last executing test programs:

8m28.8297405s ago: executing program 3 (id=4121):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
unlinkat(0xffffffffffffffff, &(0x7f00000000c0)='./mnt\x00', 0x200)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x7}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c0001"], 0x118}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

8m28.628470456s ago: executing program 3 (id=4126):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80004700)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000"], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000a00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

8m28.567494191s ago: executing program 3 (id=4129):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r0)
ioctl$EVIOCRMFF(r0, 0x40095505, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x21, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x20, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4}, {}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xb79e}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000001c0)='syzkaller\x00', 0x101, 0x0, 0x0, 0x41000, 0x12, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x1, 0x5, 0x5}, 0x10, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000300)=[{0x2, 0x3, 0x7, 0x6}, {0x0, 0x4, 0xb, 0x4}, {0x5, 0x2, 0x9, 0x6}, {0x5, 0x4, 0x6, 0x8}, {0x3, 0x2, 0x6, 0x9}]}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettfilter={0x34, 0x2e, 0x10, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x6, 0x5}, {0xa, 0x2}, {0xffff, 0xc}}, [{0x8, 0xb, 0x1}, {0x8, 0xb, 0xfffffffa}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x4048840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0x6, 0xffff}, {0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000014001280090001007663616e00000000040002"], 0x3c}}, 0x0)
ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000140)={0x14, 0x47, &(0x7f00000001c0)="2c1f10ab37bf9a1469f2d1479145060dba100f9bd8731e3a2728b9af27c215564908dbc53ac48213e4f2e4f363565fbb592e1577473dd8f1b5e9a9a31b309a198cdb86e8137083"})
r4 = creat(&(0x7f0000000640)='./bus\x00', 0x1a8)
r5 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write(r5, &(0x7f0000000180)="2cd889f0", 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000080)=[0x4, 0x4], 0x0, 0x0, 0x2}}, 0x40)
close_range(r4, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e00000018"], 0x50}}, 0x4008840)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)

8m27.578746112s ago: executing program 3 (id=4141):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x8, &(0x7f0000000840)=ANY=[], 0xfd, 0x1bf, &(0x7f0000000480)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x9c93, 0x0, 0x0, 0x0, &(0x7f00000000c0))
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000000), 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000440)=ANY=[@ANYBLOB="300000000301010200000000000000000a00fffe0c001980080002002c08000010000280040002"], 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x24000800)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/notes', 0x0, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r6, &(0x7f0000000140)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r7, @ANYBLOB="00001000252155b21c0012000c000100626f6e64"], 0x3c}}, 0x40000)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x503, 0x0, 0xfffffbfc, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x1)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r9 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r9, &(0x7f0000000140)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
sendmmsg$inet(r9, &(0x7f0000001200)=[{{&(0x7f00000000c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x10, 0x0}}], 0x1, 0x2000c054)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX=r9, @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={0x80, 0x0, 0x400, 0x70bd26, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x1}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x30, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x8001}, @MPTCP_PM_ATTR_ADDR_REMOTE={0xc, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x3}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}]}, 0x80}, 0x1, 0x0, 0x0, 0x840}, 0x4000000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10)
clock_nanosleep(0x2, 0xfffffdfc, &(0x7f0000000080)={0x0, 0x989680}, 0x0)
syz_clone(0x40200080, 0x0, 0x0, 0x0, 0x0, 0x0)
read(r4, 0x0, 0x0)

8m26.75296399s ago: executing program 3 (id=4153):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1900000004000000040000000a"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r2}, &(0x7f0000000200), &(0x7f0000000240)=r3}, 0x20)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x38, r6, 0x7, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}]}, 0x38}}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x3d}]}, &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, 0x0, &(0x7f0000000080)=r7}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1, <r8=>0xffffffffffffffff}, &(0x7f0000000440)=0x2000000, &(0x7f0000000480)=r7}, 0x20)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030007e6ff00000000020000000900010073797a30000000000900030073797a320000000014"], 0x7c}}, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x0, 0x7fff, 0x0, {0x0, 0x1}, {0x4a, 0x2}, @period={0x5d, 0xa370, 0x0, 0x7f, 0x2, {0x1, 0x3, 0x4, 0x2}, 0x0, 0x0}})
r9 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
write$char_usb(r9, &(0x7f0000000040)="e2", 0x12d8)
ioctl$EVIOCGKEY(r9, 0x80404518, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r8, &(0x7f0000000000), 0x0}, 0x20)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r10}, 0x10)
fcntl$setsig(r10, 0xa, 0x3c)
fchown(r10, 0x0, 0x0)

8m26.317640265s ago: executing program 3 (id=4162):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x8000, &(0x7f0000000100), 0x1, 0x4c4, &(0x7f0000000f40)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
setgid(0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r2], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x800, 0x0)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x5)
getdents64(r4, &(0x7f00000004c0)=""/55, 0x37)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/partitions\x00', 0x0, 0x0)
preadv(r6, &(0x7f0000000040)=[{&(0x7f0000000940)=""/230, 0xe6}], 0x1, 0x4f0, 0x6)
r7 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r8=>0x0}, &(0x7f0000000000)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000680)={r8, 0x4, 0x10}, &(0x7f00000006c0)=0xc)
ioctl$sock_SIOCOUTQNSD(r7, 0x894b, &(0x7f0000000480))
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f00000002c0)={r8, 0x7}, 0x8)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r10 = dup(r9)
r11 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r12 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r11, &(0x7f0000000040))
write$UHID_INPUT(r10, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x19, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000090000000000000000f0ffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000600000000000000000000008500000083000000bf0900000000000055090100000000009500000000000000184b0000050000000000000000000000180000000100000000000000ff07000018430000feffffff190000000000000018000000090000000000000000ffffff18550000100000000000000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000200)='syzkaller\x00', 0x4, 0x53, &(0x7f00000003c0)=""/83, 0x40f00, 0x0, '\x00', r2, @fallback=0x23, r6, 0x8, &(0x7f0000000240)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x1, 0x9, 0x9, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x7, &(0x7f0000000480), &(0x7f0000000580)=[{0x0, 0x2, 0x3}, {0x2, 0x5, 0xd, 0x2}, {0x5, 0x4, 0x10, 0xc}, {0x0, 0x5, 0x10, 0xb}, {0x1, 0x1, 0xa, 0xa}, {0x5, 0x2, 0x7, 0x4}, {0x0, 0x5, 0x6}], 0x10, 0x200}, 0x94)

8m26.317377365s ago: executing program 32 (id=4162):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x8000, &(0x7f0000000100), 0x1, 0x4c4, &(0x7f0000000f40)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
setgid(0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r2], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x800, 0x0)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x5)
getdents64(r4, &(0x7f00000004c0)=""/55, 0x37)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/partitions\x00', 0x0, 0x0)
preadv(r6, &(0x7f0000000040)=[{&(0x7f0000000940)=""/230, 0xe6}], 0x1, 0x4f0, 0x6)
r7 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r8=>0x0}, &(0x7f0000000000)=0x8)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r7, 0x84, 0x72, &(0x7f0000000680)={r8, 0x4, 0x10}, &(0x7f00000006c0)=0xc)
ioctl$sock_SIOCOUTQNSD(r7, 0x894b, &(0x7f0000000480))
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f00000002c0)={r8, 0x7}, 0x8)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r10 = dup(r9)
r11 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r12 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r12, 0x1, r11, &(0x7f0000000040))
write$UHID_INPUT(r10, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x7, 0x19, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000090000000000000000f0ffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000600000000000000000000008500000083000000bf0900000000000055090100000000009500000000000000184b0000050000000000000000000000180000000100000000000000ff07000018430000feffffff190000000000000018000000090000000000000000ffffff18550000100000000000000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000200)='syzkaller\x00', 0x4, 0x53, &(0x7f00000003c0)=""/83, 0x40f00, 0x0, '\x00', r2, @fallback=0x23, r6, 0x8, &(0x7f0000000240)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000440)={0x1, 0x9, 0x9, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x7, &(0x7f0000000480), &(0x7f0000000580)=[{0x0, 0x2, 0x3}, {0x2, 0x5, 0xd, 0x2}, {0x5, 0x4, 0x10, 0xc}, {0x0, 0x5, 0x10, 0xb}, {0x1, 0x1, 0xa, 0xa}, {0x5, 0x2, 0x7, 0x4}, {0x0, 0x5, 0x6}], 0x10, 0x200}, 0x94)

7m23.866264121s ago: executing program 4 (id=5425):
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=<r0=>0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000140)={'\x00', 0x5, 0x8, 0x400, 0x2b, 0xaf})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1fff}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3ffff)
migrate_pages(0x0, 0x6, 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000000c0)='net/if_inet6\x00')
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a000100767863616e000000180002801400010000000000", @ANYRES32=r5, @ANYBLOB="90480000004b030008000300", @ANYRES32=r5, @ANYBLOB="eb9157cce0100d498ee1ad0e19554c4e75b1200c776dd6a2dd366e0e6c622c3c2ad3b1e56c92"], 0x50}}, 0x0)

7m23.688866946s ago: executing program 4 (id=5430):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), r0)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, r1, 0x2586ad4018a3b31b, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

7m23.688182665s ago: executing program 4 (id=5431):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x25)
fcntl$lock(r1, 0x5, &(0x7f00000003c0)={0x2, 0x1, 0x45, 0x100000001})

7m23.64064769s ago: executing program 4 (id=5434):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x400, &(0x7f0000000200)={[{@block_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@grpjquota}]}, 0x1, 0x4a6, &(0x7f0000000a40)="$eJzs3c9rXNUeAPDvzDRpkua9/niPR9sHr4U+6HtKM/mBNFEXulIXBbHgRqHGZBprJpmQmdQmdJHqrgsXoiiIC/f+BW7syiKIa92LC6lojaCCMHLvzKT5NXXQNAO5nw/czrn33M73nAzfw51z750bQGadTv7JRQxGxBcRcbixunmH042XtbvXp5IlF/X6xe9z6X7JemvX1v87FBGrEdEXEc89FfFybnvc6vLK7GS5XFpsrhdrcwvF6vLKuStzkzOlmdL8yPj5iYnx4bHRiV3r6803X7154eNnej/6+Y07t9/69JOkWYPNuo392E2NrvfE0Q3bDkTE4w8iWBcUmv3p73ZD+FOSz+8fEXEmzf/DUUg/TSAL6vV6/bf6wXbVq3Vg38qnx8C5/FBENMr5/NBQ4xj+nzGQL1eqtYcvV5bmpxvHykeiJ3/5Srk03PyucCR6csn6SFq+tz66ZX0sIj0GfrvQn64PTVXK03s71AFbHNqS/z8VGvkPZISv/JBd8h+yS/5Ddsl/yC75D9kl/yG75D9kl/yH7JL/kF3yH7JL/kMmPXvhQrLUW/e/T19dXpqtXD03XarODs0tTQ1NVRYXhmYqlZn0np25P3q/cqWyMPJILF0r1krVWrG6vHJprrI0X7uU3td/qdSzJ70COnH01K2vchGx+mh/uiR6m3VyFfa3ej0X3b4HGeiOQrcHIKBrTP1BdvmOD+zwE72b9LWrWNj9tgB7I9/tBgBdc/aE83+QVeb/IbvM/0N2OcYHzP9D9pj/h+wabPP8r79teHbXcET8PSK+LPQcbD3rC9gP8t/mmsf/Zw//d3BrbW/ul/QUQW9EvPb+xXevTdZqiyPJ9h/Wt9fea24f7Ub7gU618rSVxwBAdq3dvT7VWvYy7ndPNi5C2B7/QHNusi89Rzmwltt0rUJul65dWL0REcd3ip9rPu+8ceZjYK2wLf6x5muu8RZpew+kz03fm/gnNsT/z4b4J//yXwWy4VYy/gzvlH/5NKdjPf82jz+Du3TtRPvxL78+/hXajH+nOozxygevf9M2/o2IkzvGb8XrS2NtjZ+07WyH8e+8+Py/2tXVP2y8z07xW5JSsTa3UKwur5xLf0dupjQ/Mn5+YmJ8eGx0opjOURdbM9XbPXb889v36/9Am/jt+v9Es03/77D/v/77sxdO3yf+/87s/PkfaxM/0R8RD3UY/8fRr19qV5fEn27T//x94ifbxjqMX33n6YMd7goA7IHq8srsZLlcWlRQUFBYL3R7ZAIetHtJ3+2WAAAAAAAAAAAAAJ3ai8uJu91HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID94PcAAAD//5j81ps=")
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r3}, 0x10)
r4 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r4, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r5 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
write$binfmt_register(r5, &(0x7f0000000340)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x1, 0x3a, '\x9c', 0x3a, 'max_read', 0x3a, './file0/file0', 0x3a, [0x4f, 0x46]}, 0x38)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r7=>0x0})
bind$can_j1939(r6, &(0x7f0000000340)={0x1d, r7, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
sendmsg$inet(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="81b641f1f3843704b6", 0x9}], 0x1}, 0x4048081)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r7, {0xfffd, 0xffeb}, {0x1, 0x1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)

7m22.694778837s ago: executing program 4 (id=5453):
ioctl$IOC_WATCH_QUEUE_SET_FILTER(0xffffffffffffffff, 0x5761, &(0x7f00000000c0)={0x1, 0x0, [{0x8, 0x0, 0x2, [0x10, 0x4, 0x3, 0xfff, 0x3ff, 0x4, 0x401, 0x7]}]})
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0xa0000)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000050000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[])

7m22.604419185s ago: executing program 4 (id=5462):
socket(0x1e, 0x4, 0x0)
unshare(0x22020600)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0], &(0x7f0000000000)=0x10, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2, <r4=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000600)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x14000000}, 0x80)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r7, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000080)={r4, &(0x7f0000000640)="8e498bc6c6650227a97b825079f3966907f0b42a14cad18963587d8c08c6e620fe55e3aa433ad8bd5bb46f9cde9c40639988189972d82189d2396ed6db46d8fe36f41c62e46499c55f686d6ab1c10765a153e3f873f21cdddf76c73065cdb555dfbde4c5bef32b5f211e968a497212bbede959d94d5039c312300ab853f80a548c30a23770e8828dae1d52eca49fe022cb98", &(0x7f0000000540)=""/82, 0x4}, 0x20)
ftruncate(r7, 0xc17a)
io_setup(0x200, &(0x7f0000000140))
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0x3, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0xa4, 0xffb, 0x7, 0xfe21, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x7, 0x3, 0x0, 0xfffffffa, 0x0, 0x10001, 0x9, 0x4, 0x7, 0x5, 0xffffc, 0x762, 0x3, 0x107fff, 0xe, 0x2b12, 0x100, 0x6, 0x1c00, 0x9, 0x7, 0xc, 0x8, 0x8000100, 0x3, 0x0, 0x2, 0x8, 0x5, 0x79b, 0x3, 0x1, 0x407f, 0x4, 0x2, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x2, 0x206, 0x9, 0x4, 0x7, 0x7, 0x0, 0x4, 0x100002, 0x8, 0x754, 0x1, 0x3, 0x0, 0x10001, 0x2, 0xffffffff, 0x6, 0x6, 0x9, 0x80000000, 0xfdfffffd, 0x2, 0x80000002, 0x84, 0x100, 0x5, 0x252, 0x7e, 0xc, 0x5, 0x20006, 0x5, 0x6, 0xb, 0x2, 0xd9a, 0xd, 0x2a0, 0xfffffffd, 0x2, 0x0, 0x5, 0x8, 0xfffffffe, 0x4, 0x2, 0x3c, 0x8, 0x800004, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0x8f, 0xffffffff]}})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
unshare(0x10000700)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x5)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

7m22.577061147s ago: executing program 33 (id=5462):
socket(0x1e, 0x4, 0x0)
unshare(0x22020600)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0], &(0x7f0000000000)=0x10, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2, <r4=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000600)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x14000000}, 0x80)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r7, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000080)={r4, &(0x7f0000000640)="8e498bc6c6650227a97b825079f3966907f0b42a14cad18963587d8c08c6e620fe55e3aa433ad8bd5bb46f9cde9c40639988189972d82189d2396ed6db46d8fe36f41c62e46499c55f686d6ab1c10765a153e3f873f21cdddf76c73065cdb555dfbde4c5bef32b5f211e968a497212bbede959d94d5039c312300ab853f80a548c30a23770e8828dae1d52eca49fe022cb98", &(0x7f0000000540)=""/82, 0x4}, 0x20)
ftruncate(r7, 0xc17a)
io_setup(0x200, &(0x7f0000000140))
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0x3, 0x1, 0x7fff, 0x1, 0x4, 0x9, 0xa4, 0xffb, 0x7, 0xfe21, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x7, 0x3, 0x0, 0xfffffffa, 0x0, 0x10001, 0x9, 0x4, 0x7, 0x5, 0xffffc, 0x762, 0x3, 0x107fff, 0xe, 0x2b12, 0x100, 0x6, 0x1c00, 0x9, 0x7, 0xc, 0x8, 0x8000100, 0x3, 0x0, 0x2, 0x8, 0x5, 0x79b, 0x3, 0x1, 0x407f, 0x4, 0x2, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x2, 0x206, 0x9, 0x4, 0x7, 0x7, 0x0, 0x4, 0x100002, 0x8, 0x754, 0x1, 0x3, 0x0, 0x10001, 0x2, 0xffffffff, 0x6, 0x6, 0x9, 0x80000000, 0xfdfffffd, 0x2, 0x80000002, 0x84, 0x100, 0x5, 0x252, 0x7e, 0xc, 0x5, 0x20006, 0x5, 0x6, 0xb, 0x2, 0xd9a, 0xd, 0x2a0, 0xfffffffd, 0x2, 0x0, 0x5, 0x8, 0xfffffffe, 0x4, 0x2, 0x3c, 0x8, 0x800004, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0x8f, 0xffffffff]}})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
unshare(0x10000700)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x5)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)

6m55.576384379s ago: executing program 6 (id=6035):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r0=>0x0)
r1 = eventfd(0x0)
io_submit(r0, 0x2, &(0x7f0000000280)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x100, r1, &(0x7f0000000100)="0000fd6000000000", 0x8, 0x3}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x0, r1, 0x0, 0x0, 0x1000a, 0x0, 0x1, r1}])
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000000c0)={0x5fb, 0x5, 0x6, 0x800, 0x5})
syz_clone(0x4000, 0x0, 0x5a, 0x0, 0x0, 0x0)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r2)
socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
r4 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0xe7fd}, 0x100002, 0x3, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r5}, &(0x7f0000000180), &(0x7f00000001c0)=r4}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)

6m54.643726245s ago: executing program 6 (id=6047):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="d800000010008104090008007143a0f8c81ded0b25000000e8fe09a11800150006001410000000120800030043000040a8002b000a", 0x35}], 0x1}, 0x20000880)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0xfe33)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$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")
syz_emit_ethernet(0x36, &(0x7f0000000300)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2c, 0x0, @remote, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000e80)=@newqdisc={0x48, 0x24, 0x200, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x18, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x3}, @TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x100}]}}]}, 0x48}}, 0x800)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x46)
ioctl$HIDIOCGREPORTINFO(r10, 0xc00c4809, &(0x7f0000000080)={0x2, 0x200, 0x908})
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r11}, 0x18)
r12 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r12, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300030e000000000700000000000004000900a0000000015204f089b96478db1d8a5f756509e977fb1a030000000002000100000000000000020d1600003f030006000000000002004e21000000800000000000000000030005"], 0x70}, 0x1, 0x7}, 0x0)

6m54.276280515s ago: executing program 6 (id=6049):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x20}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x3ff, 0x40000000}, {}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2e9c, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc}, {0x0, 0x80000000, 0x0, 0x7dff800}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)

6m54.042285904s ago: executing program 6 (id=6052):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
r2 = syz_io_uring_setup(0x1e1e, &(0x7f0000000280)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000040)={[{@noquota}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = syz_clone3(&(0x7f0000000800)={0x200000000, &(0x7f0000000080), &(0x7f00000001c0), &(0x7f0000000200), {0xe}, &(0x7f0000000680)=""/55, 0x37, &(0x7f00000006c0)=""/60, &(0x7f0000000780)=[0x0], 0x1, {r6}}, 0x58)
wait4(r8, &(0x7f0000000880), 0x1, &(0x7f00000008c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20)
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='nr_inodes=2'])
chdir(&(0x7f0000000140)='./file0\x00')
openat(r5, &(0x7f0000000040)='./file1\x00', 0x1000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r7, 0x0, 0x200000000000006}, 0x18)
socket$unix(0x1, 0x1, 0x0)
socket(0x10, 0x803, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
clock_adjtime(0x0, &(0x7f0000000700)={0x1000000000064fc, 0x3, 0x10000, 0x0, 0xfffffffffffffffe, 0x8, 0x10000000001, 0xfffffffffffffff9, 0x2, 0x0, 0x6, 0x240e, 0x0, 0x9, 0x81, 0x0, 0x7, 0x0, 0xfffffffffffffffe, 0x0, 0x7, 0x7, 0x0, 0xffffffffdffffffe, 0x0, 0x4})
io_uring_enter(r2, 0x48e9, 0x0, 0x2, 0x0, 0x0)
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xffffff3f, {}, {}, @raw32}], 0xffc8)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000580), r9)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xc2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r10}, 0x10)
close(r0)

6m53.889441317s ago: executing program 6 (id=6056):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0, 0x0, 0x178}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x60a82, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @multicast})
syz_pidfd_open(0x0, 0x0)
write$tun(r1, 0x0, 0xfff6)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
socket$kcm(0x11, 0xa, 0x300)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x10, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYRES8=r3], 0x20}, 0x1, 0x0, 0x0, 0x40004}, 0x48010)
r4 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r4, &(0x7f0000000280)=[{0x0}], 0x1)

6m53.567874763s ago: executing program 6 (id=6066):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18f2ff0000000000000000000072cfe7aa110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xffffa8a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
close(r4)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r7}}], 0x20, 0x2400e044}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r8}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r9=>0x0})
r10 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r11=>0x0})
bind$can_j1939(r10, &(0x7f0000000100)={0x1d, r11, 0x2, {0x0, 0xf0, 0x3}}, 0x18)
sendmsg$inet6(r10, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="919127f0d2d46490", 0x8}], 0x1}, 0x30048040)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r10)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {}, {0x6}, {0x0, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40}, 0x0)

