724181][ T4284]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   54.724203][ T4284]  ? clear_bhb_loop+0x40/0x90
[   54.724220][ T4284]  ? clear_bhb_loop+0x40/0x90
[   54.724267][ T4284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.724286][ T4284] RIP: 0033:0x7f992fb7e929
[   54.724301][ T4284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.724318][ T4284] RSP: 002b:00007f992e1e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000121
[   54.724337][ T4284] RAX: ffffffffffffffda RBX: 00007f992fda5fa0 RCX: 00007f992fb7e929
[   54.724372][ T4284] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   54.724382][ T4284] RBP: 00007f992e1e7090 R08: 0000000000000000 R09: 0000000000000000
[   54.724393][ T4284] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[   54.724405][ T4284] R13: 0000000000000000 R14: 00007f992fda5fa0 R15: 00007ffc4f8ee388
[   54.724423][ T4284]  </TASK>
[   54.962540][ T3313] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 2075)
[   55.014610][ T4295] loop4: detected capacity change from 0 to 512
[   55.037061][ T4295] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.278: bg 0: block 248: padding at end of block bitmap is not set
[   55.040548][ T4298] loop3: detected capacity change from 0 to 1024
[   55.062265][ T4298] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   55.081677][ T4295] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.278: Failed to acquire dquot type 1
[   55.111413][ T4306] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   55.113071][ T4295] EXT4-fs (loop4): 1 truncate cleaned up
[   55.129180][ T4295] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.152495][ T4295] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.182009][ T4295] syz.4.278 (4295) used greatest stack depth: 9368 bytes left
[   55.193641][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.225844][ T4313] loop2: detected capacity change from 0 to 512
[   55.248376][ T4316] netlink: 20 bytes leftover after parsing attributes in process `syz.3.281'.
[   55.257272][ T4316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.281'.
[   55.276691][ T4313] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.295352][ T4313] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   55.315214][ T4313] EXT4-fs (loop2): 1 truncate cleaned up
[   55.321409][ T4313] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.346448][ T4313] netlink: 4 bytes leftover after parsing attributes in process `syz.2.283'.
[   55.362802][ T4322] loop3: detected capacity change from 0 to 1024
[   55.369818][ T4322] EXT4-fs: Ignoring removed nobh option
[   55.375387][ T4322] EXT4-fs: Ignoring removed bh option
[   55.423008][ T4322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.444159][ T4323] loop4: detected capacity change from 0 to 8192
[   55.464641][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.643744][ T4316] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.281: Allocating blocks 497-513 which overlap fs metadata
[   55.674796][ T4329] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[   55.683606][ T4329] FAT-fs (loop4): Filesystem has been set read-only
[   55.690394][ T4329] FAT-fs (loop4): error, corrupted directory (invalid entries)
[   55.726456][ T4340] pim6reg1: entered promiscuous mode
[   55.731957][ T4340] pim6reg1: entered allmulticast mode
[   55.876559][ T4353] syz_tun: entered allmulticast mode
[   55.892008][ T4353] loop2: detected capacity change from 0 to 512
[   55.910510][ T4353] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.924181][ T4353] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.964729][ T4361] netlink: zone id is out of range
[   55.969913][ T4361] netlink: set zone limit has 4 unknown bytes
[   55.971481][ T4363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.296'.
[   56.023011][ T4363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.296'.
[   56.033545][ T4322] EXT4-fs (loop3): pa ffff888106a64770: logic 640, phys. 465, len 3
[   56.041712][ T4322] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[   56.074267][   T29] kauditd_printk_skb: 503 callbacks suppressed
[   56.074281][   T29] audit: type=1326 audit(1752331576.987:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4369 comm="syz.0.301" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f992fb7e929 code=0x0
[   56.084123][ T4372] pim6reg1: entered promiscuous mode
[   56.108777][ T4372] pim6reg1: entered allmulticast mode
[   56.195411][ T4376] FAULT_INJECTION: forcing a failure.