6m53.567588103s ago: executing program 34 (id=6066):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18f2ff0000000000000000000072cfe7aa110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xffffa8a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$eJzs2zFo1FccB/DfxRwHSnFxclIHKcVFcfQoKnenohBOsxQpBhQRbzpBOOlBig56FMUbxG4uVrhF7ZTLDZkSEsjUIYQMKYEMWVqSJZClV+7yCm1KSq8kBeHz4eDHe//f/33fO976Dz5pQ/Frt9vNRET3p4gDA7492ioULx8bOV++EZGJmxHx9fef/9B7kkkd3dx2PZHGy2n89s3BzrONS9nW0vXNk7emG0N/LDne/8Whd+3RPTge++x9fubw4yfV0vNa/t5iqb76dGH+2of1Qrl9tdH8eCV78Xbqm011ONUHUYtHcT/GYji+jTtR3WX97wbMf91aOZ09WmpN3D23Vey8mDrT7xr0Xv97vfz+hY2IXv7D4y+/atYvnPrxyKuztcm58lqKruR2vjm2b3sCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC/y8bM4cdPqqXntfy9xVJ99enC/LUP64Vy+2qj+fFK9uLt1Deb6nCqD6IWj+J+jEUlKnEnqrsmfPbnQW7n0/f5v+a/bq2c/u1oqTVx99xWsfNi6kzqG9mj8/5DfreX//D4yy+b9Qunckdena1NzpXXDmz3Vf628+j/ewAAAAAAAAAAAAAAAAAAALAXCsXLx0bOl29EZOJmRHzxyzdDvflu+t49k/pOpLqc5t++Odh5tnEp21q6vnny1nTj5zQ/HpkYj4hD79qj//thGNjvAQAA//8Pi5HU")
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
close(r4)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r7}}], 0x20, 0x2400e044}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r8}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r9=>0x0})
r10 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r11=>0x0})
bind$can_j1939(r10, &(0x7f0000000100)={0x1d, r11, 0x2, {0x0, 0xf0, 0x3}}, 0x18)
sendmsg$inet6(r10, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="919127f0d2d46490", 0x8}], 0x1}, 0x30048040)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r10)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {}, {0x6}, {0x0, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40}, 0x0)

4m11.761712057s ago: executing program 7 (id=9382):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = dup(r0)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x0, 0x101, 0x100}})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r2}, 0x8)
r3 = gettid()
clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000140)={0x77359400}, 0x0)
rt_sigqueueinfo(r3, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf94e9898e3717a49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r6}, 0x10)
r7 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w', 0x0)
write$binfmt_misc(r7, &(0x7f0000000180)="e502", 0x2)
execveat(r7, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xe, 0x18, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYBLOB="c87832c92be8f097e2e524baa7c62fe1f3203ba7c8badfb44034a4fc84800a007942b2eb4a65b74549d4a3f14bbcf41b27a3ebfacbbf17769dcd595945b303fa3d15", @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x18)
r8 = socket$key(0xf, 0x3, 0x2)
r9 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r9, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
syz_open_dev$vcsu(&(0x7f00000001c0), 0x6, 0x20402)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000000fbdbdf25250000000e0001006e656464657673696d0000000f0002006e657464518b73696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x80d0}, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r11, 0x8913, &(0x7f0000000cc0)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12tQ\xb16\xe3\xd7\\b\x8b\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00l \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d')
sendmsg$key(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0)

4m11.665909095s ago: executing program 7 (id=9386):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18f2ff0000000000000000000072cfe7aa110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0xffffa8a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$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")
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
close(r4)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r7=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r7}}], 0x20, 0x2400e044}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000008000000000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r8}, 0x10)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r9=>0x0})
r10 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r10, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r11=>0x0})
bind$can_j1939(r10, &(0x7f0000000100)={0x1d, r11, 0x2, {0x0, 0xf0, 0x3}}, 0x18)
sendmsg$inet6(r10, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="919127f0d2d46490", 0x8}], 0x1}, 0x30048040)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r10)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {}, {0x6}, {0x0, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40}, 0x0)

4m10.766941958s ago: executing program 7 (id=9403):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x1000}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df12c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

4m10.74764839s ago: executing program 7 (id=9404):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
setns(r1, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x8000, &(0x7f0000000200)={0x7, 0x0, 0x80000}, 0x20)

4m10.728933322s ago: executing program 7 (id=9405):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
setns(r1, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x8000, &(0x7f0000000200)={0x7, 0x0, 0x80000}, 0x20) (fail_nth: 1)

4m10.312286206s ago: executing program 7 (id=9413):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file1\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
setns(r1, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x9800, &(0x7f0000000200)={0x7}, 0x16)

4m10.312082236s ago: executing program 35 (id=9413):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file1\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
setns(r1, 0x24020000)
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x9800, &(0x7f0000000200)={0x7}, 0x16)

4m5.539858227s ago: executing program 5 (id=9504):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x1000}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df12c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

4m5.520350408s ago: executing program 5 (id=9505):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000080)={0x402, 0x3}, 0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)}, &(0x7f0000000440)=0x10)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000200)=0xc)

4m5.50140964s ago: executing program 5 (id=9506):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@loopback}}, &(0x7f0000000500)=0xe8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x2c0, 0x340, 0x25, 0x148, 0x0, 0x60, 0x458, 0x2a8, 0x2a8, 0x458, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x110, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'veth0\x00', {0xff}}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x8000, 'syz0\x00', {0x481c}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x320)
stat(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f0000fffffffffffffff0000000"], 0xffaf}, 0x1, 0x0, 0x0, 0x854}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001d40)={&(0x7f0000000580)=@proc={0x10, 0x0, 0x25dfdbfd, 0x40}, 0xc, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYRES8=r4, @ANYRESDEC, @ANYRESHEX=r6, @ANYRES32, @ANYBLOB="000000000000010000", @ANYRES32, @ANYRESOCT=r5, @ANYRES32, @ANYRES32=r3, @ANYRESDEC, @ANYRES16, @ANYRES32], 0x50, 0x24040094}, 0x80)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r0, {r2, r5}}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f00000001c0)={0x0, r0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r9 = dup(r8)
write$P9_RLERRORu(r9, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r9, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r9, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r9])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r10}, 0x10)
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r11, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)

4m5.413258917s ago: executing program 5 (id=9509):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000b00), &(0x7f0000000040)='./file0\x00', 0x4002, &(0x7f0000000140)=ANY=[@ANYBLOB='map=off,cruft,iocharset=ascii,block=0x0000000000000200,unhide,session=0x0000000000000011,uid=', @ANYRESDEC=0x0, @ANYBLOB="2c004238994fceef7f633ea81416b1324d35327f7ace27c590b7f9fb133af0ffd6dfc4d893195864142b1450fbace6795f6e181993255fbbca2cb54fcf79cc53b3a6c3704aed82da89741aad5205bb43ded29cfd65509ff9c85cbdb7337ef48b9412ff439da96bb3f5ac11273d94d3d75d"], 0x1, 0xa2f, &(0x7f0000001580)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x52, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0)

4m5.349685532s ago: executing program 5 (id=9511):
r0 = socket$kcm(0xa, 0x1, 0x106)
r1 = socket$netlink(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r1)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000019200)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
sendmsg$kcm(r0, &(0x7f00000019c0)={&(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x5}, 0x80, 0x0}, 0x24004059)
close(r0)

4m5.120602681s ago: executing program 5 (id=9516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000100000}, 0x18)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000000)={&(0x7f0000000200)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000280)=[@mask_cswp={0x58, 0x114, 0x9, {{0x1, 0x40}, &(0x7f0000000040)=0x7, 0x0, 0x0, 0x3, 0x8, 0x8, 0x20, 0xd3}}], 0x58}, 0x0)

4m5.095898373s ago: executing program 36 (id=9516):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000100000}, 0x18)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000000)={&(0x7f0000000200)={0x2, 0x0, @private=0xa010100}, 0x10, 0x0, 0x0, &(0x7f0000000280)=[@mask_cswp={0x58, 0x114, 0x9, {{0x1, 0x40}, &(0x7f0000000040)=0x7, 0x0, 0x0, 0x3, 0x8, 0x8, 0x20, 0xd3}}], 0x58}, 0x0)

4.03147058s ago: executing program 0 (id=13261):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='L\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fddbdf250f0000000400098004000780040005802c00078008000200070000000c00030006000000000000000c000400a70400000000"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

4.012559271s ago: executing program 0 (id=13263):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001", @ANYRESHEX=r0, @ANYRES8=r0, @ANYRES8=r0], 0x7c}, 0x1, 0x0, 0x0, 0x20000851}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910000000000000c3041818000100009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0xe4}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xb, &(0x7f0000000000), 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r1 = gettid()
tkill(r1, 0x12)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
tkill(r1, 0x14)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0700000004000000800000000400000028000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000020c07445123e33a76204f73d37300b65c48b5e76ad0832856edc4aee7c48a97cea02fbbf187d1f", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
r4 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
write$selinux_access(r4, &(0x7f0000000380)=ANY=[], 0x42)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000000000000000000a2c000000060a0904008f4f0000000000020000000900010073797a30000000000900020073797a320000000020000000080a05000000000000000000020000000900010073797a300000000020000000080a0101000000000000000002000000090001991e37f2b7304e6b4f0073797a30000000001400000011000100"/148], 0x94}}, 0x0)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x0)
r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r5, 0x2007ffc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, <r7=>0xffffffffffffffff, {0x29}}, './file0\x00'})
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='kfree\x00', r6}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d00)={r7, 0xe0, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f00000006c0)=[0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000000a80), &(0x7f0000000ac0)=[0x0, 0x0], <r10=>0x0, 0x4000002f, &(0x7f0000000b00)=[{}], 0x8, 0x10, &(0x7f0000000b40), &(0x7f0000000b80), 0x8, 0xbb, 0x8, 0x8, &(0x7f0000000bc0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x4, 0x4, &(0x7f0000000400)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @ldst={0x2, 0x2, 0x4, 0xb, 0x4, 0x50, 0xfffffffffffffff0}, @jmp={0x5, 0x0, 0x5, 0x5, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff}, @alu={0x7, 0x1, 0x6, 0x0, 0xb, 0xfffffffffffffffe}], &(0x7f0000000a80)='syzkaller\x00', 0xaf36, 0x0, 0x0, 0x41100, 0x4b, '\x00', 0x0, @fallback=0x20, r7, 0x8, &(0x7f00000005c0)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000000600)={0x1, 0x4, 0x81, 0x80000000}, 0x10, r10, r6, 0x1, &(0x7f0000000d40)=[r5], &(0x7f0000000d80)=[{0x4, 0x3, 0xc, 0xd}], 0x10, 0x1}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES64=r8, @ANYRES32=r7, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', r9, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r11}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x12, 0x9, &(0x7f0000000300)=@framed={{0x18, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x2}, [@generic={0xb, 0x5, 0x4, 0xe39f, 0x3}, @alu={0x7, 0x0, 0xd, 0x0, 0x8, 0xfffffffffffffff8, 0x4}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffb}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0x3, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f00000000c0)='syzkaller\x00', 0x8, 0x3e, &(0x7f00000003c0)=""/62, 0x40f00, 0x4, '\x00', 0x0, @cgroup_sock_addr=0xf, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x9, 0x2}, 0x8, 0x10, &(0x7f0000000e40)={0x2, 0xf, 0xfff, 0x2}, 0x10, r10, r11, 0x0, &(0x7f0000000e80)=[r2, r2, r2, r2, r2, r2, r2, 0xffffffffffffffff], 0x0, 0x10, 0x80}, 0x94)

3.981113884s ago: executing program 0 (id=13264):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0xffffa8a9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_read_part_table(0x5eb, &(0x7f0000000f00)="$eJzs2zFo1FccB/DfxRwHSnFxclIHKcVFcfQoKnenohBOsxQpBhQRbzpBOOlBig56FMUbxG4uVrhF7ZTLDZkSEsjUIYQMKYEMWVqSJZClV+7yCm1KSq8kBeHz4eDHe//f/33fO976Dz5pQ/Frt9vNRET3p4gDA7492ioULx8bOV++EZGJmxHx9fef/9B7kkkd3dx2PZHGy2n89s3BzrONS9nW0vXNk7emG0N/LDne/8Whd+3RPTge++x9fubw4yfV0vNa/t5iqb76dGH+2of1Qrl9tdH8eCV78Xbqm011ONUHUYtHcT/GYji+jTtR3WX97wbMf91aOZ09WmpN3D23Vey8mDrT7xr0Xv97vfz+hY2IXv7D4y+/atYvnPrxyKuztcm58lqKruR2vjm2b3sCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC/y8bM4cdPqqXntfy9xVJ99enC/LUP64Vy+2qj+fFK9uLt1Deb6nCqD6IWj+J+jEUlKnEnqrsmfPbnQW7n0/f5v+a/bq2c/u1oqTVx99xWsfNi6kzqG9mj8/5DfreX//D4yy+b9Qunckdena1NzpXXDmz3Vf628+j/ewAAAAAAAAAAAAAAAAAAALAXCsXLx0bOl29EZOJmRHzxyzdDvflu+t49k/pOpLqc5t++Odh5tnEp21q6vnny1nTj5zQ/HpkYj4hD79qj//thGNjvAQAA//8Pi5HU")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[], 0x48)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
close(r4)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r6=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)='F', 0x1}, {0x0, 0xe0}], 0x2, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r6}}], 0x20, 0x2400e044}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r7=>0x0})
r8 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r9=>0x0})
bind$can_j1939(r8, &(0x7f0000000100)={0x1d, r9, 0x2, {0x0, 0xf0, 0x3}}, 0x18)
sendmsg$inet6(r8, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)="919127f0d2d46490", 0x8}], 0x1}, 0x30048040)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r8)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r7, {}, {0x6}, {0x0, 0x8}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40}, 0x0)

3.858177974s ago: executing program 2 (id=13266):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1000}, 0x18)
syz_emit_ethernet(0x3e, &(0x7f0000001140)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfd}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0xb, 0x1, 0x0, 0x0, 0xc6, 0x0, {0x5, 0x4, 0x3, 0x2f, 0x5, 0x66, 0x7cf, 0x6, 0x33, 0x0, @multicast2, @broadcast}}}}}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
getpid()
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x20000000, 0x4b}, 0x10, 0x0, 0x0, 0x1, 0x10000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x20000000000002a1, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202f492500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000001040)='xen_mmu_pte_clear\x00', r1, 0x0, 0x800000af8}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
close(0xffffffffffffffff)
socket$packet(0x11, 0x3, 0x300)
madvise(&(0x7f0000a5e000/0x1000)=nil, 0x1000, 0x17)

2.994477884s ago: executing program 0 (id=13267):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
shmget(0x3, 0x1000, 0x200, &(0x7f0000ffe000/0x1000)=nil)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x38, 0x0, 0x7, 0x3, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3b362d53}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x1000}]}, 0x38}, 0x1, 0x0, 0x0, 0x10860}, 0x0)
bind$inet6(r1, 0x0, 0x0)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r1, 0x2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r3, 0x1000)
fallocate(r3, 0x0, 0x0, 0x8800000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
r5 = open(0x0, 0x149040, 0x10)
fcntl$setlease(r5, 0x400, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
pipe2$9p(0x0, 0x0)
gettid()
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000380)={&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, &(0x7f0000000300)=""/108, 0x6c, 0x1, &(0x7f0000000280)=""/15, 0xf}, &(0x7f00000003c0)=0x40)
timer_settime(0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
writev(r4, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x41e00}], 0x1)
utimensat(0xffffffffffffffff, &(0x7f0000000580)='./file0\x00', 0x0, 0x100)

2.648746843s ago: executing program 2 (id=13268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fddbdf250f000000040009"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

2.606966946s ago: executing program 2 (id=13269):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x60, 0x0, 0x4c1dad3e3d6a7499, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x0, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x0, 0x1, 0xfffffff8}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x24044000}, 0x2400c000)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB='c', @ANYRESDEC], 0x8)
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x44e601, 0xbb)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000600)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x35, 0x0, "679f672c00b69e65b0934066fc7c3406caf2c09e33bd50116312e2b00fee650af69b2150ccaa762a3db7ad752fe616e085e991c0436e7e7111238865d27b4e82dcc94700ddd1878b088736009d15f1fa"}, 0xd8)
setsockopt$inet_tcp_int(r1, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)
recvfrom$l2tp6(r0, &(0x7f0000000e40)=""/4096, 0x1000, 0x3, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @remote}}, 0x20)
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file1\x00', 0x804800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYRESOCT], 0xf9, 0x121c, &(0x7f0000001c80)="$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")
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
chmod(&(0x7f0000000180)='./file0\x00', 0x379)

2.525209363s ago: executing program 2 (id=13270):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbfe}, 0x10}}, 0x4)

1.913354723s ago: executing program 8 (id=13272):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCDELRT(r1, 0x890b, &(0x7f0000000080)={@loopback={0xfec0ffff00000000}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800008})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00'}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$selinux_user(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
openat$nvram(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20080e, &(0x7f00000001c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}, {@noauto_da_alloc}]}, 0x1, 0x518, &(0x7f0000001cc0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fbdbdf2505000000200001800d0001007564703a73797a320000"], 0x34}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x9, 0x6a, 0x4}]}, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet(0x2, 0x2, 0x1)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYBLOB="348394ab0a4df84958bab5cdda761a7aedba41393b2db2187feb50e2d08e32f248c190821475e9e1bda8282ea615158400439158aff4b11013a18da45dff8d744cbf36ec68d2828096cb09e2e55f32628b592f6b7a5771797657e6913d51c7b2d52725a9639c3585fa90ef86475f7d930575df9e3a2612bdb0427cc5d58fb433c445aa5086d279dfc562e024db337991d20605a4abd53101c6aa345c3b793c2e86dfcbd3f00b4c7f5bfdeeb6e3eb34ac8ee3babf72c323e3c4992bbef8fec75899aa15d3d2abb011c918766d3afd111062b2ad8ccfec4e7870e7ad6fc2464f220170a0fe4eda443e5a373e3d995512995a162be17b"], 0x5c}, 0x1, 0x0, 0x0, 0x890}, 0x0)

1.71234062s ago: executing program 9 (id=13273):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='L\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fddbdf250f0000000400098004000780040005802c00078008000200070000000c00030006000000000000000c000400a70400000000"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

1.675372373s ago: executing program 8 (id=13274):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x20000023896)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
eventfd2(0x52, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

1.662550164s ago: executing program 9 (id=13275):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e0000008500000005000000"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
set_mempolicy(0x6005, &(0x7f0000000080)=0x7ff, 0x4)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='numa_maps\x00')
pread64(r1, &(0x7f0000001c00)=""/4108, 0x100c, 0x3)
capset(0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002440)=ANY=[@ANYBLOB="140000001000030000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a31000000002c0003800800014000000000180003801400010076657468315f746f5f626f6e64000000080002400000000048000000160a0101000b000000000000010000000900020073797a31000000000900010073797a30000000001c000380180003801400010076657468315f746f5f626f6e64"], 0xe8}}, 0x0)

1.317537822s ago: executing program 9 (id=13276):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0xe0, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r0=>0x0, 0x0, 0x0, 0x0, 0x2, 0x6, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x4f, &(0x7f00000000c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000100), &(0x7f0000000140), 0x8, 0x55, 0x8, 0x8, &(0x7f0000000180)}}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', r0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x5}, 0x18)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000280)=0x14)
read(r2, &(0x7f00000019c0)=""/4097, 0x1001)

1.21891117s ago: executing program 0 (id=13277):
r0 = socket$kcm(0x10, 0x2, 0x0)
syz_usb_connect$cdc_ncm(0x3, 0x70, &(0x7f0000000100)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5e, 0x2, 0x1, 0xc, 0x0, 0xa, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x7, 0x24, 0x6, 0x0, 0x1, 'F5'}, {0x5, 0x24, 0x0, 0xa25}, {0xd, 0x24, 0xf, 0x1, 0xa5, 0x20, 0x1, 0x8}, {0x6, 0x24, 0x1a, 0x8, 0x9}}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x8, 0xd, 0x1}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x20, 0x80, 0x3, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x56, 0x6, 0xcf}}}}}}}]}}, &(0x7f0000000500)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x110, 0xd, 0x80, 0x4, 0x40, 0x8}, 0x29, &(0x7f00000001c0)={0x5, 0xf, 0x29, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x7f, "b93249b0db5ad8a8ef806d9c435600c4"}, @ssp_cap={0x10, 0x10, 0xa, 0x3, 0x1, 0x9, 0xf, 0x2f, [0xff00c0]}]}, 0x5, [{0xc6, &(0x7f0000000200)=@string={0xc6, 0x3, "9876b73ef52094df731c517d83ffa2c02f7aba504da6865ac373ba694d3c1f1270d9867c1be8211e1c3b08813efd40c1485b77f62f5de58d2770a45b333116b71c7d3649495654f09e3761331b6b139302febebf4148c5a5727386ca1a3588469a7b58c4e7b5fca85195d995aa8a7328a1aa40a10c594034b7bba0e5bc1700bdef0e316522d5a5c62c25be7a897920671d376a9ffb9316ad65c29f8ab2ca5740b9395f29e25a6d2dfdff580c2ef462b753173ef6ddf2d74236f680c2e5f7500ccfbd56b6"}}, {0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x827}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x41e}}, {0xe1, &(0x7f0000000400)=@string={0xe1, 0x3, "35e9e551bfb99b124d0f9c708b593ea77a0511d9fea8d9eb309744ab6c71021eadb6aaeadfbc8f6704caec0260398e8903a31e8b71d1ffe11f1c41f5a957ce922b832dca1131f5b55af8d247cc2c91e35627832b77bf3c0e0853eed5a9574ebc8201111a112d4b45945129445f08b2e0bbb734d365912d629fb07966ad02bb58d26482ef857ad4cad8b5cbd8334fd7e98790ac10769b85fc719128864382fe2e45fef0c0679dc3c3dd4f4da69b80863e1bc39dc276af34bae7559a7c496e51f11b7d8ee9f58bee0a9ef6c462aead7d4773c5a5d085766125374152b8c72bb4"}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x57de640b5cef7ba}}]})
syz_usb_connect(0x5, 0x406, &(0x7f0000000980)={{0x12, 0x1, 0x201, 0x43, 0x9e, 0x2c, 0xff, 0x1d19, 0x100, 0x16b5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3f4, 0x3, 0x7f, 0xc, 0x50, 0x0, [{{0x9, 0x4, 0x0, 0x31, 0x3, 0xac, 0xab, 0xe9, 0x4, [@uac_control={{0xa, 0x24, 0x1, 0x0, 0x7}, [@input_terminal={0xc, 0x24, 0x2, 0x1, 0x201, 0x2, 0x2, 0x1, 0x42, 0x6}, @feature_unit={0x9, 0x24, 0x6, 0x6, 0x6, 0x1, [0x8], 0x6}, @input_terminal={0xc, 0x24, 0x2, 0x5, 0x203, 0x2, 0x28, 0xa261, 0xf, 0xf7}, @mixer_unit={0x7, 0x24, 0x4, 0x2, 0x83, "49ae"}]}, @cdc_ecm={{0x6, 0x24, 0x6, 0x0, 0x0, "d4"}, {0x5, 0x24, 0x0, 0x2}, {0xd, 0x24, 0xf, 0x1, 0xe, 0x2, 0x4, 0x47}, [@ncm={0x6, 0x24, 0x1a, 0x6, 0x2}, @obex={0x5, 0x24, 0x15, 0xb}, @mdlm={0x15, 0x24, 0x12, 0x8}, @ncm={0x6, 0x24, 0x1a, 0x7, 0x24}, @dmm={0x7, 0x24, 0x14, 0x4, 0x2}, @mbim={0xc, 0x24, 0x1b, 0x81, 0x1, 0x8c, 0x1f, 0x7}]}], [{{0x9, 0x5, 0x3, 0x0, 0x200, 0x5, 0xb, 0x7, [@generic={0x91, 0xc, "70dc736c31ab5525c9809cbbce0cfc94f2fcf3e024d9ab866e0880ac76a9a452b58e1ec68ab0663eb16bbc68889ab5eeb0a85c80bb099b187414b48f1deac509522c8a6068baee277ebd5e2a55062f5b9df13b0d807e5d50df5307a90c1c7f94e380ece099a6203ee60c56862d7da4578dd5d9a2ea8f76169cc0be216317beefb9ac0abbd90eb8c486effd41b63573"}, @generic={0x3b, 0x30, "ea07a09c59296070a4e20d9cdd8af3468022c435dec035fd9bb669953b0b51d5eeed0027ab13d0bbff85e84ebdcf748ba2ceb51db5c521c19c"}]}}, {{0x9, 0x5, 0xa, 0x0, 0x200, 0xa0, 0x54, 0x7, [@generic={0xa1, 0x23, "cdff78875c709026cdfd83894585111cabab8eb20ef1922c612169e6591e270b61a222796ba764962d68fb04a4284ac6058a6a78bc2f167e04f26f2d4bc3fb06eabc3a280b1d14393122f5ef12c0024df9ea57b20164d6435924dc8fdb96d809f5267b7d872830d05f6ace272fd6698800c54bfe997f29a6677dbb66868c1a2f78af4672d67e22e20eb573f1d29516d1e5d69fa03d5a96c3ee417e89cd3a14"}]}}, {{0x9, 0x5, 0xd, 0x3, 0x40, 0x9, 0x3, 0x2a}}]}}, {{0x9, 0x4, 0x93, 0x3a, 0x0, 0x16, 0x48, 0xc5, 0x4, [@cdc_ecm={{0xa, 0x24, 0x6, 0x0, 0x0, "37ae7491cf"}, {0x5, 0x24, 0x0, 0x3}, {0xd, 0x24, 0xf, 0x1, 0x6, 0x0, 0xc, 0x1}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0xd, 0x6, 0xe5}, @mdlm_detail={0x9c, 0x24, 0x13, 0x9, "0bd88fb1d959ca5fc777da2f9cb8a0e19a7e8fa079b4639d47a95cf415c3c95459fe67441e9a61660248b4fd43d566f13e6265d5f2e272d6b9f5c870b0f7460e638035434613660eb3ce21f7a2ccbce1d57ffe74edbc90d271414aaf8ad032b5a41775c4c33278117a2523b083437aae9ddeea34776eef514f0d476df12d22a438f8d7980149fc6087277f62cabe0f0946a9ca6003c065a9"}, @mbim_extended={0x8, 0x24, 0x1c, 0xfff, 0x4, 0xab}, @obex={0x5, 0x24, 0x15, 0x7}, @mdlm={0x15, 0x24, 0x12, 0x6}]}, @uac_control={{0xa, 0x24, 0x1, 0x1, 0x1}, [@feature_unit={0x9, 0x24, 0x6, 0x1, 0x6, 0x1, [0x0], 0x3}]}]}}, {{0x9, 0x4, 0xab, 0x2, 0x7, 0x2, 0x2, 0xff, 0x6, [], [{{0x9, 0x5, 0x9, 0x8, 0x200, 0xe5, 0x0, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x4, 0x9, 0x800}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x9, 0x5}]}}, {{0x9, 0x5, 0x3, 0x3, 0x338, 0x5, 0xa, 0xec, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xa, 0x1}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x79, 0x6}]}}, {{0x9, 0x5, 0xc, 0x0, 0x40, 0x1, 0xf9, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x5, 0x81}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x51, 0x3}]}}, {{0x9, 0x5, 0x0, 0x0, 0x10, 0x3, 0x2, 0x52, [@uac_iso={0x7, 0x25, 0x1, 0x180, 0x0, 0x5}]}}, {{0x9, 0x5, 0x80, 0x10, 0x400, 0xcd, 0x7, 0x1, [@generic={0x5c, 0xc, "77fc1c7039e54d2bc6e66ab741fad16d081a2b675abe22a6e2925158af8243b813b3e74b84924ce962749e1780247366b6fdfa61fddb20a9288e872d364e790938d71b0dacc08293a45d663d122ac192b82ee2c5834f44f597b2"}]}}, {{0x9, 0x5, 0x5, 0x4, 0x20, 0x2, 0x9, 0x4}}, {{0x9, 0x5, 0x7, 0x21dd3b084b82bcf3, 0x200, 0x3, 0x12, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x7, 0x6}]}}]}}]}}]}}, &(0x7f0000000640)={0xa, &(0x7f0000000580)={0xa, 0x6, 0x250, 0x4, 0x3, 0xb, 0x3f, 0x1}, 0x5, &(0x7f0000000680)=ANY=[@ANYBLOB="010f050000"], 0x1, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x40b}}]})
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r2}, 0x10)
r3 = syz_usbip_server_init(0x1)
write$usbip_server(r3, &(0x7f0000000300)=@ret_unlink={{0x4, 0x6, 0x0, 0x3141456f10587752, 0x7}, {0x1}}, 0x30)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0)
r4 = socket(0x1e, 0x4, 0x0)
bind$tipc(r4, 0x0, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000000)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe55a11800150006001400000000120800030043000040a8002b000a00034006000dc3036010fab94dcf5c046109d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88a2ddddbbb219c6c09136dd481c417898516277ce06bbace80177ccbec4c2ee5a7cef4260027836b0d17a58af5d6d93424841f468430dfe1d9d322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f7a5025ccc89e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5", 0xd8}], 0x1}, 0x20000080)

1.116411048s ago: executing program 9 (id=13278):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbfe}, 0x10}}, 0x4)

925.631644ms ago: executing program 8 (id=13282):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xb, 0xc, &(0x7f0000000340)=ANY=[@ANYRES64=r2, @ANYRES32=r1, @ANYBLOB="0000000000000000000000000000000018110000", @ANYRESOCT=r2, @ANYRESOCT=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xe}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f00000003c0)='syzkaller\x00', 0xe, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000002c0)=0x1)
r6 = epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r8, &(0x7f0000000100)={0x20000014})
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x14, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000500180100003d52aa720000000ec2bb8f207b1af8fff8ffffffbfa1007abb000000001a9ae0a000f8ffffffb702000008000000b7030000e200000085000000070000003202849e4fd24aa280bada6a288a9c84aa8cc8cd98e69cd02c34850e4341118e8514951d39f36d5016567d2b5fccce63942857ccd153c65f9cde26b218b1f909920a098d169b413a04286602d4fe6466723f9a577d3787cfcb2d371ba0d5f42849145d8c61d193ee82a02171f1d30af1de25cca0c1afece9b383", @ANYRES32=r9, @ANYRESHEX], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x58, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x4, 0x0, 0xfc, 0x7ffc1ffb}]})
close_range(r5, r7, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="180300000000000000000000000000008510000006000000180000000000000000000000000008006500000000000000180000000000000000000000000000009500000000000000740300000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x94)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r11)
sendmsg$NL80211_CMD_GET_WIPHY(r11, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="01030000000000000000010000000800010014000000080003"], 0x30}}, 0x44)

749.920638ms ago: executing program 8 (id=13283):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x60, 0x0, 0x4c1dad3e3d6a7499, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x0, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x0, 0x1, 0xfffffff8}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x24044000}, 0x2400c000)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB='c', @ANYRESDEC], 0x8)
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x44e601, 0xbb)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000600)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x35, 0x0, "679f672c00b69e65b0934066fc7c3406caf2c09e33bd50116312e2b00fee650af69b2150ccaa762a3db7ad752fe616e085e991c0436e7e7111238865d27b4e82dcc94700ddd1878b088736009d15f1fa"}, 0xd8)
setsockopt$inet_tcp_int(r2, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)
recvfrom$l2tp6(r0, &(0x7f0000000e40)=""/4096, 0x1000, 0x3, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @remote}}, 0x20)
perf_event_open(0x0, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r1)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000340)={0x2c, r3, 0x605, 0x70bd23, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
wait4(0x0, &(0x7f0000000280), 0xa, &(0x7f00000004c0))

727.0636ms ago: executing program 8 (id=13284):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x3}, 0x18)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x10, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x4, @perf_bp={0x0, 0xd}, 0x10434, 0x6, 0xfffffff9, 0x1, 0x8, 0x20009, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1ad530ba78f8b3ea)
socket$netlink(0x10, 0x3, 0xc)
setresuid(0xee01, 0x0, 0xffffffffffffffff)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffe2c)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000900)={'ip6gre0\x00', &(0x7f0000000880)={'syztnl1\x00', 0x0, 0x2f, 0x81, 0x9, 0x3, 0x62, @remote, @private1={0xfc, 0x1, '\x00', 0x41}, 0x80, 0x40, 0x4, 0x7fff}})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x567, 0x0, 0x0, 0x0, 0x59)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = gettid()
r3 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000001c0)={0xc, 0x8, 0xfa00, {&(0x7f0000001c80)}}, 0x10)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
r4 = signalfd(0xffffffffffffffff, &(0x7f0000000140)={[0x3]}, 0x8)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000040000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000140003800800014000000000080002400000000050000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000001c00038018000380140001007465616d300000000000000000000000080007"], 0xd8}, 0x1, 0x0, 0x0, 0x4008005}, 0x8d4)
socket$nl_route(0x10, 0x3, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240))
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="b40000000000000061175c0000000000c6070000000000169500000000000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76, 0x0, 0xffffffffffffffff, 0x46}, 0x48)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000530404002fbd7000000000a0af000000ea74db987bc001d48e58a7b45d94b03ad62bedfbb822250a476ba52aa68414b3bbcd6bedbe90ba0764a46dbb7d27ea83c393cdd4f1806f44065c7d06261fa5d59969b6e264fa200dacdd4bb73233352e44df233037febe1fe9eae9269d11e0e4ec"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000)

638.084148ms ago: executing program 8 (id=13286):
ioctl$TIOCL_SETVESABLANK(0xffffffffffffffff, 0x541c, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xa04710, &(0x7f00000008c0)={[{@user_xattr}, {@errors_remount}, {@noblock_validity}, {@block_validity}, {@mblk_io_submit}, {@min_batch_time={'min_batch_time', 0x3d, 0x6377}}, {@nodelalloc}, {@delalloc}, {@prjquota}, {@jqfmt_vfsold}]}, 0x0, 0x448, &(0x7f0000000bc0)="$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")
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
syz_usb_connect$cdc_ncm(0x5, 0x72, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000600)={0x11, 0x0, 0x2, 0x0, 0xfffffffffffffffe, 0x0, 0x4, 0x8}, 0x0, 0x0, 0x0, 0x0)
rseq(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r2=>0x0)
io_submit(r2, 0x2000000000000326, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)='m', 0xfffffdfc}])
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
socket$pppl2tp(0x18, 0x1, 0x1)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0xfffffe44)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
munmap(&(0x7f00008e5000/0x3000)=nil, 0x3000)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r4 = io_uring_setup(0x1694, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r4, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002700)=""/4096, 0x1a00}], 0x0, 0x11a}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x8855}, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newlink={0x3c, 0x10, 0x404, 0x70bd25, 0x4, {0x0, 0x0, 0x0, 0x0, 0x500, 0x8000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}}, 0x8000)

405.879856ms ago: executing program 0 (id=13289):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x2440, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x400007}, 0x18)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
unshare(0x22020400)
bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="120000000800000004000000b47c000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB="000000000200"/28], 0x50)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)

369.042799ms ago: executing program 1 (id=13290):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000000380))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2, 0x0, 0x400007}, 0x18)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
unshare(0x22020400)
bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="120000000800000004000000b47c000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="000000000200"/28], 0x50)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)

291.508366ms ago: executing program 1 (id=13291):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = accept(r0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
listen(0xffffffffffffffff, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
recvfrom(r2, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x3e8, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r6 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$selinux_load(r6, &(0x7f0000000340)={0xf97cff8c, 0x8, 'SE Linux', "5f84bcaebaf4739b5ca9b7d23316b08e1330b8c0624b2439550916211010f824967cc65807c15769ae84ed3dd7e5de870cefa928cb0585fb9f54736c5fac32ba789fe458a1a945f922e2cd045393b6c1657a1d9ae35818bde1206c3975a2c08c1fd3414ffb6d4d438e858a7c77fb4b6cbfc8fbf29277f7f784e36d654aca4e857a15fb64e53f7f391673649b8da6ba5bf4687ccbe61623875bbb337fec2c12596c325485bb02b81b657120ca033238094f2465b8f63b3be3685c332c3a0a8c73589f"}, 0xd2)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0xf, 0xc, &(0x7f00000001c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10)
r8 = epoll_create1(0x80000)
r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r9, &(0x7f00000000c0)={0xe000001a})
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r10, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x5, "ff00"})
r11 = syz_open_pts(r10, 0x0)
ioctl$TIOCSTI(r11, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TIOCSTI(r11, 0x5412, &(0x7f00000000c0))
ioctl$TCXONC(r11, 0x540a, 0x0)
ioctl$TCSETA(r11, 0x5406, &(0x7f0000000200)={0xfffe, 0x80, 0xe000, 0xb3, 0x17, "041000"})
ioctl$TIOCSTI(r11, 0x5412, &(0x7f0000000140)=0x4)

67.838284ms ago: executing program 1 (id=13292):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x1200)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000100000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x18)
getpriority(0x1, 0x0)

67.538895ms ago: executing program 1 (id=13293):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fddbdf250f000000040009800400078004000580"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

67.120314ms ago: executing program 1 (id=13294):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fddbdf250f000000040009800400078004000580"], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

41.084127ms ago: executing program 2 (id=13295):
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x60, 0x0, 0x4c1dad3e3d6a7499, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x0, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x0, 0x1, 0xfffffff8}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x24044000}, 0x2400c000)
write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB='c', @ANYRESDEC], 0x8)
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x44e601, 0xbb)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000600)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x35, 0x0, "679f672c00b69e65b0934066fc7c3406caf2c09e33bd50116312e2b00fee650af69b2150ccaa762a3db7ad752fe616e085e991c0436e7e7111238865d27b4e82dcc94700ddd1878b088736009d15f1fa"}, 0xd8)
setsockopt$inet_tcp_int(r2, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)
recvfrom$l2tp6(r0, &(0x7f0000000e40)=""/4096, 0x1000, 0x3, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @remote}}, 0x20)
perf_event_open(0x0, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r1)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000340)={0x2c, r3, 0x605, 0x70bd23, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
wait4(0x0, &(0x7f0000000280), 0xa, &(0x7f00000004c0))

31.002707ms ago: executing program 9 (id=13296):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0x11, 0x3, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="39000000140081ae10003c000500018311001f9f660fcf066a05acb612f691f3bd3508abca1be6eeb89c44ebb3730800000000000000e92155", 0x39}], 0x1}, 0x0)
munmap(&(0x7f00004b9000/0x2000)=nil, 0x2000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
syz_io_uring_setup(0x4cbe, &(0x7f0000000140)={0x0, 0x0, 0x400, 0x8}, &(0x7f0000000300), &(0x7f00000001c0))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
socket(0x10, 0x3, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000140)=@gcm_256={{0x303, 0x3a}, "c4d65ab71f5ef2fe", "9e8ecc7bb5352776725e104757e7dc25c6519a85efb17b5508000018bb00", "0900b43f"}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000001880)={'wg1\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000000200)={0x0, 0x3f00, &(0x7f00000001c0)={&(0x7f0000000300)={0x40, r6, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8, 0x1, r5}]}, 0x40}}, 0x0)

22.861858ms ago: executing program 1 (id=13297):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCDELRT(r1, 0x890b, &(0x7f0000000080)={@loopback={0xfec0ffff00000000}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, 0x0, 0x4, 0x0, 0x0, 0x0, 0x800008})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00'}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$selinux_user(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
openat$nvram(0xffffffffffffff9c, 0x0, 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20080e, &(0x7f00000001c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}, {@noauto_da_alloc}]}, 0x1, 0x518, &(0x7f0000001cc0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010028bd7000fbdbdf2505000000200001800d0001007564703a73797a320000"], 0x34}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x9, 0x6a, 0x4}]}, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$inet(0x2, 0x2, 0x1)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08001400fc000000080011000700000008000e00800000000800", @ANYBLOB="348394ab0a4df84958bab5cdda761a7aedba41393b2db2187feb50e2d08e32f248c190821475e9e1bda8282ea615158400439158aff4b11013a18da45dff8d744cbf36ec68d2828096cb09e2e55f32628b592f6b7a5771797657e6913d51c7b2d52725a9639c3585fa90ef86475f7d930575df9e3a2612bdb0427cc5d58fb433c445aa5086d279dfc562e024db337991d20605a4abd53101c6aa345c3b793c2e86dfcbd3f00b4c7f5bfdeeb6e3eb34ac8ee3babf72c323e3c4992bbef8fec75899aa15d3d2abb011c918766d3afd111062b2ad8ccfec4e7870e7ad6fc2464f220170a0fe4eda443e5a373e3d995512995a162be17b"], 0x5c}, 0x1, 0x0, 0x0, 0x890}, 0x0)

14.241949ms ago: executing program 2 (id=13298):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000240000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
unlink(&(0x7f0000000180)='./file1\x00') (fail_nth: 2)

0s ago: executing program 9 (id=13299):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x60}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x40000}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10)
r1 = io_uring_setup(0x257, &(0x7f0000000580)={0x0, 0x1fc6, 0x100, 0x0, 0x1d8})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002700)=""/4096, 0x1000}], &(0x7f0000000200), 0x1}, 0x20) (fail_nth: 2)

kernel console output (not intermixed with test programs):