[   56.195411][ T4376] name failslab, interval 1, probability 0, space 0, times 0
[   56.208123][ T4376] CPU: 0 UID: 0 PID: 4376 Comm: syz.3.303 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   56.208148][ T4376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.208159][ T4376] Call Trace:
[   56.208164][ T4376]  <TASK>
[   56.208170][ T4376]  __dump_stack+0x1d/0x30
[   56.208188][ T4376]  dump_stack_lvl+0xe8/0x140
[   56.208286][ T4376]  dump_stack+0x15/0x1b
[   56.208305][ T4376]  should_fail_ex+0x265/0x280
[   56.208335][ T4376]  should_failslab+0x8c/0xb0
[   56.208358][ T4376]  __kvmalloc_node_noprof+0x123/0x4e0
[   56.208397][ T4376]  ? vmemdup_user+0x26/0xd0
[   56.208493][ T4376]  ? should_fail_usercopy+0x1a/0x20
[   56.208523][ T4376]  vmemdup_user+0x26/0xd0
[   56.208543][ T4376]  path_setxattrat+0x1b6/0x310
[   56.208615][ T4376]  __x64_sys_lsetxattr+0x71/0x90
[   56.208632][ T4376]  x64_sys_call+0x1e36/0x2fb0
[   56.208650][ T4376]  do_syscall_64+0xd2/0x200
[   56.208720][ T4376]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.208742][ T4376]  ? clear_bhb_loop+0x40/0x90
[   56.208760][ T4376]  ? clear_bhb_loop+0x40/0x90
[   56.208784][ T4376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.208825][ T4376] RIP: 0033:0x7fb3d6ffe929
[   56.208841][ T4376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.208857][ T4376] RSP: 002b:00007fb3d5667038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   56.208892][ T4376] RAX: ffffffffffffffda RBX: 00007fb3d7225fa0 RCX: 00007fb3d6ffe929
[   56.208903][ T4376] RDX: 0000200000000300 RSI: 0000200000000240 RDI: 0000200000000080
[   56.208913][ T4376] RBP: 00007fb3d5667090 R08: 0000000000000000 R09: 0000000000000000
[   56.208924][ T4376] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[   56.208936][ T4376] R13: 0000000000000000 R14: 00007fb3d7225fa0 R15: 00007fff23fea8a8
[   56.209004][ T4376]  </TASK>
[   56.397735][   T29] audit: type=1326 audit(1752331577.127:1756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.421119][   T29] audit: type=1326 audit(1752331577.127:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.444518][   T29] audit: type=1326 audit(1752331577.127:1758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.467968][   T29] audit: type=1326 audit(1752331577.127:1759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.491422][   T29] audit: type=1326 audit(1752331577.127:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.514928][   T29] audit: type=1326 audit(1752331577.127:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.538350][   T29] audit: type=1326 audit(1752331577.127:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.553852][ T4380] loop2: detected capacity change from 0 to 1024
[   56.561860][   T29] audit: type=1326 audit(1752331577.127:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.579436][ T4380] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   56.591431][   T29] audit: type=1326 audit(1752331577.127:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4377 comm="syz.4.304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eb30ae929 code=0x7ffc0000
[   56.626335][ T4365] loop1: detected capacity change from 0 to 1024
[   56.636160][ T4365] EXT4-fs: Ignoring removed bh option
[   56.642984][ T4365] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   56.659323][ T4365] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   56.678155][ T4383] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   56.686498][ T4365] EXT4-fs (loop1): orphan cleanup on readonly fs
[   56.702518][ T4365] EXT4-fs error (device loop1): ext4_quota_enable:7124: inode #3: comm syz.1.299: iget: bad i_size value: 1407392063428608
[   56.739383][ T4365] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.299: Bad quota inode: 3, type: 0
[   56.753226][ T4365] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[   56.767963][ T4365] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   56.791052][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.800437][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.807899][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.815433][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.822922][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.830402][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.837872][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.845296][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.852848][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.860287][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.867739][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.875167][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.892675][ T4393] vlan2: entered allmulticast mode
[   56.897973][ T4393] dummy0: entered allmulticast mode
[   56.924578][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.932091][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.939641][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.947032][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.954484][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.962006][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.969444][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.973322][ T4396] FAULT_INJECTION: forcing a failure.
[   56.973322][ T4396] name failslab, interval 1, probability 0, space 0, times 0
[   56.976820][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.976843][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   56.989474][ T4396] CPU: 0 UID: 0 PID: 4396 Comm: syz.2.311 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   56.989503][ T4396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.989516][ T4396] Call Trace:
[   56.989523][ T4396]  <TASK>
[   56.989532][ T4396]  __dump_stack+0x1d/0x30
[   56.989552][ T4396]  dump_stack_lvl+0xe8/0x140
[   56.989625][ T4396]  dump_stack+0x15/0x1b
[   56.989641][ T4396]  should_fail_ex+0x265/0x280
[   56.989670][ T4396]  ? legacy_init_fs_context+0x31/0x80
[   56.989701][ T4396]  should_failslab+0x8c/0xb0
[   56.989729][ T4396]  __kmalloc_cache_noprof+0x4c/0x320
[   56.989771][ T4396]  legacy_init_fs_context+0x31/0x80
[   56.989800][ T4396]  alloc_fs_context+0x3ec/0x4e0
[   56.989922][ T4396]  fs_context_for_mount+0x22/0x30
[   56.989964][ T4396]  do_new_mount+0xe9/0x680
[   56.989995][ T4396]  path_mount+0x4a4/0xb20
[   56.990092][ T4396]  ? user_path_at+0x109/0x130
[   56.990117][ T4396]  __se_sys_mount+0x28f/0x2e0
[   56.990239][ T4396]  ? fput+0x8f/0xc0
[   56.990263][ T4396]  __x64_sys_mount+0x67/0x80
[   56.990292][ T4396]  x64_sys_call+0xd36/0x2fb0
[   56.990352][ T4396]  do_syscall_64+0xd2/0x200
[   56.990370][ T4396]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[   56.990395][ T4396]  ? clear_bhb_loop+0x40/0x90
[   56.990460][ T4396]  ? clear_bhb_loop+0x40/0x90
[   56.990481][ T4396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.990501][ T4396] RIP: 0033:0x7fb3ac19e929
[   56.990517][ T4396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.990537][ T4396] RSP: 002b:00007fb3aa807038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   56.990555][ T4396] RAX: ffffffffffffffda RBX: 00007fb3ac3c5fa0 RCX: 00007fb3ac19e929
[   56.990567][ T4396] RDX: 00002000000002c0 RSI: 0000200000000280 RDI: 0000200000000100
[   56.990579][ T4396] RBP: 00007fb3aa807090 R08: 0000200000000300 R09: 0000000000000000
[   56.990591][ T4396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   56.990602][ T4396] R13: 0000000000000000 R14: 00007fb3ac3c5fa0 R15: 00007ffeb5db1bb8
[   56.990626][ T4396]  </TASK>
[   57.075728][ T4411] pim6reg1: entered promiscuous mode
[   57.076245][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   57.081311][ T4411] pim6reg1: entered allmulticast mode
[   57.085724][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   57.239560][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   57.246967][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   57.254374][   T36] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   57.262442][   T36] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz1] on syz0
[   57.287928][ T4412] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.314'.