lt 128
[  713.944010][ T9244] inactive_anon 0
[  713.947686][ T9244] active_anon 4096
[  713.951418][ T9244] inactive_file 0
[  713.955072][ T9244] active_file 0
[  713.958539][ T9244] unevictable 0
[  713.962040][ T9244] hierarchical_memory_limit 314572800
[  713.967557][ T9244] hierarchical_memsw_limit 9223372036854771712
[  713.973742][ T9244] total_cache 0
[  713.977210][ T9244] total_rss 0
[  713.980491][ T9244] total_shmem 0
[  713.984048][ T9244] total_mapped_file 0
[  713.988049][ T9244] total_dirty 0
[  713.991523][ T9244] total_writeback 0
[  713.995374][ T9244] total_workingset_refault_anon 199
[  714.000578][ T9244] total_workingset_refault_file 2560
[  714.005890][ T9244] total_swap 192512
[  714.009706][ T9244] total_swapcached 4096
[  714.013898][ T9244] total_pgpgin 821252
[  714.017909][ T9244] total_pgpgout 821251
[  714.022017][ T9244] total_pgfault 895448
[  714.026100][ T9244] total_pgmajfault 128
[  714.030188][ T9244] total_inactive_anon 0
[  714.034342][ T9244] total_active_anon 4096
[  714.038618][ T9244] total_inactive_file 0
[  714.042784][ T9244] total_active_file 0
[  714.046765][ T9244] total_unevictable 0
[  714.050790][ T9244] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.12779,pid=9243,uid=0
[  714.065546][ T9244] Memory cgroup out of memory: Killed process 9243 (syz.0.12779) total-vm:93764kB, anon-rss:940kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  714.164576][ T2564] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  714.482429][ T9277] tipc: Started in network mode
[  714.487589][ T9277] tipc: Node identity 7622a814c137, cluster identity 4711
[  714.495046][ T9277] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  714.503390][ T9277] tipc: Disabling bearer <eth:syzkaller0>
[  714.580038][ T9282] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12792'.
[  714.713483][ T9289] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12793'.
[  714.792017][ T9292] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  714.800490][ T9292] tipc: Disabling bearer <eth:syzkaller0>
[  714.876864][ T9294] loop9: detected capacity change from 0 to 1024
[  714.896898][ T9294] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  714.909640][ T9294] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  715.487087][   T29] kauditd_printk_skb: 499 callbacks suppressed
[  715.487102][   T29] audit: type=1107 audit(2000000055.202:52464): pid=9319 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='¯'
[  715.550629][ T9325] loop8: detected capacity change from 0 to 512
[  715.558855][ T9325] EXT4-fs: Ignoring removed mblk_io_submit option
[  715.566636][ T9325] EXT4-fs (loop8): failed to initialize system zone (-117)
[  715.574115][ T9325] EXT4-fs (loop8): mount failed
[  715.970087][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  716.236924][ T9345] netlink: 'syz.2.12813': attribute type 2 has an invalid length.
[  716.244837][ T9345] netlink: 'syz.2.12813': attribute type 1 has an invalid length.
[  716.252801][ T9345] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.12813'.
[  716.499406][ T9357] loop9: detected capacity change from 0 to 512
[  716.509089][ T9357] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.12817: bg 0: block 131: padding at end of block bitmap is not set
[  716.526740][ T9357] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  716.538782][   T29] audit: type=1326 audit(2000000056.180:52465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9359 comm="syz.0.12818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  716.564340][ T9357] EXT4-fs (loop9): 1 truncate cleaned up
[  716.570550][ T9357] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  716.578796][   T29] audit: type=1326 audit(2000000056.180:52466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9359 comm="syz.0.12818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  716.606523][   T29] audit: type=1326 audit(2000000056.180:52467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9359 comm="syz.0.12818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  716.630211][   T29] audit: type=1326 audit(2000000056.180:52468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9359 comm="syz.0.12818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  716.653867][   T29] audit: type=1326 audit(2000000056.180:52469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9359 comm="syz.0.12818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  716.682477][   T29] audit: type=1326 audit(2000000056.226:52470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9355 comm="syz.9.12817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  716.706199][   T29] audit: type=1326 audit(2000000056.226:52471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9355 comm="syz.9.12817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  716.729912][   T29] audit: type=1326 audit(2000000056.226:52472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9355 comm="syz.9.12817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  716.753676][   T29] audit: type=1326 audit(2000000056.226:52473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9355 comm="syz.9.12817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  716.851692][ T9362] netlink: 'syz.0.12819': attribute type 2 has an invalid length.
[  716.859621][ T9362] netlink: 'syz.0.12819': attribute type 1 has an invalid length.
[  716.867484][ T9362] netlink: 199820 bytes leftover after parsing attributes in process `syz.0.12819'.
[  716.946780][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  717.178766][ T9367] loop9: detected capacity change from 0 to 512
[  717.199460][ T9367] EXT4-fs: Ignoring removed oldalloc option
[  717.262449][ T9367] EXT4-fs error (device loop9): ext4_xattr_inode_iget:433: comm syz.9.12820: Parent and EA inode have the same ino 15
[  717.287307][ T9367] EXT4-fs error (device loop9): ext4_xattr_inode_iget:433: comm syz.9.12820: Parent and EA inode have the same ino 15
[  717.311108][ T9367] EXT4-fs (loop9): 1 orphan inode deleted
[  717.320163][ T9367] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  717.405221][ T9373] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  717.490542][ T9376] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12823'.
[  717.921743][ T9398] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12830'.
[  717.950922][ T9400] netlink: 'syz.2.12831': attribute type 2 has an invalid length.
[  717.958939][ T9400] netlink: 'syz.2.12831': attribute type 1 has an invalid length.
[  717.966848][ T9400] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.12831'.
[  718.089086][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.179521][ T9405] Falling back ldisc for ttyS3.
[  718.818285][ T9420] netlink: 'syz.2.12837': attribute type 2 has an invalid length.
[  718.826255][ T9420] netlink: 'syz.2.12837': attribute type 1 has an invalid length.
[  718.834173][ T9420] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.12837'.
[  719.305518][ T9425] loop8: detected capacity change from 0 to 8192
[  719.313865][ T9425] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  719.551658][ T9438] netlink: 'syz.2.12844': attribute type 2 has an invalid length.
[  719.560018][ T9438] netlink: 'syz.2.12844': attribute type 1 has an invalid length.
[  719.567990][ T9438] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.12844'.
[  720.054282][ T9451] netlink: 76 bytes leftover after parsing attributes in process `syz.9.12848'.
[  720.143993][ T9447] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  720.154164][ T9447] tipc: Disabling bearer <eth:syzkaller0>
[  720.299650][ T9459] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12852'.
[  720.369106][ T9467] loop8: detected capacity change from 0 to 512
[  720.388168][ T9467] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  720.406461][ T9467] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  720.597449][ T9483] netlink: 76 bytes leftover after parsing attributes in process `syz.0.12859'.
[  720.608792][ T9467] 8021q: adding VLAN 0 to HW filter on device team0
[  720.631418][ T9467] bond0: (slave team0): Enslaving as an active interface with an up link
[  720.723341][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  720.842346][ T9494] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  720.861755][ T9494] tipc: Disabling bearer <eth:syzkaller0>
[  720.912809][   T29] kauditd_printk_skb: 503 callbacks suppressed
[  720.912827][   T29] audit: type=1326 audit(2000000060.211:52977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  720.944917][   T29] audit: type=1326 audit(2000000060.248:52978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  720.968607][   T29] audit: type=1326 audit(2000000060.248:52979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  720.992250][   T29] audit: type=1326 audit(2000000060.248:52980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  721.010831][ T9504] FAULT_INJECTION: forcing a failure.
[  721.010831][ T9504] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  721.015847][   T29] audit: type=1326 audit(2000000060.248:52981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  721.015881][   T29] audit: type=1326 audit(2000000060.248:52982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  721.028980][ T9504] CPU: 1 UID: 0 PID: 9504 Comm: syz.8.12868 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  721.029029][ T9504] Tainted: [W]=WARN
[  721.029076][ T9504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  721.029094][ T9504] Call Trace:
[  721.029104][ T9504]  <TASK>
[  721.029116][ T9504]  __dump_stack+0x1d/0x30
[  721.029161][ T9504]  dump_stack_lvl+0xe8/0x140
[  721.029188][ T9504]  dump_stack+0x15/0x1b
[  721.029210][ T9504]  should_fail_ex+0x265/0x280
[  721.029259][ T9504]  should_fail+0xb/0x20
[  721.029300][ T9504]  should_fail_usercopy+0x1a/0x20
[  721.029376][ T9504]  _copy_to_user+0x20/0xa0
[  721.029492][ T9504]  put_timespec64+0x63/0xb0
[  721.029521][ T9504]  poll_select_finish+0x30c/0x3f0
[  721.029561][ T9504]  __se_sys_pselect6+0x22a/0x280
[  721.029644][ T9504]  __x64_sys_pselect6+0x78/0x90
[  721.029677][ T9504]  x64_sys_call+0x28b9/0x2ff0
[  721.029715][ T9504]  do_syscall_64+0xd2/0x200
[  721.029747][ T9504]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  721.029780][ T9504]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  721.029876][ T9504] RIP: 0033:0x7f8fd674eb69
[  721.029906][ T9504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  721.030007][ T9504] RSP: 002b:00007f8fd4daf038 EFLAGS: 00000246 ORIG_RAX: 000000000000010e
[  721.030040][ T9504] RAX: ffffffffffffffda RBX: 00007f8fd6975fa0 RCX: 00007f8fd674eb69
[  721.030063][ T9504] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  721.030080][ T9504] RBP: 00007f8fd4daf090 R08: 0000200000000300 R09: 0000000000000000
[  721.030097][ T9504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  721.030115][ T9504] R13: 0000000000000000 R14: 00007f8fd6975fa0 R15: 00007ffffe3ee298
[  721.030154][ T9504]  </TASK>
[  721.258481][   T29] audit: type=1326 audit(2000000060.248:52983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9493 comm="syz.9.12865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  721.274602][ T9518] loop8: detected capacity change from 0 to 512
[  721.290942][ T9518] EXT4-fs: Ignoring removed mblk_io_submit option
[  721.292309][   T29] audit: type=1326 audit(2000000060.322:52984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.8.12868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f8fd674d57c code=0x7ffc0000
[  721.320917][   T29] audit: type=1326 audit(2000000060.322:52985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.8.12868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8fd674d61f code=0x7ffc0000
[  721.344350][   T29] audit: type=1326 audit(2000000060.322:52986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9503 comm="syz.8.12868" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f8fd674d7ca code=0x7ffc0000
[  721.375035][ T9518] EXT4-fs (loop8): failed to initialize system zone (-117)
[  721.385695][ T9518] EXT4-fs (loop8): mount failed
[  721.495744][ T9543] loop9: detected capacity change from 0 to 512
[  721.525784][ T9543] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  721.565483][ T9543] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  721.606963][ T9543] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  721.671846][ T9543] EXT4-fs (loop9): Remounting filesystem read-only
[  721.700934][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  721.979643][ T9603] __nla_validate_parse: 4 callbacks suppressed
[  721.979678][ T9603] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12881'.
[  722.743448][ T9676] loop9: detected capacity change from 0 to 8192
[  722.789030][ T9676]  loop9: p1 p2 p3 p4
[  722.794148][ T9676] loop9: p3 start 331777 is beyond EOD, truncated
[  722.800769][ T9676] loop9: p4 size 262144 extends beyond EOD, truncated
[  722.842796][ T9680] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  722.851445][ T9680] tipc: Disabling bearer <eth:syzkaller0>
[  722.868573][ T9681] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12883'.
[  723.042975][ T9690] wg2: left promiscuous mode
[  723.047715][ T9690] wg2: left allmulticast mode
[  723.717578][ T4974] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  723.728790][ T4974] CPU: 1 UID: 0 PID: 4974 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  723.728836][ T4974] Tainted: [W]=WARN
[  723.728846][ T4974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  723.728864][ T4974] Call Trace:
[  723.728870][ T4974]  <TASK>
[  723.728881][ T4974]  __dump_stack+0x1d/0x30
[  723.728977][ T4974]  dump_stack_lvl+0xe8/0x140
[  723.729004][ T4974]  dump_stack+0x15/0x1b
[  723.729025][ T4974]  dump_header+0x81/0x220
[  723.729068][ T4974]  oom_kill_process+0x342/0x400
[  723.729164][ T4974]  out_of_memory+0x979/0xb80
[  723.729212][ T4974]  try_charge_memcg+0x5e6/0x9e0
[  723.729242][ T4974]  charge_memcg+0x51/0xc0
[  723.729331][ T4974]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  723.729363][ T4974]  __read_swap_cache_async+0x1df/0x350
[  723.729414][ T4974]  swap_cluster_readahead+0x277/0x3e0
[  723.729506][ T4974]  swapin_readahead+0xde/0x6f0
[  723.729556][ T4974]  ? __filemap_get_folio+0x4f7/0x6b0
[  723.729684][ T4974]  ? swap_cache_get_folio+0x77/0x200
[  723.729717][ T4974]  do_swap_page+0x301/0x2430
[  723.729741][ T4974]  ? css_rstat_updated+0xb7/0x240
[  723.729801][ T4974]  ? __pfx_default_wake_function+0x10/0x10
[  723.729834][ T4974]  handle_mm_fault+0x9a5/0x2c20
[  723.729876][ T4974]  do_user_addr_fault+0x636/0x1090
[  723.729927][ T4974]  exc_page_fault+0x62/0xa0
[  723.729977][ T4974]  asm_exc_page_fault+0x26/0x30
[  723.730003][ T4974] RIP: 0033:0x7f61537a5bb7
[  723.730023][ T4974] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 e8 fb e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d f9 fa e7 00 48 01 d1 39 7c 24
[  723.730090][ T4974] RSP: 002b:00007ffe5bc07430 EFLAGS: 00010202
[  723.730111][ T4974] RAX: 0000001b31b20000 RBX: 0000000000000201 RCX: 00000000000a9308
[  723.730128][ T4974] RDX: 000000000e3b1219 RSI: 00007ffe5bc074c0 RDI: 0000000000000014
[  723.730141][ T4974] RBP: 00007ffe5bc0746c R08: 000000003649363c R09: 7fffffffffffffff
[  723.730153][ T4974] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  723.730165][ T4974] R13: 00000000000927c0 R14: 00000000000a94aa R15: 00007ffe5bc074c0
[  723.730184][ T4974]  </TASK>
[  723.940784][ T4974] memory: usage 307200kB, limit 307200kB, failcnt 803
[  723.947613][ T4974] memory+swap: usage 307552kB, limit 9007199254740988kB, failcnt 0
[  723.955525][ T4974] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  723.962850][ T4974] Memory cgroup stats for /syz1:
[  723.963466][ T4974] cache 0
[  723.971398][ T4974] rss 0
[  723.974177][ T4974] shmem 0
[  723.977175][ T4974] mapped_file 0
[  723.980680][ T4974] dirty 0
[  723.983630][ T4974] writeback 0
[  723.987011][ T4974] workingset_refault_anon 103
[  723.991747][ T4974] workingset_refault_file 608
[  723.996442][ T4974] swap 360448
[  723.999747][ T4974] swapcached 0
[  724.003189][ T4974] pgpgin 1075637
[  724.006755][ T4974] pgpgout 1075637
[  724.010489][ T4974] pgfault 943078
[  724.014091][ T4974] pgmajfault 84
[  724.017573][ T4974] inactive_anon 0
[  724.021225][ T4974] active_anon 0
[  724.025134][ T4974] inactive_file 0
[  724.028801][ T4974] active_file 0
[  724.032273][ T4974] unevictable 0
[  724.035783][ T4974] hierarchical_memory_limit 314572800
[  724.041247][ T4974] hierarchical_memsw_limit 9223372036854771712
[  724.047538][ T4974] total_cache 0
[  724.051044][ T4974] total_rss 0
[  724.054341][ T4974] total_shmem 0
[  724.057834][ T4974] total_mapped_file 0
[  724.061825][ T4974] total_dirty 0
[  724.065297][ T4974] total_writeback 0
[  724.069116][ T4974] total_workingset_refault_anon 103
[  724.074344][ T4974] total_workingset_refault_file 608
[  724.079599][ T4974] total_swap 360448
[  724.083417][ T4974] total_swapcached 0
[  724.087358][ T4974] total_pgpgin 1075637
[  724.091451][ T4974] total_pgpgout 1075637
[  724.092133][ T9717] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12895'.
[  724.095622][ T4974] total_pgfault 943078
[  724.095635][ T4974] total_pgmajfault 84
[  724.095645][ T4974] total_inactive_anon 0
[  724.095655][ T4974] total_active_anon 0
[  724.107771][ T9717] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12895'.
[  724.108788][ T4974] total_inactive_file 0
[  724.108800][ T4974] total_active_file 0
[  724.138130][ T4974] total_unevictable 0
[  724.142127][ T4974] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.12888,pid=9691,uid=0
[  724.156830][ T4974] Memory cgroup out of memory: Killed process 9691 (syz.1.12888) total-vm:93692kB, anon-rss:1068kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  724.408746][ T9725] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  724.418699][ T9725] tipc: Disabling bearer <eth:syzkaller0>
[  724.680372][ T9744] loop9: detected capacity change from 0 to 2048
[  724.842803][ T9744]  loop9: unable to read partition table
[  724.848700][ T9744] loop9: partition table beyond EOD, truncated
[  724.854894][ T9744] loop_reread_partitions: partition scan of loop9 () failed (rc=-5)
[  725.041532][ T9757] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12905'.
[  725.605161][ T9763] netlink: 32 bytes leftover after parsing attributes in process `syz.9.12908'.
[  725.641136][ T9766] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12910'.
[  725.681980][ T9773] loop9: detected capacity change from 0 to 512
[  725.730171][ T9774] validate_nla: 1 callbacks suppressed
[  725.730191][ T9774] netlink: 'syz.2.12911': attribute type 2 has an invalid length.
[  725.743640][ T9774] netlink: 'syz.2.12911': attribute type 1 has an invalid length.
[  725.751564][ T9774] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.12911'.
[  725.946183][ T9773] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  725.979169][ T9773] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  725.998800][ T9773] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  726.024414][ T9773] EXT4-fs (loop9): Remounting filesystem read-only
[  726.035527][ T9773] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12913'.
[  726.074283][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  726.127963][ T9787] wg2: left promiscuous mode
[  726.132649][ T9787] wg2: left allmulticast mode
[  726.297365][ T9793] Falling back ldisc for ttyS3.
[  726.321891][ T9796] loop9: detected capacity change from 0 to 8192
[  726.374961][ T9796]  loop9: p1 p2 p3 p4
[  726.380262][ T9796] loop9: p3 start 331777 is beyond EOD, truncated
[  726.386836][ T9796] loop9: p4 size 262144 extends beyond EOD, truncated
[  726.433641][ T9799] netlink: 32 bytes leftover after parsing attributes in process `syz.2.12920'.
[  726.498473][   T29] kauditd_printk_skb: 313 callbacks suppressed
[  726.498491][   T29] audit: type=1326 audit(2000000065.368:53296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.528435][   T29] audit: type=1326 audit(2000000065.368:53297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.552220][   T29] audit: type=1326 audit(2000000065.386:53298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.575768][   T29] audit: type=1326 audit(2000000065.386:53299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.599513][   T29] audit: type=1326 audit(2000000065.386:53300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.623171][   T29] audit: type=1326 audit(2000000065.386:53301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.646922][   T29] audit: type=1326 audit(2000000065.386:53302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.670405][   T29] audit: type=1326 audit(2000000065.386:53303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.693972][   T29] audit: type=1326 audit(2000000065.386:53304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.717635][   T29] audit: type=1326 audit(2000000065.386:53305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9804 comm="syz.2.12923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bc053eb69 code=0x7ffc0000
[  726.797369][ T9808] loop8: detected capacity change from 0 to 8192
[  726.810554][ T9808] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  726.887717][ T9818] FAULT_INJECTION: forcing a failure.
[  726.887717][ T9818] name failslab, interval 1, probability 0, space 0, times 0
[  726.900626][ T9818] CPU: 0 UID: 0 PID: 9818 Comm: syz.8.12928 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  726.900671][ T9818] Tainted: [W]=WARN
[  726.900680][ T9818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  726.900697][ T9818] Call Trace:
[  726.900706][ T9818]  <TASK>
[  726.900716][ T9818]  __dump_stack+0x1d/0x30
[  726.900788][ T9818]  dump_stack_lvl+0xe8/0x140
[  726.900812][ T9818]  dump_stack+0x15/0x1b
[  726.900897][ T9818]  should_fail_ex+0x265/0x280
[  726.900940][ T9818]  should_failslab+0x8c/0xb0
[  726.900965][ T9818]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  726.901055][ T9818]  ? kstrdup_const+0x3e/0x50
[  726.901089][ T9818]  kstrdup+0x3e/0xd0
[  726.901126][ T9818]  kstrdup_const+0x3e/0x50
[  726.901149][ T9818]  alloc_lookup_fw_priv+0x160/0x350
[  726.901188][ T9818]  _request_firmware+0x28b/0xbb0
[  726.901221][ T9818]  ? avc_has_perm_noaudit+0x1b1/0x200
[  726.901246][ T9818]  ? cred_has_capability+0x210/0x280
[  726.901392][ T9818]  ? __rcu_read_unlock+0x4f/0x70
[  726.901423][ T9818]  request_firmware+0x36/0x50
[  726.901449][ T9818]  devlink_compat_flash_update+0xb2/0x1b0
[  726.901544][ T9818]  dev_ethtool+0x14a1/0x1660
[  726.901583][ T9818]  ? full_name_hash+0x92/0xe0
[  726.901618][ T9818]  dev_ioctl+0x2e0/0x960
[  726.901640][ T9818]  sock_do_ioctl+0x197/0x220
[  726.901666][ T9818]  sock_ioctl+0x41b/0x610
[  726.901763][ T9818]  ? __pfx_sock_ioctl+0x10/0x10
[  726.901789][ T9818]  __se_sys_ioctl+0xcb/0x140
[  726.901894][ T9818]  __x64_sys_ioctl+0x43/0x50
[  726.901935][ T9818]  x64_sys_call+0x1816/0x2ff0
[  726.902002][ T9818]  do_syscall_64+0xd2/0x200
[  726.902029][ T9818]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  726.902084][ T9818]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  726.902157][ T9818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  726.902186][ T9818] RIP: 0033:0x7f8fd674eb69
[  726.902205][ T9818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  726.902229][ T9818] RSP: 002b:00007f8fd4daf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  726.902253][ T9818] RAX: ffffffffffffffda RBX: 00007f8fd6975fa0 RCX: 00007f8fd674eb69
[  726.902266][ T9818] RDX: 0000200000000340 RSI: 0000000000008946 RDI: 0000000000000005
[  726.902278][ T9818] RBP: 00007f8fd4daf090 R08: 0000000000000000 R09: 0000000000000000
[  726.902427][ T9818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  726.902441][ T9818] R13: 0000000000000000 R14: 00007f8fd6975fa0 R15: 00007ffffe3ee298
[  726.902460][ T9818]  </TASK>
[  727.292985][ T9827] netlink: 'syz.0.12930': attribute type 2 has an invalid length.
[  727.301032][ T9827] netlink: 'syz.0.12930': attribute type 1 has an invalid length.
[  727.413536][ T9831] loop8: detected capacity change from 0 to 2048
[  727.624247][ T9831]  loop8: unable to read partition table
[  727.630192][ T9831] loop8: partition table beyond EOD, truncated
[  727.636432][ T9831] loop_reread_partitions: partition scan of loop8 () failed (rc=-5)
[  727.718884][ T9828] Falling back ldisc for ttyS3.
[  727.747725][ T9842] __nla_validate_parse: 4 callbacks suppressed
[  727.747747][ T9842] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12937'.
[  727.791607][ T9845] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12934'.
[  727.894081][ T9844] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12938'.
[  727.966558][ T9857] loop9: detected capacity change from 0 to 8192
[  728.011725][ T9857]  loop9: p1 p2 p3 p4
[  728.016820][ T9857] loop9: p3 start 331777 is beyond EOD, truncated
[  728.023404][ T9857] loop9: p4 size 262144 extends beyond EOD, truncated
[  728.333525][ T9865] netlink: 24 bytes leftover after parsing attributes in process `syz.8.12946'.
[  728.406748][ T9871] loop8: detected capacity change from 0 to 512
[  728.432680][ T9871] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  728.447490][ T9871] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  728.460164][ T9871] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  728.476682][ T9871] EXT4-fs (loop8): Remounting filesystem read-only
[  728.486223][ T9871] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12949'.
[  728.509067][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  728.538073][ T9877] loop8: detected capacity change from 0 to 2048
[  728.594602][ T9877]  loop8: unable to read partition table
[  728.600863][ T9877] loop8: partition table beyond EOD, truncated
[  728.607127][ T9877] loop_reread_partitions: partition scan of loop8 () failed (rc=-5)
[  728.904001][ T9888] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12953'.
[  729.425689][ T9890] syz.0.12954 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  729.439984][ T9890] CPU: 0 UID: 0 PID: 9890 Comm: syz.0.12954 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  729.440027][ T9890] Tainted: [W]=WARN
[  729.440036][ T9890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  729.440053][ T9890] Call Trace:
[  729.440062][ T9890]  <TASK>
[  729.440072][ T9890]  __dump_stack+0x1d/0x30
[  729.440176][ T9890]  dump_stack_lvl+0xe8/0x140
[  729.440201][ T9890]  dump_stack+0x15/0x1b
[  729.440223][ T9890]  dump_header+0x81/0x220
[  729.440266][ T9890]  oom_kill_process+0x342/0x400
[  729.440412][ T9890]  out_of_memory+0x979/0xb80
[  729.440457][ T9890]  try_charge_memcg+0x5e6/0x9e0
[  729.440496][ T9890]  obj_cgroup_charge_pages+0xa6/0x150
[  729.440583][ T9890]  __memcg_kmem_charge_page+0x9f/0x170
[  729.440626][ T9890]  __alloc_frozen_pages_noprof+0x188/0x360
[  729.440676][ T9890]  alloc_pages_mpol+0xb3/0x250
[  729.440754][ T9890]  alloc_pages_noprof+0x90/0x130
[  729.440796][ T9890]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  729.440925][ T9890]  __kvmalloc_node_noprof+0x30f/0x4e0
[  729.441043][ T9890]  ? ip_set_alloc+0x1f/0x30
[  729.441078][ T9890]  ? ip_set_alloc+0x1f/0x30
[  729.441113][ T9890]  ? __kmalloc_cache_noprof+0x189/0x320
[  729.441194][ T9890]  ip_set_alloc+0x1f/0x30
[  729.441228][ T9890]  hash_netiface_create+0x282/0x740
[  729.441262][ T9890]  ? __pfx_hash_netiface_create+0x10/0x10
[  729.441302][ T9890]  ip_set_create+0x3cc/0x960
[  729.441368][ T9890]  ? __nla_parse+0x40/0x60
[  729.441398][ T9890]  nfnetlink_rcv_msg+0x4c6/0x590
[  729.441459][ T9890]  netlink_rcv_skb+0x120/0x220
[  729.441579][ T9890]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  729.441626][ T9890]  nfnetlink_rcv+0x16b/0x1690
[  729.441654][ T9890]  ? nlmon_xmit+0x4f/0x60
[  729.441676][ T9890]  ? consume_skb+0x49/0x150
[  729.441784][ T9890]  ? nlmon_xmit+0x4f/0x60
[  729.441816][ T9890]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  729.441860][ T9890]  ? __dev_queue_xmit+0x1200/0x2000
[  729.441896][ T9890]  ? __dev_queue_xmit+0x182/0x2000
[  729.442027][ T9890]  ? ref_tracker_free+0x37d/0x3e0
[  729.442069][ T9890]  ? __netlink_deliver_tap+0x4dc/0x500
[  729.442105][ T9890]  netlink_unicast+0x5c0/0x690
[  729.442150][ T9890]  netlink_sendmsg+0x58b/0x6b0
[  729.442257][ T9890]  ? __pfx_netlink_sendmsg+0x10/0x10
[  729.442337][ T9890]  __sock_sendmsg+0x142/0x180
[  729.442407][ T9890]  ____sys_sendmsg+0x31e/0x4e0
[  729.442484][ T9890]  ___sys_sendmsg+0x17b/0x1d0
[  729.442565][ T9890]  __x64_sys_sendmsg+0xd4/0x160
[  729.442623][ T9890]  x64_sys_call+0x191e/0x2ff0
[  729.442651][ T9890]  do_syscall_64+0xd2/0x200
[  729.442684][ T9890]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  729.442787][ T9890]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  729.442808][ T9890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  729.442831][ T9890] RIP: 0033:0x7f8c3d22eb69
[  729.442851][ T9890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  729.442935][ T9890] RSP: 002b:00007f8c3b897038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  729.442958][ T9890] RAX: ffffffffffffffda RBX: 00007f8c3d455fa0 RCX: 00007f8c3d22eb69
[  729.442991][ T9890] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000008
[  729.443004][ T9890] RBP: 00007f8c3d2b1df1 R08: 0000000000000000 R09: 0000000000000000
[  729.443019][ T9890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  729.443032][ T9890] R13: 0000000000000000 R14: 00007f8c3d455fa0 R15: 00007ffc9b9ae8d8
[  729.443052][ T9890]  </TASK>
[  729.780567][ T9890] memory: usage 307200kB, limit 307200kB, failcnt 1751
[  729.787589][ T9890] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[  729.795544][ T9890] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  729.802885][ T9890] Memory cgroup stats for /syz0:
[  729.803436][ T9890] cache 0
[  729.811399][ T9890] rss 0
[  729.814174][ T9890] shmem 0
[  729.817117][ T9890] mapped_file 0
[  729.820664][ T9890] dirty 0
[  729.823653][ T9890] writeback 0
[  729.826948][ T9890] workingset_refault_anon 239
[  729.831818][ T9890] workingset_refault_file 2664
[  729.836725][ T9890] swap 196608
[  729.840248][ T9890] swapcached 0
[  729.843730][ T9890] pgpgin 843372
[  729.847205][ T9890] pgpgout 843372
[  729.850759][ T9890] pgfault 919847
[  729.854350][ T9890] pgmajfault 159
[  729.857903][ T9890] inactive_anon 0
[  729.861549][ T9890] active_anon 0
[  729.865065][ T9890] inactive_file 0
[  729.868706][ T9890] active_file 0
[  729.872177][ T9890] unevictable 0
[  729.875659][ T9890] hierarchical_memory_limit 314572800
[  729.881150][ T9890] hierarchical_memsw_limit 9223372036854771712
[  729.887418][ T9890] total_cache 0
[  729.890882][ T9890] total_rss 0
[  729.894295][ T9890] total_shmem 0
[  729.897796][ T9890] total_mapped_file 0
[  729.901787][ T9890] total_dirty 0
[  729.905259][ T9890] total_writeback 0
[  729.909128][ T9890] total_workingset_refault_anon 239
[  729.914333][ T9890] total_workingset_refault_file 2664
[  729.919848][ T9890] total_swap 196608
[  729.923919][ T9890] total_swapcached 0
[  729.927827][ T9890] total_pgpgin 843372
[  729.931913][ T9890] total_pgpgout 843372
[  729.936060][ T9890] total_pgfault 919847
[  729.940150][ T9890] total_pgmajfault 159
[  729.944267][ T9890] total_inactive_anon 0
[  729.948440][ T9890] total_active_anon 0
[  729.952486][ T9890] total_inactive_file 0
[  729.956737][ T9890] total_active_file 0
[  729.960733][ T9890] total_unevictable 0
[  729.964750][ T9890] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.12954,pid=9889,uid=0
[  729.979616][ T9890] Memory cgroup out of memory: Killed process 9889 (syz.0.12954) total-vm:95812kB, anon-rss:940kB, file-rss:22320kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  730.003403][ T9895] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  730.015255][ T9894] tipc: Disabling bearer <eth:syzkaller0>
[  730.174179][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12957'.
[  730.199268][ T9906] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12957'.
[  730.289696][ T9915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12962'.
[  730.502546][ T9921] netlink: 'syz.0.12966': attribute type 10 has an invalid length.
[  730.996309][ T9954] loop8: detected capacity change from 0 to 8192
[  731.014582][ T9954]  loop8: p1 p2 p3 p4
[  731.019743][ T9954] loop8: p3 start 331777 is beyond EOD, truncated
[  731.026286][ T9954] loop8: p4 size 262144 extends beyond EOD, truncated
[  731.048907][ T9956] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12979'.
[  731.057953][ T9956] tipc: Cannot configure node identity twice
[  731.082474][ T9958] smc: net device bond0 erased user defined pnetid SYZ0
[  731.092263][ T9960] loop9: detected capacity change from 0 to 128
[  731.104659][ T9960] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  731.117193][ T9960] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  731.150445][ T9960] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  731.158145][ T9960] batman_adv: batadv0: Removing interface: batadv_slave_0
[  731.166361][ T9960] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  731.173763][ T9960] batman_adv: batadv0: Removing interface: batadv_slave_1
[  731.412391][ T8937] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  731.467505][ T9977] loop9: detected capacity change from 0 to 8192
[  731.476940][ T9977] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  731.522943][ T9983] vlan2: entered allmulticast mode
[  731.528620][ T9983] dummy0: entered allmulticast mode
[  731.600481][ T9992] FAULT_INJECTION: forcing a failure.
[  731.600481][ T9992] name failslab, interval 1, probability 0, space 0, times 0
[  731.613259][ T9992] CPU: 1 UID: 0 PID: 9992 Comm: syz.1.12991 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  731.613302][ T9992] Tainted: [W]=WARN
[  731.613310][ T9992] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  731.613326][ T9992] Call Trace:
[  731.613333][ T9992]  <TASK>
[  731.613412][ T9992]  __dump_stack+0x1d/0x30
[  731.613439][ T9992]  dump_stack_lvl+0xe8/0x140
[  731.613458][ T9992]  dump_stack+0x15/0x1b
[  731.613549][ T9992]  should_fail_ex+0x265/0x280
[  731.613591][ T9992]  should_failslab+0x8c/0xb0
[  731.613616][ T9992]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  731.613651][ T9992]  ? sidtab_sid2str_get+0xa0/0x130
[  731.613764][ T9992]  kmemdup_noprof+0x2b/0x70
[  731.613795][ T9992]  sidtab_sid2str_get+0xa0/0x130
[  731.613848][ T9992]  security_sid_to_context_core+0x1eb/0x2e0
[  731.613893][ T9992]  security_sid_to_context+0x27/0x40
[  731.613946][ T9992]  selinux_lsmprop_to_secctx+0x67/0xf0
[  731.613982][ T9992]  security_lsmprop_to_secctx+0x43/0x80
[  731.614016][ T9992]  audit_log_task_context+0x77/0x190
[  731.614138][ T9992]  audit_log_task+0xf4/0x250
[  731.614170][ T9992]  audit_seccomp+0x61/0x100
[  731.614194][ T9992]  ? __seccomp_filter+0x68c/0x10d0
[  731.614276][ T9992]  __seccomp_filter+0x69d/0x10d0
[  731.614297][ T9992]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  731.614326][ T9992]  ? vfs_write+0x75e/0x8e0
[  731.614364][ T9992]  ? __rcu_read_unlock+0x4f/0x70
[  731.614399][ T9992]  ? __fget_files+0x184/0x1c0
[  731.614482][ T9992]  __secure_computing+0x82/0x150
[  731.614560][ T9992]  syscall_trace_enter+0xcf/0x1e0
[  731.614590][ T9992]  do_syscall_64+0xac/0x200
[  731.614620][ T9992]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  731.614651][ T9992]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  731.614677][ T9992]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.614704][ T9992] RIP: 0033:0x7f61538ceb69
[  731.614724][ T9992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  731.614747][ T9992] RSP: 002b:00007f6151f37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a0
[  731.614771][ T9992] RAX: ffffffffffffffda RBX: 00007f6153af5fa0 RCX: 00007f61538ceb69
[  731.614836][ T9992] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000007
[  731.614852][ T9992] RBP: 00007f6151f37090 R08: 0000000000000000 R09: 0000000000000000
[  731.614867][ T9992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  731.614883][ T9992] R13: 0000000000000000 R14: 00007f6153af5fa0 R15: 00007ffe5bc070a8
[  731.614920][ T9992]  </TASK>
[  731.918508][ T9998] loop8: detected capacity change from 0 to 512
[  731.928688][ T9998] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.12996: bg 0: block 131: padding at end of block bitmap is not set
[  731.943924][ T9998] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  731.961604][ T9998] EXT4-fs (loop8): 1 truncate cleaned up
[  731.975476][ T9998] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  732.007168][   T29] kauditd_printk_skb: 438 callbacks suppressed
[  732.007188][   T29] audit: type=1326 audit(2000000070.442:53741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.064531][   T29] audit: type=1326 audit(2000000070.442:53742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.088494][   T29] audit: type=1326 audit(2000000070.442:53743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.112102][   T29] audit: type=1326 audit(2000000070.442:53744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.135723][   T29] audit: type=1326 audit(2000000070.442:53745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.159333][   T29] audit: type=1326 audit(2000000070.442:53746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.183283][   T29] audit: type=1326 audit(2000000070.442:53747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.206954][   T29] audit: type=1326 audit(2000000070.442:53748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.230580][   T29] audit: type=1326 audit(2000000070.442:53749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.254361][   T29] audit: type=1326 audit(2000000070.442:53750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9996 comm="syz.8.12996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  732.281575][T10011] FAULT_INJECTION: forcing a failure.
[  732.281575][T10011] name failslab, interval 1, probability 0, space 0, times 0
[  732.294440][T10011] CPU: 0 UID: 0 PID: 10011 Comm: syz.2.12999 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  732.294504][T10011] Tainted: [W]=WARN
[  732.294510][T10011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  732.294525][T10011] Call Trace:
[  732.294533][T10011]  <TASK>
[  732.294543][T10011]  __dump_stack+0x1d/0x30
[  732.294572][T10011]  dump_stack_lvl+0xe8/0x140
[  732.294596][T10011]  dump_stack+0x15/0x1b
[  732.294618][T10011]  should_fail_ex+0x265/0x280
[  732.294773][T10011]  should_failslab+0x8c/0xb0
[  732.294800][T10011]  kmem_cache_alloc_noprof+0x50/0x310
[  732.294834][T10011]  ? security_file_alloc+0x32/0x100
[  732.294869][T10011]  security_file_alloc+0x32/0x100
[  732.294921][T10011]  init_file+0x5c/0x1d0
[  732.294959][T10011]  alloc_empty_file+0x8b/0x200
[  732.294997][T10011]  alloc_file_pseudo+0xc6/0x160
[  732.295029][T10011]  anon_inode_getfile+0xa0/0x120
[  732.295180][T10011]  __se_sys_perf_event_open+0xb69/0x11c0
[  732.295227][T10011]  __x64_sys_perf_event_open+0x67/0x80
[  732.295281][T10011]  x64_sys_call+0x7bd/0x2ff0
[  732.295302][T10011]  do_syscall_64+0xd2/0x200
[  732.295324][T10011]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  732.295348][T10011]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  732.295388][T10011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.295416][T10011] RIP: 0033:0x7f2bc053eb69
[  732.295435][T10011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  732.295487][T10011] RSP: 002b:00007f2bbeb9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  732.295581][T10011] RAX: ffffffffffffffda RBX: 00007f2bc0765fa0 RCX: 00007f2bc053eb69
[  732.295593][T10011] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000200000000180
[  732.295605][T10011] RBP: 00007f2bbeb9f090 R08: 0000000000000000 R09: 0000000000000000
[  732.295617][T10011] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000001
[  732.295629][T10011] R13: 0000000000000001 R14: 00007f2bc0765fa0 R15: 00007ffe949ac178
[  732.295708][T10011]  </TASK>
[  732.535354][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  732.608415][T10016] Falling back ldisc for ttyS3.
[  732.635711][T10028] random: crng reseeded on system resumption
[  732.811025][T10041] FAULT_INJECTION: forcing a failure.
[  732.811025][T10041] name failslab, interval 1, probability 0, space 0, times 0
[  732.823842][T10041] CPU: 0 UID: 0 PID: 10041 Comm: syz.1.13010 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  732.824025][T10041] Tainted: [W]=WARN
[  732.824035][T10041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  732.824052][T10041] Call Trace:
[  732.824061][T10041]  <TASK>
[  732.824072][T10041]  __dump_stack+0x1d/0x30
[  732.824100][T10041]  dump_stack_lvl+0xe8/0x140
[  732.824150][T10041]  dump_stack+0x15/0x1b
[  732.824166][T10041]  should_fail_ex+0x265/0x280
[  732.824207][T10041]  should_failslab+0x8c/0xb0
[  732.824232][T10041]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  732.824271][T10041]  ? key_alloc+0x2b8/0x9a0
[  732.824358][T10041]  kmemdup_noprof+0x2b/0x70
[  732.824390][T10041]  key_alloc+0x2b8/0x9a0
[  732.824481][T10041]  keyring_alloc+0x45/0xb0
[  732.824510][T10041]  lookup_user_key+0x2ea/0xd10
[  732.824619][T10041]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[  732.824657][T10041]  __se_sys_add_key+0x263/0x350
[  732.824755][T10041]  __x64_sys_add_key+0x67/0x80
[  732.824796][T10041]  x64_sys_call+0x28c4/0x2ff0
[  732.824820][T10041]  do_syscall_64+0xd2/0x200
[  732.824850][T10041]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  732.824881][T10041]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  732.824909][T10041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  732.824959][T10041] RIP: 0033:0x7f61538ceb69
[  732.824974][T10041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  732.824995][T10041] RSP: 002b:00007f6151f37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[  732.825019][T10041] RAX: ffffffffffffffda RBX: 00007f6153af5fa0 RCX: 00007f61538ceb69
[  732.825036][T10041] RDX: 0000200000000000 RSI: 0000000000000000 RDI: 0000200000000040
[  732.825052][T10041] RBP: 00007f6151f37090 R08: ffffffffffffffff R09: 0000000000000000
[  732.825136][T10041] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[  732.825153][T10041] R13: 0000000000000000 R14: 00007f6153af5fa0 R15: 00007ffe5bc070a8
[  732.825248][T10041]  </TASK>
[  733.202235][T10058] __nla_validate_parse: 3 callbacks suppressed
[  733.202258][T10058] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13018'.
[  733.256934][T10066] netlink: 76 bytes leftover after parsing attributes in process `syz.0.13021'.
[  733.404025][T10073] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13013'.
[  733.433758][T10073] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13013'.
[  733.469934][T10071] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13024'.
[  733.514410][ T7945] block device autoloading is deprecated and will be removed.
[  733.614711][T10086] FAULT_INJECTION: forcing a failure.
[  733.614711][T10086] name failslab, interval 1, probability 0, space 0, times 0
[  733.627651][T10086] CPU: 1 UID: 0 PID: 10086 Comm: syz.2.13029 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  733.627705][T10086] Tainted: [W]=WARN
[  733.627715][T10086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  733.627803][T10086] Call Trace:
[  733.627811][T10086]  <TASK>
[  733.627820][T10086]  __dump_stack+0x1d/0x30
[  733.627843][T10086]  dump_stack_lvl+0xe8/0x140
[  733.627861][T10086]  dump_stack+0x15/0x1b
[  733.627953][T10086]  should_fail_ex+0x265/0x280
[  733.628026][T10086]  should_failslab+0x8c/0xb0
[  733.628058][T10086]  __kmalloc_noprof+0xa5/0x3e0
[  733.628086][T10086]  ? ethnl_default_doit+0x112/0x970
[  733.628127][T10086]  ethnl_default_doit+0x112/0x970
[  733.628236][T10086]  ? genl_family_rcv_msg_attrs_parse+0x13b/0x190
[  733.628265][T10086]  ? genl_family_rcv_msg_attrs_parse+0x184/0x190
[  733.628297][T10086]  genl_family_rcv_msg_doit+0x143/0x1b0
[  733.628339][T10086]  genl_rcv_msg+0x422/0x460
[  733.628369][T10086]  ? __pfx_ethnl_default_doit+0x10/0x10
[  733.628476][T10086]  netlink_rcv_skb+0x120/0x220
[  733.628508][T10086]  ? __pfx_genl_rcv_msg+0x10/0x10
[  733.628541][T10086]  genl_rcv+0x28/0x40
[  733.628641][T10086]  netlink_unicast+0x5c0/0x690
[  733.628686][T10086]  netlink_sendmsg+0x58b/0x6b0
[  733.628800][T10086]  ? __pfx_netlink_sendmsg+0x10/0x10
[  733.628833][T10086]  __sock_sendmsg+0x142/0x180
[  733.628863][T10086]  ____sys_sendmsg+0x31e/0x4e0
[  733.628948][T10086]  ___sys_sendmsg+0x17b/0x1d0
[  733.629024][T10086]  __x64_sys_sendmsg+0xd4/0x160
[  733.629073][T10086]  x64_sys_call+0x191e/0x2ff0
[  733.629118][T10086]  do_syscall_64+0xd2/0x200
[  733.629141][T10086]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  733.629172][T10086]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  733.629231][T10086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  733.629253][T10086] RIP: 0033:0x7f2bc053eb69
[  733.629269][T10086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  733.629366][T10086] RSP: 002b:00007f2bbeb9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  733.629385][T10086] RAX: ffffffffffffffda RBX: 00007f2bc0765fa0 RCX: 00007f2bc053eb69
[  733.629398][T10086] RDX: 0000000004008800 RSI: 0000200000000840 RDI: 0000000000000003
[  733.629416][T10086] RBP: 00007f2bbeb9f090 R08: 0000000000000000 R09: 0000000000000000
[  733.629432][T10086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  733.629448][T10086] R13: 0000000000000000 R14: 00007f2bc0765fa0 R15: 00007ffe949ac178
[  733.629473][T10086]  </TASK>
[  733.931718][T10088] loop9: detected capacity change from 0 to 128
[  733.965692][T10088] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  733.998740][T10088] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  734.149361][T10102] netlink: 'syz.2.13034': attribute type 2 has an invalid length.