[   57.304546][ T4417] loop3: detected capacity change from 0 to 764
[   57.317245][ T4417] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   57.347710][ T4407] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.314'.
[   57.373924][ T4422] loop1: detected capacity change from 0 to 1024
[   57.381326][ T4421] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   57.396793][ T4423] ==================================================================
[   57.404909][ T4423] BUG: KCSAN: data-race in call_rcu / mas_state_walk
[   57.411597][ T4423] 
[   57.413910][ T4423] write to 0xffff888104b65c08 of 8 bytes by task 4424 on cpu 1:
[   57.421531][ T4423]  call_rcu+0x51/0x3f0
[   57.425600][ T4423]  mas_wmb_replace+0xc6a/0x14a0
[   57.430443][ T4423]  mas_wr_store_entry+0x1773/0x2b50
[   57.435643][ T4423]  mas_store_prealloc+0x74d/0x9e0
[   57.440668][ T4423]  vma_iter_store_new+0x1c5/0x200
[   57.445687][ T4423]  mmap_region+0x102c/0x1580
[   57.450271][ T4423]  do_mmap+0x9b3/0xbe0
[   57.454338][ T4423]  vm_mmap_pgoff+0x17a/0x2e0
[   57.458922][ T4423]  ksys_mmap_pgoff+0xc2/0x310
[   57.463600][ T4423]  x64_sys_call+0x1602/0x2fb0
[   57.468274][ T4423]  do_syscall_64+0xd2/0x200
[   57.472768][ T4423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.478654][ T4423] 
[   57.480964][ T4423] read to 0xffff888104b65c08 of 8 bytes by task 4423 on cpu 0:
[   57.488494][ T4423]  mas_state_walk+0x28f/0x650
[   57.493172][ T4423]  mas_walk+0x30/0x120
[   57.497237][ T4423]  lock_vma_under_rcu+0xa2/0x2f0
[   57.502170][ T4423]  do_user_addr_fault+0x233/0x1090
[   57.507285][ T4423]  exc_page_fault+0x62/0xa0
[   57.511786][ T4423]  asm_exc_page_fault+0x26/0x30
[   57.516636][ T4423] 
[   57.518948][ T4423] value changed: 0x00005555934edfff -> 0xffff888104b65508
[   57.526041][ T4423] 
[   57.528351][ T4423] Reported by Kernel Concurrency Sanitizer on:
[   57.534488][ T4423] CPU: 0 UID: 0 PID: 4423 Comm: syz.3.320 Not tainted 6.16.0-rc5-syzkaller-00224-g379f604cc3dc #0 PREEMPT(voluntary) 
[   57.546811][ T4423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.556858][ T4423] ==================================================================
[   57.568780][ T4422] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22
[   57.578141][ T4418] fido_id[4418]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   57.602176][ T4424] loop3: detected capacity change from 0 to 164
[   57.612908][ T4424] /dev/loop3: Can't open blockdev
[   57.631912][ T4425] loop3: detected capacity change from 0 to 512
[   57.642003][ T4425] /dev/loop3: Can't open blockdev
[   57.947379][   T41] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.990563][   T41] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.040315][   T41] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.090592][   T41] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.211763][   T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   58.223301][   T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   58.233251][   T41] bond0 (unregistering): Released all slaves
[   58.279199][   T41] tipc: Left network mode
[   58.305326][   T41] hsr_slave_0: left promiscuous mode
[   58.311956][   T41] hsr_slave_1: left promiscuous mode
[   58.317704][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.325219][   T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.335672][   T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.343141][   T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.355222][   T41] veth1_macvtap: left promiscuous mode
[   58.360782][   T41] veth0_macvtap: left promiscuous mode
[   58.366311][   T41] veth1_vlan: left promiscuous mode
[   58.371616][   T41] veth0_vlan: left promiscuous mode
[   58.423613][   T41] team0 (unregistering): Port device team_slave_1 removed
[   58.432717][   T41] team0 (unregistering): Port device team_slave_0 removed