[  734.157315][T10102] netlink: 'syz.2.13034': attribute type 1 has an invalid length.
[  734.165195][T10102] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.13034'.
[  734.278308][T10088] tipc: New replicast peer: 255.255.255.83
[  734.284406][T10088] tipc: Enabled bearer <udp:ree>, priority 10
[  734.393245][T10088] netlink: 132 bytes leftover after parsing attributes in process `syz.9.13030'.
[  734.511049][T10109] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13035'.
[  734.649410][ T8937] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  734.673664][T10116] 9pnet_fd: Insufficient options for proto=fd
[  734.757661][T10120] loop9: detected capacity change from 0 to 7
[  734.773715][T10120] Buffer I/O error on dev loop9, logical block 0, async page read
[  734.792168][T10120] Buffer I/O error on dev loop9, logical block 0, async page read
[  734.800167][T10120]  loop9: unable to read partition table
[  734.819251][T10120] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  734.819251][T10120] 
) failed (rc=-5)
[  734.912661][T10133] loop8: detected capacity change from 0 to 128
[  734.967647][T10133] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13047'.
[  735.018948][T10136] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  735.105452][T10146] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13052'.
[  735.168510][T10147] loop8: detected capacity change from 0 to 8192
[  735.263863][T10159] netlink: 'syz.2.13055': attribute type 2 has an invalid length.
[  735.271735][T10159] netlink: 'syz.2.13055': attribute type 1 has an invalid length.
[  735.491066][T22584] tipc: Node number set to 3071649812
[  735.498987][T10147]  loop8: p1 p2 p3 p4
[  735.510531][T10147] loop8: p3 start 331777 is beyond EOD, truncated
[  735.517194][T10147] loop8: p4 size 262144 extends beyond EOD, truncated
[  735.932049][T10177] tipc: Cannot configure node identity twice
[  735.938178][T10177] tipc: Cannot configure node identity twice
[  735.984816][T10184] loop9: detected capacity change from 0 to 512
[  736.002258][T10184] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.13066: bg 0: block 131: padding at end of block bitmap is not set
[  736.034902][T10184] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  736.055940][T10184] EXT4-fs (loop9): 1 truncate cleaned up
[  736.061965][T10184] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  736.095160][T10191] FAULT_INJECTION: forcing a failure.
[  736.095160][T10191] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  736.108366][T10191] CPU: 1 UID: 0 PID: 10191 Comm: syz.2.13070 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  736.108482][T10191] Tainted: [W]=WARN
[  736.108491][T10191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  736.108508][T10191] Call Trace:
[  736.108517][T10191]  <TASK>
[  736.108525][T10191]  __dump_stack+0x1d/0x30
[  736.108552][T10191]  dump_stack_lvl+0xe8/0x140
[  736.108586][T10191]  dump_stack+0x15/0x1b
[  736.108602][T10191]  should_fail_ex+0x265/0x280
[  736.108700][T10191]  should_fail+0xb/0x20
[  736.108728][T10191]  should_fail_usercopy+0x1a/0x20
[  736.108844][T10191]  strncpy_from_user+0x25/0x230
[  736.108870][T10191]  ? kmem_cache_alloc_noprof+0x186/0x310
[  736.108990][T10191]  ? getname_flags+0x80/0x3b0
[  736.109025][T10191]  getname_flags+0xae/0x3b0
[  736.109053][T10191]  __x64_sys_renameat2+0x5f/0x90
[  736.109077][T10191]  x64_sys_call+0x3f9/0x2ff0
[  736.109146][T10191]  do_syscall_64+0xd2/0x200
[  736.109169][T10191]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  736.109199][T10191]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  736.109285][T10191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  736.109307][T10191] RIP: 0033:0x7f2bc053eb69
[  736.109322][T10191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  736.109343][T10191] RSP: 002b:00007f2bbeb9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  736.109439][T10191] RAX: ffffffffffffffda RBX: 00007f2bc0765fa0 RCX: 00007f2bc053eb69
[  736.109456][T10191] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: ffffffffffffffff
[  736.109473][T10191] RBP: 00007f2bbeb9f090 R08: 0000000000000000 R09: 0000000000000000
[  736.109489][T10191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  736.109548][T10191] R13: 0000000000000000 R14: 00007f2bc0765fa0 R15: 00007ffe949ac178
[  736.109572][T10191]  </TASK>
[  736.324001][T10193] loop8: detected capacity change from 0 to 512
[  736.356612][T10193] EXT4-fs: Ignoring removed oldalloc option
[  736.368608][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  736.369582][T10193] EXT4-fs error (device loop8): ext4_xattr_inode_iget:433: comm syz.8.13071: Parent and EA inode have the same ino 15
[  736.393731][T10193] EXT4-fs error (device loop8): ext4_xattr_inode_iget:433: comm syz.8.13071: Parent and EA inode have the same ino 15
[  736.415626][T10193] EXT4-fs (loop8): 1 orphan inode deleted
[  736.430243][T10193] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  736.623782][T10209] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  736.644835][T10214] netlink: 'syz.0.13075': attribute type 2 has an invalid length.
[  736.652800][T10214] netlink: 'syz.0.13075': attribute type 1 has an invalid length.
[  737.110146][T10218] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  737.134038][T10218] tipc: Disabling bearer <eth:syzkaller0>
[  737.305624][T10228] netlink: 'syz.0.13082': attribute type 2 has an invalid length.
[  737.313640][T10228] netlink: 'syz.0.13082': attribute type 1 has an invalid length.
[  737.464627][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  737.563326][   T29] kauditd_printk_skb: 547 callbacks suppressed
[  737.563346][   T29] audit: type=1326 audit(2000000075.580:54298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10217 comm="syz.9.13079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  737.593328][   T29] audit: type=1326 audit(2000000075.580:54299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10217 comm="syz.9.13079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  737.661588][   T29] audit: type=1326 audit(2000000075.663:54300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.685570][   T29] audit: type=1326 audit(2000000075.663:54301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.781216][T10231] loop8: detected capacity change from 0 to 8192
[  737.787940][   T29] audit: type=1326 audit(2000000075.718:54302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.811727][   T29] audit: type=1326 audit(2000000075.718:54303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.835761][   T29] audit: type=1326 audit(2000000075.718:54304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.859616][   T29] audit: type=1326 audit(2000000075.718:54305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.883282][   T29] audit: type=1326 audit(2000000075.718:54306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.907036][   T29] audit: type=1326 audit(2000000075.718:54307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10230 comm="syz.8.13083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fd674eb69 code=0x7ffc0000
[  737.962242][T10231] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  738.017779][T10237] loop9: detected capacity change from 0 to 128
[  738.029539][T10237] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  738.050716][T10237] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  738.066151][T10237] delete_channel: no stack
[  738.070686][T10237] delete_channel: no stack
[  738.132116][ T8937] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  738.279443][T10254] loop9: detected capacity change from 0 to 512
[  738.286186][T10254] EXT4-fs: Ignoring removed oldalloc option
[  738.297885][T10254] EXT4-fs error (device loop9): ext4_xattr_inode_iget:433: comm syz.9.13093: Parent and EA inode have the same ino 15
[  738.300892][T10257] loop8: detected capacity change from 0 to 512
[  738.317936][T10254] EXT4-fs error (device loop9): ext4_xattr_inode_iget:433: comm syz.9.13093: Parent and EA inode have the same ino 15
[  738.332052][T10254] EXT4-fs (loop9): 1 orphan inode deleted
[  738.333461][T10257] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13094: bg 0: block 131: padding at end of block bitmap is not set
[  738.338399][T10254] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  738.368603][T10257] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  738.402100][T10257] EXT4-fs (loop8): 1 truncate cleaned up
[  738.408552][T10257] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  738.498674][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  738.514760][T10265] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  738.624051][T10267] Falling back ldisc for ttyS3.
[  738.646798][T10272] FAULT_INJECTION: forcing a failure.
[  738.646798][T10272] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  738.660292][T10272] CPU: 0 UID: 0 PID: 10272 Comm: syz.0.13098 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  738.660350][T10272] Tainted: [W]=WARN
[  738.660359][T10272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  738.660376][T10272] Call Trace:
[  738.660383][T10272]  <TASK>
[  738.660392][T10272]  __dump_stack+0x1d/0x30
[  738.660419][T10272]  dump_stack_lvl+0xe8/0x140
[  738.660443][T10272]  dump_stack+0x15/0x1b
[  738.660464][T10272]  should_fail_ex+0x265/0x280
[  738.660566][T10272]  should_fail_alloc_page+0xf2/0x100
[  738.660599][T10272]  __alloc_frozen_pages_noprof+0xff/0x360
[  738.660642][T10272]  alloc_pages_mpol+0xb3/0x250
[  738.660760][T10272]  alloc_pages_noprof+0x90/0x130
[  738.660800][T10272]  pte_alloc_one+0x2d/0x120
[  738.660876][T10272]  __do_fault+0x7b/0x200
[  738.660905][T10272]  handle_mm_fault+0xd69/0x2c20
[  738.660933][T10272]  ? __rcu_read_unlock+0x4f/0x70
[  738.660968][T10272]  do_user_addr_fault+0x3fe/0x1090
[  738.661052][T10272]  exc_page_fault+0x62/0xa0
[  738.661077][T10272]  asm_exc_page_fault+0x26/0x30
[  738.661163][T10272] RIP: 0010:filldir64+0x1ee/0x420
[  738.661184][T10272] Code: c1 ff 48 89 ef 4c 89 f6 e8 8f b4 c1 ff 4c 39 f5 0f 82 ab 01 00 00 4c 39 e5 0f 87 a2 01 00 00 0f 01 cb 0f ae e8 48 8b 44 24 40 <49> 89 46 08 48 8b 6c 24 10 48 8b 44 24 38 48 89 45 00 48 8b 04 24
[  738.661220][T10272] RSP: 0018:ffffc90001677d60 EFLAGS: 00050283
[  738.661241][T10272] RAX: 0000000000000000 RBX: 0000000000000004 RCX: ffff88810a689080
[  738.661258][T10272] RDX: 0000000000000000 RSI: 0000200000000f80 RDI: 0000200000000f98
[  738.661274][T10272] RBP: 0000200000000f98 R08: 0001c90001677ea7 R09: 0000000000000000
[  738.661304][T10272] R10: 000000007fffffff R11: ffffffff819642a0 R12: 00007ffffffff000
[  738.661317][T10272] R13: 0000000000000001 R14: 0000200000000f80 R15: ffffffff8643b5e9
[  738.661330][T10272]  ? __pfx_filldir64+0x10/0x10
[  738.661362][T10272]  ? __pfx_filldir64+0x10/0x10
[  738.661383][T10272]  offset_readdir+0xc7/0x2c0
[  738.661458][T10272]  iterate_dir+0x114/0x330
[  738.661550][T10272]  ? mutex_lock+0xd/0x30
[  738.661591][T10272]  __se_sys_getdents64+0x88/0x1b0
[  738.661612][T10272]  ? __pfx_filldir64+0x10/0x10
[  738.661686][T10272]  __x64_sys_getdents64+0x43/0x50
[  738.661709][T10272]  x64_sys_call+0x2d9f/0x2ff0
[  738.661736][T10272]  do_syscall_64+0xd2/0x200
[  738.661764][T10272]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  738.661788][T10272]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  738.661872][T10272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  738.661948][T10272] RIP: 0033:0x7f8c3d22eb69
[  738.661966][T10272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  738.662026][T10272] RSP: 002b:00007f8c3b897038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  738.662072][T10272] RAX: ffffffffffffffda RBX: 00007f8c3d455fa0 RCX: 00007f8c3d22eb69
[  738.662089][T10272] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000006
[  738.662105][T10272] RBP: 00007f8c3b897090 R08: 0000000000000000 R09: 0000000000000000
[  738.662118][T10272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  738.662130][T10272] R13: 0000000000000000 R14: 00007f8c3d455fa0 R15: 00007ffc9b9ae8d8
[  738.662147][T10272]  </TASK>
[  739.201591][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  739.269004][T10285] __nla_validate_parse: 8 callbacks suppressed
[  739.269023][T10285] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13104'.
[  739.338660][T10290] FAULT_INJECTION: forcing a failure.
[  739.338660][T10290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  739.351877][T10290] CPU: 1 UID: 0 PID: 10290 Comm: syz.1.13106 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  739.351927][T10290] Tainted: [W]=WARN
[  739.351937][T10290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  739.351953][T10290] Call Trace:
[  739.351966][T10290]  <TASK>
[  739.351978][T10290]  __dump_stack+0x1d/0x30
[  739.352008][T10290]  dump_stack_lvl+0xe8/0x140
[  739.352034][T10290]  dump_stack+0x15/0x1b
[  739.352114][T10290]  should_fail_ex+0x265/0x280
[  739.352162][T10290]  should_fail+0xb/0x20
[  739.352200][T10290]  should_fail_usercopy+0x1a/0x20
[  739.352243][T10290]  copy_fpstate_to_sigframe+0x628/0x7d0
[  739.352289][T10290]  ? copy_fpstate_to_sigframe+0xe6/0x7d0
[  739.352336][T10290]  ? x86_task_fpu+0x36/0x60
[  739.352374][T10290]  get_sigframe+0x34d/0x490
[  739.352403][T10290]  ? get_signal+0xdc8/0xf70
[  739.352480][T10290]  x64_setup_rt_frame+0xa8/0x580
[  739.352510][T10290]  arch_do_signal_or_restart+0x27c/0x480
[  739.352543][T10290]  exit_to_user_mode_loop+0x7a/0x100
[  739.352574][T10290]  do_syscall_64+0x1d6/0x200
[  739.352641][T10290]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  739.352673][T10290]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.352701][T10290] RIP: 0033:0x7f61538ceb67
[  739.352723][T10290] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  739.352948][T10290] RSP: 002b:00007f6151f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[  739.353032][T10290] RAX: 0000000000000116 RBX: 00007f6153af5fa0 RCX: 00007f61538ceb69
[  739.353047][T10290] RDX: 0000000000000001 RSI: 0000200000001280 RDI: 0000000000000003
[  739.353063][T10290] RBP: 00007f6151f37090 R08: 0000000000000000 R09: 0000000000000000
[  739.353079][T10290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  739.353102][T10290] R13: 0000000000000000 R14: 00007f6153af5fa0 R15: 00007ffe5bc070a8
[  739.353129][T10290]  </TASK>
[  739.802692][T10293] FAULT_INJECTION: forcing a failure.
[  739.802692][T10293] name failslab, interval 1, probability 0, space 0, times 0
[  739.815420][T10293] CPU: 0 UID: 0 PID: 10293 Comm: syz.1.13107 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  739.815494][T10293] Tainted: [W]=WARN
[  739.815503][T10293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  739.815520][T10293] Call Trace:
[  739.815527][T10293]  <TASK>
[  739.815544][T10293]  __dump_stack+0x1d/0x30
[  739.815566][T10293]  dump_stack_lvl+0xe8/0x140
[  739.815587][T10293]  dump_stack+0x15/0x1b
[  739.815609][T10293]  should_fail_ex+0x265/0x280
[  739.815662][T10293]  should_failslab+0x8c/0xb0
[  739.815764][T10293]  kmem_cache_alloc_noprof+0x50/0x310
[  739.815799][T10293]  ? __inet_bhash2_update_saddr+0x12f/0xd40
[  739.815869][T10293]  __inet_bhash2_update_saddr+0x12f/0xd40
[  739.815905][T10293]  ? xfrm_lookup_route+0xd6/0x110
[  739.815985][T10293]  inet_bhash2_update_saddr+0x25/0x30
[  739.816020][T10293]  tcp_v6_connect+0x8b3/0xc30
[  739.816128][T10293]  ? refill_obj_stock+0x254/0x2e0
[  739.816245][T10293]  __inet_stream_connect+0x169/0x7e0
[  739.816284][T10293]  ? tcp_sendmsg_fastopen+0x172/0x520
[  739.816313][T10293]  ? should_failslab+0x8c/0xb0
[  739.816343][T10293]  ? __kmalloc_cache_noprof+0x189/0x320
[  739.816380][T10293]  tcp_sendmsg_fastopen+0x43a/0x520
[  739.816414][T10293]  tcp_sendmsg_locked+0x26e1/0x2c00
[  739.816502][T10293]  ? mntput_no_expire+0x6f/0x460
[  739.816547][T10293]  ? __rcu_read_unlock+0x4f/0x70
[  739.816573][T10293]  ? avc_has_perm_noaudit+0x1b1/0x200
[  739.816598][T10293]  ? avc_has_perm+0xf7/0x180
[  739.816685][T10293]  ? _raw_spin_unlock_bh+0x36/0x40
[  739.816763][T10293]  ? __pfx_tcp_sendmsg+0x10/0x10
[  739.816787][T10293]  tcp_sendmsg+0x2f/0x50
[  739.816809][T10293]  inet6_sendmsg+0x76/0xd0
[  739.816839][T10293]  __sock_sendmsg+0x8b/0x180
[  739.816929][T10293]  __sys_sendto+0x268/0x330
[  739.816967][T10293]  __x64_sys_sendto+0x76/0x90
[  739.816997][T10293]  x64_sys_call+0x2d05/0x2ff0
[  739.817068][T10293]  do_syscall_64+0xd2/0x200
[  739.817116][T10293]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  739.817140][T10293]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  739.817238][T10293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  739.817263][T10293] RIP: 0033:0x7f61538ceb69
[  739.817283][T10293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  739.817306][T10293] RSP: 002b:00007f6151f37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  739.817329][T10293] RAX: ffffffffffffffda RBX: 00007f6153af5fa0 RCX: 00007f61538ceb69
[  739.817343][T10293] RDX: fffffffffffffea7 RSI: 0000200000f6f000 RDI: 0000000000000004
[  739.817426][T10293] RBP: 00007f6151f37090 R08: 0000200000b63fe4 R09: 000000000000001c
[  739.817443][T10293] R10: 0000000020000004 R11: 0000000000000246 R12: 0000000000000001
[  739.817459][T10293] R13: 0000000000000000 R14: 00007f6153af5fa0 R15: 00007ffe5bc070a8
[  739.817484][T10293]  </TASK>
[  740.110976][T10287] netlink: 'syz.9.13105': attribute type 2 has an invalid length.
[  740.118854][T10287] netlink: 'syz.9.13105': attribute type 1 has an invalid length.
[  740.126759][T10287] netlink: 199820 bytes leftover after parsing attributes in process `syz.9.13105'.
[  740.200363][ T7945] block device autoloading is deprecated and will be removed.
[  740.216550][T10302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  740.230742][T10302] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  740.251181][T10302] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  740.266629][T10302] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  740.285696][T10302] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(9)
[  740.292267][T10302] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  740.299833][T10302] vhci_hcd vhci_hcd.0: Device attached
[  740.326651][T10306] vhci_hcd: cannot find the pending unlink 6
[  740.334855][T10302] C: renamed from team_slave_0 (while UP)
[  740.350018][T10302] netlink: 'syz.8.13110': attribute type 3 has an invalid length.
[  740.357900][T10302] netlink: 152 bytes leftover after parsing attributes in process `syz.8.13110'.
[  740.384135][T10308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13112'.
[  740.388492][T10302] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  740.420830][T10306] vhci_hcd: connection closed
[  740.421226][ T2564] vhci_hcd: stop threads
[  740.430238][ T2564] vhci_hcd: release socket
[  740.434746][ T2564] vhci_hcd: disconnect device
[  740.499141][T22561] vhci_hcd: vhci_device speed not set
[  740.673700][T10319] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  740.742059][T10321] loop9: detected capacity change from 0 to 2048
[  740.836244][T10321]  loop9: unable to read partition table
[  740.842232][T10321] loop9: partition table beyond EOD, truncated
[  740.848440][T10321] loop_reread_partitions: partition scan of loop9 () failed (rc=-5)
[  740.958561][T10322] netlink: 4 bytes leftover after parsing attributes in process `syz.9.13114'.
[  741.330604][T10349] loop8: detected capacity change from 0 to 1024
[  741.362950][T10349] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  741.389502][T10349] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  741.590077][T10357] FAULT_INJECTION: forcing a failure.
[  741.590077][T10357] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  741.600939][T10353] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  741.603342][T10357] CPU: 1 UID: 0 PID: 10357 Comm: syz.2.13120 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  741.603432][T10357] Tainted: [W]=WARN
[  741.603442][T10357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  741.603506][T10357] Call Trace:
[  741.603514][T10357]  <TASK>
[  741.603527][T10357]  __dump_stack+0x1d/0x30
[  741.603557][T10357]  dump_stack_lvl+0xe8/0x140
[  741.603584][T10357]  dump_stack+0x15/0x1b
[  741.603608][T10357]  should_fail_ex+0x265/0x280
[  741.603673][T10357]  should_fail+0xb/0x20
[  741.603790][T10357]  should_fail_usercopy+0x1a/0x20
[  741.603817][T10357]  _copy_to_user+0x20/0xa0
[  741.603854][T10357]  simple_read_from_buffer+0xb5/0x130
[  741.603884][T10357]  proc_fail_nth_read+0x10e/0x150
[  741.603935][T10357]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  741.603971][T10357]  vfs_read+0x1a0/0x6f0
[  741.603999][T10357]  ? __rcu_read_unlock+0x4f/0x70
[  741.604029][T10357]  ? __fget_files+0x184/0x1c0
[  741.604105][T10357]  ksys_read+0xda/0x1a0
[  741.604136][T10357]  __x64_sys_read+0x40/0x50
[  741.604167][T10357]  x64_sys_call+0x27bc/0x2ff0
[  741.604195][T10357]  do_syscall_64+0xd2/0x200
[  741.604228][T10357]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  741.604338][T10357]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  741.604402][T10357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  741.604489][T10357] RIP: 0033:0x7f2bc053d57c
[  741.604511][T10357] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  741.604537][T10357] RSP: 002b:00007f2bbeb7e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  741.604563][T10357] RAX: ffffffffffffffda RBX: 00007f2bc0766080 RCX: 00007f2bc053d57c
[  741.604581][T10357] RDX: 000000000000000f RSI: 00007f2bbeb7e0a0 RDI: 000000000000000a
[  741.604599][T10357] RBP: 00007f2bbeb7e090 R08: 0000000000000000 R09: 0000000000000000
[  741.604616][T10357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  741.604714][T10357] R13: 0000000000000000 R14: 00007f2bc0766080 R15: 00007ffe949ac178
[  741.604742][T10357]  </TASK>
[  741.938585][T10364] netlink: 'syz.9.13124': attribute type 2 has an invalid length.
[  741.946518][T10364] netlink: 'syz.9.13124': attribute type 1 has an invalid length.
[  741.954447][T10364] netlink: 199820 bytes leftover after parsing attributes in process `syz.9.13124'.
[  741.967819][T10355] tipc: Disabling bearer <eth:syzkaller0>
[  742.489869][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  742.633539][T10379] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13128'.
[  742.694857][T10387] netlink: 12 bytes leftover after parsing attributes in process `syz.8.13134'.
[  742.704846][T10390] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  742.760619][T10394] loop9: detected capacity change from 0 to 512
[  742.776827][T10396] netlink: 12 bytes leftover after parsing attributes in process `syz.8.13136'.
[  742.792891][T10394] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  742.821594][T10394] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  742.841580][T10394] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  742.857105][T10394] EXT4-fs (loop9): Remounting filesystem read-only
[  742.867076][T10394] netlink: 12 bytes leftover after parsing attributes in process `syz.9.13135'.
[  742.890168][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  742.963894][T10407] loop8: detected capacity change from 0 to 512
[  742.973995][T10407] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13139: bg 0: block 131: padding at end of block bitmap is not set
[  742.988857][T10403] loop9: detected capacity change from 0 to 8192
[  742.996793][   T29] kauditd_printk_skb: 515 callbacks suppressed
[  742.996811][   T29] audit: type=1326 audit(2000000080.589:54821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0d5766d7ca code=0x7ffc0000
[  742.998245][T10403] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  743.003092][   T29] audit: type=1326 audit(2000000080.589:54822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0d5766d7ca code=0x7ffc0000
[  743.060821][   T29] audit: type=1326 audit(2000000080.589:54823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f0d5766d3d7 code=0x7ffc0000
[  743.084524][   T29] audit: type=1326 audit(2000000080.589:54824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0d5767030a code=0x7ffc0000
[  743.111296][T10407] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  743.121168][T10407] EXT4-fs (loop8): 1 truncate cleaned up
[  743.128906][T10407] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  743.177579][   T29] audit: type=1326 audit(2000000080.617:54825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0d5766d4d0 code=0x7ffc0000
[  743.201711][   T29] audit: type=1326 audit(2000000080.617:54826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f0d5766d8b7 code=0x7ffc0000
[  743.225379][   T29] audit: type=1326 audit(2000000080.617:54827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0d5766d4d0 code=0x7ffc0000
[  743.249123][   T29] audit: type=1326 audit(2000000080.617:54828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  743.273087][   T29] audit: type=1326 audit(2000000080.617:54829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  743.297245][   T29] audit: type=1326 audit(2000000080.617:54830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10402 comm="syz.9.13137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  743.323783][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.443256][T10415] loop8: detected capacity change from 0 to 2048
[  743.477143][T10415] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  743.511090][T10424] netlink: 'syz.9.13145': attribute type 2 has an invalid length.
[  743.519096][T10424] netlink: 'syz.9.13145': attribute type 1 has an invalid length.
[  743.532181][T10415] netlink: 'syz.8.13141': attribute type 29 has an invalid length.
[  743.561762][T10415] netlink: 'syz.8.13141': attribute type 29 has an invalid length.
[  743.938161][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  743.991719][T10442] loop8: detected capacity change from 0 to 2048
[  744.093541][T10442]  loop8: unable to read partition table
[  744.109146][T10442] loop8: partition table beyond EOD, truncated
[  744.115423][T10442] loop_reread_partitions: partition scan of loop8 () failed (rc=-5)
[  744.339420][T10453] loop9: detected capacity change from 0 to 2048
[  744.361472][T10453] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  744.575358][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  744.854675][ T5478] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  744.865660][ T5478] CPU: 1 UID: 0 PID: 5478 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  744.865811][ T5478] Tainted: [W]=WARN
[  744.865820][ T5478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  744.865837][ T5478] Call Trace:
[  744.865847][ T5478]  <TASK>
[  744.865863][ T5478]  __dump_stack+0x1d/0x30
[  744.865934][ T5478]  dump_stack_lvl+0xe8/0x140
[  744.865997][ T5478]  dump_stack+0x15/0x1b
[  744.866083][ T5478]  dump_header+0x81/0x220
[  744.866179][ T5478]  oom_kill_process+0x342/0x400
[  744.866252][ T5478]  out_of_memory+0x979/0xb80
[  744.866284][ T5478]  try_charge_memcg+0x5e6/0x9e0
[  744.866321][ T5478]  charge_memcg+0x51/0xc0
[  744.866346][ T5478]  __mem_cgroup_charge+0x28/0xb0
[  744.866433][ T5478]  filemap_add_folio+0x4e/0x1b0
[  744.866469][ T5478]  __filemap_get_folio+0x31e/0x6b0
[  744.866560][ T5478]  filemap_fault+0x41f/0xb40
[  744.866590][ T5478]  __do_fault+0xbc/0x200
[  744.866650][ T5478]  handle_mm_fault+0xf78/0x2c20
[  744.866687][ T5478]  do_user_addr_fault+0x636/0x1090
[  744.866760][ T5478]  exc_page_fault+0x62/0xa0
[  744.866786][ T5478]  asm_exc_page_fault+0x26/0x30
[  744.866822][ T5478] RIP: 0033:0x7f2bc0415bb4
[  744.866843][ T5478] Code: 85 ed 09 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 e8 fb e7 00 48 69 8c 24 90 00 00 00 e8 03 00 00 <8b> 78 08 48 8b 44 24 18 48 c1 ea 12 4c 8b 0d f9 fa e7 00 48 01 d1
[  744.866869][ T5478] RSP: 002b:00007ffe949ac500 EFLAGS: 00010206
[  744.866894][ T5478] RAX: 0000001b32120000 RBX: 00000000000002d7 RCX: 00000000000ae128
[  744.866907][ T5478] RDX: 0000000006bf3410 RSI: 00007ffe949ac590 RDI: 0000000000000001
[  744.866972][ T5478] RBP: 00007ffe949ac53c R08: 0000000019bcc20b R09: 7fffffffffffffff
[  744.866985][ T5478] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[  744.866998][ T5478] R13: 00000000000927c0 R14: 00000000000ae06a R15: 00007ffe949ac590
[  744.867087][ T5478]  </TASK>
[  744.867094][ T5478] memory: usage 307200kB, limit 307200kB, failcnt 2046
[  745.061257][ T5478] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  745.069206][ T5478] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  745.076534][ T5478] Memory cgroup stats for /syz2:
[  745.086134][ T5478] cache 0
[  745.094057][ T5478] rss 0
[  745.096971][ T5478] shmem 0
[  745.099928][ T5478] mapped_file 0
[  745.103398][ T5478] dirty 0
[  745.105343][T10458] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  745.106373][ T5478] writeback 0
[  745.117037][ T5478] workingset_refault_anon 1814
[  745.121817][ T5478] workingset_refault_file 1049
[  745.126599][ T5478] swap 192512
[  745.129933][ T5478] swapcached 4096
[  745.133581][ T5478] pgpgin 1117891
[  745.137188][ T5478] pgpgout 1117890
[  745.140871][ T5478] pgfault 953504
[  745.144426][ T5478] pgmajfault 388
[  745.147979][ T5478] inactive_anon 0
[  745.151660][ T5478] active_anon 4096
[  745.155404][ T5478] inactive_file 0
[  745.159064][ T5478] active_file 0
[  745.162590][ T5478] unevictable 0
[  745.166052][ T5478] hierarchical_memory_limit 314572800
[  745.171464][ T5478] hierarchical_memsw_limit 9223372036854771712
[  745.177631][ T5478] total_cache 0
[  745.181099][ T5478] total_rss 0
[  745.184511][ T5478] total_shmem 0
[  745.188049][ T5478] total_mapped_file 0
[  745.192044][ T5478] total_dirty 0
[  745.195606][ T5478] total_writeback 0
[  745.199435][ T5478] total_workingset_refault_anon 1814
[  745.204774][ T5478] total_workingset_refault_file 1049
[  745.210074][ T5478] total_swap 192512
[  745.213913][ T5478] total_swapcached 4096
[  745.218122][ T5478] total_pgpgin 1117891
[  745.222214][ T5478] total_pgpgout 1117890
[  745.226458][ T5478] total_pgfault 953504
[  745.230600][ T5478] total_pgmajfault 388
[  745.234697][ T5478] total_inactive_anon 0
[  745.238919][ T5478] total_active_anon 4096
[  745.243172][ T5478] total_inactive_file 0
[  745.247366][ T5478] total_active_file 0
[  745.251411][ T5478] total_unevictable 0
[  745.255423][ T5478] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.13153,pid=10444,uid=0
[  745.270415][ T5478] Memory cgroup out of memory: Killed process 10444 (syz.2.13153) total-vm:93692kB, anon-rss:1068kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  745.491220][T10479] loop9: detected capacity change from 0 to 512
[  745.503813][T10480] ip6gre1: entered allmulticast mode
[  745.511896][T10479] EXT4-fs: Ignoring removed mblk_io_submit option
[  745.529721][T10479] EXT4-fs (loop9): failed to initialize system zone (-117)
[  745.537113][T10479] EXT4-fs (loop9): mount failed
[  745.982674][T10503] __nla_validate_parse: 12 callbacks suppressed
[  745.982736][T10503] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13168'.
[  746.504797][T10515] Falling back ldisc for ttyS3.
[  746.688402][T10530] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  746.776659][T10537] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13179'.
[  746.785732][T10537] tipc: Cannot configure node identity twice
[  746.791764][T10537] tipc: Cannot configure node identity twice
[  746.834025][T10538] vhci_hcd: default hub control req: 800f v0000 i0000 l31125
[  746.877081][T10540] FAULT_INJECTION: forcing a failure.
[  746.877081][T10540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  746.890197][T10540] CPU: 1 UID: 0 PID: 10540 Comm: syz.2.13180 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  746.890241][T10540] Tainted: [W]=WARN
[  746.890266][T10540] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  746.890282][T10540] Call Trace:
[  746.890291][T10540]  <TASK>
[  746.890302][T10540]  __dump_stack+0x1d/0x30
[  746.890342][T10540]  dump_stack_lvl+0xe8/0x140
[  746.890360][T10540]  dump_stack+0x15/0x1b
[  746.890376][T10540]  should_fail_ex+0x265/0x280
[  746.890455][T10540]  should_fail+0xb/0x20
[  746.890483][T10540]  should_fail_usercopy+0x1a/0x20
[  746.890544][T10540]  _copy_to_user+0x20/0xa0
[  746.890570][T10540]  simple_read_from_buffer+0xb5/0x130
[  746.890621][T10540]  proc_fail_nth_read+0x10e/0x150
[  746.890648][T10540]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  746.890686][T10540]  vfs_read+0x1a0/0x6f0
[  746.890735][T10540]  ? __rcu_read_unlock+0x4f/0x70
[  746.890763][T10540]  ? __fget_files+0x184/0x1c0
[  746.890791][T10540]  ksys_read+0xda/0x1a0
[  746.890812][T10540]  __x64_sys_read+0x40/0x50
[  746.890832][T10540]  x64_sys_call+0x27bc/0x2ff0
[  746.890863][T10540]  do_syscall_64+0xd2/0x200
[  746.890893][T10540]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  746.890918][T10540]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  746.890938][T10540]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  746.891025][T10540] RIP: 0033:0x7f2bc053d57c
[  746.891040][T10540] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  746.891123][T10540] RSP: 002b:00007f2bbeb9f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  746.891146][T10540] RAX: ffffffffffffffda RBX: 00007f2bc0765fa0 RCX: 00007f2bc053d57c
[  746.891163][T10540] RDX: 000000000000000f RSI: 00007f2bbeb9f0a0 RDI: 0000000000000004
[  746.891180][T10540] RBP: 00007f2bbeb9f090 R08: 0000000000000000 R09: 0000000000000000
[  746.891196][T10540] R10: 0000200000001500 R11: 0000000000000246 R12: 0000000000000001
[  746.891210][T10540] R13: 0000000000000000 R14: 00007f2bc0765fa0 R15: 00007ffe949ac178
[  746.891235][T10540]  </TASK>
[  747.428777][T10563] loop8: detected capacity change from 0 to 2048
[  747.452964][T10563] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  747.858803][T10579] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  747.874308][T10606] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13188'.
[  747.874352][T10579] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  747.895812][T10579] EXT4-fs (loop8): This should not happen!! Data will be lost
[  747.895812][T10579] 
[  747.905496][T10579] EXT4-fs (loop8): Total free blocks count 0
[  747.911513][T10579] EXT4-fs (loop8): Free/Dirty block details
[  747.917510][T10579] EXT4-fs (loop8): free_blocks=2415919104
[  747.923266][T10579] EXT4-fs (loop8): dirty_blocks=8208
[  747.928621][T10579] EXT4-fs (loop8): Block reservation details
[  747.934686][T10579] EXT4-fs (loop8): i_reserved_data_blocks=513
[  748.101880][T10643] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13190'.
[  748.132853][T10648] netlink: 196 bytes leftover after parsing attributes in process `syz.2.13191'.
[  748.317620][T10671] SELinux: failed to load policy
[  748.355913][   T34] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  748.488652][T10679] Falling back ldisc for ttyS3.
[  748.505176][T10677] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13197'.
[  748.505931][   T29] kauditd_printk_skb: 304 callbacks suppressed
[  748.505950][   T29] audit: type=1326 audit(2000000085.663:55133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.9.13198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.564515][   T29] audit: type=1326 audit(2000000085.718:55134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.9.13198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.588280][   T29] audit: type=1326 audit(2000000085.718:55135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.9.13198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.612130][   T29] audit: type=1326 audit(2000000085.718:55136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10682 comm="syz.9.13198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.661347][T10690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  748.682522][   T29] audit: type=1326 audit(2000000085.829:55137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10691 comm="syz.9.13202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.706366][   T29] audit: type=1326 audit(2000000085.829:55138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10691 comm="syz.9.13202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.731257][T10690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  748.760533][T10690] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  748.780079][T10690] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  748.805741][T10690] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  748.812327][T10690] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  748.819875][T10690] vhci_hcd vhci_hcd.0: Device attached
[  748.829622][T10692] loop9: detected capacity change from 0 to 8192
[  748.836475][T10694] vhci_hcd: cannot find the pending unlink 6
[  748.843737][T10690] C: renamed from team_slave_0 (while UP)
[  748.851389][T10690] netlink: 'syz.0.13201': attribute type 3 has an invalid length.
[  748.859277][T10690] netlink: 152 bytes leftover after parsing attributes in process `syz.0.13201'.
[  748.869979][T10692] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  748.880503][   T29] audit: type=1326 audit(2000000085.884:55139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10691 comm="syz.9.13202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.904187][   T29] audit: type=1326 audit(2000000085.884:55140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10691 comm="syz.9.13202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.927974][   T29] audit: type=1326 audit(2000000085.884:55141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10691 comm="syz.9.13202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.951647][   T29] audit: type=1326 audit(2000000085.884:55142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10691 comm="syz.9.13202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0d5766eb69 code=0x7ffc0000
[  748.977317][T10690] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  748.995504][T10694] vhci_hcd: connection closed
[  748.995821][ T2564] vhci_hcd: stop threads
[  749.004918][ T2564] vhci_hcd: release socket
[  749.009386][ T2564] vhci_hcd: disconnect device
[  749.236771][T10711] loop9: detected capacity change from 0 to 512
[  749.243904][T10711] EXT4-fs: Ignoring removed mblk_io_submit option
[  749.253995][T10711] EXT4-fs (loop9): failed to initialize system zone (-117)
[  749.264171][T10711] EXT4-fs (loop9): mount failed
[  749.289827][T10710] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  749.299246][T10710] tipc: Disabling bearer <eth:syzkaller0>
[  749.435588][T10718] loop8: detected capacity change from 0 to 2048
[  749.506190][T10723] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13213'.
[  749.506755][T10718]  loop8: unable to read partition table
[  749.523431][T10718] loop8: partition table beyond EOD, truncated
[  749.529662][T10718] loop_reread_partitions: partition scan of loop8 () failed (rc=-5)
[  749.638962][T10741] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.13217'.
[  749.648358][T10741] netlink: 24 bytes leftover after parsing attributes in process `syz.2.13217'.
[  750.067367][T10725] syz.1.13214 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  750.081714][T10725] CPU: 0 UID: 0 PID: 10725 Comm: syz.1.13214 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  750.081765][T10725] Tainted: [W]=WARN
[  750.081775][T10725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  750.081792][T10725] Call Trace:
[  750.081801][T10725]  <TASK>
[  750.081811][T10725]  __dump_stack+0x1d/0x30
[  750.081834][T10725]  dump_stack_lvl+0xe8/0x140
[  750.081894][T10725]  dump_stack+0x15/0x1b
[  750.081912][T10725]  dump_header+0x81/0x220
[  750.081946][T10725]  oom_kill_process+0x342/0x400
[  750.082043][T10725]  out_of_memory+0x979/0xb80
[  750.082082][T10725]  try_charge_memcg+0x5e6/0x9e0
[  750.082126][T10725]  obj_cgroup_charge_pages+0xa6/0x150
[  750.082160][T10725]  __memcg_kmem_charge_page+0x9f/0x170
[  750.082194][T10725]  __alloc_frozen_pages_noprof+0x188/0x360
[  750.082294][T10725]  alloc_pages_mpol+0xb3/0x250
[  750.082331][T10725]  alloc_pages_noprof+0x90/0x130
[  750.082367][T10725]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  750.082430][T10725]  __kvmalloc_node_noprof+0x30f/0x4e0
[  750.082461][T10725]  ? ip_set_alloc+0x1f/0x30
[  750.082522][T10725]  ? ip_set_alloc+0x1f/0x30
[  750.082616][T10725]  ? __kmalloc_cache_noprof+0x189/0x320
[  750.082648][T10725]  ip_set_alloc+0x1f/0x30
[  750.082675][T10725]  hash_netiface_create+0x282/0x740
[  750.082858][T10725]  ? __pfx_hash_netiface_create+0x10/0x10
[  750.082890][T10725]  ip_set_create+0x3cc/0x960
[  750.082934][T10725]  ? __nla_parse+0x40/0x60
[  750.083017][T10725]  nfnetlink_rcv_msg+0x4c6/0x590
[  750.083194][T10725]  netlink_rcv_skb+0x120/0x220
[  750.083226][T10725]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  750.083261][T10725]  nfnetlink_rcv+0x16b/0x1690
[  750.083289][T10725]  ? nlmon_xmit+0x4f/0x60
[  750.083383][T10725]  ? consume_skb+0x49/0x150
[  750.083489][T10725]  ? nlmon_xmit+0x4f/0x60
[  750.083513][T10725]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  750.083550][T10725]  ? __dev_queue_xmit+0x1200/0x2000
[  750.083617][T10725]  ? __dev_queue_xmit+0x182/0x2000
[  750.083653][T10725]  ? ref_tracker_free+0x37d/0x3e0
[  750.083695][T10725]  ? __netlink_deliver_tap+0x4dc/0x500
[  750.083788][T10725]  netlink_unicast+0x5c0/0x690
[  750.083821][T10725]  netlink_sendmsg+0x58b/0x6b0
[  750.083858][T10725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  750.083970][T10725]  __sock_sendmsg+0x142/0x180
[  750.084046][T10725]  ____sys_sendmsg+0x31e/0x4e0
[  750.084085][T10725]  ___sys_sendmsg+0x17b/0x1d0
[  750.084168][T10725]  __x64_sys_sendmsg+0xd4/0x160
[  750.084207][T10725]  x64_sys_call+0x191e/0x2ff0
[  750.084230][T10725]  do_syscall_64+0xd2/0x200
[  750.084270][T10725]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  750.084295][T10725]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  750.084317][T10725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  750.084346][T10725] RIP: 0033:0x7f61538ceb69
[  750.084364][T10725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  750.084384][T10725] RSP: 002b:00007f6151f37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  750.084405][T10725] RAX: ffffffffffffffda RBX: 00007f6153af5fa0 RCX: 00007f61538ceb69
[  750.084419][T10725] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007
[  750.084433][T10725] RBP: 00007f6153951df1 R08: 0000000000000000 R09: 0000000000000000
[  750.084445][T10725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  750.084501][T10725] R13: 0000000000000000 R14: 00007f6153af5fa0 R15: 00007ffe5bc070a8
[  750.084522][T10725]  </TASK>
[  750.421420][T10725] memory: usage 307200kB, limit 307200kB, failcnt 1202
[  750.428362][T10725] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[  750.436282][T10725] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  750.443613][T10725] Memory cgroup stats for /syz1:
[  750.443897][T10725] cache 0
[  750.451900][T10725] rss 0
[  750.454682][T10725] shmem 0
[  750.457633][T10725] mapped_file 0
[  750.461176][T10725] dirty 0
[  750.464122][T10725] writeback 0
[  750.467642][T10725] workingset_refault_anon 144
[  750.472415][T10725] workingset_refault_file 754
[  750.477204][T10725] swap 356352
[  750.480744][T10725] swapcached 4096
[  750.484448][T10725] pgpgin 1100450
[  750.488022][T10725] pgpgout 1100449
[  750.491677][T10725] pgfault 971977
[  750.495275][T10725] pgmajfault 118
[  750.498910][T10725] inactive_anon 0
[  750.502621][T10725] active_anon 4096
[  750.506386][T10725] inactive_file 0
[  750.510038][T10725] active_file 0
[  750.513544][T10725] unevictable 0
[  750.517056][T10725] hierarchical_memory_limit 314572800
[  750.522466][T10725] hierarchical_memsw_limit 9223372036854771712
[  750.528696][T10725] total_cache 0
[  750.532182][T10725] total_rss 0
[  750.535573][T10725] total_shmem 0
[  750.539066][T10725] total_mapped_file 0
[  750.543063][T10725] total_dirty 0
[  750.546530][T10725] total_writeback 0
[  750.550407][T10725] total_workingset_refault_anon 144
[  750.555625][T10725] total_workingset_refault_file 754
[  750.560966][T10725] total_swap 356352
[  750.564785][T10725] total_swapcached 4096
[  750.568939][T10725] total_pgpgin 1100450
[  750.573072][T10725] total_pgpgout 1100449
[  750.577312][T10725] total_pgfault 971977
[  750.581589][T10725] total_pgmajfault 118
[  750.585978][T10725] total_inactive_anon 0
[  750.590163][T10725] total_active_anon 4096
[  750.594466][T10725] total_inactive_file 0
[  750.598647][T10725] total_active_file 0
[  750.602730][T10725] total_unevictable 0
[  750.606797][T10725] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.13214,pid=10724,uid=0
[  750.621656][T10725] Memory cgroup out of memory: Killed process 10724 (syz.1.13214) total-vm:95740kB, anon-rss:940kB, file-rss:22316kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  750.743331][T10754] Falling back ldisc for ttyS3.
[  750.790270][T10757] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  750.801093][T10757] tipc: Disabling bearer <eth:syzkaller0>
[  751.063826][T10770] can0: slcan on ttyS3.
[  751.086024][T10773] loop8: detected capacity change from 0 to 2048
[  751.112027][T10770] can0 (unregistered): slcan off ttyS3.
[  751.121638][T10770] FAULT_INJECTION: forcing a failure.
[  751.121638][T10770] name failslab, interval 1, probability 0, space 0, times 0
[  751.134396][T10770] CPU: 1 UID: 0 PID: 10770 Comm: syz.1.13226 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  751.134433][T10770] Tainted: [W]=WARN
[  751.134442][T10770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  751.134459][T10770] Call Trace:
[  751.134469][T10770]  <TASK>
[  751.134480][T10770]  __dump_stack+0x1d/0x30
[  751.134570][T10770]  dump_stack_lvl+0xe8/0x140
[  751.134595][T10770]  dump_stack+0x15/0x1b
[  751.134639][T10770]  should_fail_ex+0x265/0x280
[  751.134681][T10770]  should_failslab+0x8c/0xb0
[  751.134784][T10770]  kmem_cache_alloc_noprof+0x50/0x310
[  751.134813][T10770]  ? alloc_empty_file+0x76/0x200
[  751.134863][T10770]  alloc_empty_file+0x76/0x200
[  751.134901][T10770]  path_openat+0x68/0x2170
[  751.134957][T10770]  ? native_apic_msr_write+0x3d/0x60
[  751.134991][T10770]  ? css_rstat_updated+0xb7/0x240
[  751.135036][T10770]  ? __rcu_read_unlock+0x34/0x70
[  751.135122][T10770]  ? __rcu_read_unlock+0x4f/0x70
[  751.135144][T10770]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  751.135173][T10770]  ? update_load_avg+0x1da/0x820
[  751.135211][T10770]  ? _raw_spin_unlock+0x26/0x50
[  751.135296][T10770]  do_filp_open+0x109/0x230
[  751.135327][T10770]  do_sys_openat2+0xa6/0x110
[  751.135364][T10770]  __x64_sys_openat+0xf2/0x120
[  751.135473][T10770]  x64_sys_call+0x2e9c/0x2ff0
[  751.135498][T10770]  do_syscall_64+0xd2/0x200
[  751.135529][T10770]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  751.135646][T10770]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  751.135673][T10770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  751.135755][T10770] RIP: 0033:0x7f61538ceb69
[  751.135775][T10770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  751.135800][T10770] RSP: 002b:00007f6151f37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  751.135820][T10770] RAX: ffffffffffffffda RBX: 00007f6153af5fa0 RCX: 00007f61538ceb69
[  751.135833][T10770] RDX: 0000000000020000 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  751.135846][T10770] RBP: 00007f6151f37090 R08: 0000000000000000 R09: 0000000000000000
[  751.135858][T10770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  751.135871][T10770] R13: 0000000000000000 R14: 00007f6153af5fa0 R15: 00007ffe5bc070a8
[  751.135909][T10770]  </TASK>
[  751.205687][T10773]  loop8: unable to read partition table
[  751.372461][T10773] loop8: partition table beyond EOD, truncated
[  751.378669][T10773] loop_reread_partitions: partition scan of loop8 () failed (rc=-5)
[  751.473597][T10773] __nla_validate_parse: 3 callbacks suppressed
[  751.473618][T10773] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13229'.
[  751.636015][T10783] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13231'.
[  751.954627][T10799] netlink: 'syz.2.13235': attribute type 2 has an invalid length.
[  751.962571][T10799] netlink: 'syz.2.13235': attribute type 1 has an invalid length.
[  751.970439][T10799] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.13235'.
[  752.346655][T10798] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13236'.
[  752.383019][T10804] FAULT_INJECTION: forcing a failure.
[  752.383019][T10804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  752.396155][T10804] CPU: 0 UID: 0 PID: 10804 Comm: syz.8.13237 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  752.396199][T10804] Tainted: [W]=WARN
[  752.396208][T10804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  752.396223][T10804] Call Trace:
[  752.396231][T10804]  <TASK>
[  752.396242][T10804]  __dump_stack+0x1d/0x30
[  752.396265][T10804]  dump_stack_lvl+0xe8/0x140
[  752.396306][T10804]  dump_stack+0x15/0x1b
[  752.396327][T10804]  should_fail_ex+0x265/0x280
[  752.396368][T10804]  should_fail+0xb/0x20
[  752.396422][T10804]  should_fail_usercopy+0x1a/0x20
[  752.396448][T10804]  _copy_to_user+0x20/0xa0
[  752.396482][T10804]  simple_read_from_buffer+0xb5/0x130
[  752.396571][T10804]  proc_fail_nth_read+0x10e/0x150
[  752.396603][T10804]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  752.396634][T10804]  vfs_read+0x1a0/0x6f0
[  752.396662][T10804]  ? __rcu_read_unlock+0x4f/0x70
[  752.396761][T10804]  ? __fget_files+0x184/0x1c0
[  752.396793][T10804]  ksys_read+0xda/0x1a0
[  752.396822][T10804]  __x64_sys_read+0x40/0x50
[  752.396850][T10804]  x64_sys_call+0x27bc/0x2ff0
[  752.396877][T10804]  do_syscall_64+0xd2/0x200
[  752.396994][T10804]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  752.397068][T10804]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  752.397095][T10804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  752.397157][T10804] RIP: 0033:0x7f8fd674d57c
[  752.397176][T10804] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  752.397197][T10804] RSP: 002b:00007f8fd4daf030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  752.397218][T10804] RAX: ffffffffffffffda RBX: 00007f8fd6975fa0 RCX: 00007f8fd674d57c
[  752.397232][T10804] RDX: 000000000000000f RSI: 00007f8fd4daf0a0 RDI: 0000000000000003
[  752.397245][T10804] RBP: 00007f8fd4daf090 R08: 0000000000000000 R09: 0000000000000000
[  752.397258][T10804] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000001
[  752.397295][T10804] R13: 0000000000000000 R14: 00007f8fd6975fa0 R15: 00007ffffe3ee298
[  752.397329][T10804]  </TASK>
[  752.624110][T10811] netlink: 76 bytes leftover after parsing attributes in process `syz.8.13239'.
[  752.806261][T10821] loop9: detected capacity change from 0 to 512
[  752.836512][T10821] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  752.849234][T10821] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  752.885133][T10821] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  752.903396][T10821] EXT4-fs (loop9): Remounting filesystem read-only
[  752.943651][T10821] netlink: 12 bytes leftover after parsing attributes in process `syz.9.13242'.
[  753.028401][ T8937] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  753.118136][T10837] loop8: detected capacity change from 0 to 512
[  753.136207][T10837] EXT4-fs: Ignoring removed mblk_io_submit option
[  753.160522][T10837] EXT4-fs (loop8): failed to initialize system zone (-117)
[  753.170020][T10833] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  753.181646][T10837] EXT4-fs (loop8): mount failed
[  753.193813][T10833] tipc: Disabling bearer <eth:syzkaller0>
[  753.263980][T10839] loop9: detected capacity change from 0 to 512
[  753.276105][T10839] EXT4-fs: Ignoring removed mblk_io_submit option
[  753.286505][T10839] EXT4-fs (loop9): failed to initialize system zone (-117)
[  753.293988][T10839] EXT4-fs (loop9): mount failed
[  753.838100][T10860] 9pnet_fd: Insufficient options for proto=fd
[  753.933551][T10864] 9pnet: Could not find request transport: Nd
[  753.940109][   T29] kauditd_printk_skb: 366 callbacks suppressed
[  753.940127][   T29] audit: type=1400 audit(2000000090.672:55507): avc:  denied  { read } for  pid=10859 comm="syz.2.13255" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  753.989624][   T29] audit: type=1326 audit(2000000090.727:55508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.013917][   T29] audit: type=1326 audit(2000000090.755:55509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.038164][   T29] audit: type=1326 audit(2000000090.755:55510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.062118][   T29] audit: type=1326 audit(2000000090.755:55511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.085875][   T29] audit: type=1326 audit(2000000090.755:55512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.109574][   T29] audit: type=1326 audit(2000000090.755:55513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.133455][   T29] audit: type=1326 audit(2000000090.755:55514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.157135][   T29] audit: type=1326 audit(2000000090.755:55515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.180896][   T29] audit: type=1326 audit(2000000090.755:55516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10867 comm="syz.0.13257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c3d22eb69 code=0x7ffc0000
[  754.213574][T10872] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13258'.
[  754.427262][T10889] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13264'.
[  754.880017][T10888] syz.2.13266 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  754.894319][T10888] CPU: 0 UID: 0 PID: 10888 Comm: syz.2.13266 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  754.894362][T10888] Tainted: [W]=WARN
[  754.894369][T10888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  754.894383][T10888] Call Trace:
[  754.894401][T10888]  <TASK>
[  754.894410][T10888]  __dump_stack+0x1d/0x30
[  754.894441][T10888]  dump_stack_lvl+0xe8/0x140
[  754.894468][T10888]  dump_stack+0x15/0x1b
[  754.894602][T10888]  dump_header+0x81/0x220
[  754.894644][T10888]  oom_kill_process+0x342/0x400
[  754.894759][T10888]  out_of_memory+0x979/0xb80
[  754.894805][T10888]  try_charge_memcg+0x5e6/0x9e0
[  754.894912][T10888]  obj_cgroup_charge_pages+0xa6/0x150
[  754.894956][T10888]  __memcg_kmem_charge_page+0x9f/0x170
[  754.895076][T10888]  __alloc_frozen_pages_noprof+0x188/0x360
[  754.895144][T10888]  alloc_pages_mpol+0xb3/0x250
[  754.895247][T10888]  alloc_pages_noprof+0x90/0x130
[  754.895280][T10888]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  754.895436][T10888]  __kvmalloc_node_noprof+0x30f/0x4e0
[  754.895504][T10888]  ? ip_set_alloc+0x1f/0x30
[  754.895541][T10888]  ? ip_set_alloc+0x1f/0x30
[  754.895629][T10888]  ? __kmalloc_cache_noprof+0x189/0x320
[  754.895667][T10888]  ip_set_alloc+0x1f/0x30
[  754.895708][T10888]  hash_netiface_create+0x282/0x740
[  754.895740][T10888]  ? __pfx_hash_netiface_create+0x10/0x10
[  754.895829][T10888]  ip_set_create+0x3cc/0x960
[  754.895883][T10888]  ? __nla_parse+0x40/0x60
[  754.895912][T10888]  nfnetlink_rcv_msg+0x4c6/0x590
[  754.896084][T10888]  netlink_rcv_skb+0x120/0x220
[  754.896171][T10888]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  754.896206][T10888]  nfnetlink_rcv+0x16b/0x1690
[  754.896233][T10888]  ? nlmon_xmit+0x4f/0x60
[  754.896285][T10888]  ? consume_skb+0x49/0x150
[  754.896320][T10888]  ? nlmon_xmit+0x4f/0x60
[  754.896342][T10888]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  754.896424][T10888]  ? __dev_queue_xmit+0x1200/0x2000
[  754.896461][T10888]  ? __dev_queue_xmit+0x182/0x2000
[  754.896492][T10888]  ? mas_destroy+0x1f39/0x2090
[  754.896572][T10888]  ? ref_tracker_free+0x37d/0x3e0
[  754.896623][T10888]  ? __netlink_deliver_tap+0x4dc/0x500
[  754.896781][T10888]  netlink_unicast+0x5c0/0x690
[  754.896842][T10888]  netlink_sendmsg+0x58b/0x6b0
[  754.896945][T10888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  754.896991][T10888]  __sock_sendmsg+0x142/0x180
[  754.897015][T10888]  ____sys_sendmsg+0x31e/0x4e0
[  754.897132][T10888]  ___sys_sendmsg+0x17b/0x1d0
[  754.897190][T10888]  __x64_sys_sendmsg+0xd4/0x160
[  754.897239][T10888]  x64_sys_call+0x191e/0x2ff0
[  754.897290][T10888]  do_syscall_64+0xd2/0x200
[  754.897316][T10888]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  754.897341][T10888]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  754.897374][T10888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  754.897403][T10888] RIP: 0033:0x7f2bc053eb69
[  754.897466][T10888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  754.897489][T10888] RSP: 002b:00007f2bbeb9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  754.897517][T10888] RAX: ffffffffffffffda RBX: 00007f2bc0765fa0 RCX: 00007f2bc053eb69
[  754.897535][T10888] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006
[  754.897587][T10888] RBP: 00007f2bc05c1df1 R08: 0000000000000000 R09: 0000000000000000
[  754.897599][T10888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  754.897615][T10888] R13: 0000000000000000 R14: 00007f2bc0765fa0 R15: 00007ffe949ac178
[  754.897641][T10888]  </TASK>
[  755.239927][T10888] memory: usage 307200kB, limit 307200kB, failcnt 2413
[  755.247009][T10888] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[  755.255009][T10888] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  755.262302][T10888] Memory cgroup stats for /syz2:
[  755.262784][T10888] cache 0
[  755.270834][T10888] rss 0
[  755.273933][T10888] shmem 0
[  755.276970][T10888] mapped_file 0
[  755.281023][T10888] dirty 0
[  755.283986][T10888] writeback 0
[  755.287310][T10888] workingset_refault_anon 1830
[  755.292087][T10888] workingset_refault_file 1209
[  755.296985][T10888] swap 356352
[  755.300280][T10888] swapcached 4096
[  755.303927][T10888] pgpgin 1137860
[  755.307511][T10888] pgpgout 1137859
[  755.311191][T10888] pgfault 975697
[  755.314739][T10888] pgmajfault 407
[  755.318337][T10888] inactive_anon 0
[  755.322012][T10888] active_anon 4096
[  755.325739][T10888] inactive_file 0
[  755.329397][T10888] active_file 0
[  755.332888][T10888] unevictable 0
[  755.336340][T10888] hierarchical_memory_limit 314572800
[  755.341877][T10888] hierarchical_memsw_limit 9223372036854771712
[  755.348114][T10888] total_cache 0
[  755.351592][T10888] total_rss 0
[  755.354878][T10888] total_shmem 0
[  755.358340][T10888] total_mapped_file 0
[  755.362379][T10888] total_dirty 0
[  755.365885][T10888] total_writeback 0
[  755.369699][T10888] total_workingset_refault_anon 1830
[  755.375049][T10888] total_workingset_refault_file 1209
[  755.380407][T10888] total_swap 356352
[  755.384280][T10888] total_swapcached 4096
[  755.388450][T10888] total_pgpgin 1137860
[  755.392536][T10888] total_pgpgout 1137859
[  755.396763][T10888] total_pgfault 975697
[  755.400851][T10888] total_pgmajfault 407
[  755.405061][T10888] total_inactive_anon 0
[  755.409230][T10888] total_active_anon 4096
[  755.413528][T10888] total_inactive_file 0
[  755.417726][T10888] total_active_file 0
[  755.421727][T10888] total_unevictable 0
[  755.425745][T10888] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.13266,pid=10887,uid=0
[  755.440587][T10888] Memory cgroup out of memory: Killed process 10887 (syz.2.13266) total-vm:93692kB, anon-rss:940kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[  755.645238][T10900] netlink: 52 bytes leftover after parsing attributes in process `syz.2.13268'.
[  756.317966][T10958] netlink: 12 bytes leftover after parsing attributes in process `syz.8.13271'.
[  756.384258][T10972] loop8: detected capacity change from 0 to 512
[  756.415839][T10972] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  756.456677][T10972] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  756.499868][T10972] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 94 vs 96 free clusters
[  756.540883][T10972] EXT4-fs (loop8): Remounting filesystem read-only
[  756.597147][ T7945] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  757.056158][T11018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  757.077813][T11018] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  757.125126][T11018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  757.146213][T11018] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  757.164180][T11018] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  757.170751][T11018] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  757.178381][T11018] vhci_hcd vhci_hcd.0: Device attached
[  757.187993][T11022] vhci_hcd: cannot find the pending unlink 6
[  757.221501][T11018] netlink: 'syz.0.13277': attribute type 3 has an invalid length.
[  757.229468][T11018] __nla_validate_parse: 1 callbacks suppressed
[  757.229483][T11018] netlink: 152 bytes leftover after parsing attributes in process `syz.0.13277'.
[  757.259550][T11018] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  757.289252][T11022] vhci_hcd: connection closed
[  757.289678][ T3541] vhci_hcd: stop threads
[  757.298862][ T3541] vhci_hcd: release socket
[  757.303448][ T3541] vhci_hcd: disconnect device
[  757.454116][T11046] netlink: 12 bytes leftover after parsing attributes in process `syz.8.13282'.
[  757.613497][T11066] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13285'.
[  757.708067][T11075] loop8: detected capacity change from 0 to 512
[  757.714805][T11075] EXT4-fs: Ignoring removed mblk_io_submit option
[  757.722973][T11075] EXT4-fs (loop8): failed to initialize system zone (-117)
[  757.730516][T11075] EXT4-fs (loop8): mount failed
[  758.046682][T11091] SELinux:  policydb version -1363377057 does not match my version range 15-35
[  758.055837][T11091] SELinux: failed to load policy
[  758.184635][T11095] netlink: 44 bytes leftover after parsing attributes in process `syz.1.13293'.
[  758.210323][T11097] netlink: 44 bytes leftover after parsing attributes in process `syz.1.13294'.
[  758.274036][T11105] FAULT_INJECTION: forcing a failure.
[  758.274036][T11105] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  758.287370][T11105] CPU: 0 UID: 0 PID: 11105 Comm: syz.2.13298 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  758.287411][T11105] Tainted: [W]=WARN
[  758.287418][T11105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  758.287433][T11105] Call Trace:
[  758.287440][T11105]  <TASK>
[  758.287448][T11105]  __dump_stack+0x1d/0x30
[  758.287500][T11105]  dump_stack_lvl+0xe8/0x140
[  758.287548][T11105]  dump_stack+0x15/0x1b
[  758.287569][T11105]  should_fail_ex+0x265/0x280
[  758.287698][T11105]  should_fail+0xb/0x20
[  758.287732][T11105]  should_fail_usercopy+0x1a/0x20
[  758.287791][T11105]  strncpy_from_user+0x25/0x230
[  758.287822][T11105]  ? kmem_cache_alloc_noprof+0x186/0x310
[  758.287876][T11105]  ? getname_flags+0x80/0x3b0
[  758.287911][T11105]  getname_flags+0xae/0x3b0
[  758.287953][T11105]  __x64_sys_unlink+0x21/0x40
[  758.288001][T11107] ==================================================================
[  758.288045][T11105]  x64_sys_call+0x2dc0/0x2ff0
[  758.288090][T11105]  do_syscall_64+0xd2/0x200
[  758.288200][T11105]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  758.288277][T11105]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  758.288307][T11105]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.288383][T11105] RIP: 0033:0x7f2bc053eb69
[  758.288406][T11105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.288432][T11105] RSP: 002b:00007f2bbeb9f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  758.288457][T11105] RAX: ffffffffffffffda RBX: 00007f2bc0765fa0 RCX: 00007f2bc053eb69
[  758.288475][T11105] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[  758.288545][T11105] RBP: 00007f2bbeb9f090 R08: 0000000000000000 R09: 0000000000000000
[  758.288562][T11105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  758.288580][T11105] R13: 0000000000000000 R14: 00007f2bc0765fa0 R15: 00007ffe949ac178
[  758.288617][T11105]  </TASK>
[  758.483497][T11107] BUG: KCSAN: data-race in data_alloc / prb_reserve
[  758.490122][T11107] 
[  758.492453][T11107] write to 0xffffffff8687c468 of 8 bytes by task 11105 on cpu 0:
[  758.500172][T11107]  data_alloc+0x27d/0x2b0
[  758.504531][T11107]  prb_reserve+0x808/0xaf0
[  758.509026][T11107]  vprintk_store+0x56d/0x860
[  758.513975][T11107]  vprintk_emit+0x178/0x650
[  758.518516][T11107]  vprintk_default+0x26/0x30
[  758.523123][T11107]  vprintk+0x1d/0x30
[  758.527038][T11107]  _printk+0x79/0xa0
[  758.530953][T11107]  show_trace_log_lvl+0x4e3/0x560
[  758.535993][T11107]  __dump_stack+0x1d/0x30
[  758.540597][T11107]  dump_stack_lvl+0xe8/0x140
[  758.545195][T11107]  dump_stack+0x15/0x1b
[  758.549360][T11107]  should_fail_ex+0x265/0x280
[  758.554060][T11107]  should_fail+0xb/0x20
[  758.558244][T11107]  should_fail_usercopy+0x1a/0x20
[  758.563279][T11107]  strncpy_from_user+0x25/0x230
[  758.568151][T11107]  getname_flags+0xae/0x3b0
[  758.572672][T11107]  __x64_sys_unlink+0x21/0x40
[  758.577361][T11107]  x64_sys_call+0x2dc0/0x2ff0
[  758.582051][T11107]  do_syscall_64+0xd2/0x200
[  758.586579][T11107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.592485][T11107] 
[  758.594816][T11107] read to 0xffffffff8687c468 of 8 bytes by task 11107 on cpu 1:
[  758.602466][T11107]  prb_reserve+0x221/0xaf0
[  758.607005][T11107]  vprintk_store+0x56d/0x860
[  758.611618][T11107]  vprintk_emit+0x178/0x650
[  758.616161][T11107]  vprintk_default+0x26/0x30
[  758.620815][T11107]  vprintk+0x1d/0x30
[  758.624734][T11107]  _printk+0x79/0xa0
[  758.628669][T11107]  should_fail_ex+0x24d/0x280
[  758.633392][T11107]  should_fail+0xb/0x20
[  758.637601][T11107]  should_fail_usercopy+0x1a/0x20
[  758.642660][T11107]  _copy_from_user+0x1c/0xb0
[  758.647271][T11107]  __io_register_rsrc_update+0x268/0xac0
[  758.652932][T11107]  io_register_rsrc_update+0x10a/0x120
[  758.658413][T11107]  __se_sys_io_uring_register+0x6d9/0xeb0
[  758.664152][T11107]  __x64_sys_io_uring_register+0x55/0x70
[  758.669803][T11107]  x64_sys_call+0x18a3/0x2ff0
[  758.674496][T11107]  do_syscall_64+0xd2/0x200
[  758.679020][T11107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.684929][T11107] 
[  758.687255][T11107] value changed: 0x000000000013ff70 -> 0x00000000001da178
[  758.694435][T11107] 
[  758.696817][T11107] Reported by Kernel Concurrency Sanitizer on:
[  758.702977][T11107] CPU: 1 UID: 0 PID: 11107 Comm: syz.9.13299 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  758.716817][T11107] Tainted: [W]=WARN
[  758.720632][T11107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  758.730707][T11107] ==================================================================
[  758.287889][T11107] FAULT_INJECTION: forcing a failure.
[  758.287889][T11107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  758.752959][T11107] CPU: 1 UID: 0 PID: 11107 Comm: syz.9.13299 Tainted: G        W           6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) 
[  758.752995][T11107] Tainted: [W]=WARN
[  758.753002][T11107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  758.753055][T11107] Call Trace:
[  758.753062][T11107]  <TASK>
[  758.753072][T11107]  __dump_stack+0x1d/0x30
[  758.753095][T11107]  dump_stack_lvl+0xe8/0x140
[  758.753118][T11107]  dump_stack+0x15/0x1b
[  758.753133][T11107]  should_fail_ex+0x265/0x280
[  758.753170][T11107]  should_fail+0xb/0x20
[  758.753200][T11107]  should_fail_usercopy+0x1a/0x20
[  758.753256][T11107]  _copy_from_user+0x1c/0xb0
[  758.753287][T11107]  __io_register_rsrc_update+0x268/0xac0
[  758.753320][T11107]  ? get_pid_task+0x96/0xd0
[  758.753340][T11107]  ? should_fail_ex+0xdb/0x280
[  758.753442][T11107]  io_register_rsrc_update+0x10a/0x120
[  758.753480][T11107]  __se_sys_io_uring_register+0x6d9/0xeb0
[  758.753548][T11107]  ? fput+0x8f/0xc0
[  758.753582][T11107]  ? ksys_write+0x192/0x1a0
[  758.753609][T11107]  __x64_sys_io_uring_register+0x55/0x70
[  758.753709][T11107]  x64_sys_call+0x18a3/0x2ff0
[  758.753733][T11107]  do_syscall_64+0xd2/0x200
[  758.753857][T11107]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  758.753884][T11107]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  758.753912][T11107] RIP: 0033:0x7f0d5766eb69
[  758.753983][T11107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  758.754001][T11107] RSP: 002b:00007f0d55ccf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  758.754020][T11107] RAX: ffffffffffffffda RBX: 00007f0d57895fa0 RCX: 00007f0d5766eb69
[  758.754035][T11107] RDX: 0000200000000240 RSI: 0000000000000010 RDI: 0000000000000005
[  758.754052][T11107] RBP: 00007f0d55ccf090 R08: 0000000000000000 R09: 0000000000000000
[  758.754068][T11107] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  758.754084][T11107] R13: 0000000000000000 R14: 00007f0d57895fa0 R15: 00007ffe41ad9948
[  758.754174][T11107]  </TASK>
[  758.781246][T11103] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13297'.